$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.mft File: -mfVMKhwCqjrfU9svpZHvlN_X84.mft (raw, json) Hash identifier: Rsn2OOM1mkz25Sn2WlJJHSB4CCnOK7gcnf+S4WLnIOc= Subject key identifier: 20:8C:7A:49:C8:33:0B:20:C9:F7:17:A8:5C:39:2E:B7:DB:99:8B:47 Authority key identifier: FA:67:D5:30:A8:70:0A:A8:EB:7D:4F:6C:BE:96:47:BE:53:7F:5F:CE Certificate issuer: /CN=A91CD056/serialNumber=FA67D530A8700AA8EB7D4F6CBE9647BE537F5FCE Certificate serial: 0261 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-mfVMKhwCqjrfU9svpZHvlN_X84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.mft Manifest number: 025E Signing time: Sun 05 May 2024 03:58:22 +0000 Manifest this update: Sun 05 May 2024 03:58:22 +0000 Manifest next update: Sun 12 May 2024 03:58:22 +0000 Files and hashes: 1: -mfVMKhwCqjrfU9svpZHvlN_X84.crl (hash: Y6Kq3ZINH1Ma6zcWgMHW6DwoyLUA+kAyix1CFr1JIQw=) 2: 3E62F2ECC9EA11ECB6295B34C4F9AE02.roa (hash: ziC+4E1YChOduXVyJ0jy/1ifVphFnzBug4X1uVrRcws=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.crl rsync://rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-mfVMKhwCqjrfU9svpZHvlN_X84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 609 (0x261) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD056/serialNumber=FA67D530A8700AA8EB7D4F6CBE9647BE537F5FCE Validity Not Before: May 5 03:58:22 2024 GMT Not After : May 12 03:58:22 2024 GMT Subject: CN=663703de-42b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a1:78:0d:f7:1a:74:38:51:1f:c9:e2:ec:ec: 49:29:27:31:bf:f0:f5:b7:4c:62:55:c1:c8:96:4d: 18:08:22:19:c1:45:84:b7:5b:c3:91:ae:71:bb:b5: 6c:dc:9b:81:0f:f3:5a:7b:56:3c:a8:df:c3:25:57: a4:c5:b5:ab:d4:bb:68:74:cd:f3:ca:b2:30:a9:14: 59:cd:63:00:64:d6:c9:fe:4a:e1:33:70:6b:5f:4c: 77:bf:68:82:46:63:e5:f5:57:7a:59:f0:12:14:69: 03:a9:8e:da:86:52:cb:0a:5b:df:4f:15:ac:66:4e: 5c:e4:52:f7:19:b5:be:e8:03:81:db:94:54:46:f3: 63:a6:00:41:58:a0:e1:eb:4a:a2:de:c3:37:c0:cc: 90:97:4e:d7:0d:04:7d:4e:3a:d3:60:5e:21:c5:0d: 24:8e:14:92:db:f0:98:31:5d:2d:52:d3:5b:3a:9b: 3a:29:80:ae:51:41:3b:93:0e:90:f1:0d:56:51:15: 5f:e5:9e:f2:fb:fd:30:66:3e:73:40:78:41:81:ee: a7:ab:aa:a7:1f:02:0f:5d:77:6e:de:a7:4d:fe:c6: fc:f7:4f:1e:b4:74:f7:3b:74:cf:db:46:d9:c7:39: 2b:74:0d:b7:70:95:ac:dd:a3:5d:04:e8:d1:60:cb: c8:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:8C:7A:49:C8:33:0B:20:C9:F7:17:A8:5C:39:2E:B7:DB:99:8B:47 X509v3 Authority Key Identifier: keyid:FA:67:D5:30:A8:70:0A:A8:EB:7D:4F:6C:BE:96:47:BE:53:7F:5F:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-mfVMKhwCqjrfU9svpZHvlN_X84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:e7:54:64:9d:d6:ac:45:6d:61:b9:b2:53:7f:33:ad:b8:f5: 56:c3:fc:4a:d6:72:9d:2e:22:90:19:a9:8a:60:55:ff:86:90: 16:50:7c:03:32:9d:d5:3a:67:59:b2:b2:e5:d6:cf:e7:6c:29: 97:b8:c0:a9:e1:e6:57:20:1f:57:43:ed:b7:06:f6:9b:d3:19: 47:f9:7b:de:79:3f:92:6b:8d:7b:09:ff:dc:19:ce:1a:aa:95: 18:53:2a:8c:8f:4c:50:3f:2f:bb:91:f4:06:1b:f7:a4:c3:3b: 24:30:97:98:06:0f:02:bf:42:17:f2:bf:e9:79:06:1c:88:de: f3:59:bd:0d:da:05:d1:85:c3:91:63:23:e8:ec:c1:36:b0:bf: 40:68:56:07:22:50:49:f5:d9:09:47:53:d0:aa:32:c4:95:a0: 9e:2c:36:96:3b:2e:d0:05:ee:a7:5c:5f:71:a2:82:81:56:76: 60:78:78:92:8c:6c:1d:ee:d0:77:e0:0c:64:6b:8c:87:2e:ad: c9:ad:0a:44:f3:92:a4:46:84:fb:93:31:38:65:42:c3:09:f7: a2:a9:bf:8a:b8:22:85:df:5e:d5:ff:c4:8d:78:c1:4e:6b:a1: af:40:64:cc:b3:f3:47:05:d0:70:80:5c:78:cd:36:86:07:0f: 25:72:88:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QwNTYxMTAvBgNVBAUTKEZBNjdENTMwQTg3MDBBQThFQjdENEY2Q0JFOTY0N0JF NTM3RjVGQ0UwHhcNMjQwNTA1MDM1ODIyWhcNMjQwNTEyMDM1ODIyWjAYMRYwFAYD VQQDEw02NjM3MDNkZS00MmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuaF4DfcadDhRH8ni7OxJKScxv/D1t0xiVcHIlk0YCCIZwUWEt1vDka5xu7Vs 3JuBD/Nae1Y8qN/DJVekxbWr1LtodM3zyrIwqRRZzWMAZNbJ/krhM3BrX0x3v2iC RmPl9Vd6WfASFGkDqY7ahlLLClvfTxWsZk5c5FL3GbW+6AOB25RURvNjpgBBWKDh 60qi3sM3wMyQl07XDQR9TjrTYF4hxQ0kjhSS2/CYMV0tUtNbOps6KYCuUUE7kw6Q 8Q1WURVf5Z7y+/0wZj5zQHhBge6nq6qnHwIPXXdu3qdN/sb8908etHT3O3TP20bZ xzkrdA23cJWs3aNdBOjRYMvILwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCCMeknI MwsgyfcXqFw5LrfbmYtHMB8GA1UdIwQYMBaAFPpn1TCocAqo631PbL6WR75Tf1/O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDA1Ni9ENzAyNjRBQUM5 RTYxMUVDQUMyMjhEMzBDNEY5QUUwMi8tbWZWTUtod0NxanJmVTlzdnBaSHZsTl9Y ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1tZlZNS2h3Q3FqcmZVOXN2cFpIdmxOX1g4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDA1Ni9ENzAyNjRBQUM5RTYxMUVDQUMyMjhEMzBDNEY5QUUwMi8tbWZWTUtod0Nx anJmVTlzdnBaSHZsTl9YODQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCG51RkndasRW1hubJTfzOtuPVWw/xK1nKdLiKQGamKYFX/hpAWUHwD Mp3VOmdZsrLl1s/nbCmXuMCp4eZXIB9XQ+23Bvab0xlH+XveeT+Sa417Cf/cGc4a qpUYUyqMj0xQPy+7kfQGG/ekwzskMJeYBg8Cv0IX8r/peQYciN7zWb0N2gXRhcOR YyPo7ME2sL9AaFYHIlBJ9dkJR1PQqjLElaCeLDaWOy7QBe6nXF9xooKBVnZgeHiS jGwd7tB34Axka4yHLq3JrQpE85KkRoT7kzE4ZULDCfeiqb+KuCKF317V/8SNeMFO a6GvQGTMs/NHBdBwgFx4zTaGBw8lcog3 -----END CERTIFICATE-----Generated at Sun May 5 04:40:00 2024 by rpki-client on console-ams.rpki-client.org