$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft File: aaSG-_IUhPFBL7ioCieKJIzvvrI.mft (raw, json) Hash identifier: Iee+qhn6MprrXfsCHPQ4zZnDZO+lwG6sVLfoqFgTzJA= Subject key identifier: 65:E1:79:98:50:44:CF:67:58:60:BA:6B:B6:6F:D2:CE:95:8C:ED:F0 Authority key identifier: 69:A4:86:FB:F2:14:84:F1:41:2F:B8:A8:0A:27:8A:24:8C:EF:BE:B2 Certificate issuer: /CN=A91B4713/serialNumber=69A486FBF21484F1412FB8A80A278A248CEFBEB2 Certificate serial: 60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft Manifest number: 5D Signing time: Wed 15 May 2024 07:50:36 +0000 Manifest this update: Wed 15 May 2024 07:50:35 +0000 Manifest next update: Wed 22 May 2024 07:50:35 +0000 Files and hashes: 1: aaSG-_IUhPFBL7ioCieKJIzvvrI.crl (hash: eaLq72d8p0rdFIHIz1f1eTXsdCdGeQ2yyCPUKrMWv7w=) 2: A5656D2E892B11EE94747D6BC4F9AE02.roa (hash: VnYcm5CeSehv5WnUy5aoQgFD29rO6YanbckbuMVthro=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.crl rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:50:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4713/serialNumber=69A486FBF21484F1412FB8A80A278A248CEFBEB2 Validity Not Before: May 15 07:50:35 2024 GMT Not After : May 22 07:50:35 2024 GMT Subject: CN=6644694c-15f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:84:df:20:f7:29:09:14:5d:af:42:6f:ac:0b: be:c2:79:5d:25:5c:2b:e4:08:0d:ad:fe:94:ce:a7: 4b:66:02:a3:2a:de:70:59:3c:d2:6e:c4:3a:3d:49: b2:f6:9d:ec:1c:af:da:dc:76:4d:6a:42:3a:b6:e6: f9:da:61:7c:8a:ee:88:71:db:6a:57:5f:fc:db:6d: b2:aa:13:17:34:a1:2d:17:54:61:3f:fd:83:6f:f8: aa:2a:04:ee:8d:69:3d:ed:52:5b:27:08:b3:a6:4b: 74:6a:fb:02:79:c5:96:c5:e5:ee:02:4f:35:7b:40: e8:02:22:ff:30:5b:e3:7e:db:71:8f:1a:48:e1:48: f4:85:4b:5f:c0:a9:e0:b6:12:d2:5a:50:fe:59:db: 83:ce:85:b4:7f:5e:e3:7d:3f:d9:78:f3:92:55:ce: d4:a5:4b:d6:94:5b:be:ad:38:4d:8f:02:dc:08:86: 0d:31:5b:ad:03:38:85:14:f4:46:df:ea:6c:db:fc: ca:48:49:34:f8:90:ec:bf:56:3f:22:62:0f:f8:36: e5:f4:36:88:ad:e0:2c:2e:eb:0f:d5:1c:8b:32:d3: 09:e9:85:07:3e:9f:40:07:d7:80:ab:0b:51:87:d6: c3:cc:c0:12:a3:eb:8e:c7:16:0b:ce:eb:50:38:34: 8d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:E1:79:98:50:44:CF:67:58:60:BA:6B:B6:6F:D2:CE:95:8C:ED:F0 X509v3 Authority Key Identifier: keyid:69:A4:86:FB:F2:14:84:F1:41:2F:B8:A8:0A:27:8A:24:8C:EF:BE:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:e1:c1:05:09:f7:e4:9a:f8:a8:0d:dc:d3:26:e0:c1:1f:4c: 5f:5e:11:d5:9f:e8:06:55:11:82:0f:c9:a1:4a:13:2d:e7:7b: 2e:04:e7:eb:16:6b:b3:38:0c:32:75:6a:21:81:2c:a8:a6:0e: e5:5f:8b:33:42:66:98:b3:3a:7f:26:b9:b8:71:0c:1e:7c:35: e7:79:eb:10:3c:82:f9:74:34:10:1c:6e:4d:18:7b:88:6b:12: 1a:14:d6:52:99:43:80:67:63:f2:4f:f5:dd:63:00:36:97:3c: 93:71:89:1a:07:0f:b6:88:93:76:4b:ca:7f:01:69:63:c2:75: af:55:35:77:7d:6c:83:8a:42:0a:ef:94:e9:cb:c1:b8:13:55: 7f:c7:4c:a6:30:47:ba:5c:be:bf:38:f9:fe:f0:34:27:b9:da: 14:8d:53:dc:ca:dd:65:3e:fd:39:b9:11:03:30:96:3d:d9:ff: 84:12:5d:32:aa:77:74:bf:d7:11:a3:c3:c2:10:b8:9c:9f:92: c7:70:d7:cc:0b:03:21:3e:61:a2:a3:f4:0b:e2:c3:72:87:e8: 25:7f:5c:9e:e5:f7:c4:5d:98:9b:9a:6d:9f:e5:d4:5e:4b:fe: eb:56:cb:b2:c6:ad:7c:5f:67:e7:4a:5a:b0:35:83:8f:f8:58: d3:90:fb:ab -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDcxMzExMC8GA1UEBRMoNjlBNDg2RkJGMjE0ODRGMTQxMkZCOEE4MEEyNzhBMjQ4 Q0VGQkVCMjAeFw0yNDA1MTUwNzUwMzVaFw0yNDA1MjIwNzUwMzVaMBgxFjAUBgNV BAMTDTY2NDQ2OTRjLTE1ZjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUhN8g9ykJFF2vQm+sC77CeV0lXCvkCA2t/pTOp0tmAqMq3nBZPNJuxDo9SbL2 newcr9rcdk1qQjq25vnaYXyK7ohx22pXX/zbbbKqExc0oS0XVGE//YNv+KoqBO6N aT3tUlsnCLOmS3Rq+wJ5xZbF5e4CTzV7QOgCIv8wW+N+23GPGkjhSPSFS1/AqeC2 EtJaUP5Z24POhbR/XuN9P9l485JVztSlS9aUW76tOE2PAtwIhg0xW60DOIUU9Ebf 6mzb/MpISTT4kOy/Vj8iYg/4NuX0Noit4Cwu6w/VHIsy0wnphQc+n0AH14CrC1GH 1sPMwBKj647HFgvO61A4NI13AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZeF5mFBE z2dYYLprtm/SzpWM7fAwHwYDVR0jBBgwFoAUaaSG+/IUhPFBL7ioCieKJIzvvrIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0NzEzL0ZFMUJEOTdDODky QTExRUVCNjE0ODI2QUM0RjlBRTAyL2FhU0ctX0lVaFBGQkw3aW9DaWVLSkl6dnZy SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYWFTRy1fSVVoUEZCTDdpb0NpZUtKSXp2dnJJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0 NzEzL0ZFMUJEOTdDODkyQTExRUVCNjE0ODI2QUM0RjlBRTAyL2FhU0ctX0lVaFBG Qkw3aW9DaWVLSkl6dnZySS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFHhwQUJ9+Sa+KgN3NMm4MEfTF9eEdWf6AZVEYIPyaFKEy3ney4E5+sW a7M4DDJ1aiGBLKimDuVfizNCZpizOn8mubhxDB58Ned56xA8gvl0NBAcbk0Ye4hr EhoU1lKZQ4BnY/JP9d1jADaXPJNxiRoHD7aIk3ZLyn8BaWPCda9VNXd9bIOKQgrv lOnLwbgTVX/HTKYwR7pcvr84+f7wNCe52hSNU9zK3WU+/Tm5EQMwlj3Z/4QSXTKq d3S/1xGjw8IQuJyfksdw18wLAyE+YaKj9Aviw3KH6CV/XJ7l98RdmJuabZ/l1F5L /utWy7LGrXxfZ+dKWrA1g4/4WNOQ+6s= -----END CERTIFICATE-----Generated at Wed May 15 09:04:44 2024 by rpki-client on console-ams.rpki-client.org