$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft File: 2gNU-zgfRSHBCxY-y9IqCD-3omw.mft (raw, json) Hash identifier: eO743XEorWsNUxJFlKU/i+VbwprZx1IbsTpdNhrYvC8= Subject key identifier: 0A:9A:E8:79:57:54:FE:A1:50:EC:B0:06:93:CA:F8:27:09:9D:53:09 Authority key identifier: DA:03:54:FB:38:1F:45:21:C1:0B:16:3E:CB:D2:2A:08:3F:B7:A2:6C Certificate issuer: /CN=A91B2CDA/serialNumber=DA0354FB381F4521C10B163ECBD22A083FB7A26C Certificate serial: 151D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gNU-zgfRSHBCxY-y9IqCD-3omw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft Manifest number: 150E Signing time: Mon 06 May 2024 17:25:41 +0000 Manifest this update: Mon 06 May 2024 17:25:41 +0000 Manifest next update: Mon 13 May 2024 17:25:41 +0000 Files and hashes: 1: 2gNU-zgfRSHBCxY-y9IqCD-3omw.crl (hash: ZuW95c/F90mII/zkFu6NPs0QBntd5/hLvjMc2Yhr8p8=) 2: 7F3ED5DE9C4411ECBD85CE4FC4F9AE02.roa (hash: fuHLL2ysKmC4ADlTDcQe9+3bC1BalCq8tedE6CL7AFw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.crl rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gNU-zgfRSHBCxY-y9IqCD-3omw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 17:25:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5405 (0x151d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2CDA/serialNumber=DA0354FB381F4521C10B163ECBD22A083FB7A26C Validity Not Before: May 6 17:25:41 2024 GMT Not After : May 13 17:25:41 2024 GMT Subject: CN=66391295-a76c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:1a:e6:2a:42:b7:1f:56:14:43:73:f2:3a:cc: ce:50:25:36:fd:e1:df:52:2e:d2:50:da:fb:46:5e: 92:47:db:ff:dd:c1:9c:ea:72:4b:c1:14:2e:de:bf: 00:0e:5f:45:c7:56:75:9f:44:47:dd:8a:8c:99:8a: 71:9e:9c:d9:f0:fa:e6:c4:69:ac:3c:1c:dd:95:cb: 63:c8:50:98:fa:0b:ba:3b:0b:cc:64:6a:ac:9f:52: 1c:6a:2e:68:31:e1:2f:62:43:f1:47:aa:4c:66:b2: af:36:0e:da:f0:ff:41:77:e7:4a:1d:11:da:ca:fb: 03:2f:29:ad:55:4e:e7:4c:f2:e5:f1:49:02:bf:1f: f0:42:e0:f3:3a:3d:51:ea:33:ed:84:96:5c:25:81: e6:f5:bb:8b:75:98:d8:52:75:e7:b7:fb:1e:41:cc: 56:6d:64:f1:1b:ad:c1:fb:be:e5:93:18:e5:c2:c3: bd:9e:d9:b9:85:c0:ab:fc:f9:3a:08:ac:7e:3f:08: 1b:25:d9:65:21:6a:81:d4:0d:1b:af:a6:00:7e:fa: 78:39:c0:9c:b0:3b:3f:30:61:7a:21:a7:36:59:e2: d8:84:2c:d1:5f:5a:89:08:9b:d2:75:45:00:aa:d6: 91:ec:b4:04:f4:1f:10:f7:8f:bc:78:b9:21:25:35: 2f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:9A:E8:79:57:54:FE:A1:50:EC:B0:06:93:CA:F8:27:09:9D:53:09 X509v3 Authority Key Identifier: keyid:DA:03:54:FB:38:1F:45:21:C1:0B:16:3E:CB:D2:2A:08:3F:B7:A2:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gNU-zgfRSHBCxY-y9IqCD-3omw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:98:5e:c1:75:32:4f:39:56:39:f0:90:e9:48:3a:cd:81:69: d5:23:3c:1d:22:21:36:26:c0:fa:aa:66:5f:0d:8c:67:9f:92: da:f2:9a:8f:8f:0d:85:29:20:ec:fd:d0:f9:9e:b1:29:c7:3e: c9:93:46:8e:46:69:f5:8d:36:12:2c:93:72:e1:0e:55:af:70: c6:bd:28:9b:9e:ed:7c:fd:86:9e:f3:05:98:02:3f:10:1f:6b: 2e:f4:df:b1:77:58:c3:84:33:91:b2:d4:5f:4e:fc:e6:8f:5c: 3b:82:59:df:29:09:5c:7e:c9:63:d4:02:5c:f0:9b:cb:31:dd: e9:99:0c:81:5c:29:d4:b9:30:9c:0f:75:5d:50:96:84:d4:b5: e3:1b:1e:bf:92:58:25:de:56:e0:cf:cc:d5:ec:5f:8e:d4:6b: f8:a9:5d:3d:eb:36:a1:c8:95:fb:7b:ce:ca:44:ee:54:3c:96: a6:a0:b4:c8:06:f2:71:53:e2:64:b2:4d:10:c4:d4:c8:1c:fb: 4c:1a:eb:1d:a6:c7:f1:27:52:24:15:70:e5:d7:30:d5:bb:97: 7c:a1:db:9e:6a:00:68:cf:b5:b3:75:47:96:46:8a:79:f0:57: b8:77:43:94:68:fc:3e:a8:93:87:eb:8e:4d:d4:d3:1d:ae:d9: 65:e9:e3:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJDREExMTAvBgNVBAUTKERBMDM1NEZCMzgxRjQ1MjFDMTBCMTYzRUNCRDIyQTA4 M0ZCN0EyNkMwHhcNMjQwNTA2MTcyNTQxWhcNMjQwNTEzMTcyNTQxWjAYMRYwFAYD VQQDEw02NjM5MTI5NS1hNzZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9BrmKkK3H1YUQ3PyOszOUCU2/eHfUi7SUNr7Rl6SR9v/3cGc6nJLwRQu3r8A Dl9Fx1Z1n0RH3YqMmYpxnpzZ8PrmxGmsPBzdlctjyFCY+gu6OwvMZGqsn1Icai5o MeEvYkPxR6pMZrKvNg7a8P9Bd+dKHRHayvsDLymtVU7nTPLl8UkCvx/wQuDzOj1R 6jPthJZcJYHm9buLdZjYUnXnt/seQcxWbWTxG63B+77lkxjlwsO9ntm5hcCr/Pk6 CKx+PwgbJdllIWqB1A0br6YAfvp4OcCcsDs/MGF6Iac2WeLYhCzRX1qJCJvSdUUA qtaR7LQE9B8Q94+8eLkhJTUvCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAqa6HlX VP6hUOywBpPK+CcJnVMJMB8GA1UdIwQYMBaAFNoDVPs4H0UhwQsWPsvSKgg/t6Js MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkNEQS9GNEUyQkFCODI1 QzMxMUU4QTA3MTRBMzRDNEY5QUUwMi8yZ05VLXpnZlJTSEJDeFkteTlJcUNELTNv bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnTlUtemdmUlNIQkN4WS15OUlxQ0QtM29tdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MkNEQS9GNEUyQkFCODI1QzMxMUU4QTA3MTRBMzRDNEY5QUUwMi8yZ05VLXpnZlJT SEJDeFkteTlJcUNELTNvbXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUmF7BdTJPOVY58JDpSDrNgWnVIzwdIiE2JsD6qmZfDYxnn5La8pqP jw2FKSDs/dD5nrEpxz7Jk0aORmn1jTYSLJNy4Q5Vr3DGvSibnu18/Yae8wWYAj8Q H2su9N+xd1jDhDORstRfTvzmj1w7glnfKQlcfslj1AJc8JvLMd3pmQyBXCnUuTCc D3VdUJaE1LXjGx6/klgl3lbgz8zV7F+O1Gv4qV096zahyJX7e87KRO5UPJamoLTI BvJxU+Jksk0QxNTIHPtMGusdpsfxJ1IkFXDl1zDVu5d8odueagBoz7WzdUeWRop5 8Fe4d0OUaPw+qJOH645N1NMdrtll6eP3 -----END CERTIFICATE-----Generated at Mon May 6 20:19:43 2024 by rpki-client on console-ams.rpki-client.org