$ rpki-client -vvf rpki.apnic.net/member_repository/A91A40AE/86215FD0FC3811EC9D1AA71EC4F9AE02/S91WBs7jg4cxsnbrWuJ0CVXm6DU.mft File: S91WBs7jg4cxsnbrWuJ0CVXm6DU.mft (raw, json) Hash identifier: dDYTBqg4n825NOUYObt/Kcgn64x/cC8MDsLG8AUWW6A= Subject key identifier: 71:0D:C7:56:35:00:29:A3:DD:B9:87:E5:B4:21:1A:ED:F4:2B:37:7C Authority key identifier: 4B:DD:56:06:CE:E3:83:87:31:B2:76:EB:5A:E2:74:09:55:E6:E8:35 Certificate issuer: /CN=A91A40AE/serialNumber=4BDD5606CEE3838731B276EB5AE2740955E6E835 Certificate serial: 01DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S91WBs7jg4cxsnbrWuJ0CVXm6DU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A40AE/86215FD0FC3811EC9D1AA71EC4F9AE02/S91WBs7jg4cxsnbrWuJ0CVXm6DU.mft Manifest number: 01DB Signing time: Sun 05 May 2024 04:25:48 +0000 Manifest this update: Sun 05 May 2024 04:25:48 +0000 Manifest next update: Sun 12 May 2024 04:25:48 +0000 Files and hashes: 1: S91WBs7jg4cxsnbrWuJ0CVXm6DU.crl (hash: JGuKi8apXqYkKNEpn6L+NfRn1dgodH/XOYDPXTcLUsk=) 2: 0C2902B4FC3D11ECAD619C35C4F9AE02.roa (hash: VAx97ArUJ/xHTsTCWP3ORRiiMsFZfyJ4NoYX/iZ2FGc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A40AE/86215FD0FC3811EC9D1AA71EC4F9AE02/S91WBs7jg4cxsnbrWuJ0CVXm6DU.crl rsync://rpki.apnic.net/member_repository/A91A40AE/86215FD0FC3811EC9D1AA71EC4F9AE02/S91WBs7jg4cxsnbrWuJ0CVXm6DU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S91WBs7jg4cxsnbrWuJ0CVXm6DU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 477 (0x1dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A40AE/serialNumber=4BDD5606CEE3838731B276EB5AE2740955E6E835 Validity Not Before: May 5 04:25:48 2024 GMT Not After : May 12 04:25:48 2024 GMT Subject: CN=66370a4c-bcbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:47:bf:4a:20:e2:66:f9:7d:c6:77:58:0f:32: 1e:8c:b9:32:1f:ac:39:c7:25:3e:c4:69:4c:49:6d: 50:50:83:c7:8e:3c:3c:bf:fc:09:41:62:66:54:83: 37:30:78:d3:f1:f9:48:87:a8:58:50:a8:93:32:53: 25:af:9a:2d:c7:63:e6:6c:6f:ca:cf:4c:12:85:97: 71:1e:7f:9f:ab:f4:76:e8:0f:04:da:c5:69:d7:78: b3:1e:26:14:25:aa:5d:2c:a7:b4:70:0c:8c:92:b9: 74:c1:e9:ef:37:ee:8c:f0:5d:0d:83:f8:bd:d4:a8: 2d:44:c0:02:b3:ff:1a:06:ed:b1:a8:94:28:59:2c: 2a:d4:10:a6:f9:0b:27:6b:6b:d1:0c:35:05:09:05: 7c:0b:cc:ef:1e:6d:6b:0c:7b:bf:a1:e0:ce:52:61: 1e:41:63:58:ea:66:a3:36:d6:31:b7:cf:d3:85:b9: 36:c7:2e:32:3f:e4:bd:98:1d:59:5c:a3:5b:1a:0d: 6b:72:c2:d5:c1:6e:62:32:29:11:50:e6:49:56:f4: fb:63:99:79:42:d2:65:47:4e:c3:52:1e:2a:bc:d1: e4:75:8c:55:3d:98:2e:94:cd:c4:5c:d4:b6:cc:41: 7e:03:e8:34:1d:82:29:90:cd:09:82:bb:bc:3b:99: 2d:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:0D:C7:56:35:00:29:A3:DD:B9:87:E5:B4:21:1A:ED:F4:2B:37:7C X509v3 Authority Key Identifier: keyid:4B:DD:56:06:CE:E3:83:87:31:B2:76:EB:5A:E2:74:09:55:E6:E8:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A40AE/86215FD0FC3811EC9D1AA71EC4F9AE02/S91WBs7jg4cxsnbrWuJ0CVXm6DU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S91WBs7jg4cxsnbrWuJ0CVXm6DU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A40AE/86215FD0FC3811EC9D1AA71EC4F9AE02/S91WBs7jg4cxsnbrWuJ0CVXm6DU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:e9:41:ca:66:dd:5d:8f:7d:ee:e8:02:19:3f:2c:f3:95:90: 62:6c:8e:4e:d7:c0:15:bb:f6:e1:4b:f6:de:5c:2c:b6:70:f7: 47:b2:c0:d0:e8:da:c8:4e:83:92:1b:b9:2e:72:aa:ef:c6:9c: 6a:6a:a9:81:2e:5f:7d:0c:e1:a5:3c:0c:e9:cd:12:6e:f0:3d: b2:c0:73:24:88:7d:4c:68:54:c0:e0:5a:c6:c6:07:cd:9a:64: a9:40:3e:b1:90:a9:00:c3:28:9b:ff:2e:1b:7a:eb:68:c1:db: 52:4a:a9:4f:1d:17:17:16:7b:db:97:5a:9b:14:34:4c:2a:85: 70:5c:74:aa:15:37:ec:92:e5:85:fd:f7:91:d5:bb:84:3c:85: c0:dc:f4:48:51:d6:49:11:8c:46:ea:5b:17:ae:69:83:88:c7: 9c:10:be:c4:fe:3a:41:3a:22:3e:fb:1e:19:b6:de:ee:47:3a: ff:7f:b9:c7:e1:e3:bc:58:3c:90:0d:5a:5e:7d:41:91:22:9f: 25:0c:79:b2:30:72:5a:4e:6a:cd:2e:ad:61:27:25:3f:5c:68: a5:cc:d5:b1:05:d8:4b:b1:c1:6c:e6:9a:5f:d6:58:97:10:19: 83:59:3f:a8:af:4a:ee:0c:d0:5d:be:df:ea:4b:d9:a3:f0:f2: 79:36:ab:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQwQUUxMTAvBgNVBAUTKDRCREQ1NjA2Q0VFMzgzODczMUIyNzZFQjVBRTI3NDA5 NTVFNkU4MzUwHhcNMjQwNTA1MDQyNTQ4WhcNMjQwNTEyMDQyNTQ4WjAYMRYwFAYD VQQDEw02NjM3MGE0Yy1iY2JiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy0e/SiDiZvl9xndYDzIejLkyH6w5xyU+xGlMSW1QUIPHjjw8v/wJQWJmVIM3 MHjT8flIh6hYUKiTMlMlr5otx2PmbG/Kz0wShZdxHn+fq/R26A8E2sVp13izHiYU JapdLKe0cAyMkrl0wenvN+6M8F0Ng/i91KgtRMACs/8aBu2xqJQoWSwq1BCm+Qsn a2vRDDUFCQV8C8zvHm1rDHu/oeDOUmEeQWNY6majNtYxt8/Thbk2xy4yP+S9mB1Z XKNbGg1rcsLVwW5iMikRUOZJVvT7Y5l5QtJlR07DUh4qvNHkdYxVPZgulM3EXNS2 zEF+A+g0HYIpkM0Jgru8O5ktkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHENx1Y1 ACmj3bmH5bQhGu30Kzd8MB8GA1UdIwQYMBaAFEvdVgbO44OHMbJ261ridAlV5ug1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDBBRS84NjIxNUZEMEZD MzgxMUVDOUQxQUE3MUVDNEY5QUUwMi9TOTFXQnM3amc0Y3hzbmJyV3VKMENWWG02 RFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1M5MVdCczdqZzRjeHNuYnJXdUowQ1ZYbTZEVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDBBRS84NjIxNUZEMEZDMzgxMUVDOUQxQUE3MUVDNEY5QUUwMi9TOTFXQnM3amc0 Y3hzbmJyV3VKMENWWG02RFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQ6UHKZt1dj33u6AIZPyzzlZBibI5O18AVu/bhS/beXCy2cPdHssDQ 6NrIToOSG7kucqrvxpxqaqmBLl99DOGlPAzpzRJu8D2ywHMkiH1MaFTA4FrGxgfN mmSpQD6xkKkAwyib/y4beutowdtSSqlPHRcXFnvbl1qbFDRMKoVwXHSqFTfskuWF /feR1buEPIXA3PRIUdZJEYxG6lsXrmmDiMecEL7E/jpBOiI++x4Ztt7uRzr/f7nH 4eO8WDyQDVpefUGRIp8lDHmyMHJaTmrNLq1hJyU/XGilzNWxBdhLscFs5ppf1liX EBmDWT+or0ruDNBdvt/qS9mj8PJ5Nqt8 -----END CERTIFICATE-----Generated at Sun May 5 05:30:50 2024 by rpki-client on console-ams.rpki-client.org