$ rpki-client -vvf rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft File: md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft (raw, json) Hash identifier: n9ozBjBkHZoVty4iC85RW3g4r6y+7Nw96Nx2wbswFmk= Subject key identifier: 5A:B4:4E:AE:81:E2:14:A1:4F:39:15:BF:E6:E9:8C:33:B0:CF:CD:57 Authority key identifier: 99:DE:2C:37:D1:A6:2B:A8:B9:7B:5A:1C:FD:2C:D2:94:0B:0D:4D:0D Certificate issuer: /CN=A91B08F7/serialNumber=99DE2C37D1A62BA8B97B5A1CFD2CD2940B0D4D0D Certificate serial: 16A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md4sN9GmK6i5e1oc_SzSlAsNTQ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft Manifest number: 19D5 Signing time: Tue 30 Apr 2024 17:17:51 +0000 Manifest this update: Tue 30 Apr 2024 17:17:50 +0000 Manifest next update: Tue 07 May 2024 17:17:50 +0000 Files and hashes: 1: md4sN9GmK6i5e1oc_SzSlAsNTQ0.crl (hash: YEE0O5oDtobx2b/lfrCVEjSqJKR4A/LmlV27hEMd8Lo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.crl rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md4sN9GmK6i5e1oc_SzSlAsNTQ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 17:17:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5793 (0x16a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B08F7/serialNumber=99DE2C37D1A62BA8B97B5A1CFD2CD2940B0D4D0D Validity Not Before: Apr 30 17:17:50 2024 GMT Not After : May 7 17:17:50 2024 GMT Subject: CN=663127bf-873f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:bb:4c:7c:f9:5b:8f:29:da:4a:72:62:d1:b1: 0c:31:d5:5e:ce:58:ae:4b:f8:38:2d:40:2b:cf:13: b4:61:b3:a1:d0:e1:05:f4:c4:fa:71:42:35:4c:74: 99:11:96:ff:88:d0:9c:81:06:ae:3e:c9:02:48:fa: af:a5:07:84:4d:f0:57:08:04:87:eb:74:9b:3b:77: 49:0f:c6:ae:20:30:0c:91:00:39:5f:e9:ca:79:b3: 55:fb:74:ff:0c:43:f4:8e:fc:0e:0d:c9:53:e1:26: 06:9d:b0:c9:66:48:95:d6:72:e5:fc:2c:38:4c:59: 44:4c:ae:4d:d8:72:7d:59:40:7d:9c:29:cd:0a:17: 25:95:df:87:a0:5d:d3:b5:42:13:42:41:8c:3d:80: 24:f1:a4:cf:f3:47:ac:aa:92:7c:3e:ef:6f:bb:c5: d7:da:f4:df:71:7e:dc:8a:f3:b3:d5:64:96:bb:6a: fd:b6:c4:1d:42:fe:31:87:50:e7:8b:23:02:63:16: d8:0e:b7:75:49:06:57:92:57:8b:0c:0b:a5:fb:8b: 42:c9:05:79:83:ef:f3:5e:29:27:5f:c0:ff:a2:4d: ee:4d:d1:37:8c:4c:18:16:00:5d:be:d8:18:60:ee: 7b:5e:11:37:a7:27:ea:8e:fb:85:89:4f:76:51:f4: bd:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:B4:4E:AE:81:E2:14:A1:4F:39:15:BF:E6:E9:8C:33:B0:CF:CD:57 X509v3 Authority Key Identifier: keyid:99:DE:2C:37:D1:A6:2B:A8:B9:7B:5A:1C:FD:2C:D2:94:0B:0D:4D:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md4sN9GmK6i5e1oc_SzSlAsNTQ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:5c:07:68:67:7c:77:87:ed:78:45:67:0b:10:08:d4:2b:20: f0:39:66:ee:ce:4f:63:88:b6:cf:bd:fe:d6:0b:42:e0:59:3b: 32:e5:3c:f3:95:44:4c:8d:33:91:76:9e:cb:8a:df:a3:2c:0d: 6e:d2:c9:8c:73:9b:33:a7:56:87:68:e3:2a:fc:12:83:b2:c9: 4c:9f:6b:11:36:e3:4b:86:a0:9c:16:1d:f2:62:56:d7:8d:9e: 0c:e4:c7:36:0d:eb:40:c5:26:a3:e5:93:e4:ec:52:ae:95:2e: 32:ef:75:7a:82:61:b7:d9:8b:79:70:28:85:54:40:a6:2d:15: 4f:0e:b4:98:2e:90:bf:4d:f5:2d:3a:9b:97:ad:64:d1:5f:c4: 0e:cf:82:07:ba:9e:e7:aa:3d:5a:a7:b6:39:fa:f1:b1:e3:47: 08:98:0d:dc:9f:8c:b1:7b:39:37:df:46:8c:65:c4:5b:51:e3: 78:f3:bd:40:4f:02:05:8e:cb:a4:4e:36:2b:d7:09:b5:97:37: ac:54:4f:04:c7:5d:b8:46:83:2b:fc:6b:cf:76:07:5d:73:4d: 2e:be:9d:73:76:3e:73:e9:2d:fc:55:39:67:ed:5d:27:79:3c: ea:22:60:f6:a9:b0:56:64:be:3f:95:ce:95:ba:5e:56:26:7b: 71:ae:4a:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFqEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA4RjcxMTAvBgNVBAUTKDk5REUyQzM3RDFBNjJCQThCOTdCNUExQ0ZEMkNEMjk0 MEIwRDREMEQwHhcNMjQwNDMwMTcxNzUwWhcNMjQwNTA3MTcxNzUwWjAYMRYwFAYD VQQDEw02NjMxMjdiZi04NzNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA07tMfPlbjynaSnJi0bEMMdVezliuS/g4LUArzxO0YbOh0OEF9MT6cUI1THSZ EZb/iNCcgQauPskCSPqvpQeETfBXCASH63SbO3dJD8auIDAMkQA5X+nKebNV+3T/ DEP0jvwODclT4SYGnbDJZkiV1nLl/Cw4TFlETK5N2HJ9WUB9nCnNChclld+HoF3T tUITQkGMPYAk8aTP80esqpJ8Pu9vu8XX2vTfcX7civOz1WSWu2r9tsQdQv4xh1Dn iyMCYxbYDrd1SQZXkleLDAul+4tCyQV5g+/zXiknX8D/ok3uTdE3jEwYFgBdvtgY YO57XhE3pyfqjvuFiU92UfS9dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFq0Tq6B 4hShTzkVv+bpjDOwz81XMB8GA1UdIwQYMBaAFJneLDfRpiuouXtaHP0s0pQLDU0N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDhGNy80NzE0MzgwQUQ1 OTQxMUU3OEU3QzkxNDNDNEY5QUUwMi9tZDRzTjlHbUs2aTVlMW9jX1N6U2xBc05U UTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kNHNOOUdtSzZpNWUxb2NfU3pTbEFzTlRRMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDhGNy80NzE0MzgwQUQ1OTQxMUU3OEU3QzkxNDNDNEY5QUUwMi9tZDRzTjlHbUs2 aTVlMW9jX1N6U2xBc05UUTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbXAdoZ3x3h+14RWcLEAjUKyDwOWbuzk9jiLbPvf7WC0LgWTsy5Tzz lURMjTORdp7Lit+jLA1u0smMc5szp1aHaOMq/BKDsslMn2sRNuNLhqCcFh3yYlbX jZ4M5Mc2DetAxSaj5ZPk7FKulS4y73V6gmG32Yt5cCiFVECmLRVPDrSYLpC/TfUt OpuXrWTRX8QOz4IHup7nqj1ap7Y5+vGx40cImA3cn4yxezk330aMZcRbUeN4871A TwIFjsukTjYr1wm1lzesVE8Ex124RoMr/GvPdgddc00uvp1zdj5z6S38VTln7V0n eTzqImD2qbBWZL4/lc6Vul5WJntxrkql -----END CERTIFICATE-----Generated at Tue Apr 30 19:22:30 2024 by rpki-client on console-ams.rpki-client.org