$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft File: 1sP4E3joVAB4unmUQu7b7HgOD3s.mft (raw, json) Hash identifier: WQYamWC2MLH+mw0Ki93emyFJ4jJoyKLrWi8EtQpxb8I= Subject key identifier: 57:FE:31:7B:75:67:F4:8D:CC:B2:15:64:6D:38:98:7D:84:BE:CE:8F Authority key identifier: D6:C3:F8:13:78:E8:54:00:78:BA:79:94:42:EE:DB:EC:78:0E:0F:7B Certificate issuer: /CN=A91C8DD5/serialNumber=D6C3F81378E8540078BA799442EEDBEC780E0F7B Certificate serial: 1A7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft Manifest number: 1A76 Signing time: Tue 30 Apr 2024 16:49:55 +0000 Manifest this update: Tue 30 Apr 2024 16:49:55 +0000 Manifest next update: Tue 07 May 2024 16:49:55 +0000 Files and hashes: 1: 1sP4E3joVAB4unmUQu7b7HgOD3s.crl (hash: lItVwV36HtKgcR4PREmIETFkfDhqSTiVKUfiL+raBBM=) 2: 020A31F812B011E7A7C42661C4F9AE02.roa (hash: 5XcwjKJE+mVYF/njoHrhsNFKMyLd4+zdVeqcFaCtrnA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.crl rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 16:49:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6782 (0x1a7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8DD5/serialNumber=D6C3F81378E8540078BA799442EEDBEC780E0F7B Validity Not Before: Apr 30 16:49:55 2024 GMT Not After : May 7 16:49:55 2024 GMT Subject: CN=66312133-7253 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7c:3c:ba:f6:45:51:79:fc:e8:74:af:08:ed: 9d:cf:f9:54:b4:26:15:83:3a:82:f2:81:5d:02:e3: 06:62:5d:33:29:85:ff:ce:9f:a0:78:17:0b:91:6f: 38:0e:26:70:b2:7a:a3:f9:bd:91:72:5e:bc:3a:4e: 75:30:9e:32:84:f9:8a:5b:77:c8:9a:65:19:b7:7a: 14:47:a2:34:94:69:79:bc:ac:a1:6e:07:02:d3:6b: d2:bb:4e:86:36:15:df:15:83:69:8b:33:b9:df:a5: 1e:42:91:d6:8a:6f:96:f7:c4:dd:77:bc:cc:0d:f7: c0:8e:ad:2b:ef:5b:59:3f:e3:46:2c:94:74:4f:91: ee:a5:f0:5e:d7:ac:d8:4b:85:3e:33:86:63:4a:f7: e8:30:cc:a6:e1:17:3b:b6:99:ff:d5:a2:fd:c8:e2: c9:8b:b6:e7:08:65:cf:45:02:86:ad:eb:34:35:9b: 7b:55:95:4f:77:9f:05:20:6b:5e:40:6c:b6:18:d9: 56:13:1b:ef:b8:63:72:e4:7d:4c:24:2a:51:b8:22: cb:3e:e6:24:0c:f8:4a:b4:fa:dd:e9:12:60:0a:68: 0b:ed:b5:4a:30:20:5e:9b:1d:1a:18:b9:a2:5a:c4: ca:e9:7c:20:74:12:be:97:ba:18:b7:a5:62:00:d8: 27:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:FE:31:7B:75:67:F4:8D:CC:B2:15:64:6D:38:98:7D:84:BE:CE:8F X509v3 Authority Key Identifier: keyid:D6:C3:F8:13:78:E8:54:00:78:BA:79:94:42:EE:DB:EC:78:0E:0F:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:42:1a:59:ab:b5:71:24:47:b6:74:1c:3f:20:19:e9:37:84: 78:21:6e:c9:ab:8d:62:bd:06:4b:ef:96:a1:06:2f:b1:56:c2: b7:4b:d1:6f:be:a9:19:77:fe:57:67:4a:bd:72:d1:08:6b:f3: 0b:d4:e7:c5:b7:54:a1:fa:d0:27:75:4a:5d:d9:93:da:a1:f2: 7a:cd:79:ee:1e:0a:53:5a:a2:2a:a2:24:d4:da:52:1e:65:e1: f6:d5:33:9c:d7:a0:82:ef:a8:cf:f9:ae:0d:5b:00:f1:14:c5: 6c:6e:1c:ec:2d:d3:3f:0b:ae:7d:2c:5b:87:51:16:c1:2f:01: 17:d4:91:9d:47:b6:51:1b:c6:6e:ef:ac:1b:33:92:8f:a6:4e: e4:3b:ce:18:ea:42:6a:02:ee:e5:35:d4:9e:b9:52:91:c9:f7: c1:bc:d0:0b:94:d4:a6:19:3e:2c:c2:25:d0:a8:30:b9:d5:3f: e4:82:15:25:44:d7:41:4c:e8:ed:0f:58:8f:6b:f6:0a:b3:20: ae:b6:26:8f:ff:0e:7b:12:6d:7c:a2:64:19:6a:d6:14:30:59: 14:2b:43:d9:1d:5f:5f:5d:4c:b0:ac:ef:0f:fb:cc:80:14:be: 24:7b:df:fa:42:73:39:f7:ae:db:88:1a:ac:c4:97:eb:ec:97: 1a:d0:3f:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhERDUxMTAvBgNVBAUTKEQ2QzNGODEzNzhFODU0MDA3OEJBNzk5NDQyRUVEQkVD NzgwRTBGN0IwHhcNMjQwNDMwMTY0OTU1WhcNMjQwNTA3MTY0OTU1WjAYMRYwFAYD VQQDEw02NjMxMjEzMy03MjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvnw8uvZFUXn86HSvCO2dz/lUtCYVgzqC8oFdAuMGYl0zKYX/zp+geBcLkW84 DiZwsnqj+b2Rcl68Ok51MJ4yhPmKW3fImmUZt3oUR6I0lGl5vKyhbgcC02vSu06G NhXfFYNpizO536UeQpHWim+W98Tdd7zMDffAjq0r71tZP+NGLJR0T5HupfBe16zY S4U+M4ZjSvfoMMym4Rc7tpn/1aL9yOLJi7bnCGXPRQKGres0NZt7VZVPd58FIGte QGy2GNlWExvvuGNy5H1MJCpRuCLLPuYkDPhKtPrd6RJgCmgL7bVKMCBemx0aGLmi WsTK6XwgdBK+l7oYt6ViANgn/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFf+MXt1 Z/SNzLIVZG04mH2Evs6PMB8GA1UdIwQYMBaAFNbD+BN46FQAeLp5lELu2+x4Dg97 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOERENS9ENUExQTFDNjEy QTcxMUU3QURCNERFNERDNEY5QUUwMi8xc1A0RTNqb1ZBQjR1bm1VUXU3YjdIZ09E M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFzUDRFM2pvVkFCNHVubVVRdTdiN0hnT0Qzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OERENS9ENUExQTFDNjEyQTcxMUU3QURCNERFNERDNEY5QUUwMi8xc1A0RTNqb1ZB QjR1bm1VUXU3YjdIZ09EM3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeQhpZq7VxJEe2dBw/IBnpN4R4IW7Jq41ivQZL75ahBi+xVsK3S9Fv vqkZd/5XZ0q9ctEIa/ML1OfFt1Sh+tAndUpd2ZPaofJ6zXnuHgpTWqIqoiTU2lIe ZeH21TOc16CC76jP+a4NWwDxFMVsbhzsLdM/C659LFuHURbBLwEX1JGdR7ZRG8Zu 76wbM5KPpk7kO84Y6kJqAu7lNdSeuVKRyffBvNALlNSmGT4swiXQqDC51T/kghUl RNdBTOjtD1iPa/YKsyCutiaP/w57Em18omQZatYUMFkUK0PZHV9fXUywrO8P+8yA FL4ke9/6QnM5967biBqsxJfr7Jca0D8B -----END CERTIFICATE-----Generated at Tue Apr 30 19:22:39 2024 by rpki-client on console-ams.rpki-client.org