$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft File: 4Y-ehXQ6vsrARiuP30On20pij_k.mft (raw, json) Hash identifier: eeE6W9Cu/JwCbzTqp3n8Nk3ZWRiF7XsjuSV9tJ8V0r4= Subject key identifier: 00:16:6D:6C:2A:21:56:4F:C7:8D:39:8E:71:D5:4D:41:24:C9:5A:68 Authority key identifier: E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9 Certificate issuer: /CN=A91C9A8D/serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9 Certificate serial: 0316 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft Manifest number: 0311 Signing time: Sun 05 May 2024 03:16:36 +0000 Manifest this update: Sun 05 May 2024 03:16:36 +0000 Manifest next update: Sun 12 May 2024 03:16:36 +0000 Files and hashes: 1: 4Y-ehXQ6vsrARiuP30On20pij_k.crl (hash: EyHQxM2cbL8GTjPHfzWdr/z127Om/MxYo8I7OggwO5M=) 2: 5ADC253683EC11ECB7EC3B76C4F9AE02.roa (hash: AQ4JvRT0zfz0tOnN9Gn1iJAh7pWTPc79i+GWVTGuFxs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 790 (0x316) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9A8D/serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9 Validity Not Before: May 5 03:16:36 2024 GMT Not After : May 12 03:16:36 2024 GMT Subject: CN=6636fa14-1073 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:cf:a5:32:a8:83:02:17:32:7a:ec:43:7a:ae: 71:4a:41:74:eb:ee:e5:ac:ed:c5:bf:4c:2a:ac:ee: 94:6b:c7:89:0d:23:bb:3a:1b:b8:68:fb:71:36:42: d9:3d:c9:50:2f:8f:64:33:df:b7:ea:d4:fd:bf:c6: 2b:67:f8:ac:a6:87:d6:e3:63:67:2b:24:44:03:81: ae:a1:43:4d:8c:3f:cd:9d:ea:ae:e0:27:d5:54:e9: 65:cd:39:ec:63:37:f0:7c:73:9c:2d:e2:37:70:d4: b9:37:2a:94:88:4d:38:44:8c:44:01:4a:0d:41:e1: dd:ad:20:06:63:8e:88:1d:ff:69:fd:97:00:82:62: 5f:b0:b7:5d:6f:97:32:80:fc:e5:bb:5d:56:47:80: 1b:fc:54:0c:de:ed:3e:be:ab:1d:e1:dd:3f:b1:28: 8e:07:5a:49:ad:5e:20:8d:da:25:ef:e8:8a:2a:85: 1b:57:6f:af:52:17:6a:3e:a5:c0:98:74:9e:0e:e9: 59:75:f6:a1:52:e4:82:0c:24:27:75:90:ee:fc:0e: 58:3b:e0:d0:8f:96:4b:b1:34:56:7c:e2:72:41:2e: d7:f9:4d:05:7d:35:a3:db:ce:e9:ff:ff:85:0c:0b: 35:b4:ae:5a:11:2d:5a:3e:92:e7:d8:45:37:a2:17: d1:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:16:6D:6C:2A:21:56:4F:C7:8D:39:8E:71:D5:4D:41:24:C9:5A:68 X509v3 Authority Key Identifier: keyid:E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:68:b9:97:d2:4b:be:e2:ca:6c:6f:30:66:44:f7:72:f3:e9: 64:bf:e1:9f:0f:70:4c:c0:cb:6c:b1:85:61:40:b1:c1:c2:5b: a6:f1:c3:2b:9f:e7:d7:6d:1b:9b:83:ca:b5:20:77:b9:f6:a7: 52:3c:c0:25:6f:10:92:af:64:2c:b7:ac:b4:89:d4:5f:5f:c0: bc:37:14:52:42:bc:c4:1a:2e:2b:3b:96:8c:00:db:08:6a:2c: 3a:66:53:9a:a2:52:b4:eb:1d:3a:54:97:56:e5:27:bd:ad:59: dc:44:c4:99:ab:a8:a2:bf:56:24:ff:aa:1f:ab:1d:a6:03:84: 6c:e4:ae:50:15:8a:47:b3:54:8c:b8:33:bc:b8:8d:c3:d1:ee: 4a:71:0d:3a:9c:e0:7a:bd:28:65:d6:bf:6a:54:09:7a:f6:7c: 62:f6:34:51:30:34:e4:b4:f5:57:a3:50:17:9a:9a:74:df:c3: 20:c6:96:a7:72:c8:ad:ff:a1:ec:2f:69:c9:44:bd:12:2e:d9: 0c:7d:5c:03:80:77:6b:54:ed:f9:d6:34:3e:57:ea:e6:65:bb: e1:be:7b:80:23:18:7e:ff:d7:1b:ca:d1:dd:23:ce:f7:72:bd: 27:3c:c7:94:f0:8c:ef:ad:3f:c0:37:2c:a0:a9:a1:ff:52:6d: a5:1e:52:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlBOEQxMTAvBgNVBAUTKEUxOEY5RTg1NzQzQUJFQ0FDMDQ2MkI4RkRGNDNBN0RC NEE2MjhGRjkwHhcNMjQwNTA1MDMxNjM2WhcNMjQwNTEyMDMxNjM2WjAYMRYwFAYD VQQDEw02NjM2ZmExNC0xMDczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8s+lMqiDAhcyeuxDeq5xSkF06+7lrO3Fv0wqrO6Ua8eJDSO7Ohu4aPtxNkLZ PclQL49kM9+36tT9v8YrZ/ispofW42NnKyREA4GuoUNNjD/Nnequ4CfVVOllzTns YzfwfHOcLeI3cNS5NyqUiE04RIxEAUoNQeHdrSAGY46IHf9p/ZcAgmJfsLddb5cy gPzlu11WR4Ab/FQM3u0+vqsd4d0/sSiOB1pJrV4gjdol7+iKKoUbV2+vUhdqPqXA mHSeDulZdfahUuSCDCQndZDu/A5YO+DQj5ZLsTRWfOJyQS7X+U0FfTWj287p//+F DAs1tK5aES1aPpLn2EU3ohfRUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAAWbWwq IVZPx405jnHVTUEkyVpoMB8GA1UdIwQYMBaAFOGPnoV0Or7KwEYrj99Dp9tKYo/5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUE4RC8zMkYxRjRDMjgz RTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZzckFSaXVQMzBPbjIwcGlq X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZLWVoWFE2dnNyQVJpdVAzME9uMjBwaWpfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUE4RC8zMkYxRjRDMjgzRTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZz ckFSaXVQMzBPbjIwcGlqX2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBaLmX0ku+4spsbzBmRPdy8+lkv+GfD3BMwMtssYVhQLHBwlum8cMr n+fXbRubg8q1IHe59qdSPMAlbxCSr2Qst6y0idRfX8C8NxRSQrzEGi4rO5aMANsI aiw6ZlOaolK06x06VJdW5Se9rVncRMSZq6iiv1Yk/6ofqx2mA4Rs5K5QFYpHs1SM uDO8uI3D0e5KcQ06nOB6vShl1r9qVAl69nxi9jRRMDTktPVXo1AXmpp038Mgxpan csit/6HsL2nJRL0SLtkMfVwDgHdrVO351jQ+V+rmZbvhvnuAIxh+/9cbytHdI873 cr0nPMeU8IzvrT/ANyygqaH/Um2lHlJZ -----END CERTIFICATE-----Generated at Sun May 5 03:52:20 2024 by rpki-client on console-ams.rpki-client.org