$ rpki-client -vvf rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft File: _0KzQ2BElUaW_-CLDuGXXGxbjW0.mft (raw, json) Hash identifier: M2D74KAkA5wBYuPjNWNKiOVAXRauXbW/LtHldYIoAwQ= Subject key identifier: 3C:B3:0B:53:C9:B7:79:0D:8A:29:07:C3:91:53:00:96:2B:CA:4B:30 Authority key identifier: FF:42:B3:43:60:44:95:46:96:FF:E0:8B:0E:E1:97:5C:6C:5B:8D:6D Certificate issuer: /CN=A91864A7/serialNumber=FF42B3436044954696FFE08B0EE1975C6C5B8D6D Certificate serial: E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft Manifest number: E0 Signing time: Fri 17 May 2024 06:09:35 +0000 Manifest this update: Fri 17 May 2024 06:09:35 +0000 Manifest next update: Fri 24 May 2024 06:09:35 +0000 Files and hashes: 1: _0KzQ2BElUaW_-CLDuGXXGxbjW0.crl (hash: I9WE4NyiDDM+yflGsy6a4Znm3ew9Mn4izNplZdYWKpI=) 2: BCAE303EF6C611EE8AA17A87C4F9AE02.roa (hash: Nw8x9mLPZwAM+TmY7YZWJ1UH47SP8KuPCQA9ieUATsw=) 3: B34D1A26F6C811EEBC4BE00BC4F9AE02.roa (hash: cEHfcporY2Xrm8zzfMtLLWTL/BLOa+RHRiXEST5Wwlw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.crl rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 05:34:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 232 (0xe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91864A7/serialNumber=FF42B3436044954696FFE08B0EE1975C6C5B8D6D Validity Not Before: May 17 06:09:35 2024 GMT Not After : May 24 06:09:35 2024 GMT Subject: CN=6646f49f-65a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:11:a3:64:47:27:ce:83:e7:16:be:74:9e:67: f3:fd:62:5f:f6:fa:67:b4:cf:47:f9:7a:56:d2:ff: 6d:27:f1:c5:26:b0:87:f1:c3:de:02:a3:49:f9:0e: a8:4a:0b:dd:17:0b:16:c9:f7:63:49:50:58:1e:05: 26:e1:52:68:96:72:92:90:da:23:97:03:44:ed:0a: 49:d3:42:e4:3a:6c:f9:d4:b4:68:e5:fd:ea:44:87: 4b:22:b0:7f:0a:1f:32:96:d7:c1:f4:d5:3b:0f:4e: 07:92:53:f9:79:ea:52:88:93:f6:d5:6d:8d:58:ab: 8f:c1:6a:df:c7:e0:17:8f:47:82:1a:60:ae:7d:a2: 14:a0:39:a2:6b:b5:e5:1e:39:41:d9:c4:53:02:01: 97:51:70:f8:43:c6:7b:4a:7e:1d:ef:bf:1d:95:22: b5:47:dc:48:47:47:f1:e6:76:f3:34:a1:6a:e5:95: e1:61:09:95:fc:4d:51:70:69:3c:a3:d6:c4:b8:b7: 29:71:2f:e6:df:77:a2:46:e1:bb:55:ac:d1:6a:90: 82:32:b5:63:bd:75:5d:d5:93:f8:e4:17:ec:46:98: ea:97:22:52:22:1a:ad:69:45:64:7b:36:35:4c:69: e2:69:a6:60:03:a4:b6:f8:61:95:1d:5e:4f:6f:7d: 3a:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:B3:0B:53:C9:B7:79:0D:8A:29:07:C3:91:53:00:96:2B:CA:4B:30 X509v3 Authority Key Identifier: keyid:FF:42:B3:43:60:44:95:46:96:FF:E0:8B:0E:E1:97:5C:6C:5B:8D:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:a7:7e:3c:12:f6:4c:41:c9:c6:f7:43:12:6d:f3:b5:9c:14: d1:c4:9e:bc:b2:b1:3c:9b:6e:43:66:a9:78:99:c0:bc:69:e8: df:86:d3:9b:bc:48:27:5a:8a:9a:2e:c0:4f:df:57:fd:b4:b7: 6a:0a:7f:44:94:51:1a:be:62:6c:41:a6:3a:40:fe:b1:3c:eb: 9b:7d:c9:e0:bb:9c:5c:11:ec:26:9a:2e:bf:2a:95:ba:f5:33: 0d:2e:e0:ba:c4:e4:1a:42:f5:36:81:7c:2c:14:6e:4e:12:53: 3a:30:31:65:7a:cd:fa:f2:6f:73:ce:e9:70:2b:f3:ac:53:f1: 65:e2:09:8d:aa:21:74:db:53:b4:33:3c:fe:b2:b0:83:f1:0c: 67:60:03:e4:74:ec:9d:b1:1f:cc:3e:09:e9:88:e7:45:72:27: 44:1c:d8:a2:d5:f0:49:ee:b5:c1:ac:19:fa:b2:ec:b6:ea:97: 6e:f9:31:22:e8:8b:46:12:a8:18:d0:05:7d:ae:39:01:65:6b: 6d:3c:73:d1:f1:88:07:e9:72:c0:6a:c3:2d:b3:7d:9d:fc:73: 54:95:07:b0:ae:91:b7:67:1c:aa:cb:42:6a:5a:4b:22:80:de: 79:8e:b4:c0:c5:0f:56:f9:55:2c:8e:d4:17:d6:c8:4e:3b:42: 5e:73:1f:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY0QTcxMTAvBgNVBAUTKEZGNDJCMzQzNjA0NDk1NDY5NkZGRTA4QjBFRTE5NzVD NkM1QjhENkQwHhcNMjQwNTE3MDYwOTM1WhcNMjQwNTI0MDYwOTM1WjAYMRYwFAYD VQQDEw02NjQ2ZjQ5Zi02NWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6BGjZEcnzoPnFr50nmfz/WJf9vpntM9H+XpW0v9tJ/HFJrCH8cPeAqNJ+Q6o SgvdFwsWyfdjSVBYHgUm4VJolnKSkNojlwNE7QpJ00LkOmz51LRo5f3qRIdLIrB/ Ch8yltfB9NU7D04HklP5eepSiJP21W2NWKuPwWrfx+AXj0eCGmCufaIUoDmia7Xl HjlB2cRTAgGXUXD4Q8Z7Sn4d778dlSK1R9xIR0fx5nbzNKFq5ZXhYQmV/E1RcGk8 o9bEuLcpcS/m33eiRuG7VazRapCCMrVjvXVd1ZP45BfsRpjqlyJSIhqtaUVkezY1 TGniaaZgA6S2+GGVHV5Pb306ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDyzC1PJ t3kNiikHw5FTAJYrykswMB8GA1UdIwQYMBaAFP9Cs0NgRJVGlv/giw7hl1xsW41t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjRBNy9DODA1NUZENkM5 MjUxMUVEODA5MzYxNDlDNEY5QUUwMi9fMEt6UTJCRWxVYVdfLUNMRHVHWFhHeGJq VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18wS3pRMkJFbFVhV18tQ0xEdUdYWEd4YmpXMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjRBNy9DODA1NUZENkM5MjUxMUVEODA5MzYxNDlDNEY5QUUwMi9fMEt6UTJCRWxV YVdfLUNMRHVHWFhHeGJqVzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyp348EvZMQcnG90MSbfO1nBTRxJ68srE8m25DZql4mcC8aejfhtOb vEgnWoqaLsBP31f9tLdqCn9ElFEavmJsQaY6QP6xPOubfcngu5xcEewmmi6/KpW6 9TMNLuC6xOQaQvU2gXwsFG5OElM6MDFles368m9zzulwK/OsU/Fl4gmNqiF021O0 Mzz+srCD8QxnYAPkdOydsR/MPgnpiOdFcidEHNii1fBJ7rXBrBn6suy26pdu+TEi 6ItGEqgY0AV9rjkBZWttPHPR8YgH6XLAasMts32d/HNUlQewrpG3Zxyqy0JqWksi gN55jrTAxQ9W+VUsjtQX1shOO0Jecx+2 -----END CERTIFICATE-----Generated at Fri May 17 06:46:24 2024 by rpki-client on console-ams.rpki-client.org