$ rpki-client -vvf rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.mft File: _SqdXvq5ERsKWjAT80wsva_QH8I.mft (raw, json) Hash identifier: lZH97b5EJLNoT+mTJIyn1vylnwCQaoy1I2FkD0M0DNU= Subject key identifier: 61:FB:8D:1C:4F:7F:8C:EA:9F:32:5C:7D:E6:AA:7A:34:EA:2C:E8:84 Authority key identifier: FD:2A:9D:5E:FA:B9:11:1B:0A:5A:30:13:F3:4C:2C:BD:AF:D0:1F:C2 Certificate issuer: /CN=A91B189B/serialNumber=FD2A9D5EFAB9111B0A5A3013F34C2CBDAFD01FC2 Certificate serial: 0658 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_SqdXvq5ERsKWjAT80wsva_QH8I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.mft Manifest number: 0654 Signing time: Thu 02 May 2024 23:44:53 +0000 Manifest this update: Thu 02 May 2024 23:44:53 +0000 Manifest next update: Thu 09 May 2024 23:44:53 +0000 Files and hashes: 1: _SqdXvq5ERsKWjAT80wsva_QH8I.crl (hash: zVl6KpnIGovjXIIWRoMgi1DjFmIL01xurMIXyKmdAKo=) 2: DFCE0CFC387311EBA0AC593EC4F9AE02.roa (hash: N6swnawsG9vPr5IItgnhXAsZKdg/FgOWCUjDUxmTcGc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.crl rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_SqdXvq5ERsKWjAT80wsva_QH8I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 23:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1624 (0x658) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B189B/serialNumber=FD2A9D5EFAB9111B0A5A3013F34C2CBDAFD01FC2 Validity Not Before: May 2 23:44:53 2024 GMT Not After : May 9 23:44:53 2024 GMT Subject: CN=66342575-95c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:00:ac:09:46:4e:b4:b1:e4:e6:08:97:4f:9d: fe:02:d2:b8:b1:0d:b6:a7:4d:03:5c:d2:0c:8a:15: d1:ed:b4:be:ee:37:6b:a0:f3:b2:ed:a8:74:9f:22: 65:4a:01:31:1f:ec:47:70:ff:12:87:b2:fe:59:7d: bf:ec:5c:a8:20:03:8a:6f:b3:92:67:2b:ca:bd:50: f7:57:d6:ba:94:99:d5:cb:dd:4d:e1:62:57:4b:ce: 45:f2:df:2f:e6:bd:cf:41:65:85:3c:97:aa:02:b8: 5f:b6:ae:45:37:b5:41:e4:93:5b:81:f9:29:c9:c6: 2f:a7:28:4d:ff:5d:c4:ab:85:5d:3b:2d:3b:50:8d: e9:27:3b:de:bc:05:e6:3d:8f:a2:da:4d:e1:44:37: cd:5a:fe:19:ea:96:7b:f8:a4:04:cd:64:c4:3c:bb: 89:69:63:d1:30:d1:12:20:0f:ce:a3:48:92:0b:ce: 0c:9c:0b:95:80:5d:97:cc:2d:aa:33:e7:32:d9:ea: 94:87:49:4b:15:6a:04:54:7d:ec:76:b8:61:34:43: a6:aa:d3:b2:c4:a4:6e:12:95:ad:11:d7:6e:7d:15: f0:9f:e7:8e:58:a8:7a:71:6c:65:fe:bd:9e:b1:83: 54:b5:f2:96:e6:98:45:a7:29:59:a0:66:a1:1c:62: 73:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:FB:8D:1C:4F:7F:8C:EA:9F:32:5C:7D:E6:AA:7A:34:EA:2C:E8:84 X509v3 Authority Key Identifier: keyid:FD:2A:9D:5E:FA:B9:11:1B:0A:5A:30:13:F3:4C:2C:BD:AF:D0:1F:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_SqdXvq5ERsKWjAT80wsva_QH8I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:1a:e5:11:d7:ba:ec:35:63:03:7f:4c:18:41:cc:7c:ac:1e: 59:f3:59:73:a8:0d:cb:e3:b3:d4:a1:9a:e8:8e:36:0f:c1:9e: b1:80:29:af:b6:c5:bd:d2:48:cf:57:a6:b2:bc:89:eb:b9:58: 76:02:d3:87:04:1a:8c:c9:6d:0a:88:31:7f:24:39:26:90:75: 78:d4:dc:5f:58:3e:b1:66:15:65:d6:d3:c6:94:d1:95:a9:71: f2:f3:eb:7e:5e:50:b8:10:cb:54:95:31:2f:06:75:fe:41:f4: f8:b5:6d:c4:3e:39:40:59:13:f9:3a:08:10:73:a9:5d:f4:48: 5b:d6:85:c9:5f:d7:0b:92:e0:a8:6f:ee:67:d4:44:6d:c0:b6: 5d:94:41:bc:80:0a:38:0c:ac:e4:b7:23:f4:31:22:a0:38:6e: b2:73:bd:9e:34:87:06:cf:32:35:cb:73:2d:4e:2d:ed:ab:a6: a2:30:42:ab:5b:52:14:f1:1b:69:72:00:df:87:83:8c:d3:d7: 36:4e:1f:db:24:56:43:f6:b4:27:51:bb:75:0e:04:82:59:b2: 6b:f7:81:94:df:82:94:7f:59:91:5b:57:a0:34:8e:8a:a9:72: cb:5e:eb:0e:ce:6f:fd:a4:c2:24:9c:3f:04:05:18:1f:ec:a2: 4d:83:6e:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE4OUIxMTAvBgNVBAUTKEZEMkE5RDVFRkFCOTExMUIwQTVBMzAxM0YzNEMyQ0JE QUZEMDFGQzIwHhcNMjQwNTAyMjM0NDUzWhcNMjQwNTA5MjM0NDUzWjAYMRYwFAYD VQQDEw02NjM0MjU3NS05NWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9gCsCUZOtLHk5giXT53+AtK4sQ22p00DXNIMihXR7bS+7jdroPOy7ah0nyJl SgExH+xHcP8Sh7L+WX2/7FyoIAOKb7OSZyvKvVD3V9a6lJnVy91N4WJXS85F8t8v 5r3PQWWFPJeqArhftq5FN7VB5JNbgfkpycYvpyhN/13Eq4VdOy07UI3pJzvevAXm PY+i2k3hRDfNWv4Z6pZ7+KQEzWTEPLuJaWPRMNESIA/Oo0iSC84MnAuVgF2XzC2q M+cy2eqUh0lLFWoEVH3sdrhhNEOmqtOyxKRuEpWtEddufRXwn+eOWKh6cWxl/r2e sYNUtfKW5phFpylZoGahHGJzbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGH7jRxP f4zqnzJcfeaqejTqLOiEMB8GA1UdIwQYMBaAFP0qnV76uREbClowE/NMLL2v0B/C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTg5Qi8zMjhCREQ0MDM4 NzIxMUVCOTk3QUEyM0FDNEY5QUUwMi9fU3FkWHZxNUVSc0tXakFUODB3c3ZhX1FI OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19TcWRYdnE1RVJzS1dqQVQ4MHdzdmFfUUg4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTg5Qi8zMjhCREQ0MDM4NzIxMUVCOTk3QUEyM0FDNEY5QUUwMi9fU3FkWHZxNUVS c0tXakFUODB3c3ZhX1FIOEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0GuUR17rsNWMDf0wYQcx8rB5Z81lzqA3L47PUoZrojjYPwZ6xgCmv tsW90kjPV6ayvInruVh2AtOHBBqMyW0KiDF/JDkmkHV41NxfWD6xZhVl1tPGlNGV qXHy8+t+XlC4EMtUlTEvBnX+QfT4tW3EPjlAWRP5OggQc6ld9Ehb1oXJX9cLkuCo b+5n1ERtwLZdlEG8gAo4DKzktyP0MSKgOG6yc72eNIcGzzI1y3MtTi3tq6aiMEKr W1IU8RtpcgDfh4OM09c2Th/bJFZD9rQnUbt1DgSCWbJr94GU34KUf1mRW1egNI6K qXLLXusOzm/9pMIknD8EBRgf7KJNg25/ -----END CERTIFICATE-----Generated at Fri May 3 00:48:30 2024 by rpki-client on console-ams.rpki-client.org