$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft File: csG8nD23m0PzVvI_lWiEjJz7jdU.mft (raw, json) Hash identifier: 88uyjpEYqniPcmb1igrARhzmAv17toPUjpttDRMPsz0= Subject key identifier: 5E:B8:9F:FB:65:4F:0F:A0:43:16:1B:F8:7E:94:64:56:BF:BE:68:A9 Authority key identifier: 72:C1:BC:9C:3D:B7:9B:43:F3:56:F2:3F:95:68:84:8C:9C:FB:8D:D5 Certificate issuer: /CN=A91820CE/serialNumber=72C1BC9C3DB79B43F356F23F9568848C9CFB8DD5 Certificate serial: 05D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/csG8nD23m0PzVvI_lWiEjJz7jdU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft Manifest number: 05D3 Signing time: Wed 01 May 2024 00:24:35 +0000 Manifest this update: Wed 01 May 2024 00:24:34 +0000 Manifest next update: Wed 08 May 2024 00:24:34 +0000 Files and hashes: 1: csG8nD23m0PzVvI_lWiEjJz7jdU.crl (hash: zV26p5eoplF8NMpRZ6Br9J6/9wtyLn5boWKNB84T6KQ=) 2: EB292D8A6BF811EB8E899650C4F9AE02.roa (hash: haQ1wVHCjiOBIUnT4Cwar2Iew7eXxoRUFslAJoKYOBs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.crl rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/csG8nD23m0PzVvI_lWiEjJz7jdU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 00:24:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1496 (0x5d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CE/serialNumber=72C1BC9C3DB79B43F356F23F9568848C9CFB8DD5 Validity Not Before: May 1 00:24:34 2024 GMT Not After : May 8 00:24:34 2024 GMT Subject: CN=66318bc3-d1eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:35:8b:81:c5:3d:5b:9b:9e:a3:78:d2:db:ad: 62:5a:1b:4d:ee:31:02:65:0f:59:8e:30:3c:bd:36: 87:bb:97:1b:31:23:9d:82:d6:67:21:1c:1b:74:13: c9:e4:a0:f8:f8:da:f0:eb:3e:b1:67:66:dd:4a:c1: 42:c1:41:04:d1:01:21:13:63:7e:44:50:f0:f0:dd: d9:2c:35:86:8c:45:b6:32:24:18:d4:55:50:eb:c5: 5e:72:7e:ef:eb:a1:c0:5d:44:ac:05:20:5f:1d:ee: 8d:36:43:46:8d:46:78:09:2d:ed:14:13:8f:50:0c: 2e:7a:0b:fd:d3:47:3b:ba:0e:f0:be:85:3f:60:23: bb:06:0b:e2:22:1c:ae:56:43:b8:7b:f7:a7:92:dd: c6:05:61:be:14:4e:50:73:ee:97:15:14:d8:60:02: e4:38:62:43:99:62:72:b8:ec:c0:7a:52:8b:f7:e0: a5:dd:34:e8:69:76:28:75:c6:63:aa:97:1e:65:85: d9:6f:53:c9:7e:4c:3a:72:77:dd:a8:97:b5:65:a1: 42:12:bd:a9:e7:03:13:5c:d2:9b:32:5d:69:02:ab: 35:87:b2:f9:a6:93:5a:cb:7d:73:2c:7a:54:ea:59: 95:66:c9:22:e3:ab:c9:6e:c9:d4:c6:59:d4:07:d9: 09:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:B8:9F:FB:65:4F:0F:A0:43:16:1B:F8:7E:94:64:56:BF:BE:68:A9 X509v3 Authority Key Identifier: keyid:72:C1:BC:9C:3D:B7:9B:43:F3:56:F2:3F:95:68:84:8C:9C:FB:8D:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/csG8nD23m0PzVvI_lWiEjJz7jdU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:55:3b:e9:d8:26:cb:85:e4:8a:46:14:31:4c:b0:44:ea:dd: d6:25:04:3a:da:da:35:ab:a8:e5:2e:d1:58:e8:dd:c6:b0:b1: 30:b1:65:0a:29:30:8d:a1:cd:c8:e0:20:dc:e3:fb:26:52:35: 5b:86:90:b6:7a:a4:0b:9c:c0:02:69:a7:42:31:83:6a:26:9b: 38:a8:4b:69:b4:86:7b:48:98:e5:5f:5a:b6:30:2e:35:02:6d: f1:8a:80:f6:73:2a:34:e6:4b:59:7f:0b:d0:45:02:34:91:42: 03:cf:3b:7c:f1:59:6e:45:5e:75:58:cf:45:59:ce:a1:86:c7: d0:a6:ee:f1:86:4c:4e:7c:49:3e:0e:06:ee:b9:27:bf:25:a7: 71:55:1f:98:d6:da:e1:3d:61:da:b0:fb:ff:4c:71:4c:96:23: 3b:1c:6b:30:4e:55:ba:b8:3c:86:d5:4d:b6:b8:38:06:7b:f4: 86:97:59:98:7b:ef:1d:68:87:96:bc:ab:93:eb:0a:40:bd:bd: ae:37:44:be:75:a8:d9:a5:f4:15:33:d9:2b:55:5c:38:27:aa: 30:c1:9f:61:2c:64:c8:2d:57:08:b5:45:33:78:85:fd:f5:f7: 72:7a:db:29:89:a3:d3:c0:86:fa:0d:cd:d1:56:0a:98:9c:bb: d6:62:82:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIwQ0UxMTAvBgNVBAUTKDcyQzFCQzlDM0RCNzlCNDNGMzU2RjIzRjk1Njg4NDhD OUNGQjhERDUwHhcNMjQwNTAxMDAyNDM0WhcNMjQwNTA4MDAyNDM0WjAYMRYwFAYD VQQDEw02NjMxOGJjMy1kMWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvDWLgcU9W5ueo3jS261iWhtN7jECZQ9ZjjA8vTaHu5cbMSOdgtZnIRwbdBPJ 5KD4+Nrw6z6xZ2bdSsFCwUEE0QEhE2N+RFDw8N3ZLDWGjEW2MiQY1FVQ68Vecn7v 66HAXUSsBSBfHe6NNkNGjUZ4CS3tFBOPUAwuegv900c7ug7wvoU/YCO7BgviIhyu VkO4e/enkt3GBWG+FE5Qc+6XFRTYYALkOGJDmWJyuOzAelKL9+Cl3TToaXYodcZj qpceZYXZb1PJfkw6cnfdqJe1ZaFCEr2p5wMTXNKbMl1pAqs1h7L5ppNay31zLHpU 6lmVZski46vJbsnUxlnUB9kJlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF64n/tl Tw+gQxYb+H6UZFa/vmipMB8GA1UdIwQYMBaAFHLBvJw9t5tD81byP5VohIyc+43V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjBDRS9CNzMwNjlDNjZC RTkxMUVCQjdENTU2MERDNEY5QUUwMi9jc0c4bkQyM20wUHpWdklfbFdpRWpKejdq ZFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NzRzhuRDIzbTBQelZ2SV9sV2lFakp6N2pkVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjBDRS9CNzMwNjlDNjZCRTkxMUVCQjdENTU2MERDNEY5QUUwMi9jc0c4bkQyM20w UHpWdklfbFdpRWpKejdqZFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoVTvp2CbLheSKRhQxTLBE6t3WJQQ62to1q6jlLtFY6N3GsLEwsWUK KTCNoc3I4CDc4/smUjVbhpC2eqQLnMACaadCMYNqJps4qEtptIZ7SJjlX1q2MC41 Am3xioD2cyo05ktZfwvQRQI0kUIDzzt88VluRV51WM9FWc6hhsfQpu7xhkxOfEk+ DgbuuSe/JadxVR+Y1trhPWHasPv/THFMliM7HGswTlW6uDyG1U22uDgGe/SGl1mY e+8daIeWvKuT6wpAvb2uN0S+dajZpfQVM9krVVw4J6owwZ9hLGTILVcItUUzeIX9 9fdyetspiaPTwIb6Dc3RVgqYnLvWYoJl -----END CERTIFICATE-----Generated at Wed May 1 01:38:28 2024 by rpki-client on console-ams.rpki-client.org