$ rpki-client -vvf rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft File: 5esYDNbcUWxm01KwR7npxaUCcOM.mft (raw, json) Hash identifier: 13xCQvJAt0kNjfK+8fwEpAfxeO1G0p+iiK+ol49h+5M= Subject key identifier: CD:44:1D:DC:20:DF:C0:1F:11:40:87:B3:18:E4:2F:DB:44:B2:32:07 Authority key identifier: E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 Certificate issuer: /CN=A91ABFD9/serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Certificate serial: 07EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft Manifest number: 07D8 Signing time: Fri 26 Apr 2024 21:57:43 +0000 Manifest this update: Fri 26 Apr 2024 21:57:43 +0000 Manifest next update: Fri 03 May 2024 21:57:43 +0000 Files and hashes: 1: 5esYDNbcUWxm01KwR7npxaUCcOM.crl (hash: rFF9qzhzLZuZp+FvfX5E7VXA0O5jv3FmHhpxBKXGGLc=) 2: E2E21364C4F811EAB8D31113C4F9AE02.roa (hash: BIQumIGr6erTS4dsWexAI1EzFQcSWiKFq9JxlaxJzA0=) 3: F1A54AC47A5611EB876D281FC4F9AE02.roa (hash: dDoSSqmj+1KqoTK5wDPnFr2+FIWdHPdVfbnO5yGmVKY=) 4: 36945EC2232711EBA0F14F17C4F9AE02.roa (hash: /0RjVarbhWIDpd3cHraVVa21CcbNpmGk66YkcBro3Ns=) 5: 6AE50E1C21E011EBBF36CD21C4F9AE02.roa (hash: Lr1KMxJhPQ8D3zuPrAPoJ61RfejQ9+IvNN/JJj+oj5o=) 6: E22ECDEAC4F811EAB8D31113C4F9AE02.roa (hash: btmAvtbg+cv8vIT238XnatcxOtJFH8w/wTzWY/BWnok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:57:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2031 (0x7ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ABFD9/serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Validity Not Before: Apr 26 21:57:43 2024 GMT Not After : May 3 21:57:43 2024 GMT Subject: CN=662c2357-0adf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:1b:51:42:e5:87:f8:58:16:1d:32:c8:4a:5b: 68:14:5e:b3:bf:5d:5b:33:e1:71:42:ee:34:9e:68: 38:89:47:1a:2b:88:29:0f:75:7e:f4:ea:3e:f9:ae: d2:ac:06:3e:d0:e6:8e:c6:8b:e0:37:e1:4e:69:b4: d4:e0:7a:36:d5:c1:b5:28:ea:e9:3b:98:f9:6e:b3: 65:00:f6:2c:b6:16:ff:7b:65:e2:2e:a5:d1:82:6b: 4e:02:12:97:96:95:56:89:04:4b:aa:29:e0:67:f8: f6:8a:2e:ee:a9:06:0b:c8:da:53:75:bb:1e:99:69: 94:0a:87:25:5b:60:fe:13:da:42:74:54:7c:b9:cf: 7c:ce:c3:e8:07:ec:19:01:b5:10:e9:91:e2:82:21: e1:ad:7e:0d:ff:a9:f5:cf:72:b8:b8:da:5e:85:59: 53:e8:ef:b6:6f:30:13:06:da:21:41:ad:b9:e4:58: 09:44:60:58:a0:ee:0b:06:dd:2b:96:23:16:c1:94: d6:a3:96:31:2b:4b:f3:92:36:eb:40:dd:61:c3:7b: 14:09:28:99:9a:6f:2d:12:00:74:ca:2a:f6:cb:3e: 24:e8:dd:3b:f6:76:cb:80:32:35:73:b8:8d:8e:61: 0a:dd:26:fa:8c:4a:d3:d8:05:0b:44:c1:c5:cc:a8: b5:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:44:1D:DC:20:DF:C0:1F:11:40:87:B3:18:E4:2F:DB:44:B2:32:07 X509v3 Authority Key Identifier: keyid:E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:b0:80:14:7a:74:7d:33:b1:1d:bb:2e:79:6c:38:71:97:0a: 8c:bb:97:b3:b5:bd:56:9f:44:09:41:79:ac:b7:92:3e:45:b4: 9e:ab:c2:f0:c4:01:65:68:60:11:7b:64:f3:9a:17:be:d4:c6: 93:5b:38:19:fb:a9:ff:10:5d:03:b3:34:3e:e4:ec:47:81:43: 7a:36:f4:7d:b2:b1:17:72:85:fc:ed:dd:aa:e4:e7:3d:54:e8: 82:9f:be:bc:17:8b:32:3b:44:da:90:d8:e1:d1:67:e6:7e:b2: 01:b3:5f:d1:35:35:64:95:da:22:04:c3:02:b4:0a:f4:7f:af: ca:e9:21:f0:41:1c:91:01:80:63:df:93:2f:00:f8:aa:5d:06: 2e:93:d7:43:d7:ea:5c:81:54:3a:d8:16:a7:1d:d4:23:4a:c4: 2e:6b:74:45:63:24:1b:35:52:cb:86:e5:4f:29:80:22:5a:55: 90:77:b2:0b:9b:af:29:4d:46:51:24:6b:77:17:43:bd:78:3f: 3a:a6:6c:04:fe:3e:b4:81:6f:b1:f4:ae:99:f4:c0:36:19:14: 6f:af:f9:2f:05:1a:da:7d:31:79:b8:c1:be:9b:7f:ec:23:af: 3e:16:74:b7:bc:88:ca:7a:87:fa:f9:8e:54:c7:f4:da:4e:6e: 7a:ea:32:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUJGRDkxMTAvBgNVBAUTKEU1RUIxODBDRDZEQzUxNkM2NkQzNTJCMDQ3QjlFOUM1 QTUwMjcwRTMwHhcNMjQwNDI2MjE1NzQzWhcNMjQwNTAzMjE1NzQzWjAYMRYwFAYD VQQDEw02NjJjMjM1Ny0wYWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoBtRQuWH+FgWHTLISltoFF6zv11bM+FxQu40nmg4iUcaK4gpD3V+9Oo++a7S rAY+0OaOxovgN+FOabTU4Ho21cG1KOrpO5j5brNlAPYsthb/e2XiLqXRgmtOAhKX lpVWiQRLqingZ/j2ii7uqQYLyNpTdbsemWmUCoclW2D+E9pCdFR8uc98zsPoB+wZ AbUQ6ZHigiHhrX4N/6n1z3K4uNpehVlT6O+2bzATBtohQa255FgJRGBYoO4LBt0r liMWwZTWo5YxK0vzkjbrQN1hw3sUCSiZmm8tEgB0yir2yz4k6N079nbLgDI1c7iN jmEK3Sb6jErT2AULRMHFzKi1PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM1EHdwg 38AfEUCHsxjkL9tEsjIHMB8GA1UdIwQYMBaAFOXrGAzW3FFsZtNSsEe56cWlAnDj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQkZEOS80QUU4MDQxRUI5 RDcxMUVBOUNGNTFFNUZDNEY5QUUwMi81ZXNZRE5iY1VXeG0wMUt3UjducHhhVUNj T00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVlc1lETmJjVVd4bTAxS3dSN25weGFVQ2NPTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QkZEOS80QUU4MDQxRUI5RDcxMUVBOUNGNTFFNUZDNEY5QUUwMi81ZXNZRE5iY1VX eG0wMUt3UjducHhhVUNjT00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVsIAUenR9M7Eduy55bDhxlwqMu5eztb1Wn0QJQXmst5I+RbSeq8Lw xAFlaGARe2Tzmhe+1MaTWzgZ+6n/EF0DszQ+5OxHgUN6NvR9srEXcoX87d2q5Oc9 VOiCn768F4syO0TakNjh0WfmfrIBs1/RNTVkldoiBMMCtAr0f6/K6SHwQRyRAYBj 35MvAPiqXQYuk9dD1+pcgVQ62BanHdQjSsQua3RFYyQbNVLLhuVPKYAiWlWQd7IL m68pTUZRJGt3F0O9eD86pmwE/j60gW+x9K6Z9MA2GRRvr/kvBRrafTF5uMG+m3/s I68+FnS3vIjKeof6+Y5Ux/TaTm566jLI -----END CERTIFICATE-----Generated at Sat Apr 27 10:20:12 2024 by rpki-client on console-ams.rpki-client.org