$ rpki-client -vvf rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft File: CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft (raw, json) Hash identifier: EFRxFCS/devW9J0h5fEvp9DXDfiYK9WCKoSeB92NVPk= Subject key identifier: 19:2D:C8:03:47:2B:C0:6A:6C:0C:EE:45:16:27:DD:13:A6:53:26:54 Authority key identifier: 09:11:E9:9A:AD:F6:64:F0:39:92:9C:AB:BB:48:74:A3:A1:61:CA:AD Certificate issuer: /CN=A91937EA/serialNumber=0911E99AADF664F039929CABBB4874A3A161CAAD Certificate serial: 05D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft Manifest number: 05D3 Signing time: Fri 03 May 2024 00:12:00 +0000 Manifest this update: Fri 03 May 2024 00:11:59 +0000 Manifest next update: Fri 10 May 2024 00:11:59 +0000 Files and hashes: 1: CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl (hash: tHfSfS5IuWpTGudHH22d8I4zA67VAba+p2agaXedEJw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 23:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1493 (0x5d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91937EA/serialNumber=0911E99AADF664F039929CABBB4874A3A161CAAD Validity Not Before: May 3 00:11:59 2024 GMT Not After : May 10 00:11:59 2024 GMT Subject: CN=66342bcf-1052 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:97:29:7f:9d:9b:28:09:dc:9d:13:30:f7:8b: ef:aa:86:47:35:15:84:53:ac:f8:63:8c:08:45:24: 51:72:d4:a3:8c:bb:01:3b:69:f1:f0:63:4a:62:32: 6b:93:8a:c1:53:7b:f6:e3:93:e9:5d:5d:85:9b:d4: cf:97:73:b0:ac:75:ce:ee:b5:86:70:bc:98:47:f4: 43:ae:75:cd:2d:aa:cf:84:2f:34:33:39:73:5f:19: b1:f4:c7:1c:b7:6b:ae:8a:3b:cc:57:f3:6d:7f:8b: db:1f:5e:c4:9e:3b:3b:44:da:b3:3d:d0:a4:60:fe: ce:bd:db:a6:12:5e:75:69:50:77:2f:c8:b7:6a:fe: 77:fe:aa:fd:d5:a7:bb:83:9d:bb:18:86:ac:9b:7a: 80:36:64:73:02:ac:13:9b:a0:ff:d5:7c:cc:a3:54: 02:38:f4:c3:01:fc:d7:75:f6:de:82:4e:a2:94:cd: 1f:b3:74:c1:f2:95:38:be:7f:85:e7:30:50:62:49: 97:b2:f1:2b:a0:d3:d2:69:68:ba:2f:f1:75:72:07: 67:f7:b3:ff:a8:31:34:91:e5:6c:46:5d:86:42:7c: c9:c5:92:4f:ef:c8:b4:14:6d:4b:95:5d:ba:4e:e9: e6:50:d8:0d:cc:18:84:1e:03:7c:61:fe:7d:ea:d4: 2e:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:2D:C8:03:47:2B:C0:6A:6C:0C:EE:45:16:27:DD:13:A6:53:26:54 X509v3 Authority Key Identifier: keyid:09:11:E9:9A:AD:F6:64:F0:39:92:9C:AB:BB:48:74:A3:A1:61:CA:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:4f:e3:bc:e5:30:e6:fa:d3:5c:08:86:6e:cf:41:83:7b:49: 59:e0:d0:8f:11:ed:3c:50:89:02:53:3f:30:4f:96:ba:ba:2d: 48:f5:c2:60:f4:b8:8b:f8:30:cd:70:8a:2b:0d:2a:af:71:14: 7b:7b:44:e5:3b:96:20:74:f7:32:96:0f:f4:7e:dc:bf:bc:c7: 12:fc:35:61:d0:69:35:e3:5a:b2:c2:d1:0f:44:d9:90:c3:a2: 3a:93:87:2c:78:16:eb:ea:5d:76:0c:80:6d:fc:aa:af:c7:75: 30:3b:64:a4:94:6d:e3:12:04:8d:5c:8f:50:4f:c5:97:d3:c0: 34:aa:29:db:0d:b5:1f:94:c9:52:62:ab:6d:44:63:96:da:2e: 74:b5:05:f9:45:dd:09:52:f4:57:e3:6b:d6:95:59:35:34:79: 11:d9:76:4c:3d:71:e0:31:9e:d2:12:7c:c7:9e:71:c3:91:0f: 58:34:65:7a:86:47:9f:f4:c0:e0:19:b3:d3:66:d3:7d:62:df: 8d:a3:2d:5b:50:e6:2e:2d:27:1a:65:82:ce:a4:71:7b:d3:0e: 5a:d7:0e:ef:47:dd:b2:aa:7d:2a:62:39:4c:10:fa:00:ab:44: 0a:39:cb:a1:dc:28:4e:40:08:5f:c3:44:34:18:c7:6a:81:3f: f2:f1:04:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM3RUExMTAvBgNVBAUTKDA5MTFFOTlBQURGNjY0RjAzOTkyOUNBQkJCNDg3NEEz QTE2MUNBQUQwHhcNMjQwNTAzMDAxMTU5WhcNMjQwNTEwMDAxMTU5WjAYMRYwFAYD VQQDEw02NjM0MmJjZi0xMDUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqJcpf52bKAncnRMw94vvqoZHNRWEU6z4Y4wIRSRRctSjjLsBO2nx8GNKYjJr k4rBU3v245PpXV2Fm9TPl3OwrHXO7rWGcLyYR/RDrnXNLarPhC80MzlzXxmx9Mcc t2uuijvMV/Ntf4vbH17Enjs7RNqzPdCkYP7OvdumEl51aVB3L8i3av53/qr91ae7 g527GIasm3qANmRzAqwTm6D/1XzMo1QCOPTDAfzXdfbegk6ilM0fs3TB8pU4vn+F 5zBQYkmXsvEroNPSaWi6L/F1cgdn97P/qDE0keVsRl2GQnzJxZJP78i0FG1LlV26 TunmUNgNzBiEHgN8Yf596tQumwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBktyANH K8BqbAzuRRYn3ROmUyZUMB8GA1UdIwQYMBaAFAkR6Zqt9mTwOZKcq7tIdKOhYcqt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzdFQS8xRTk2NTYzMDZB NTkxMUVCQTM2NDFDM0RDNEY5QUUwMi9DUkhwbXEzMlpQQTVrcHlydTBoMG82Rmh5 cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NSSHBtcTMyWlBBNWtweXJ1MGgwbzZGaHlxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzdFQS8xRTk2NTYzMDZBNTkxMUVCQTM2NDFDM0RDNEY5QUUwMi9DUkhwbXEzMlpQ QTVrcHlydTBoMG82Rmh5cTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZT+O85TDm+tNcCIZuz0GDe0lZ4NCPEe08UIkCUz8wT5a6ui1I9cJg 9LiL+DDNcIorDSqvcRR7e0TlO5YgdPcylg/0fty/vMcS/DVh0Gk141qywtEPRNmQ w6I6k4cseBbr6l12DIBt/Kqvx3UwO2SklG3jEgSNXI9QT8WX08A0qinbDbUflMlS YqttRGOW2i50tQX5Rd0JUvRX42vWlVk1NHkR2XZMPXHgMZ7SEnzHnnHDkQ9YNGV6 hkef9MDgGbPTZtN9Yt+Noy1bUOYuLScaZYLOpHF70w5a1w7vR92yqn0qYjlMEPoA q0QKOcuh3ChOQAhfw0Q0GMdqgT/y8QQg -----END CERTIFICATE-----Generated at Fri May 3 00:48:29 2024 by rpki-client on console-ams.rpki-client.org