$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft File: 5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft (raw, json) Hash identifier: gRyA/QkX+XaFh6yU8iCOLg0Zx7pVYj44lKcGjJpLoyU= Subject key identifier: 87:BE:69:D5:FF:9C:36:80:A4:DF:FA:92:63:3C:AE:DE:6E:B4:DE:98 Authority key identifier: E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 Certificate issuer: /CN=A91B9B0D/serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Certificate serial: 0588 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft Manifest number: 0584 Signing time: Wed 01 May 2024 00:51:37 +0000 Manifest this update: Wed 01 May 2024 00:51:37 +0000 Manifest next update: Wed 08 May 2024 00:51:37 +0000 Files and hashes: 1: 5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl (hash: +265rxNMho0ldUUjOo0eAY4hPn/KzIGY9Tkj5aFTOmw=) 2: 3F9CDA68179911EDB9008D18C4F9AE02.roa (hash: zlvr9/gJaaOwUJm+5jV4Slmz0tKdwG2ThIYLDzxv4/g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 00:32:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1416 (0x588) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9B0D/serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Validity Not Before: May 1 00:51:37 2024 GMT Not After : May 8 00:51:37 2024 GMT Subject: CN=66319219-695c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:89:2f:30:7b:ff:a6:a8:e7:3a:68:12:4c:b2: f1:ca:ea:5d:5e:43:23:d3:38:6a:38:9c:3f:88:52: 40:2e:ed:66:f7:fc:6b:f9:00:10:38:c6:2d:60:85: dc:1c:54:19:02:aa:74:5c:7b:3f:d6:8c:a5:4d:27: 91:3b:00:93:2d:1d:f8:3b:4e:e3:4b:97:01:e6:7a: 36:c0:1b:52:a3:96:7e:3f:a3:9d:c3:75:05:99:1e: 2d:f1:bd:a1:90:7d:f9:31:73:c0:83:55:0d:1a:af: f1:92:93:6a:d2:37:23:4e:d4:b8:eb:60:8a:ff:d6: 27:c0:c3:a8:24:a2:3b:14:97:b0:ca:0f:ab:1f:61: 5a:0a:d8:89:79:75:00:2a:56:3e:46:5f:d0:69:60: 64:76:c5:06:26:2b:73:04:cc:75:50:2b:7e:5f:d0: 57:6f:eb:95:29:4f:39:22:b3:23:9e:1d:db:1f:c4: 73:98:44:73:ec:ff:53:d3:24:5a:6a:39:8a:61:a2: ea:3d:d1:1c:dc:9a:1d:df:22:3f:bd:41:8b:aa:0a: a0:38:cf:f2:56:ce:3d:a0:58:3a:2f:e3:9a:a5:eb: 7d:dc:2c:35:82:b8:4c:3c:9a:ed:a0:b7:20:5c:20: ab:19:18:51:b6:12:df:ba:af:ef:91:20:53:0e:57: 57:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:BE:69:D5:FF:9C:36:80:A4:DF:FA:92:63:3C:AE:DE:6E:B4:DE:98 X509v3 Authority Key Identifier: keyid:E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:9e:c0:7e:cb:71:d5:41:6a:48:76:21:23:f4:a6:29:ef:a3: f3:28:46:cb:fd:28:db:f2:11:6f:68:78:ab:ee:0b:80:f1:d2: d1:75:1c:36:4e:30:73:ef:49:82:fa:97:f8:6d:02:b4:0d:1e: 95:a3:1a:ab:dc:1f:ad:f1:98:7c:8c:56:fc:a5:cb:32:4c:ba: 2f:20:0d:59:b5:fd:c1:d8:04:3d:2a:05:75:2f:2a:39:c7:aa: b7:be:fb:d7:b2:db:96:2d:ea:44:42:9f:c0:24:cf:2c:73:b6: 3a:c1:67:9b:97:3e:64:45:f1:80:fb:60:cd:f6:38:ce:60:c4: d2:f8:f2:01:f3:12:53:76:ab:c0:fa:9c:b5:06:a5:35:cb:9f: a3:5b:26:70:29:c6:1f:11:25:e4:e8:44:8c:50:bc:05:c5:0d: 51:39:de:9b:f7:bc:8f:d3:19:e7:bd:50:ea:00:1a:d5:f4:87: 11:31:89:87:d7:63:f4:8f:7a:ec:b7:3c:3e:f6:99:40:97:ea: 2b:82:97:f5:bf:f3:dc:91:59:87:f3:8a:b6:0a:e0:b1:c5:39: 98:94:96:6c:dc:13:d2:1f:24:25:ca:2d:2f:f8:0d:ff:8f:69: cf:69:68:e5:0e:84:2d:ab:17:b4:e1:26:34:7c:f9:33:40:ef: 41:e3:11:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlCMEQxMTAvBgNVBAUTKEU0RDYyRDMxMjk3RjE3RTQ5QzQyRkE3QTdCNjYyMzYy NEFEOTQxNzUwHhcNMjQwNTAxMDA1MTM3WhcNMjQwNTA4MDA1MTM3WjAYMRYwFAYD VQQDEw02NjMxOTIxOS02OTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5YkvMHv/pqjnOmgSTLLxyupdXkMj0zhqOJw/iFJALu1m9/xr+QAQOMYtYIXc HFQZAqp0XHs/1oylTSeROwCTLR34O07jS5cB5no2wBtSo5Z+P6Odw3UFmR4t8b2h kH35MXPAg1UNGq/xkpNq0jcjTtS462CK/9YnwMOoJKI7FJewyg+rH2FaCtiJeXUA KlY+Rl/QaWBkdsUGJitzBMx1UCt+X9BXb+uVKU85IrMjnh3bH8RzmERz7P9T0yRa ajmKYaLqPdEc3Jod3yI/vUGLqgqgOM/yVs49oFg6L+Oapet93Cw1grhMPJrtoLcg XCCrGRhRthLfuq/vkSBTDldXfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIe+adX/ nDaApN/6kmM8rt5utN6YMB8GA1UdIwQYMBaAFOTWLTEpfxfknEL6entmI2JK2UF1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUIwRC9BMjhFQ0JDMDhB QjYxMUVCODIzN0Q0MTRDNEY5QUUwMi81Tll0TVNsX0YtU2NRdnA2ZTJZallrclpR WFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVOWXRNU2xfRi1TY1F2cDZlMllqWWtyWlFYVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUIwRC9BMjhFQ0JDMDhBQjYxMUVCODIzN0Q0MTRDNEY5QUUwMi81Tll0TVNsX0Yt U2NRdnA2ZTJZallrclpRWFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8nsB+y3HVQWpIdiEj9KYp76PzKEbL/Sjb8hFvaHir7guA8dLRdRw2 TjBz70mC+pf4bQK0DR6Voxqr3B+t8Zh8jFb8pcsyTLovIA1Ztf3B2AQ9KgV1Lyo5 x6q3vvvXstuWLepEQp/AJM8sc7Y6wWeblz5kRfGA+2DN9jjOYMTS+PIB8xJTdqvA +py1BqU1y5+jWyZwKcYfESXk6ESMULwFxQ1ROd6b97yP0xnnvVDqABrV9IcRMYmH 12P0j3rstzw+9plAl+orgpf1v/PckVmH84q2CuCxxTmYlJZs3BPSHyQlyi0v+A3/ j2nPaWjlDoQtqxe04SY0fPkzQO9B4xHa -----END CERTIFICATE-----Generated at Wed May 1 01:38:31 2024 by rpki-client on console-ams.rpki-client.org