$ rpki-client -vvf rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft File: iV5rynpcNtnzBEctDScTpILJ2yU.mft (raw, json) Hash identifier: DyhlFCwcxegY3HFpyg8e8jD7o26Po/KPLtDhxEEgDTk= Subject key identifier: 94:21:31:5D:87:A7:C4:B5:B3:5A:04:8D:45:64:D6:06:BC:C7:A0:A6 Authority key identifier: 89:5E:6B:CA:7A:5C:36:D9:F3:04:47:2D:0D:27:13:A4:82:C9:DB:25 Certificate issuer: /CN=A91B829A/serialNumber=895E6BCA7A5C36D9F304472D0D2713A482C9DB25 Certificate serial: 0B7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft Manifest number: 0B75 Signing time: Fri 26 Apr 2024 19:24:32 +0000 Manifest this update: Fri 26 Apr 2024 19:24:31 +0000 Manifest next update: Fri 03 May 2024 19:24:31 +0000 Files and hashes: 1: iV5rynpcNtnzBEctDScTpILJ2yU.crl (hash: e/fbcjsC5XDRgziOLfiDmyixRZYPBgr8SR9gHyTWcC0=) 2: 37759456617811ECBB095A62C4F9AE02.roa (hash: tDUJOc5UT0yWXgCOtu9+r4SfyrIkkTnJXCfJkJZ/Z9E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.crl rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 19:24:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2941 (0xb7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B829A/serialNumber=895E6BCA7A5C36D9F304472D0D2713A482C9DB25 Validity Not Before: Apr 26 19:24:31 2024 GMT Not After : May 3 19:24:31 2024 GMT Subject: CN=662bff6f-0cb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:04:55:03:10:7b:c0:15:a2:9c:e6:9b:7b:ae: 0f:b9:fa:c4:64:3e:dc:6b:e7:62:13:31:d4:ed:04: 9c:12:9f:43:04:0b:12:e1:6f:6a:3d:99:5e:0f:c3: db:a1:98:c0:49:ab:d0:c9:50:0e:e1:d9:3a:42:e9: 1a:03:50:9f:76:50:43:f0:97:90:6d:8e:21:56:9b: 33:84:e6:8a:27:54:78:42:95:44:a1:3c:c0:ab:6d: 2c:75:7f:12:3c:47:96:2f:41:0c:f7:e7:b4:5f:78: 61:f0:10:4c:a9:20:23:4a:e9:e4:f3:5a:2a:5a:cb: 64:72:e2:e2:29:0d:0b:7a:e8:90:dc:fb:e6:1d:f7: 40:dc:c1:6c:16:b6:18:4d:57:79:b5:4f:38:1d:94: da:ee:bc:cf:7d:40:35:55:22:c8:b4:10:b3:2d:99: 85:71:bf:81:65:16:5a:07:1c:65:b1:be:76:91:c7: e1:08:3d:64:a4:ba:d8:9b:b3:e5:2f:5d:1f:7a:82: 6a:0a:a1:00:40:41:76:23:cc:37:a6:49:0c:55:f8: 9c:f3:99:61:54:6b:69:3f:68:d8:ec:a1:ee:e6:57: 9c:70:f5:7b:ee:87:4b:cb:b2:d2:17:95:5a:a4:af: bd:83:8b:0f:0c:cb:87:87:e7:84:48:7d:33:6b:04: 72:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:21:31:5D:87:A7:C4:B5:B3:5A:04:8D:45:64:D6:06:BC:C7:A0:A6 X509v3 Authority Key Identifier: keyid:89:5E:6B:CA:7A:5C:36:D9:F3:04:47:2D:0D:27:13:A4:82:C9:DB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:ef:a4:6f:84:9f:c2:9b:4a:81:51:8c:39:5f:ae:c3:c9:16: 2b:72:34:b4:97:3f:44:88:5f:c0:04:42:6d:11:da:0d:23:e5: 76:62:e3:f3:94:cc:0c:e3:8a:55:c5:08:9b:a0:61:a6:72:4b: 1c:59:21:7e:d6:29:7e:84:b0:84:38:d3:bf:23:7b:a9:59:6e: 0b:be:5f:37:38:f0:98:e2:7d:6e:10:eb:49:e5:71:bf:50:88: 75:75:84:84:75:31:43:b3:2c:bf:48:ef:b9:42:00:fd:2d:ee: 3f:ad:2e:43:f0:dd:2f:a9:af:c1:cb:b5:01:25:d4:b7:a3:ac: 20:83:13:6a:ca:08:bd:02:b9:3f:0b:ba:38:42:ef:50:b4:57: 42:64:83:8d:c0:f8:0a:58:65:e6:cb:5f:f6:20:36:18:c7:6f: 68:56:be:75:8c:c0:42:76:95:1a:25:a9:5f:ef:b8:e9:1a:9e: 34:d6:b2:27:46:66:55:5c:d5:20:11:f2:02:15:70:19:22:9f: ef:61:ec:ad:2c:eb:81:44:23:df:88:af:52:e9:de:c1:4c:27: b4:79:79:aa:2b:16:91:df:ee:77:f4:7a:b5:d7:04:e0:bd:92: 76:c5:b0:fb:20:3f:9b:5b:37:1e:dc:e7:5b:60:68:de:8f:8f: ca:0c:8d:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC30wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgyOUExMTAvBgNVBAUTKDg5NUU2QkNBN0E1QzM2RDlGMzA0NDcyRDBEMjcxM0E0 ODJDOURCMjUwHhcNMjQwNDI2MTkyNDMxWhcNMjQwNTAzMTkyNDMxWjAYMRYwFAYD VQQDEw02NjJiZmY2Zi0wY2IyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzARVAxB7wBWinOabe64PufrEZD7ca+diEzHU7QScEp9DBAsS4W9qPZleD8Pb oZjASavQyVAO4dk6QukaA1CfdlBD8JeQbY4hVpszhOaKJ1R4QpVEoTzAq20sdX8S PEeWL0EM9+e0X3hh8BBMqSAjSunk81oqWstkcuLiKQ0LeuiQ3PvmHfdA3MFsFrYY TVd5tU84HZTa7rzPfUA1VSLItBCzLZmFcb+BZRZaBxxlsb52kcfhCD1kpLrYm7Pl L10feoJqCqEAQEF2I8w3pkkMVfic85lhVGtpP2jY7KHu5leccPV77odLy7LSF5Va pK+9g4sPDMuHh+eESH0zawRywwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJQhMV2H p8S1s1oEjUVk1ga8x6CmMB8GA1UdIwQYMBaAFIlea8p6XDbZ8wRHLQ0nE6SCydsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODI5QS8xRjIzRTA1ODA1 N0YxMUVBQTU1MTZCM0ZDNEY5QUUwMi9pVjVyeW5wY050bnpCRWN0RFNjVHBJTEoy eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lWNXJ5bnBjTnRuekJFY3REU2NUcElMSjJ5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODI5QS8xRjIzRTA1ODA1N0YxMUVBQTU1MTZCM0ZDNEY5QUUwMi9pVjVyeW5wY050 bnpCRWN0RFNjVHBJTEoyeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJ76RvhJ/Cm0qBUYw5X67DyRYrcjS0lz9EiF/ABEJtEdoNI+V2YuPz lMwM44pVxQiboGGmckscWSF+1il+hLCEONO/I3upWW4Lvl83OPCY4n1uEOtJ5XG/ UIh1dYSEdTFDsyy/SO+5QgD9Le4/rS5D8N0vqa/By7UBJdS3o6wggxNqygi9Ark/ C7o4Qu9QtFdCZIONwPgKWGXmy1/2IDYYx29oVr51jMBCdpUaJalf77jpGp401rIn RmZVXNUgEfICFXAZIp/vYeytLOuBRCPfiK9S6d7BTCe0eXmqKxaR3+539Hq11wTg vZJ2xbD7ID+bWzce3OdbYGjej4/KDI11 -----END CERTIFICATE-----Generated at Sat Apr 27 10:20:20 2024 by rpki-client on console-ams.rpki-client.org