$ rpki-client -vvf rpki.apnic.net/member_repository/A91C064C/683C9D98672D11EE9C809F12C4F9AE02/r8MXR2fk6vxN7g9JJaHGXNxZ-io.mft File: r8MXR2fk6vxN7g9JJaHGXNxZ-io.mft (raw, json) Hash identifier: S1sjHKseHK1rUgOhkPDyiYIGNuDLlV+PNESjQ3U1fX4= Subject key identifier: 0E:5F:43:84:39:0B:C4:22:6E:B6:D8:61:F5:90:6A:9B:BC:DA:A9:48 Authority key identifier: AF:C3:17:47:67:E4:EA:FC:4D:EE:0F:49:25:A1:C6:5C:DC:59:FA:2A Certificate issuer: /CN=A91C064C/serialNumber=AFC3174767E4EAFC4DEE0F4925A1C65CDC59FA2A Certificate serial: 74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r8MXR2fk6vxN7g9JJaHGXNxZ-io.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C064C/683C9D98672D11EE9C809F12C4F9AE02/r8MXR2fk6vxN7g9JJaHGXNxZ-io.mft Manifest number: 72 Signing time: Wed 15 May 2024 07:31:13 +0000 Manifest this update: Wed 15 May 2024 07:31:12 +0000 Manifest next update: Wed 22 May 2024 07:31:12 +0000 Files and hashes: 1: r8MXR2fk6vxN7g9JJaHGXNxZ-io.crl (hash: QrzbGRB/V3cn4ZJJoPitsFhMpL2b8IaUcWzHK4Alyvc=) 2: 583FA34E672E11EEB31AC02CC4F9AE02.roa (hash: h5Bp1uJblw7ehm4bY6GEJ6OxZ+sCMkLfY59/N+x9Zzw=) 3: 810B798472CC11EEA1A5574DC4F9AE02.roa (hash: loBajjwhLShKw7W9wUX6CtuPW9CotxEu9Etg3BIZJ5I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C064C/683C9D98672D11EE9C809F12C4F9AE02/r8MXR2fk6vxN7g9JJaHGXNxZ-io.crl rsync://rpki.apnic.net/member_repository/A91C064C/683C9D98672D11EE9C809F12C4F9AE02/r8MXR2fk6vxN7g9JJaHGXNxZ-io.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r8MXR2fk6vxN7g9JJaHGXNxZ-io.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:31:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 116 (0x74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C064C/serialNumber=AFC3174767E4EAFC4DEE0F4925A1C65CDC59FA2A Validity Not Before: May 15 07:31:12 2024 GMT Not After : May 22 07:31:12 2024 GMT Subject: CN=664464c1-2d33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:dd:17:a3:aa:2d:fd:ed:df:81:c8:2a:e8:30: 3b:ab:1a:d3:05:3d:df:ce:4d:f2:94:b3:9c:28:da: 22:eb:8d:d2:06:d9:b3:4e:33:11:eb:38:d9:30:59: 8c:b2:c4:30:65:de:56:4c:7c:fc:6b:a4:e4:60:49: 79:dd:ca:8b:88:1b:da:6a:73:86:7e:e6:10:5d:6b: 5d:0a:e6:b1:b1:bb:a5:24:d9:de:8e:d0:39:6f:12: 55:de:98:7e:c8:81:76:48:22:76:5d:19:db:db:61: ed:30:86:92:5c:1e:74:f3:0a:c2:12:10:81:c7:d5: 00:00:41:d0:ac:08:d3:e2:e6:48:b0:de:10:73:74: 4a:9d:c6:79:76:72:ae:71:a5:bb:dc:96:66:8d:12: cb:56:fe:62:96:24:b8:94:2c:ad:a3:14:27:ae:53: c2:8a:17:47:09:8d:39:42:73:ed:04:36:8d:06:1f: fc:dc:7a:e2:9d:47:d3:e5:0a:b6:f8:eb:73:fc:a9: d8:75:b4:4b:97:90:78:52:8d:62:db:27:34:86:1d: 99:c1:e0:82:40:f1:8c:ef:f7:f8:6a:5d:a2:bc:f3: 0e:b0:fe:ac:b4:c8:f2:e4:eb:7b:bc:ab:ad:1d:b6: 96:18:85:3b:7f:07:67:5d:27:ff:8b:6f:2e:22:64: 28:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:5F:43:84:39:0B:C4:22:6E:B6:D8:61:F5:90:6A:9B:BC:DA:A9:48 X509v3 Authority Key Identifier: keyid:AF:C3:17:47:67:E4:EA:FC:4D:EE:0F:49:25:A1:C6:5C:DC:59:FA:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C064C/683C9D98672D11EE9C809F12C4F9AE02/r8MXR2fk6vxN7g9JJaHGXNxZ-io.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r8MXR2fk6vxN7g9JJaHGXNxZ-io.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C064C/683C9D98672D11EE9C809F12C4F9AE02/r8MXR2fk6vxN7g9JJaHGXNxZ-io.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:fd:db:9a:72:c3:c1:a8:eb:6a:38:ea:0e:87:2b:07:3c:52: aa:bd:90:82:e5:e7:42:d5:e4:23:f4:28:7e:4f:8c:a3:fa:84: f3:45:af:4f:d6:12:77:96:32:fb:11:74:da:37:dd:b1:9a:34: 7e:9f:03:71:4d:e2:23:06:18:9d:d5:ae:5f:ff:68:94:41:2a: 16:bd:aa:fc:4d:8b:e3:c0:7e:39:76:81:6f:4e:2a:f0:66:8e: 00:fb:ba:28:82:5f:e4:4b:27:3e:a4:e7:14:6d:88:71:e8:6a: f6:d4:f7:97:65:d0:7a:7e:40:c6:44:9c:82:fa:58:1e:dc:60: 60:d8:d9:9c:c7:c1:81:5f:93:75:a2:0b:8b:df:cc:bb:f7:d4: 89:39:20:66:79:36:16:3e:d6:2e:bb:07:d8:14:d4:55:51:29: f0:f4:d9:3b:00:c2:51:8c:b8:00:86:40:ea:43:5c:7a:95:e9: 5a:07:72:66:94:74:b6:3b:1c:76:35:4e:37:ba:09:a1:6c:a2: 5d:3c:4c:32:e5:9d:83:dc:90:66:4f:13:71:b4:7a:dc:60:64: 03:fa:71:28:81:03:85:55:b2:d5:4e:95:37:3d:1c:d7:c1:dd: 26:90:7a:58:7c:23:bc:03:bf:08:a6:f8:c1:45:97:b9:80:f1: ff:e8:8e:68 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MDY0QzExMC8GA1UEBRMoQUZDMzE3NDc2N0U0RUFGQzRERUUwRjQ5MjVBMUM2NUNE QzU5RkEyQTAeFw0yNDA1MTUwNzMxMTJaFw0yNDA1MjIwNzMxMTJaMBgxFjAUBgNV BAMTDTY2NDQ2NGMxLTJkMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+3Rejqi397d+ByCroMDurGtMFPd/OTfKUs5wo2iLrjdIG2bNOMxHrONkwWYyy xDBl3lZMfPxrpORgSXndyouIG9pqc4Z+5hBda10K5rGxu6Uk2d6O0DlvElXemH7I gXZIInZdGdvbYe0whpJcHnTzCsISEIHH1QAAQdCsCNPi5kiw3hBzdEqdxnl2cq5x pbvclmaNEstW/mKWJLiULK2jFCeuU8KKF0cJjTlCc+0ENo0GH/zceuKdR9PlCrb4 63P8qdh1tEuXkHhSjWLbJzSGHZnB4IJA8Yzv9/hqXaK88w6w/qy0yPLk63u8q60d tpYYhTt/B2ddJ/+Lby4iZCiTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDl9DhDkL xCJutthh9ZBqm7zaqUgwHwYDVR0jBBgwFoAUr8MXR2fk6vxN7g9JJaHGXNxZ+iow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMwNjRDLzY4M0M5RDk4Njcy RDExRUU5QzgwOUYxMkM0RjlBRTAyL3I4TVhSMmZrNnZ4TjdnOUpKYUhHWE54Wi1p by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcjhNWFIyZms2dnhON2c5SkphSEdYTnhaLWlvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMw NjRDLzY4M0M5RDk4NjcyRDExRUU5QzgwOUYxMkM0RjlBRTAyL3I4TVhSMmZrNnZ4 TjdnOUpKYUhHWE54Wi1pby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADn925pyw8Go62o46g6HKwc8Uqq9kILl50LV5CP0KH5PjKP6hPNFr0/W EneWMvsRdNo33bGaNH6fA3FN4iMGGJ3Vrl//aJRBKha9qvxNi+PAfjl2gW9OKvBm jgD7uiiCX+RLJz6k5xRtiHHoavbU95dl0Hp+QMZEnIL6WB7cYGDY2ZzHwYFfk3Wi C4vfzLv31Ik5IGZ5NhY+1i67B9gU1FVRKfD02TsAwlGMuACGQOpDXHqV6VoHcmaU dLY7HHY1Tje6CaFsol08TDLlnYPckGZPE3G0etxgZAP6cSiBA4VVstVOlTc9HNfB 3SaQelh8I7wDvwim+MFFl7mA8f/ojmg= -----END CERTIFICATE-----Generated at Wed May 15 09:04:44 2024 by rpki-client on console-ams.rpki-client.org