$ rpki-client -vvf rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft File: -IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft (raw, json) Hash identifier: /tIFliIPiFVvdRKZFfKtRgcWQxQoUCtmxbYrM19FtbA= Subject key identifier: EE:59:5F:BD:77:41:03:5F:13:D1:4D:FF:3F:73:60:07:AF:F8:83:D8 Authority key identifier: F8:8B:97:40:4F:9D:C1:0F:5A:AB:02:F7:4E:C4:90:F9:8A:D0:D3:B0 Certificate issuer: /CN=A91854B7/serialNumber=F88B97404F9DC10F5AAB02F74EC490F98AD0D3B0 Certificate serial: 059E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft Manifest number: 0591 Signing time: Wed 01 May 2024 00:45:51 +0000 Manifest this update: Wed 01 May 2024 00:45:51 +0000 Manifest next update: Wed 08 May 2024 00:45:51 +0000 Files and hashes: 1: -IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl (hash: TJtqbhnyevrgemH0RJdCutkuME08UK7UGHgvuz55njE=) 2: 3EACF95EEBB511ECA410BF6DC4F9AE02.roa (hash: L9+PGVNUDWdoaT135f9PdXeHibPYhLnDDhv1pA06ICk=) 3: 57D28CCA853E11EB9D9E2D39C4F9AE02.roa (hash: QDXEIkRGxhjCHN0kh3LkRzd4RAEFOkAWJ2rw4r6EYZM=) 4: 5892BB44853E11EB9D9E2D39C4F9AE02.roa (hash: XeblEh4yDmM2IVkfU/Q4s+MNuRsvKOZCB0nRj0eU5IQ=) 5: 1D526B2E5DB311EEA8990E1BC4F9AE02.roa (hash: E81a5zbzoqwzRhIGsdKqEEXvXKlPz+gAA8azjiBWW+o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 00:32:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1438 (0x59e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91854B7/serialNumber=F88B97404F9DC10F5AAB02F74EC490F98AD0D3B0 Validity Not Before: May 1 00:45:51 2024 GMT Not After : May 8 00:45:51 2024 GMT Subject: CN=663190bf-1dbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:06:0a:03:3a:4a:37:cc:51:7b:ad:24:54:c9: 15:92:96:9f:c2:93:a2:73:8b:8c:ad:19:4c:f4:ef: c1:9a:89:fe:e4:37:3e:bd:21:a9:0f:28:14:9f:53: a2:b2:cc:27:a2:a8:e3:ae:73:8c:50:4f:53:37:4a: b1:f8:d8:a2:c4:b8:fc:f0:96:b9:ab:18:10:7d:d7: 55:e2:09:f5:29:93:b4:33:16:5f:77:7e:ad:71:2c: 25:2c:b0:da:41:ba:e4:7d:53:fd:4e:83:6d:95:69: d6:58:44:5c:d1:e2:68:38:5d:08:7d:1e:08:c4:2f: da:3f:09:c7:22:35:ca:c0:b5:79:bd:35:d6:50:32: 5e:b1:e0:f8:e7:f1:5a:24:75:33:b7:ff:94:c4:47: b8:0d:55:64:6f:0b:3d:fa:1a:fe:47:bd:98:ff:29: c5:34:d1:8b:e7:88:51:6a:8b:76:9f:84:7a:2a:79: 1e:f5:f9:60:b8:40:7f:85:c7:50:0f:30:7a:d3:d2: 36:09:67:58:bf:ab:63:88:98:3f:af:ac:c3:05:0a: 29:f0:7a:e0:eb:f3:16:27:da:94:ec:84:c3:46:8d: b6:b1:12:73:fd:f4:1f:65:6e:aa:c9:4d:59:39:91: 99:a2:97:fa:51:bd:b6:3f:9c:a7:9b:0b:68:67:15: 29:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:59:5F:BD:77:41:03:5F:13:D1:4D:FF:3F:73:60:07:AF:F8:83:D8 X509v3 Authority Key Identifier: keyid:F8:8B:97:40:4F:9D:C1:0F:5A:AB:02:F7:4E:C4:90:F9:8A:D0:D3:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:7e:18:02:23:d3:a5:9f:dd:b5:5c:9b:92:b1:d0:c8:96:b5: a1:a9:68:37:00:45:7e:68:be:3e:f2:f7:b5:bb:57:b0:56:94: 0a:f3:7d:9f:2f:90:1d:cd:c6:2b:6e:a4:26:2c:01:d0:91:ca: 3d:c8:dc:af:2c:73:ce:33:ad:64:64:63:7a:f2:0b:24:51:5c: 6c:98:58:b4:d3:95:65:a1:97:90:20:2e:1a:87:e1:f5:e0:d9: 27:44:69:64:d5:05:c5:20:34:94:5c:17:31:01:77:cc:e3:52: ca:80:f7:0e:aa:92:ae:f4:af:64:97:ba:ba:01:47:42:8e:b2: 5d:24:cf:4b:03:fd:23:d6:90:02:41:f1:58:e1:a1:71:54:3b: 54:8c:03:8f:1c:29:2b:4b:00:54:a2:f4:1b:fe:01:eb:d6:0d: f5:85:54:3b:74:73:30:0b:47:47:50:47:80:e0:55:35:b0:56: 8e:b5:f5:42:79:85:b5:90:7a:2a:08:d5:1c:37:4c:f2:c8:51: de:6c:74:e8:a7:de:ba:67:2f:63:40:a0:d0:5d:3c:fc:c3:ee: 2b:7f:f0:ce:aa:4a:53:d5:0b:3b:f8:36:2c:9d:57:c5:4d:4c: 57:e7:05:cf:5e:26:fd:4c:6f:db:55:84:cd:4d:4a:2f:44:31: b8:d2:fc:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU0QjcxMTAvBgNVBAUTKEY4OEI5NzQwNEY5REMxMEY1QUFCMDJGNzRFQzQ5MEY5 OEFEMEQzQjAwHhcNMjQwNTAxMDA0NTUxWhcNMjQwNTA4MDA0NTUxWjAYMRYwFAYD VQQDEw02NjMxOTBiZi0xZGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8wYKAzpKN8xRe60kVMkVkpafwpOic4uMrRlM9O/Bmon+5Dc+vSGpDygUn1Oi sswnoqjjrnOMUE9TN0qx+NiixLj88Ja5qxgQfddV4gn1KZO0MxZfd36tcSwlLLDa QbrkfVP9ToNtlWnWWERc0eJoOF0IfR4IxC/aPwnHIjXKwLV5vTXWUDJeseD45/Fa JHUzt/+UxEe4DVVkbws9+hr+R72Y/ynFNNGL54hRaot2n4R6Knke9flguEB/hcdQ DzB609I2CWdYv6tjiJg/r6zDBQop8Hrg6/MWJ9qU7ITDRo22sRJz/fQfZW6qyU1Z OZGZopf6Ub22P5ynmwtoZxUpAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO5ZX713 QQNfE9FN/z9zYAev+IPYMB8GA1UdIwQYMBaAFPiLl0BPncEPWqsC907EkPmK0NOw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTRCNy9FMTgwQ0U3QTg1 MUUxMUVCODQxOUIzMjdDNEY5QUUwMi8tSXVYUUUtZHdROWFxd0wzVHNTUS1ZclEw N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1JdVhRRS1kd1E5YXF3TDNUc1NRLVlyUTA3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTRCNy9FMTgwQ0U3QTg1MUUxMUVCODQxOUIzMjdDNEY5QUUwMi8tSXVYUUUtZHdR OWFxd0wzVHNTUS1ZclEwN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtfhgCI9Oln921XJuSsdDIlrWhqWg3AEV+aL4+8ve1u1ewVpQK832f L5AdzcYrbqQmLAHQkco9yNyvLHPOM61kZGN68gskUVxsmFi005VloZeQIC4ah+H1 4NknRGlk1QXFIDSUXBcxAXfM41LKgPcOqpKu9K9kl7q6AUdCjrJdJM9LA/0j1pAC QfFY4aFxVDtUjAOPHCkrSwBUovQb/gHr1g31hVQ7dHMwC0dHUEeA4FU1sFaOtfVC eYW1kHoqCNUcN0zyyFHebHTop966Zy9jQKDQXTz8w+4rf/DOqkpT1Qs7+DYsnVfF TUxX5wXPXib9TG/bVYTNTUovRDG40vwH -----END CERTIFICATE-----Generated at Wed May 1 01:38:28 2024 by rpki-client on console-ams.rpki-client.org