$ rpki-client -vvf rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft File: 2fwVW2_aEGxpmlabEgOEkJWKoy8.mft (raw, json) Hash identifier: 4VVCa6JH5ymkshRtCUb0duzCcuuFNLrXgZ+6QsmwGxI= Subject key identifier: 16:69:14:0D:4C:66:68:5B:68:F4:43:C6:EB:D4:7B:6F:0A:4A:97:1F Authority key identifier: D9:FC:15:5B:6F:DA:10:6C:69:9A:56:9B:12:03:84:90:95:8A:A3:2F Certificate issuer: /CN=A91B53A5/serialNumber=D9FC155B6FDA106C699A569B12038490958AA32F Certificate serial: 1976 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft Manifest number: 1961 Signing time: Fri 26 Apr 2024 16:50:38 +0000 Manifest this update: Fri 26 Apr 2024 16:50:37 +0000 Manifest next update: Fri 03 May 2024 16:50:37 +0000 Files and hashes: 1: 2fwVW2_aEGxpmlabEgOEkJWKoy8.crl (hash: Lc8jtcgHN71xOyfK7k2P6TaezRNZu++pBBFBnwP/KDw=) 2: 47DA377EC00411EEA69FDF66C4F9AE02.roa (hash: /BHVjzTFRarg82TgtJPzbMShJDe+/CFvg92J13S46QE=) 3: C443D86A55A311E7896BED09C4F9AE02.roa (hash: xWo/rYKhoze+FnFL9rOKNoebOnGHzWWUZ7U3Tsf/zgs=) 4: A9286C0E6D4411E7AF539270C4F9AE02.roa (hash: ppuVNpbGVBcXH2JnYB8yh6yAK80dYDfkrJ/MoyTNNEE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.crl rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 16:50:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6518 (0x1976) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B53A5/serialNumber=D9FC155B6FDA106C699A569B12038490958AA32F Validity Not Before: Apr 26 16:50:37 2024 GMT Not After : May 3 16:50:37 2024 GMT Subject: CN=662bdb5d-4e37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f5:58:0d:08:0a:00:5b:92:24:84:3e:05:d6: b2:a6:6f:5c:3b:2b:04:09:85:bd:d9:03:a2:78:ce: da:9b:b3:eb:3c:af:96:67:b2:cf:08:16:e2:e1:fc: c6:22:45:53:9f:51:de:d8:04:04:b9:90:84:10:bb: 1e:1e:d3:b1:07:6a:6a:b4:1f:9a:b0:4b:54:c9:b8: 1d:f5:eb:b7:27:23:87:b6:f4:a4:56:40:73:3e:e3: 8b:80:ec:0d:12:e1:d6:e2:f7:dd:9e:3a:19:f2:16: 1d:9b:70:d0:51:ff:e6:f2:d1:e6:62:e4:de:0a:86: 01:af:7a:79:74:40:46:28:71:38:e8:2c:38:75:b2: 25:fb:d1:0e:d3:80:6a:2c:90:3a:86:23:eb:43:70: c2:82:a9:df:05:25:1d:8e:15:ff:ed:d1:cf:50:50: bb:bc:55:32:f7:fe:6c:df:ae:19:9d:ac:dd:5a:86: 38:df:a7:52:d8:2c:dc:f0:f0:29:84:0c:4e:86:ee: bd:80:5a:d4:89:b5:c1:19:7e:f7:9c:0e:77:c2:44: 27:10:fc:c8:1d:33:0e:62:c5:ba:93:22:4f:ca:92: 69:24:da:70:0d:44:17:0a:7a:0f:19:c7:09:a2:ca: 99:57:1b:5f:10:12:3b:56:5f:05:62:a4:fd:85:f1: ea:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:69:14:0D:4C:66:68:5B:68:F4:43:C6:EB:D4:7B:6F:0A:4A:97:1F X509v3 Authority Key Identifier: keyid:D9:FC:15:5B:6F:DA:10:6C:69:9A:56:9B:12:03:84:90:95:8A:A3:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:64:99:b4:e3:87:2f:43:29:b2:da:28:15:fa:f4:6e:22:e9: ff:19:87:fc:34:af:68:4a:0c:07:f9:fc:24:a7:5d:5a:a3:29: 91:d1:e9:5d:66:ff:ec:ea:09:04:1a:a3:8e:b3:5e:14:c4:22: 92:3b:dc:91:7f:1b:6b:9d:fe:4d:b0:76:cf:04:0b:9b:b2:94: de:fd:e1:7b:31:a5:bc:54:24:23:e8:81:69:89:a7:20:79:cd: 81:e8:00:2b:58:56:58:0b:d7:63:e9:d6:67:ff:e5:9a:bf:50: ca:7c:97:96:08:85:22:07:ab:57:19:07:67:ba:ec:9c:f6:cb: a8:33:c5:30:65:98:f1:a3:4b:5f:e7:5d:41:dd:22:1d:fb:16: 0a:51:f0:de:34:f9:31:5f:24:70:d1:eb:10:4c:bf:eb:58:aa: 51:fd:1a:0b:fc:fa:16:24:73:b8:3f:ed:f5:4c:17:5d:6a:a1: 9b:f5:51:18:57:7f:d9:bf:4b:ca:ca:58:47:b7:a1:1d:c4:9a: 9d:09:d1:3d:9b:54:77:86:d2:d2:5e:d1:66:f5:be:7d:35:dc: 27:66:39:4f:4d:15:d8:e9:4f:23:ec:ba:b6:3e:7a:cb:f9:3a: a0:b1:c8:4b:0b:a1:ad:4f:91:73:59:a6:9f:4b:4e:d1:07:84: 33:01:cb:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjUzQTUxMTAvBgNVBAUTKEQ5RkMxNTVCNkZEQTEwNkM2OTlBNTY5QjEyMDM4NDkw OTU4QUEzMkYwHhcNMjQwNDI2MTY1MDM3WhcNMjQwNTAzMTY1MDM3WjAYMRYwFAYD VQQDEw02NjJiZGI1ZC00ZTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtvVYDQgKAFuSJIQ+Bdaypm9cOysECYW92QOieM7am7PrPK+WZ7LPCBbi4fzG IkVTn1He2AQEuZCEELseHtOxB2pqtB+asEtUybgd9eu3JyOHtvSkVkBzPuOLgOwN EuHW4vfdnjoZ8hYdm3DQUf/m8tHmYuTeCoYBr3p5dEBGKHE46Cw4dbIl+9EO04Bq LJA6hiPrQ3DCgqnfBSUdjhX/7dHPUFC7vFUy9/5s364ZnazdWoY436dS2Czc8PAp hAxOhu69gFrUibXBGX73nA53wkQnEPzIHTMOYsW6kyJPypJpJNpwDUQXCnoPGccJ osqZVxtfEBI7Vl8FYqT9hfHquwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBZpFA1M ZmhbaPRDxuvUe28KSpcfMB8GA1UdIwQYMBaAFNn8FVtv2hBsaZpWmxIDhJCViqMv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTNBNS8yNTgwQThENjRC NjUxMUU3QjQ2OUMwN0FDNEY5QUUwMi8yZndWVzJfYUVHeHBtbGFiRWdPRWtKV0tv eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJmd1ZXMl9hRUd4cG1sYWJFZ09Fa0pXS295OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTNBNS8yNTgwQThENjRCNjUxMUU3QjQ2OUMwN0FDNEY5QUUwMi8yZndWVzJfYUVH eHBtbGFiRWdPRWtKV0tveTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVZJm044cvQymy2igV+vRuIun/GYf8NK9oSgwH+fwkp11aoymR0eld Zv/s6gkEGqOOs14UxCKSO9yRfxtrnf5NsHbPBAubspTe/eF7MaW8VCQj6IFpiacg ec2B6AArWFZYC9dj6dZn/+Wav1DKfJeWCIUiB6tXGQdnuuyc9suoM8UwZZjxo0tf 511B3SId+xYKUfDeNPkxXyRw0esQTL/rWKpR/RoL/PoWJHO4P+31TBddaqGb9VEY V3/Zv0vKylhHt6EdxJqdCdE9m1R3htLSXtFm9b59NdwnZjlPTRXY6U8j7Lq2PnrL +TqgschLC6GtT5FzWaafS07RB4QzAcvx -----END CERTIFICATE-----Generated at Sat Apr 27 10:20:19 2024 by rpki-client on console-ams.rpki-client.org