$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft File: AShwXWnFHg4rB4rtuZiR5_GbTR8.mft (raw, json) Hash identifier: 6CzkVwUDsmV6S5sNLS7lOjIn4TisGqxW2yBbHs5fnnk= Subject key identifier: AC:3C:4F:0F:39:73:85:4E:4F:F5:00:07:B4:E5:C7:77:50:B8:AD:D1 Authority key identifier: 01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F Certificate issuer: /CN=A91C0C0B/serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Certificate serial: 0AC1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft Manifest number: 0AB5 Signing time: Sat 04 May 2024 20:19:52 +0000 Manifest this update: Sat 04 May 2024 20:19:52 +0000 Manifest next update: Sat 11 May 2024 20:19:52 +0000 Files and hashes: 1: AShwXWnFHg4rB4rtuZiR5_GbTR8.crl (hash: P/VViuRchQRmG+RuIhXD/5jc59cEcQHZ7733vQ/TAyc=) 2: E85B23282DF211EAA63F5D60C4F9AE02.roa (hash: NaKs9z3QJXb5Kn8e48Iigov3Z7TuQs5pMXoTUPl9zy0=) 3: 71E30CDCC4ED11EAA1C5766AC4F9AE02.roa (hash: PndwU/bKorz9FPxSOlH7Na5k3+/rUrTNarEjKEZdBqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 19:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2753 (0xac1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C0B/serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Validity Not Before: May 4 20:19:52 2024 GMT Not After : May 11 20:19:52 2024 GMT Subject: CN=66369868-c9f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:c7:48:00:5d:1f:af:2e:9d:08:74:1b:42:4b: 44:9d:b5:2d:1b:d6:a4:17:05:e7:56:99:f7:28:21: 53:28:c0:9c:e9:71:58:83:43:76:e5:8e:f7:80:7d: c8:bb:8d:0f:0c:13:ca:8f:a3:1c:6c:19:be:c3:c6: 3e:e8:df:b1:43:f3:46:e9:d0:5b:63:f6:ea:8d:5f: 6e:bd:ce:da:83:4c:72:e4:db:95:87:11:50:3a:ca: 2b:69:44:cf:bd:a9:1d:f7:1e:11:c3:9a:f7:99:0b: c4:94:df:8e:27:72:70:b3:57:41:65:3a:b7:8d:d5: e7:d7:f2:03:62:94:cf:47:ab:29:3a:0a:bd:a9:66: 15:27:32:6a:92:c1:f4:b2:ef:60:a2:04:9e:1d:8f: 3c:61:09:ce:e8:5b:f7:f5:35:48:69:f6:96:38:c2: 0b:a2:d5:4a:b0:ee:57:82:ed:3f:74:21:da:d5:82: 34:ef:ca:bd:90:3f:53:b3:f7:d1:2a:51:b2:31:06: 5f:72:ae:ef:3b:8a:27:d7:6a:fc:5e:f4:89:39:42: b0:1e:d0:ff:69:fd:19:e6:69:42:28:a7:5b:27:40: 43:e5:e0:55:8e:d4:f0:a8:b2:4b:49:ed:4b:0e:56: 6d:7b:eb:79:b6:d4:ba:0b:49:1d:e1:3c:41:83:9c: b7:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:3C:4F:0F:39:73:85:4E:4F:F5:00:07:B4:E5:C7:77:50:B8:AD:D1 X509v3 Authority Key Identifier: keyid:01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:88:49:08:c3:bc:9e:fa:df:a0:ff:91:a2:c4:b4:31:5d:fb: 3c:e4:7b:8b:a8:ec:f9:e2:60:14:e5:c2:65:6c:dd:63:c2:de: 38:4a:a1:94:70:8b:96:0f:85:9f:35:66:22:be:d5:bd:5e:46: 18:34:bb:35:78:67:70:6a:43:7c:e6:3d:4b:6c:ee:80:22:ed: 6d:d8:42:1a:82:3b:c2:93:82:f6:a4:8a:8b:2b:27:b2:e2:b9: 41:00:07:7c:35:4e:55:ea:21:37:f6:26:f6:df:11:2a:84:69: 1a:5c:f4:fd:07:76:50:41:d0:fb:1e:86:f7:ad:31:2a:7e:9c: 06:7b:47:f2:e5:8d:dd:96:20:02:7e:c9:aa:e9:7f:14:93:c3: c1:ad:05:82:e5:ed:c5:28:40:c5:c1:51:0b:ce:04:66:0d:74: 0c:63:44:4f:b8:bc:97:60:9f:e9:b7:f2:21:cf:3b:b0:cc:30: 4a:7d:50:f4:4a:fa:03:95:4e:2f:7a:92:37:ba:f7:f6:67:83: 73:57:7f:76:98:3f:b1:ce:e9:aa:59:9c:06:56:1c:ee:b6:f1: 9a:91:f0:f3:84:7e:db:61:c0:03:a9:a8:7a:8c:a5:dd:a9:e8: 24:48:c4:3b:aa:10:81:30:7c:12:66:2a:e8:b9:7f:6e:fe:09: 56:3f:a4:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCsEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDMEIxMTAvBgNVBAUTKDAxMjg3MDVENjlDNTFFMEUyQjA3OEFFREI5OTg5MUU3 RjE5QjREMUYwHhcNMjQwNTA0MjAxOTUyWhcNMjQwNTExMjAxOTUyWjAYMRYwFAYD VQQDEw02NjM2OTg2OC1jOWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn8dIAF0fry6dCHQbQktEnbUtG9akFwXnVpn3KCFTKMCc6XFYg0N25Y73gH3I u40PDBPKj6McbBm+w8Y+6N+xQ/NG6dBbY/bqjV9uvc7ag0xy5NuVhxFQOsoraUTP vakd9x4Rw5r3mQvElN+OJ3Jws1dBZTq3jdXn1/IDYpTPR6spOgq9qWYVJzJqksH0 su9gogSeHY88YQnO6Fv39TVIafaWOMILotVKsO5Xgu0/dCHa1YI078q9kD9Ts/fR KlGyMQZfcq7vO4on12r8XvSJOUKwHtD/af0Z5mlCKKdbJ0BD5eBVjtTwqLJLSe1L DlZte+t5ttS6C0kd4TxBg5y3ZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKw8Tw85 c4VOT/UAB7Tlx3dQuK3RMB8GA1UdIwQYMBaAFAEocF1pxR4OKweK7bmYkefxm00f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEMwQi80NDU5NDQ4QzJD NkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFduRkhnNHJCNHJ0dVppUjVfR2JU UjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FTaHdYV25GSGc0ckI0cnR1WmlSNV9HYlRSOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEMwQi80NDU5NDQ4QzJDNkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFduRkhn NHJCNHJ0dVppUjVfR2JUUjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZiEkIw7ye+t+g/5GixLQxXfs85HuLqOz54mAU5cJlbN1jwt44SqGU cIuWD4WfNWYivtW9XkYYNLs1eGdwakN85j1LbO6AIu1t2EIagjvCk4L2pIqLKyey 4rlBAAd8NU5V6iE39ib23xEqhGkaXPT9B3ZQQdD7Hob3rTEqfpwGe0fy5Y3dliAC fsmq6X8Uk8PBrQWC5e3FKEDFwVELzgRmDXQMY0RPuLyXYJ/pt/IhzzuwzDBKfVD0 SvoDlU4vepI3uvf2Z4NzV392mD+xzumqWZwGVhzutvGakfDzhH7bYcADqah6jKXd qegkSMQ7qhCBMHwSZirouX9u/glWP6RU -----END CERTIFICATE-----Generated at Sat May 4 21:33:01 2024 by rpki-client on console-fra.rpki-client.org