$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0E5D/0D0FFBDC91D711EB86FA3426C4F9AE02/Ar6z5iH6umNCHtP4hPonC80zHXc.mft File: Ar6z5iH6umNCHtP4hPonC80zHXc.mft (raw, json) Hash identifier: cdVlg5C9iatytwr61Q8nUcF4CL6B/oYvqnkSDuPeYK0= Subject key identifier: 34:FF:63:01:AB:3C:A8:B2:55:9F:B8:37:81:9B:45:31:A1:0F:1C:A2 Authority key identifier: 02:BE:B3:E6:21:FA:BA:63:42:1E:D3:F8:84:FA:27:0B:CD:33:1D:77 Certificate issuer: /CN=A91C0E5D/serialNumber=02BEB3E621FABA63421ED3F884FA270BCD331D77 Certificate serial: 057E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ar6z5iH6umNCHtP4hPonC80zHXc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0E5D/0D0FFBDC91D711EB86FA3426C4F9AE02/Ar6z5iH6umNCHtP4hPonC80zHXc.mft Manifest number: 0576 Signing time: Fri 03 May 2024 00:47:44 +0000 Manifest this update: Fri 03 May 2024 00:47:43 +0000 Manifest next update: Fri 10 May 2024 00:47:43 +0000 Files and hashes: 1: Ar6z5iH6umNCHtP4hPonC80zHXc.crl (hash: 8m7zTKE6ZQVCKEdh9NcQ+gXfWNstwvzmVAKnQPTBp+k=) 2: C34EB9A6C28311EB9370913FC4F9AE02.roa (hash: CcR+BPyMg8p8TGglsn98F/lsSDUHu+7BXipofaKgGTU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0E5D/0D0FFBDC91D711EB86FA3426C4F9AE02/Ar6z5iH6umNCHtP4hPonC80zHXc.crl rsync://rpki.apnic.net/member_repository/A91C0E5D/0D0FFBDC91D711EB86FA3426C4F9AE02/Ar6z5iH6umNCHtP4hPonC80zHXc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ar6z5iH6umNCHtP4hPonC80zHXc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 00:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1406 (0x57e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0E5D/serialNumber=02BEB3E621FABA63421ED3F884FA270BCD331D77 Validity Not Before: May 3 00:47:43 2024 GMT Not After : May 10 00:47:43 2024 GMT Subject: CN=6634342f-a423 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:76:d8:d6:34:56:75:22:98:69:06:e3:05:d0: f5:7d:04:e4:a2:9f:86:5c:f3:47:39:ed:f9:c0:2f: a7:e8:61:d2:73:18:e8:f9:73:b0:09:b0:61:0b:dc: b9:24:7b:5b:ae:f1:29:86:5f:80:0b:1c:f6:ca:8a: d5:aa:0a:2b:03:49:52:19:8b:f1:db:56:23:ca:96: 18:f8:62:34:a6:b3:34:cc:da:e7:04:5c:0a:24:af: c3:fa:aa:31:e5:f9:07:12:f3:8a:6b:a7:ec:52:66: 56:c9:98:07:c7:67:34:ea:3b:f4:09:7e:72:9e:5c: bf:da:b3:d4:81:ea:a2:11:69:52:b2:2c:0a:86:3f: 7a:2e:91:b6:b8:d2:3e:08:d3:5d:3d:de:27:cb:3a: 16:eb:c7:6c:b3:d4:9d:58:4e:1b:dd:4a:00:8a:a5: 83:49:91:35:11:e1:ed:23:9c:9a:0f:6c:b9:24:14: f1:21:b0:ca:4d:17:12:4c:55:33:d3:0e:b7:9e:46: 68:bb:69:1d:46:0b:d3:45:f4:a2:60:08:75:02:82: 6c:3c:f6:1e:3a:4f:49:71:32:61:1d:ba:e9:a0:c2: ee:0e:94:4c:5e:83:f6:02:dc:d0:d0:07:17:8d:7c: fe:80:6c:41:bb:50:70:53:84:a1:23:86:f9:ff:fd: 16:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:FF:63:01:AB:3C:A8:B2:55:9F:B8:37:81:9B:45:31:A1:0F:1C:A2 X509v3 Authority Key Identifier: keyid:02:BE:B3:E6:21:FA:BA:63:42:1E:D3:F8:84:FA:27:0B:CD:33:1D:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0E5D/0D0FFBDC91D711EB86FA3426C4F9AE02/Ar6z5iH6umNCHtP4hPonC80zHXc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ar6z5iH6umNCHtP4hPonC80zHXc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0E5D/0D0FFBDC91D711EB86FA3426C4F9AE02/Ar6z5iH6umNCHtP4hPonC80zHXc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:a3:59:70:48:5f:83:58:ee:c3:39:1d:a6:7b:5e:b3:a0:1a: 91:f4:2e:66:92:b7:f8:e3:0c:09:51:46:63:77:f2:48:b2:a1: ea:a7:75:fc:a8:02:48:28:34:38:da:dd:d6:1f:af:ce:f3:71: 78:26:60:07:b3:be:f3:0a:02:d1:fc:bc:a7:c7:60:6a:fe:25: 5c:de:2c:d3:0a:12:04:79:d9:3d:d6:67:5e:99:84:1e:82:6d: 1f:98:58:06:67:f7:a5:22:89:25:b1:28:e0:13:bd:b0:1e:8e: e7:0c:d7:dc:b3:51:9e:8f:ea:a4:6a:d6:b0:0b:ee:11:28:07: 37:2e:58:c0:04:38:58:3d:bc:13:63:54:af:1b:89:c3:45:ce: 46:c7:a8:f8:87:a3:57:1b:c4:a4:e7:b9:11:ac:6c:87:b1:ed: 46:0f:d8:34:4c:ee:92:20:ed:b6:54:1c:af:90:07:78:d1:db: 07:9e:4f:59:43:81:65:8d:61:90:c3:1f:ea:08:ac:59:c5:b3: 5d:94:d1:54:ea:ec:f2:e2:8f:c7:05:f4:a7:40:f1:ac:28:4e: 16:d1:a7:5a:7c:83:d1:1d:8d:71:63:9a:38:f1:fa:fb:86:6d: b3:17:10:c1:ae:cd:d9:0b:ce:c7:9e:b9:40:d5:f1:fc:b5:1c: 2c:e4:ee:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBFNUQxMTAvBgNVBAUTKDAyQkVCM0U2MjFGQUJBNjM0MjFFRDNGODg0RkEyNzBC Q0QzMzFENzcwHhcNMjQwNTAzMDA0NzQzWhcNMjQwNTEwMDA0NzQzWjAYMRYwFAYD VQQDEw02NjM0MzQyZi1hNDIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1nbY1jRWdSKYaQbjBdD1fQTkop+GXPNHOe35wC+n6GHScxjo+XOwCbBhC9y5 JHtbrvEphl+ACxz2yorVqgorA0lSGYvx21YjypYY+GI0prM0zNrnBFwKJK/D+qox 5fkHEvOKa6fsUmZWyZgHx2c06jv0CX5ynly/2rPUgeqiEWlSsiwKhj96LpG2uNI+ CNNdPd4nyzoW68dss9SdWE4b3UoAiqWDSZE1EeHtI5yaD2y5JBTxIbDKTRcSTFUz 0w63nkZou2kdRgvTRfSiYAh1AoJsPPYeOk9JcTJhHbrpoMLuDpRMXoP2AtzQ0AcX jXz+gGxBu1BwU4ShI4b5//0WQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDT/YwGr PKiyVZ+4N4GbRTGhDxyiMB8GA1UdIwQYMBaAFAK+s+Yh+rpjQh7T+IT6JwvNMx13 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEU1RC8wRDBGRkJEQzkx RDcxMUVCODZGQTM0MjZDNEY5QUUwMi9BcjZ6NWlINnVtTkNIdFA0aFBvbkM4MHpI WGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FyNno1aUg2dW1OQ0h0UDRoUG9uQzgwekhYYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEU1RC8wRDBGRkJEQzkxRDcxMUVCODZGQTM0MjZDNEY5QUUwMi9BcjZ6NWlINnVt TkNIdFA0aFBvbkM4MHpIWGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHo1lwSF+DWO7DOR2me16zoBqR9C5mkrf44wwJUUZjd/JIsqHqp3X8 qAJIKDQ42t3WH6/O83F4JmAHs77zCgLR/Lynx2Bq/iVc3izTChIEedk91mdemYQe gm0fmFgGZ/elIoklsSjgE72wHo7nDNfcs1Gej+qkatawC+4RKAc3LljABDhYPbwT Y1SvG4nDRc5Gx6j4h6NXG8Sk57kRrGyHse1GD9g0TO6SIO22VByvkAd40dsHnk9Z Q4FljWGQwx/qCKxZxbNdlNFU6uzy4o/HBfSnQPGsKE4W0adafIPRHY1xY5o48fr7 hm2zFxDBrs3ZC87HnrlA1fH8tRws5O4r -----END CERTIFICATE-----Generated at Fri May 3 03:10:56 2024 by rpki-client on console-ams.rpki-client.org