$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft File: g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft (raw, json) Hash identifier: Pblw94qQVNDt4t/j/aSZMcKCw/L2W+9TwnBhwGKfWLY= Subject key identifier: 54:92:5D:F9:61:C0:21:E0:BE:D8:F7:59:68:B3:7B:0C:33:C7:BA:92 Authority key identifier: 83:8A:94:ED:25:24:09:59:AA:6F:15:49:10:03:AC:6E:6D:03:95:7E Certificate issuer: /CN=A91A7CDD/serialNumber=838A94ED25240959AA6F15491003AC6E6D03957E Certificate serial: 28 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft Manifest number: 26 Signing time: Fri 17 May 2024 08:40:13 +0000 Manifest this update: Fri 17 May 2024 08:40:12 +0000 Manifest next update: Fri 24 May 2024 08:40:12 +0000 Files and hashes: 1: g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl (hash: Zny7L7U2zbiX+6iRVu5dXgzi4peOTD0c68xmIDOz33w=) 2: 1E595AE8DD0E11EE9833196BC4F9AE02.roa (hash: ABk7UnhSiI/cyac2q37QjbleVm+GdMhRfrm7xL7Vb0c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7CDD/serialNumber=838A94ED25240959AA6F15491003AC6E6D03957E Validity Not Before: May 17 08:40:12 2024 GMT Not After : May 24 08:40:12 2024 GMT Subject: CN=664717ec-52b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:89:ec:32:9d:fa:86:9c:1f:05:04:f3:31:ac: f2:a9:83:56:73:ed:ed:4f:73:5e:a5:9c:76:45:2e: cf:49:a6:91:e4:9f:2b:dc:fc:df:93:79:45:d9:83: e2:d0:c2:56:aa:3f:dd:43:92:0a:05:f9:9f:04:40: 82:70:e6:ff:be:ae:27:9f:03:9b:3a:6d:3c:fc:db: 84:e6:1d:dc:67:de:68:07:4f:3f:6d:8d:66:62:54: 0c:51:04:56:88:9d:30:b8:c9:1a:b1:93:f6:6e:0f: 18:a9:f3:58:5b:80:3c:c1:fb:d5:f7:94:ae:a9:52: 63:21:36:26:7b:65:17:c7:cc:70:88:7c:96:d0:bf: 36:f0:0a:6a:23:7e:f9:f6:b5:b1:d5:7e:29:08:53: d6:61:26:b8:67:b9:a1:16:be:f7:c4:ba:b5:ad:90: 09:71:3a:cc:29:93:fd:12:68:d5:01:c8:73:29:d3: ba:52:91:a7:d2:79:7c:b3:f3:27:f8:99:92:83:f5: 14:ad:be:c4:30:48:e5:61:7e:94:6c:f8:77:96:ad: 1d:eb:6a:3d:4e:1d:fe:8e:86:8d:22:b1:ee:eb:36: d9:8f:08:75:af:e1:bc:33:b3:02:72:c4:1b:d1:ed: b6:41:4f:da:df:5d:6a:2e:9e:6e:e0:14:ab:07:16: 1a:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:92:5D:F9:61:C0:21:E0:BE:D8:F7:59:68:B3:7B:0C:33:C7:BA:92 X509v3 Authority Key Identifier: keyid:83:8A:94:ED:25:24:09:59:AA:6F:15:49:10:03:AC:6E:6D:03:95:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:e7:56:ff:ca:e8:66:9b:92:8d:d2:a3:f5:65:e8:94:6c:f8: d6:26:d7:64:26:60:16:56:4c:35:c5:24:8a:e1:0f:a9:40:63: 29:4a:12:cc:6d:d0:9f:d2:52:65:a7:dc:07:36:9a:04:9a:13: f3:1b:a5:58:50:5a:b8:80:ee:5b:ae:7f:b7:21:d5:b2:8a:af: c2:33:6f:ef:90:7f:b1:77:98:e8:31:a8:89:bd:17:8f:77:ea: 9e:58:04:0e:a7:c3:d6:8d:cf:3e:05:7f:e7:30:5c:29:8f:ea: ea:97:af:8a:d8:b8:34:66:15:53:65:19:0c:11:94:3c:34:ce: 86:69:87:8c:68:11:36:bd:d2:06:fa:db:34:48:09:aa:c8:a8: 71:ac:9e:31:c6:31:a2:85:f9:82:ed:d8:d6:a8:cc:05:ee:af: d2:08:56:1c:5f:e6:4f:ef:49:23:3c:c2:6d:88:4d:85:73:11: 88:f6:b0:bd:31:fd:23:6a:d1:6f:45:2b:82:11:fa:2b:63:d3: 70:cd:55:78:28:55:f2:70:44:80:03:cc:1b:da:7e:73:1b:76: 4e:47:99:aa:29:cf:bc:7a:a2:6f:ea:13:e8:e3:a1:a7:10:58: 34:31:b7:2c:40:de:56:e7:fb:56:53:65:17:88:f6:5b:40:cf: 3d:81:3d:7e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB N0NERDExMC8GA1UEBRMoODM4QTk0RUQyNTI0MDk1OUFBNkYxNTQ5MTAwM0FDNkU2 RDAzOTU3RTAeFw0yNDA1MTcwODQwMTJaFw0yNDA1MjQwODQwMTJaMBgxFjAUBgNV BAMTDTY2NDcxN2VjLTUyYjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCviewynfqGnB8FBPMxrPKpg1Zz7e1Pc16lnHZFLs9JppHknyvc/N+TeUXZg+LQ wlaqP91DkgoF+Z8EQIJw5v++riefA5s6bTz824TmHdxn3mgHTz9tjWZiVAxRBFaI nTC4yRqxk/ZuDxip81hbgDzB+9X3lK6pUmMhNiZ7ZRfHzHCIfJbQvzbwCmojfvn2 tbHVfikIU9ZhJrhnuaEWvvfEurWtkAlxOswpk/0SaNUByHMp07pSkafSeXyz8yf4 mZKD9RStvsQwSOVhfpRs+HeWrR3raj1OHf6Oho0ise7rNtmPCHWv4bwzswJyxBvR 7bZBT9rfXWounm7gFKsHFhpFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVJJd+WHA IeC+2PdZaLN7DDPHupIwHwYDVR0jBBgwFoAUg4qU7SUkCVmqbxVJEAOsbm0DlX4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3Q0RELzhBMjNBNkY4REQw RDExRUU5RDI5MkQ2QUM0RjlBRTAyL2c0cVU3U1VrQ1ZtcWJ4VkpFQU9zYm0wRGxY NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZzRxVTdTVWtDVm1xYnhWSkVBT3NibTBEbFg0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3 Q0RELzhBMjNBNkY4REQwRDExRUU5RDI5MkQ2QUM0RjlBRTAyL2c0cVU3U1VrQ1Zt cWJ4VkpFQU9zYm0wRGxYNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAELnVv/K6Gabko3So/Vl6JRs+NYm12QmYBZWTDXFJIrhD6lAYylKEsxt 0J/SUmWn3Ac2mgSaE/MbpVhQWriA7luuf7ch1bKKr8Izb++Qf7F3mOgxqIm9F493 6p5YBA6nw9aNzz4Ff+cwXCmP6uqXr4rYuDRmFVNlGQwRlDw0zoZph4xoETa90gb6 2zRICarIqHGsnjHGMaKF+YLt2NaozAXur9IIVhxf5k/vSSM8wm2ITYVzEYj2sL0x /SNq0W9FK4IR+itj03DNVXgoVfJwRIADzBvafnMbdk5Hmaopz7x6om/qE+jjoacQ WDQxtyxA3lbn+1ZTZReI9ltAzz2BPX4= -----END CERTIFICATE-----Generated at Fri May 17 10:59:13 2024 by rpki-client on console-ams.rpki-client.org