$ rpki-client -vvf rpki.apnic.net/member_repository/A91799A0/40EDA11E9AE811EC974B491CC4F9AE02/N-A1JLWEfb6tAP43jEar0MpwRfg.mft File: N-A1JLWEfb6tAP43jEar0MpwRfg.mft (raw, json) Hash identifier: oDVswDrYKhTEWKy01ogjzqgv3GOSSXXhHdbq5wIzNVk= Subject key identifier: 1D:6C:08:8E:65:94:10:C8:CA:18:18:4C:98:20:15:65:AA:41:E0:C2 Authority key identifier: 37:E0:35:24:B5:84:7D:BE:AD:00:FE:37:8C:46:AB:D0:CA:70:45:F8 Certificate issuer: /CN=A91799A0/serialNumber=37E03524B5847DBEAD00FE378C46ABD0CA7045F8 Certificate serial: 02D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-A1JLWEfb6tAP43jEar0MpwRfg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91799A0/40EDA11E9AE811EC974B491CC4F9AE02/N-A1JLWEfb6tAP43jEar0MpwRfg.mft Manifest number: 02D0 Signing time: Fri 03 May 2024 03:28:07 +0000 Manifest this update: Fri 03 May 2024 03:28:07 +0000 Manifest next update: Fri 10 May 2024 03:28:07 +0000 Files and hashes: 1: N-A1JLWEfb6tAP43jEar0MpwRfg.crl (hash: sdKIzU/K+zwGs0AzetEvtUmar/FkmpCB7Xoe+bD6jVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91799A0/40EDA11E9AE811EC974B491CC4F9AE02/N-A1JLWEfb6tAP43jEar0MpwRfg.crl rsync://rpki.apnic.net/member_repository/A91799A0/40EDA11E9AE811EC974B491CC4F9AE02/N-A1JLWEfb6tAP43jEar0MpwRfg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-A1JLWEfb6tAP43jEar0MpwRfg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:28:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 720 (0x2d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91799A0/serialNumber=37E03524B5847DBEAD00FE378C46ABD0CA7045F8 Validity Not Before: May 3 03:28:07 2024 GMT Not After : May 10 03:28:07 2024 GMT Subject: CN=663459c7-4f4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c4:cb:24:20:50:4d:59:c4:fe:f4:8a:f8:f7: fe:47:f1:76:96:5f:72:3e:28:a9:e5:23:c7:69:7d: a4:d1:e7:20:40:33:f4:d0:ad:f5:65:82:7b:7f:7a: 5d:9c:9d:d4:c0:15:0c:43:c1:fb:5e:98:ba:43:7b: c6:65:2f:9f:0c:25:62:a6:95:36:34:e4:c8:cf:e6: f7:f6:f6:51:13:85:38:29:d1:6c:7d:71:96:d2:2a: 20:f8:15:dd:1d:51:92:90:2c:f9:0c:71:77:c8:8e: 40:24:4d:88:3a:e9:0f:f5:4f:86:7a:ce:c0:2b:86: 2e:bb:51:99:e0:b0:b3:be:10:9f:09:a3:54:eb:77: 2e:fe:7e:72:43:d5:55:8e:31:01:6a:e2:3d:3f:0d: 3b:9d:51:24:1a:8c:12:7a:9d:37:aa:32:a9:ac:cf: ac:58:6e:75:de:85:23:bd:2e:7e:67:c7:f9:e5:5c: 2a:3a:4a:e2:c9:72:f0:44:e8:0c:c6:f5:87:4f:84: fe:01:9f:c5:5f:7e:6d:73:b8:b7:23:f7:5b:d1:7a: cf:87:8a:57:03:12:e4:c5:5f:a3:89:bf:04:fa:1e: ff:6a:a1:fb:55:38:2e:72:1d:a2:5a:f1:45:2f:3f: da:72:00:fc:24:d4:32:db:46:44:31:e8:35:49:a6: aa:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:6C:08:8E:65:94:10:C8:CA:18:18:4C:98:20:15:65:AA:41:E0:C2 X509v3 Authority Key Identifier: keyid:37:E0:35:24:B5:84:7D:BE:AD:00:FE:37:8C:46:AB:D0:CA:70:45:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91799A0/40EDA11E9AE811EC974B491CC4F9AE02/N-A1JLWEfb6tAP43jEar0MpwRfg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-A1JLWEfb6tAP43jEar0MpwRfg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91799A0/40EDA11E9AE811EC974B491CC4F9AE02/N-A1JLWEfb6tAP43jEar0MpwRfg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:ff:54:a1:6a:05:60:f8:54:74:8a:37:af:8c:5e:49:05:e6: ab:68:1b:ca:e7:ba:0b:2d:18:73:6a:03:d2:20:bd:b7:8c:e0: 34:bf:fe:5e:05:00:30:36:5e:74:db:36:fc:d8:b0:66:12:7f: 80:17:cf:90:7c:bb:f9:a7:e0:ee:5d:4d:eb:f8:c3:67:0a:b6: 0d:33:50:80:43:02:b6:cd:94:64:c0:ef:43:e5:c2:1a:a5:c5: 07:58:fc:05:fc:fe:7a:4a:a4:a8:a7:28:fd:4f:0c:25:f5:8b: fd:18:49:0d:62:19:f4:68:c8:35:a5:0e:f6:48:1e:ae:5d:64: 4c:26:5b:8b:e6:be:b0:d8:58:ce:b1:4c:d6:16:9b:91:ce:df: 42:d9:23:97:f3:6d:c6:ff:56:0f:a1:e5:4e:81:44:e8:06:5f: dd:8e:36:ee:13:fb:c7:4b:60:4d:3d:2b:ea:e2:b9:d0:a3:97: cf:99:53:3c:6f:51:14:76:ed:4a:68:21:00:e2:90:5f:2e:1e: 3a:cc:59:b4:62:e1:79:12:0a:21:e2:88:4a:50:be:3d:d4:db: 52:ff:81:24:6c:18:f6:49:26:04:e2:78:4a:61:37:91:56:ab: 62:77:2a:6d:50:32:c8:fa:68:e6:b2:80:83:b8:8c:bd:68:f9: 85:98:e5:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk5QTAxMTAvBgNVBAUTKDM3RTAzNTI0QjU4NDdEQkVBRDAwRkUzNzhDNDZBQkQw Q0E3MDQ1RjgwHhcNMjQwNTAzMDMyODA3WhcNMjQwNTEwMDMyODA3WjAYMRYwFAYD VQQDEw02NjM0NTljNy00ZjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArcTLJCBQTVnE/vSK+Pf+R/F2ll9yPiip5SPHaX2k0ecgQDP00K31ZYJ7f3pd nJ3UwBUMQ8H7Xpi6Q3vGZS+fDCVippU2NOTIz+b39vZRE4U4KdFsfXGW0iog+BXd HVGSkCz5DHF3yI5AJE2IOukP9U+Ges7AK4Yuu1GZ4LCzvhCfCaNU63cu/n5yQ9VV jjEBauI9Pw07nVEkGowSep03qjKprM+sWG513oUjvS5+Z8f55VwqOkriyXLwROgM xvWHT4T+AZ/FX35tc7i3I/db0XrPh4pXAxLkxV+jib8E+h7/aqH7VTguch2iWvFF Lz/acgD8JNQy20ZEMeg1SaaqrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB1sCI5l lBDIyhgYTJggFWWqQeDCMB8GA1UdIwQYMBaAFDfgNSS1hH2+rQD+N4xGq9DKcEX4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTlBMC80MEVEQTExRTlB RTgxMUVDOTc0QjQ5MUNDNEY5QUUwMi9OLUExSkxXRWZiNnRBUDQzakVhcjBNcHdS ZmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL04tQTFKTFdFZmI2dEFQNDNqRWFyME1wd1JmZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTlBMC80MEVEQTExRTlBRTgxMUVDOTc0QjQ5MUNDNEY5QUUwMi9OLUExSkxXRWZi NnRBUDQzakVhcjBNcHdSZmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAE/1ShagVg+FR0ijevjF5JBearaBvK57oLLRhzagPSIL23jOA0v/5e BQAwNl502zb82LBmEn+AF8+QfLv5p+DuXU3r+MNnCrYNM1CAQwK2zZRkwO9D5cIa pcUHWPwF/P56SqSopyj9Twwl9Yv9GEkNYhn0aMg1pQ72SB6uXWRMJluL5r6w2FjO sUzWFpuRzt9C2SOX823G/1YPoeVOgUToBl/djjbuE/vHS2BNPSvq4rnQo5fPmVM8 b1EUdu1KaCEA4pBfLh46zFm0YuF5Egoh4ohKUL491NtS/4EkbBj2SSYE4nhKYTeR VqtidyptUDLI+mjmsoCDuIy9aPmFmOXH -----END CERTIFICATE-----Generated at Fri May 3 04:36:51 2024 by rpki-client on console-ams.rpki-client.org