$ rpki-client -vvf rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft File: IX2ikIx1R129zapw42ubQNSRLt0.mft (raw, json) Hash identifier: wW5k2r2b7xk5C1gMIDFLmdAMIuTUMm41CuYDeLyntK8= Subject key identifier: 2C:86:50:FA:88:97:37:55:A1:43:4A:F9:82:BE:11:4B:90:BF:26:41 Authority key identifier: 21:7D:A2:90:8C:75:47:5D:BD:CD:AA:70:E3:6B:9B:40:D4:91:2E:DD Certificate issuer: /CN=A91BABFD/serialNumber=217DA2908C75475DBDCDAA70E36B9B40D4912EDD Certificate serial: 74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft Manifest number: 70 Signing time: Fri 17 May 2024 07:34:18 +0000 Manifest this update: Fri 17 May 2024 07:34:18 +0000 Manifest next update: Fri 24 May 2024 07:34:18 +0000 Files and hashes: 1: IX2ikIx1R129zapw42ubQNSRLt0.crl (hash: DqOYFClSxyskla+4kecHF/NkQ7TteljfsslLbQUmXF8=) 2: E0E9B1966D8A11EEB33A1E83C4F9AE02.roa (hash: WqChmFL0t+0fvgVc6SzyAMYVtnHR5DBUAjHd0DNHHE0=) 3: 164B8B986D8B11EEAE28C283C4F9AE02.roa (hash: eXTBE8BtvNJbRs+t5O94GI8MZuItYc/KZDVWqR74VHw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.crl rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 07:34:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 116 (0x74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BABFD/serialNumber=217DA2908C75475DBDCDAA70E36B9B40D4912EDD Validity Not Before: May 17 07:34:18 2024 GMT Not After : May 24 07:34:18 2024 GMT Subject: CN=6647087a-75ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:8b:5f:87:e2:85:0a:b0:5b:e5:cf:a4:fd:2a: 19:ea:af:2f:f5:08:a1:77:78:ad:dd:42:bd:87:33: b1:70:22:aa:1c:75:03:1d:05:9f:b5:23:b3:d7:00: 3f:d4:f9:cf:46:15:ab:21:41:b8:6d:41:ff:87:fa: a7:d1:a4:6c:2b:fb:d4:64:d7:70:b6:7f:f2:3c:3c: da:03:c2:4b:4a:66:ca:1f:9f:ec:9a:2d:3b:bc:4f: 91:73:25:9d:e0:81:b2:b2:71:e4:05:eb:f8:8f:23: e0:46:cf:b7:d9:58:27:2f:1f:6a:9e:1e:26:26:52: b1:d8:3f:24:19:16:49:04:52:a8:a6:e7:09:9b:77: bd:f0:24:54:e2:46:8e:32:b0:85:81:6f:2a:bf:85: 2d:a8:8a:00:27:15:4e:1e:81:a8:58:61:1f:23:cb: 9d:97:83:3f:dd:d6:04:b9:47:34:44:76:44:ba:12: 72:22:14:6c:95:41:9f:bc:ff:af:76:3a:42:fc:b2: 9c:eb:97:7f:7c:49:60:67:87:4b:12:1c:bd:61:04: 17:f9:88:8f:ea:f0:f3:88:f7:17:c9:d3:69:ae:c6: 80:63:b1:46:04:6a:af:95:84:6f:bd:0e:ef:53:69: 64:f5:f7:67:e6:f3:84:59:30:20:00:0c:f7:dc:a6: 7a:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:86:50:FA:88:97:37:55:A1:43:4A:F9:82:BE:11:4B:90:BF:26:41 X509v3 Authority Key Identifier: keyid:21:7D:A2:90:8C:75:47:5D:BD:CD:AA:70:E3:6B:9B:40:D4:91:2E:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:13:f7:b5:7f:6f:1e:27:36:d9:bc:cf:b7:d4:c4:0c:42:02: 39:13:a6:af:c1:04:c6:ae:3b:0c:02:bd:c7:af:ca:eb:e0:59: b7:50:96:8a:02:4d:8b:8c:6e:c5:24:f0:3b:80:51:fb:40:19: ff:f5:e4:e4:54:6d:30:78:3d:07:38:c4:51:4d:96:e8:f9:1c: 44:89:55:1c:c1:a5:7e:9c:32:d4:a9:ef:9c:5d:a2:76:7c:52: 1f:78:fe:bf:69:4c:ee:11:bb:d9:1f:79:8c:37:29:73:6a:74: 32:08:40:bb:df:5a:0a:90:66:5c:02:2e:31:70:6f:c7:61:de: 2d:bb:2b:a8:29:f7:82:a5:e2:dc:a8:2f:0c:7c:7d:99:8a:d5: 06:bd:8a:26:c4:06:58:bc:45:37:bb:3d:1f:eb:2d:63:79:f5: fa:a2:2e:82:71:f8:45:57:70:71:5b:de:c7:14:62:46:2c:e0: 81:c9:fd:88:37:69:4e:f6:02:04:36:45:39:43:02:23:52:16: 10:0a:76:6f:15:be:f4:d0:47:f9:1c:99:7d:c2:8f:df:0b:ca: 10:9c:36:37:52:4e:8d:57:24:44:a9:25:59:fc:f4:c6:58:1a: b1:2b:d6:d0:ed:21:8e:26:8d:22:59:c7:75:d9:c7:e6:c7:de: b3:e0:0c:77 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QUJGRDExMC8GA1UEBRMoMjE3REEyOTA4Qzc1NDc1REJEQ0RBQTcwRTM2QjlCNDBE NDkxMkVERDAeFw0yNDA1MTcwNzM0MThaFw0yNDA1MjQwNzM0MThaMBgxFjAUBgNV BAMTDTY2NDcwODdhLTc1YWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCdi1+H4oUKsFvlz6T9Khnqry/1CKF3eK3dQr2HM7FwIqocdQMdBZ+1I7PXAD/U +c9GFashQbhtQf+H+qfRpGwr+9Rk13C2f/I8PNoDwktKZsofn+yaLTu8T5FzJZ3g gbKyceQF6/iPI+BGz7fZWCcvH2qeHiYmUrHYPyQZFkkEUqim5wmbd73wJFTiRo4y sIWBbyq/hS2oigAnFU4egahYYR8jy52Xgz/d1gS5RzREdkS6EnIiFGyVQZ+8/692 OkL8spzrl398SWBnh0sSHL1hBBf5iI/q8POI9xfJ02muxoBjsUYEaq+VhG+9Du9T aWT192fm84RZMCAADPfcpnpvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQULIZQ+oiX N1WhQ0r5gr4RS5C/JkEwHwYDVR0jBBgwFoAUIX2ikIx1R129zapw42ubQNSRLt0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJBQkZELzg5NUE0OTUwNkQ4 OTExRUU4MkExRjY4MEM0RjlBRTAyL0lYMmlrSXgxUjEyOXphcHc0MnViUU5TUkx0 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSVgyaWtJeDFSMTI5emFwdzQydWJRTlNSTHQwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJB QkZELzg5NUE0OTUwNkQ4OTExRUU4MkExRjY4MEM0RjlBRTAyL0lYMmlrSXgxUjEy OXphcHc0MnViUU5TUkx0MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGAT97V/bx4nNtm8z7fUxAxCAjkTpq/BBMauOwwCvcevyuvgWbdQlooC TYuMbsUk8DuAUftAGf/15ORUbTB4PQc4xFFNluj5HESJVRzBpX6cMtSp75xdonZ8 Uh94/r9pTO4Ru9kfeYw3KXNqdDIIQLvfWgqQZlwCLjFwb8dh3i27K6gp94Kl4tyo Lwx8fZmK1Qa9iibEBli8RTe7PR/rLWN59fqiLoJx+EVXcHFb3scUYkYs4IHJ/Yg3 aU72AgQ2RTlDAiNSFhAKdm8VvvTQR/kcmX3Cj98LyhCcNjdSTo1XJESpJVn89MZY GrEr1tDtIY4mjSJZx3XZx+bH3rPgDHc= -----END CERTIFICATE-----Generated at Fri May 17 08:52:53 2024 by rpki-client on console-ams.rpki-client.org