$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft File: JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft (raw, json) Hash identifier: zmGoL6Nq0Jk3rzN6VzHMYHD9zGPVHN7j40ZRc5t8wUk= Subject key identifier: 10:DB:DA:5B:2B:AB:E2:E3:F4:64:DC:95:F5:C4:93:E9:5F:36:11:5D Authority key identifier: 25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32 Certificate issuer: /CN=A91CB86D/serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32 Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft Manifest number: 1F Signing time: Fri 17 May 2024 08:44:29 +0000 Manifest this update: Fri 17 May 2024 08:44:29 +0000 Manifest next update: Fri 24 May 2024 08:44:28 +0000 Files and hashes: 1: JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl (hash: S175YZ7mavRaeLHqBLQlujFfGzvih5K5PwwRWhpmpRk=) 2: DC23F5180E1611EF91DF311EC4F9AE02.roa (hash: 5YTtYU8GaHrvE4yyR1EY9hka1AZ6ZuRNXoHQQl1jR3s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 08:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB86D/serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32 Validity Not Before: May 17 08:44:29 2024 GMT Not After : May 24 08:44:28 2024 GMT Subject: CN=664718ed-ffa0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:76:93:00:0b:11:71:a7:7a:18:b6:ef:a4:02: a2:47:b2:8b:62:bf:4e:91:2a:6e:bf:ad:e3:30:95: 16:52:84:70:38:b4:ad:85:be:2c:58:e0:0c:0b:1a: 6d:c1:17:02:14:96:89:44:84:df:99:13:07:54:1a: 31:43:03:63:53:c7:73:45:3b:98:87:f4:f9:d1:2b: 3b:85:f7:f5:b9:22:0b:d1:4e:a4:10:15:3e:9d:26: 5b:c8:8d:9b:76:e9:75:3c:ec:23:eb:1c:e0:bb:b7: 7e:6e:53:7e:a6:b1:76:5a:0d:f9:5d:f5:d6:9f:85: ad:7b:be:f1:66:b2:30:e7:97:35:e2:b0:1f:34:1f: 42:cb:8a:1a:78:56:8f:4c:87:50:bd:92:89:4d:6d: 10:3f:dc:9a:4a:ac:19:9b:85:3c:20:0d:4c:6d:bc: 17:72:c1:e4:bf:37:d6:fe:df:6c:86:f5:22:5c:f9: d5:36:d3:ee:d6:cb:4b:a6:5c:b0:6b:a4:76:fe:6b: 0b:82:18:4c:95:21:79:de:bf:5d:98:34:3c:10:30: 0d:8d:e6:49:49:af:6a:cc:16:2c:66:13:a1:e6:1f: 14:9c:c3:36:02:59:4b:3d:e4:02:a3:43:43:1f:8c: 84:9e:72:1b:ec:53:bc:e6:83:a9:55:d2:09:38:33: eb:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:DB:DA:5B:2B:AB:E2:E3:F4:64:DC:95:F5:C4:93:E9:5F:36:11:5D X509v3 Authority Key Identifier: keyid:25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:ae:c7:5d:bc:d2:dc:e6:09:88:ea:8e:c5:37:25:9d:24:29: d6:e3:4b:de:db:47:8f:c4:d6:11:89:3a:da:80:b1:63:8f:d5: 1c:4c:06:c0:74:1d:d4:bd:e1:05:fc:84:63:ee:40:30:64:78: ae:42:2c:f3:11:1b:2d:c9:15:c7:86:93:cc:17:50:49:12:d9: 59:a2:05:37:ba:d6:36:b6:96:8b:1a:de:0c:2a:a8:18:48:99: cb:03:92:22:a2:b8:19:82:69:7a:a1:1f:29:0d:68:1d:84:38: 7b:ea:8b:a4:f5:9a:5f:89:64:6e:12:09:77:0c:a0:71:f8:e2: fa:dc:21:fb:f4:24:27:f4:1c:47:2d:1d:ae:0d:ac:d3:61:dd: 2a:bd:c4:a8:b4:a7:76:5a:15:ae:5c:7b:f1:7b:9b:88:fb:8f: c7:b1:13:05:22:07:38:41:d0:8b:bb:03:6d:1b:c1:ea:04:54: 7d:0c:00:3a:cd:ba:88:a1:08:92:ef:6e:60:4e:5b:82:f2:5b: 11:91:cd:49:55:55:97:68:b6:e9:eb:61:96:d9:1d:f4:10:f0: be:f3:8f:b4:42:e5:a7:4f:2b:f5:ac:d9:88:59:c4:c8:65:1b: f6:a0:5b:ff:b2:12:75:e2:e4:71:27:cf:85:1a:a6:90:09:af: 92:00:d8:ae -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD Qjg2RDExMC8GA1UEBRMoMjU2QjVEMTc5MEQyNEM0RDZDOTcyMDY0RTkxQzZBRjAw QkQ2OEUzMjAeFw0yNDA1MTcwODQ0MjlaFw0yNDA1MjQwODQ0MjhaMBgxFjAUBgNV BAMTDTY2NDcxOGVkLWZmYTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpdpMACxFxp3oYtu+kAqJHsotiv06RKm6/reMwlRZShHA4tK2FvixY4AwLGm3B FwIUlolEhN+ZEwdUGjFDA2NTx3NFO5iH9PnRKzuF9/W5IgvRTqQQFT6dJlvIjZt2 6XU87CPrHOC7t35uU36msXZaDfld9dafha17vvFmsjDnlzXisB80H0LLihp4Vo9M h1C9kolNbRA/3JpKrBmbhTwgDUxtvBdyweS/N9b+32yG9SJc+dU20+7Wy0umXLBr pHb+awuCGEyVIXnev12YNDwQMA2N5klJr2rMFixmE6HmHxScwzYCWUs95AKjQ0Mf jISechvsU7zmg6lV0gk4M+s5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUENvaWyur 4uP0ZNyV9cST6V82EV0wHwYDVR0jBBgwFoAUJWtdF5DSTE1slyBk6Rxq8AvWjjIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNCODZELzZGMDU4MjBFRTUz RTExRUVBMzhGMDg3N0M0RjlBRTAyL0pXdGRGNURTVEUxc2x5Qms2UnhxOEF2V2pq SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSld0ZEY1RFNURTFzbHlCazZSeHE4QXZXampJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNC ODZELzZGMDU4MjBFRTUzRTExRUVBMzhGMDg3N0M0RjlBRTAyL0pXdGRGNURTVEUx c2x5Qms2UnhxOEF2V2pqSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH+ux1280tzmCYjqjsU3JZ0kKdbjS97bR4/E1hGJOtqAsWOP1RxMBsB0 HdS94QX8hGPuQDBkeK5CLPMRGy3JFceGk8wXUEkS2VmiBTe61ja2losa3gwqqBhI mcsDkiKiuBmCaXqhHykNaB2EOHvqi6T1ml+JZG4SCXcMoHH44vrcIfv0JCf0HEct Ha4NrNNh3Sq9xKi0p3ZaFa5ce/F7m4j7j8exEwUiBzhB0Iu7A20bweoEVH0MADrN uoihCJLvbmBOW4LyWxGRzUlVVZdotunrYZbZHfQQ8L7zj7RC5adPK/Ws2YhZxMhl G/agW/+yEnXi5HEnz4UappAJr5IA2K4= -----END CERTIFICATE-----Generated at Fri May 17 10:59:14 2024 by rpki-client on console-ams.rpki-client.org