$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft File: 2-mhAMSp66SyzRomcTKN73j-duE.mft (raw, json) Hash identifier: u7v8o0z2sMYmqXs8SCV0zxxKhezOwNb49ntbLth/Uo0= Subject key identifier: ED:59:E0:59:DD:28:8F:67:28:C5:37:3E:6B:5E:83:C4:79:ED:25:9B Authority key identifier: DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 Certificate issuer: /CN=A91AB74D/serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Certificate serial: 054B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft Manifest number: 0548 Signing time: Wed 01 May 2024 01:14:59 +0000 Manifest this update: Wed 01 May 2024 01:14:59 +0000 Manifest next update: Wed 08 May 2024 01:14:59 +0000 Files and hashes: 1: 2-mhAMSp66SyzRomcTKN73j-duE.crl (hash: EwLz/Tb5xHvj1gpwcLrwmqlJBXWfp7I5wiljn2ZU5sY=) 2: A0D57302A33D11EBA479491CC4F9AE02.roa (hash: OhVuBFxS3Hd+CdkAUoMYbhIPZTEIj6EhUVj0u1y46Us=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 00:32:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1355 (0x54b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB74D/serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Validity Not Before: May 1 01:14:59 2024 GMT Not After : May 8 01:14:59 2024 GMT Subject: CN=66319793-c303 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:62:c8:53:65:25:03:53:93:a9:3b:51:64:dd: 4c:13:8e:a2:c4:e7:de:e2:ea:47:f1:74:4f:1b:c5: 3c:00:3d:c6:d0:7d:b4:a5:3a:cf:27:f0:f5:bd:f0: 42:fb:93:75:60:12:2f:d0:dd:07:b2:5d:02:ec:b3: a9:3d:51:0b:38:d6:98:bf:cd:58:e8:19:6e:b3:97: d2:3e:37:fc:60:5b:59:75:7e:11:45:7f:98:01:be: 3c:08:85:1a:94:f5:7f:43:6c:2c:78:3a:2f:8f:54: a1:99:9d:25:ef:3e:c6:be:43:55:06:c9:dc:8f:f7: 65:30:09:2d:18:83:38:4e:86:42:ce:b1:55:81:3c: 1c:cd:68:94:73:d5:2b:be:4c:b3:be:f3:c2:88:a6: 86:e0:ea:cc:f1:39:2c:7d:b1:3c:d2:ca:03:7d:58: 07:b1:60:3b:0c:9d:b9:2b:df:b7:22:05:76:d1:1c: e2:f3:b5:91:15:af:9d:5c:05:46:3d:1a:ec:50:0d: e2:58:5f:f5:69:60:26:46:f9:38:43:33:6d:59:ad: 19:98:1a:ac:83:16:8d:91:fe:7a:89:89:d8:7a:ba: 13:e0:c0:f1:a4:d5:13:e7:fd:59:6c:21:c5:03:18: 9b:0f:97:69:be:48:fa:ff:5e:1a:a0:6f:64:5f:0c: bf:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:59:E0:59:DD:28:8F:67:28:C5:37:3E:6B:5E:83:C4:79:ED:25:9B X509v3 Authority Key Identifier: keyid:DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:8e:30:c4:b2:d9:93:6e:01:f5:c3:f9:3e:05:bc:ff:93:73: 84:6d:ed:6c:64:d0:69:14:30:e6:79:0d:c0:15:f8:09:a6:b3: 30:62:6b:83:7a:6e:79:03:23:54:2d:42:88:86:6c:70:96:86: 06:a3:0d:27:c9:e2:d8:a1:39:cd:72:22:ed:eb:d3:3f:40:57: b0:9c:52:7b:b7:59:cf:3c:90:cc:55:fe:13:a3:a6:06:41:4e: 49:e6:23:6e:81:8e:f1:7f:de:aa:b6:33:b1:00:3a:9e:04:ba: 32:86:2c:c8:b5:71:b4:a7:b6:c5:50:04:dc:4f:a1:c7:b2:0f: 4d:19:98:3f:6c:25:f5:a3:3e:bb:06:20:ad:f2:2d:c9:7d:7e: e6:dd:a8:da:71:24:66:bf:de:79:66:6c:5b:16:be:9d:f1:ac: b0:82:00:b7:84:07:73:62:7f:8f:01:dd:51:ff:47:6b:a1:de: b7:50:db:d7:b3:15:94:e4:fc:f6:48:8b:f7:32:0e:40:e2:ff: e0:66:e1:c8:3a:7f:18:c9:d2:77:4c:33:cd:0c:14:c2:d1:e6: 2d:a7:f8:f2:74:dc:68:e9:66:51:7f:4f:86:71:0b:c2:00:46: 31:95:4e:46:d3:7d:05:5f:f9:5d:a7:74:23:54:70:0c:3d:51: 2e:d7:14:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3NEQxMTAvBgNVBAUTKERCRTlBMTAwQzRBOUVCQTRCMkNEMUEyNjcxMzI4REVG NzhGRTc2RTEwHhcNMjQwNTAxMDExNDU5WhcNMjQwNTA4MDExNDU5WjAYMRYwFAYD VQQDEw02NjMxOTc5My1jMzAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3mLIU2UlA1OTqTtRZN1ME46ixOfe4upH8XRPG8U8AD3G0H20pTrPJ/D1vfBC +5N1YBIv0N0Hsl0C7LOpPVELONaYv81Y6Blus5fSPjf8YFtZdX4RRX+YAb48CIUa lPV/Q2wseDovj1ShmZ0l7z7GvkNVBsncj/dlMAktGIM4ToZCzrFVgTwczWiUc9Ur vkyzvvPCiKaG4OrM8TksfbE80soDfVgHsWA7DJ25K9+3IgV20Rzi87WRFa+dXAVG PRrsUA3iWF/1aWAmRvk4QzNtWa0ZmBqsgxaNkf56iYnYeroT4MDxpNUT5/1ZbCHF AxibD5dpvkj6/14aoG9kXwy/SwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO1Z4Fnd KI9nKMU3Pmteg8R57SWbMB8GA1UdIwQYMBaAFNvpoQDEqeukss0aJnEyje94/nbh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjc0RC8xRDcxM0QwOEEz M0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2U3l6Um9tY1RLTjczai1k dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItbWhBTVNwNjZTeXpSb21jVEtONzNqLWR1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qjc0RC8xRDcxM0QwOEEzM0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2 U3l6Um9tY1RLTjczai1kdUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9jjDEstmTbgH1w/k+Bbz/k3OEbe1sZNBpFDDmeQ3AFfgJprMwYmuD em55AyNULUKIhmxwloYGow0nyeLYoTnNciLt69M/QFewnFJ7t1nPPJDMVf4To6YG QU5J5iNugY7xf96qtjOxADqeBLoyhizItXG0p7bFUATcT6HHsg9NGZg/bCX1oz67 BiCt8i3JfX7m3ajacSRmv955ZmxbFr6d8aywggC3hAdzYn+PAd1R/0drod63UNvX sxWU5Pz2SIv3Mg5A4v/gZuHIOn8YydJ3TDPNDBTC0eYtp/jydNxo6WZRf0+GcQvC AEYxlU5G030FX/ldp3QjVHAMPVEu1xQE -----END CERTIFICATE-----Generated at Wed May 1 02:08:05 2024 by rpki-client on console-fra.rpki-client.org