$ rpki-client -vvf rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/VIe2P0TWkdQ1aIr-PIrCe_2REq0.mft File: VIe2P0TWkdQ1aIr-PIrCe_2REq0.mft (raw, json) Hash identifier: M7DKe9lpeRNDpR/6UV5PF059yTLFMNAiIXLaLIEH1fY= Subject key identifier: BD:39:11:07:70:3E:BC:76:11:70:0A:67:B0:53:D2:91:42:99:54:44 Authority key identifier: 54:87:B6:3F:44:D6:91:D4:35:68:8A:FE:3C:8A:C2:7B:FD:91:12:AD Certificate issuer: /CN=A91790C3/serialNumber=5487B63F44D691D435688AFE3C8AC27BFD9112AD Certificate serial: 05AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIe2P0TWkdQ1aIr-PIrCe_2REq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/VIe2P0TWkdQ1aIr-PIrCe_2REq0.mft Manifest number: 059D Signing time: Sun 05 May 2024 00:33:17 +0000 Manifest this update: Sun 05 May 2024 00:33:17 +0000 Manifest next update: Sun 12 May 2024 00:33:17 +0000 Files and hashes: 1: VIe2P0TWkdQ1aIr-PIrCe_2REq0.crl (hash: Zfuyu1FMR9eYwIRCVzVl7HnJ/OTyvlnHqWqJ5pjmyW8=) 2: C437B01282C211EBBB08B280C4F9AE02.roa (hash: ebikP0CQcFTiYsMhZeewEi6wK9BzO2WIxC3f77Ull+4=) 3: C3AD861C82C211EBBB08B280C4F9AE02.roa (hash: RvDi9pqk9b/bybe3VZ8FMxGXGgf1T5acVgf/V1vlnIw=) 4: C310545082C211EBBB08B280C4F9AE02.roa (hash: mGJEKo8PkceTKA0X0bnRDzwN6IMfwqGdUDO8n4bRzEQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/VIe2P0TWkdQ1aIr-PIrCe_2REq0.crl rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/VIe2P0TWkdQ1aIr-PIrCe_2REq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIe2P0TWkdQ1aIr-PIrCe_2REq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1450 (0x5aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91790C3/serialNumber=5487B63F44D691D435688AFE3C8AC27BFD9112AD Validity Not Before: May 5 00:33:17 2024 GMT Not After : May 12 00:33:17 2024 GMT Subject: CN=6636d3cd-075c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:84:d2:0c:55:55:55:59:5d:bf:93:2b:58:29: 7f:86:22:ed:d8:c3:c7:35:14:9d:07:9e:59:94:06: 11:5b:73:87:89:b3:a3:dc:c7:b8:4a:bf:bd:f0:e5: 32:4d:57:b0:ea:20:30:c3:8a:b7:41:46:d2:f2:26: 03:88:b8:9c:b0:d4:f9:5e:64:52:f1:66:82:47:1f: d7:83:56:43:f2:ec:dc:3b:20:4d:6d:71:33:23:c0: ee:84:04:5b:f4:58:2d:92:2f:a1:ca:81:cb:2f:7e: 56:a5:9a:23:bd:7c:32:cd:06:ed:fa:3d:8c:2e:dd: 3b:c4:7b:df:c8:2e:34:3a:0a:d0:c6:a9:07:a6:24: 20:a4:f9:2b:77:d7:d4:cc:0b:b3:b6:13:e0:fb:d0: 88:20:00:78:42:15:20:13:d8:96:3a:99:0e:d5:e2: 45:7c:8a:2a:bf:5e:2a:b0:9d:1e:d5:49:b3:38:46: 89:45:57:a9:e9:8e:ed:cd:ac:4e:f0:d0:2b:ef:a8: c3:74:6f:08:88:fe:f1:67:06:2c:7c:eb:c7:be:88: 2b:15:69:70:de:a1:6a:fe:10:21:43:a5:1d:f0:a4: b8:c3:39:cf:52:9d:0e:99:64:4b:47:1d:a7:42:41: 4d:4c:ce:23:b4:b7:11:8b:31:6a:84:69:ea:c1:23: dc:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:39:11:07:70:3E:BC:76:11:70:0A:67:B0:53:D2:91:42:99:54:44 X509v3 Authority Key Identifier: keyid:54:87:B6:3F:44:D6:91:D4:35:68:8A:FE:3C:8A:C2:7B:FD:91:12:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/VIe2P0TWkdQ1aIr-PIrCe_2REq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIe2P0TWkdQ1aIr-PIrCe_2REq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/VIe2P0TWkdQ1aIr-PIrCe_2REq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:87:05:1a:82:f1:5e:1c:aa:1e:bd:3d:fc:a8:c6:6a:89:c8: 05:6e:06:af:6b:5f:66:4a:47:73:f5:f8:6d:cc:6a:61:fd:ed: 79:0a:83:c6:c3:48:76:6d:44:d6:7b:61:c5:51:b6:30:0c:e6: 1b:f9:15:e2:91:17:02:c0:ca:46:60:7b:75:0c:24:71:8e:98: 99:0e:6d:2a:7c:17:80:e7:37:c9:92:22:46:56:74:94:6f:bc: 4a:61:0b:29:8b:bf:1a:08:1a:11:33:38:fc:b7:57:f6:a7:7f: 03:d8:c0:35:dd:c5:2d:49:71:c0:26:d0:be:98:ea:9d:63:71: c8:76:74:56:1c:ad:12:97:ce:b0:dd:7e:6d:e9:17:fe:19:aa: a4:75:e3:46:42:51:4c:64:11:b2:c0:3e:4e:40:a1:54:db:4c: eb:17:f2:89:9b:62:74:30:0c:7b:d6:22:19:02:84:7a:bb:1c: c5:69:58:fc:a3:92:3b:2a:df:33:ac:69:5d:ed:0e:73:77:63: 40:cc:f0:c1:93:21:43:ab:df:25:7d:83:62:1d:ef:89:e7:a8: 55:9a:0e:84:56:85:05:9e:c8:18:fb:35:a5:1d:5b:73:38:4a: 1b:0f:56:96:32:27:e1:3a:dd:b9:7d:b2:90:d9:8f:c6:b0:9e: 65:48:1c:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzkwQzMxMTAvBgNVBAUTKDU0ODdCNjNGNDRENjkxRDQzNTY4OEFGRTNDOEFDMjdC RkQ5MTEyQUQwHhcNMjQwNTA1MDAzMzE3WhcNMjQwNTEyMDAzMzE3WjAYMRYwFAYD VQQDEw02NjM2ZDNjZC0wNzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArYTSDFVVVVldv5MrWCl/hiLt2MPHNRSdB55ZlAYRW3OHibOj3Me4Sr+98OUy TVew6iAww4q3QUbS8iYDiLicsNT5XmRS8WaCRx/Xg1ZD8uzcOyBNbXEzI8DuhARb 9Fgtki+hyoHLL35WpZojvXwyzQbt+j2MLt07xHvfyC40OgrQxqkHpiQgpPkrd9fU zAuzthPg+9CIIAB4QhUgE9iWOpkO1eJFfIoqv14qsJ0e1UmzOEaJRVep6Y7tzaxO 8NAr76jDdG8IiP7xZwYsfOvHvogrFWlw3qFq/hAhQ6Ud8KS4wznPUp0OmWRLRx2n QkFNTM4jtLcRizFqhGnqwSPceQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL05EQdw Prx2EXAKZ7BT0pFCmVREMB8GA1UdIwQYMBaAFFSHtj9E1pHUNWiK/jyKwnv9kRKt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTBDMy84NTUzMDVFMjgy QzAxMUVCQkFDRTJBN0JDNEY5QUUwMi9WSWUyUDBUV2tkUTFhSXItUElyQ2VfMlJF cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZJZTJQMFRXa2RRMWFJci1QSXJDZV8yUkVxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTBDMy84NTUzMDVFMjgyQzAxMUVCQkFDRTJBN0JDNEY5QUUwMi9WSWUyUDBUV2tk UTFhSXItUElyQ2VfMlJFcTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwhwUagvFeHKoevT38qMZqicgFbgava19mSkdz9fhtzGph/e15CoPG w0h2bUTWe2HFUbYwDOYb+RXikRcCwMpGYHt1DCRxjpiZDm0qfBeA5zfJkiJGVnSU b7xKYQspi78aCBoRMzj8t1f2p38D2MA13cUtSXHAJtC+mOqdY3HIdnRWHK0Sl86w 3X5t6Rf+GaqkdeNGQlFMZBGywD5OQKFU20zrF/KJm2J0MAx71iIZAoR6uxzFaVj8 o5I7Kt8zrGld7Q5zd2NAzPDBkyFDq98lfYNiHe+J56hVmg6EVoUFnsgY+zWlHVtz OEobD1aWMifhOt25fbKQ2Y/GsJ5lSBwy -----END CERTIFICATE-----Generated at Sun May 5 01:13:19 2024 by rpki-client on console-ams.rpki-client.org