$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.mft File: jnhDSe8t33hXX9VMx47YxFyXbL8.mft (raw, json) Hash identifier: bW3HsTArXox2C7+nHWAmORGZOjrevkG0bkXIW/JlR68= Subject key identifier: 55:3E:E0:7D:12:E4:4B:5A:03:9B:71:2E:06:DC:98:20:14:76:1A:1F Authority key identifier: 8E:78:43:49:EF:2D:DF:78:57:5F:D5:4C:C7:8E:D8:C4:5C:97:6C:BF Certificate issuer: /CN=A91C40D6/serialNumber=8E784349EF2DDF78575FD54CC78ED8C45C976CBF Certificate serial: 0865 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jnhDSe8t33hXX9VMx47YxFyXbL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.mft Manifest number: 0853 Signing time: Sat 04 May 2024 21:52:04 +0000 Manifest this update: Sat 04 May 2024 21:52:04 +0000 Manifest next update: Sat 11 May 2024 21:52:04 +0000 Files and hashes: 1: jnhDSe8t33hXX9VMx47YxFyXbL8.crl (hash: 52VTeX7FTdfDZMRPoxc+S2SmI1HiLaSTYGsrIMOCHrY=) 2: A84D830AA54511EAA942C683C4F9AE02.roa (hash: UigApkOojUwOo8nb0us8ljezcY34l9CMcN9uCrvOT6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.crl rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jnhDSe8t33hXX9VMx47YxFyXbL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2149 (0x865) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D6/serialNumber=8E784349EF2DDF78575FD54CC78ED8C45C976CBF Validity Not Before: May 4 21:52:04 2024 GMT Not After : May 11 21:52:04 2024 GMT Subject: CN=6636ae04-22b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:a4:d6:22:1c:ef:13:e1:60:ac:62:bd:e2:e2: d2:34:5c:8e:83:ca:b1:05:71:e2:a4:af:53:88:fb: 68:1f:94:89:5f:3e:60:fa:72:bf:66:12:53:a0:00: 2c:a6:cd:55:60:54:f8:ae:5c:02:8f:57:c0:3c:7a: 4f:63:27:6e:ed:5f:64:27:5d:d7:98:b7:71:0c:b6: 26:06:6f:3e:4d:da:17:74:73:8e:bf:22:e1:67:4a: db:dd:56:c5:1a:99:e5:f0:2a:c4:c0:4f:84:1c:8e: 71:46:fb:3c:35:a6:77:e5:79:f6:73:25:ae:62:f7: f8:47:4e:a0:90:2e:33:73:b8:bb:76:4d:bb:14:7e: 6e:50:3d:27:0b:03:0b:8e:e1:c5:d0:b7:63:46:32: d0:b6:e6:e7:94:78:c9:fc:97:22:74:56:ef:a5:6f: 82:46:02:94:ec:18:39:08:59:aa:b8:1b:a7:c9:2b: fe:c8:20:3a:d9:de:a7:1c:a6:42:20:a5:e7:78:1c: 35:85:1c:ad:15:b8:73:84:b0:60:f4:d2:4c:99:5c: 31:07:84:9c:60:70:93:3b:ac:fd:0e:db:da:e7:ec: 18:54:88:f2:6c:fc:c8:b1:97:d1:7b:20:14:1f:5f: c3:cd:5b:09:88:48:91:cf:e0:a2:a3:f2:4d:38:05: 54:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:3E:E0:7D:12:E4:4B:5A:03:9B:71:2E:06:DC:98:20:14:76:1A:1F X509v3 Authority Key Identifier: keyid:8E:78:43:49:EF:2D:DF:78:57:5F:D5:4C:C7:8E:D8:C4:5C:97:6C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jnhDSe8t33hXX9VMx47YxFyXbL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:c9:03:80:50:0a:ad:67:a0:c7:18:06:95:06:d5:d9:45:f9: 1a:8f:26:07:63:84:69:7c:bf:44:4f:fa:5f:a7:f2:39:10:3e: 9b:82:0f:50:a2:ec:6f:b3:7c:48:e4:da:3f:be:bd:51:23:f2: 3c:d8:aa:f9:fd:05:61:79:d8:0a:2a:8c:c1:68:ad:56:82:66: 1b:1b:0d:19:70:ae:83:6d:46:18:78:5e:b4:c9:3c:72:1f:67: b4:89:c9:cb:c7:2c:b3:74:8f:f7:8f:7a:a8:09:59:52:77:78: 03:82:d3:eb:2e:04:68:9f:91:27:b7:0a:fd:c5:ef:00:ad:dc: 5c:71:f6:1b:51:73:f2:7d:16:5f:6c:ba:55:d3:57:49:d2:3b: 6d:59:70:a3:10:d6:73:9f:e8:bd:99:9e:d7:fe:7c:10:72:62: 31:42:d3:23:1f:a2:36:b2:58:5b:11:58:19:15:09:b7:08:41: 03:95:ca:e2:8a:1d:6c:70:1d:12:12:ca:ac:1b:be:ad:bd:6f: 66:20:e4:11:79:7a:c1:99:15:d1:67:e2:ca:89:9c:fb:f6:89: 79:a2:01:7b:c7:88:b5:6a:ec:2c:49:b3:bf:81:84:b7:17:c0: af:21:2b:6a:09:56:a3:36:3f:ef:9f:e8:75:85:e5:aa:4b:09: fb:8a:ab:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwRDYxMTAvBgNVBAUTKDhFNzg0MzQ5RUYyRERGNzg1NzVGRDU0Q0M3OEVEOEM0 NUM5NzZDQkYwHhcNMjQwNTA0MjE1MjA0WhcNMjQwNTExMjE1MjA0WjAYMRYwFAYD VQQDEw02NjM2YWUwNC0yMmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4qTWIhzvE+FgrGK94uLSNFyOg8qxBXHipK9TiPtoH5SJXz5g+nK/ZhJToAAs ps1VYFT4rlwCj1fAPHpPYydu7V9kJ13XmLdxDLYmBm8+TdoXdHOOvyLhZ0rb3VbF Gpnl8CrEwE+EHI5xRvs8NaZ35Xn2cyWuYvf4R06gkC4zc7i7dk27FH5uUD0nCwML juHF0LdjRjLQtubnlHjJ/JcidFbvpW+CRgKU7Bg5CFmquBunySv+yCA62d6nHKZC IKXneBw1hRytFbhzhLBg9NJMmVwxB4ScYHCTO6z9Dtva5+wYVIjybPzIsZfReyAU H1/DzVsJiEiRz+Cio/JNOAVUcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFU+4H0S 5EtaA5txLgbcmCAUdhofMB8GA1UdIwQYMBaAFI54Q0nvLd94V1/VTMeO2MRcl2y/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDBENi9DQThFN0Y3RUE1 NDQxMUVBOTREQTM2ODNDNEY5QUUwMi9qbmhEU2U4dDMzaFhYOVZNeDQ3WXhGeVhi TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2puaERTZTh0MzNoWFg5Vk14NDdZeEZ5WGJMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDBENi9DQThFN0Y3RUE1NDQxMUVBOTREQTM2ODNDNEY5QUUwMi9qbmhEU2U4dDMz aFhYOVZNeDQ3WXhGeVhiTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfyQOAUAqtZ6DHGAaVBtXZRfkajyYHY4RpfL9ET/pfp/I5ED6bgg9Q ouxvs3xI5No/vr1RI/I82Kr5/QVhedgKKozBaK1WgmYbGw0ZcK6DbUYYeF60yTxy H2e0icnLxyyzdI/3j3qoCVlSd3gDgtPrLgRon5Entwr9xe8ArdxccfYbUXPyfRZf bLpV01dJ0jttWXCjENZzn+i9mZ7X/nwQcmIxQtMjH6I2slhbEVgZFQm3CEEDlcri ih1scB0SEsqsG76tvW9mIOQReXrBmRXRZ+LKiZz79ol5ogF7x4i1auwsSbO/gYS3 F8CvIStqCVajNj/vn+h1heWqSwn7iqvf -----END CERTIFICATE-----Generated at Sun May 5 00:14:45 2024 by rpki-client on console-ams.rpki-client.org