$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft File: 2gE-F4NYyzWot2XJvAkK6c8cT74.mft (raw, json) Hash identifier: GXnY7Rg7gtfXbFH3VMBmmQwigUCqc2T6qXsC9kPf1jE= Subject key identifier: 10:61:56:27:0A:6E:DE:D1:F5:A3:88:55:86:1E:9D:6E:58:59:DE:33 Authority key identifier: DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE Certificate issuer: /CN=A91B2C88/serialNumber=DA013E178358CB35A8B765C9BC090AE9CF1C4FBE Certificate serial: 0570 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft Manifest number: 0569 Signing time: Wed 01 May 2024 01:04:28 +0000 Manifest this update: Wed 01 May 2024 01:04:27 +0000 Manifest next update: Wed 08 May 2024 01:04:27 +0000 Files and hashes: 1: 2gE-F4NYyzWot2XJvAkK6c8cT74.crl (hash: ZHCWA2LeV/ASAG+HV9vaxnByRe8dikT11KoXY9wtTY4=) 2: 3C5E55F041A411ECA73C8C0EC4F9AE02.roa (hash: oKkOWzU+Vgiv5RBLsspfXvlXf9rTWtPxNzorpsuGpiQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.crl rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 00:32:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1392 (0x570) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2C88/serialNumber=DA013E178358CB35A8B765C9BC090AE9CF1C4FBE Validity Not Before: May 1 01:04:27 2024 GMT Not After : May 8 01:04:27 2024 GMT Subject: CN=6631951b-361c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:9e:84:20:8a:18:f7:b5:40:e3:d0:ce:8a:ca: 50:42:ff:ac:be:09:8f:28:ee:a1:1b:1e:02:7f:21: cd:68:a8:66:aa:d1:4c:2a:72:24:72:da:48:08:16: e6:8c:b9:19:a7:3c:b5:57:54:4c:6d:77:b7:af:7e: e0:fa:0b:8c:0f:5f:72:9e:74:83:f5:f6:b3:11:ec: 19:fc:c9:e5:f0:51:ce:6d:db:3c:89:ac:7a:16:5f: e0:a5:b9:4e:cb:79:32:e6:ed:31:fd:e5:14:84:50: b0:f6:25:91:df:df:54:8e:fa:ad:b8:11:2c:3a:47: 74:cb:e4:d1:7d:c0:4f:30:d6:cb:f7:9a:26:fd:d3: d9:08:d8:8c:ab:7f:b1:ce:ce:27:5f:1e:26:9a:bc: bf:c8:6e:bf:0d:05:ae:da:64:24:51:24:a0:3d:c4: 30:d6:e5:64:e6:64:f4:6d:e9:d3:c5:5e:34:db:da: 9f:62:df:d2:02:00:f3:9c:e6:b9:8d:c8:25:93:ac: cc:28:a4:bb:8a:d6:ff:96:28:61:26:69:24:31:45: ce:66:85:f6:3d:08:e6:7d:e1:f3:8e:b5:f7:91:29: 5c:9b:7d:cf:79:c6:88:30:00:09:1f:47:c2:d8:17: 11:8c:e5:f9:0c:a9:8c:23:f7:f4:51:28:b7:25:9d: 87:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:61:56:27:0A:6E:DE:D1:F5:A3:88:55:86:1E:9D:6E:58:59:DE:33 X509v3 Authority Key Identifier: keyid:DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:7d:25:71:28:52:89:f6:ce:84:5b:ea:57:be:28:90:cd:dd: a1:83:f2:9e:84:d8:e1:86:e9:c1:a6:92:0e:f4:ea:31:0d:64: ea:94:92:c7:a9:06:b4:8e:c3:bf:41:70:fc:e0:d6:52:c8:58: d8:7d:ca:25:43:fb:e7:e6:9f:52:87:0e:09:14:c7:e0:5d:2f: fb:7a:19:50:68:77:d1:eb:47:fa:c4:27:84:b6:d2:90:5b:1f: 20:81:6c:b5:01:38:ad:59:bc:fe:ed:b4:2a:25:95:2a:aa:a5: 10:e8:3c:01:ed:60:7d:1c:1f:16:63:60:8d:f8:fe:ad:b6:a2: ba:c3:a9:f1:af:fb:08:93:c0:3b:dd:04:80:9c:76:8b:08:13: 8a:ec:ed:b1:fa:9a:f3:fd:3e:f7:d8:f1:62:e6:fa:62:3c:9c: 1b:88:b5:b0:42:f5:4c:9b:08:b2:2a:f2:4c:6b:56:c3:d4:ad: c3:da:7f:19:9c:4f:40:36:61:64:77:56:57:5f:e5:84:47:f3: 12:40:8f:b5:69:79:54:6e:f0:f7:d1:36:94:1c:fd:50:01:f8: d3:02:56:70:00:3e:fc:c4:ec:83:81:22:09:c9:61:49:b2:6d: 05:b1:60:e2:5a:72:0d:8d:81:01:a5:e7:86:ac:4c:87:7c:4d: e9:0c:6b:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJDODgxMTAvBgNVBAUTKERBMDEzRTE3ODM1OENCMzVBOEI3NjVDOUJDMDkwQUU5 Q0YxQzRGQkUwHhcNMjQwNTAxMDEwNDI3WhcNMjQwNTA4MDEwNDI3WjAYMRYwFAYD VQQDEw02NjMxOTUxYi0zNjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArp6EIIoY97VA49DOispQQv+svgmPKO6hGx4CfyHNaKhmqtFMKnIkctpICBbm jLkZpzy1V1RMbXe3r37g+guMD19ynnSD9fazEewZ/Mnl8FHObds8iax6Fl/gpblO y3ky5u0x/eUUhFCw9iWR399UjvqtuBEsOkd0y+TRfcBPMNbL95om/dPZCNiMq3+x zs4nXx4mmry/yG6/DQWu2mQkUSSgPcQw1uVk5mT0benTxV4029qfYt/SAgDznOa5 jcglk6zMKKS7itb/lihhJmkkMUXOZoX2PQjmfeHzjrX3kSlcm33PecaIMAAJH0fC 2BcRjOX5DKmMI/f0USi3JZ2HBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBBhVicK bt7R9aOIVYYenW5YWd4zMB8GA1UdIwQYMBaAFNoBPheDWMs1qLdlybwJCunPHE++ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkM4OC8yNDI5OURDQTk3 OEUxMUVCQkQ4MUIwNTVDNEY5QUUwMi8yZ0UtRjROWXl6V290MlhKdkFrSzZjOGNU NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnRS1GNE5ZeXpXb3QyWEp2QWtLNmM4Y1Q3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MkM4OC8yNDI5OURDQTk3OEUxMUVCQkQ4MUIwNTVDNEY5QUUwMi8yZ0UtRjROWXl6 V290MlhKdkFrSzZjOGNUNzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMfSVxKFKJ9s6EW+pXviiQzd2hg/KehNjhhunBppIO9OoxDWTqlJLH qQa0jsO/QXD84NZSyFjYfcolQ/vn5p9Shw4JFMfgXS/7ehlQaHfR60f6xCeEttKQ Wx8ggWy1ATitWbz+7bQqJZUqqqUQ6DwB7WB9HB8WY2CN+P6ttqK6w6nxr/sIk8A7 3QSAnHaLCBOK7O2x+prz/T732PFi5vpiPJwbiLWwQvVMmwiyKvJMa1bD1K3D2n8Z nE9ANmFkd1ZXX+WER/MSQI+1aXlUbvD30TaUHP1QAfjTAlZwAD78xOyDgSIJyWFJ sm0FsWDiWnINjYEBpeeGrEyHfE3pDGuO -----END CERTIFICATE-----Generated at Wed May 1 01:38:30 2024 by rpki-client on console-ams.rpki-client.org