$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.mft File: pVDumUQoL8_DhLCCv_qI-G2wQXk.mft (raw, json) Hash identifier: 0sCcHP4EeoAsgiGL0dNUO8Z5G05VxyCz+Y4lAZe9MMg= Subject key identifier: DC:57:E2:D0:E0:AC:BD:2A:34:1E:CF:91:9A:18:6A:81:D4:28:D8:C8 Authority key identifier: A5:50:EE:99:44:28:2F:CF:C3:84:B0:82:BF:FA:88:F8:6D:B0:41:79 Certificate issuer: /CN=A91CD5B5/serialNumber=A550EE9944282FCFC384B082BFFA88F86DB04179 Certificate serial: AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pVDumUQoL8_DhLCCv_qI-G2wQXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.mft Manifest number: A9 Signing time: Wed 15 May 2024 06:47:17 +0000 Manifest this update: Wed 15 May 2024 06:47:16 +0000 Manifest next update: Wed 22 May 2024 06:47:16 +0000 Files and hashes: 1: pVDumUQoL8_DhLCCv_qI-G2wQXk.crl (hash: cfXzqAbbKxGGJ5WJjFi1C/fARb6HcwDEmfdfvZXEsZs=) 2: 8BB57632478411EEB238B76AC4F9AE02.roa (hash: qggPvkypuqIw6Dl1eHR0xDmgo/NYGNxi/9L+hWuJ0r0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.crl rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pVDumUQoL8_DhLCCv_qI-G2wQXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 06:47:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 174 (0xae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD5B5/serialNumber=A550EE9944282FCFC384B082BFFA88F86DB04179 Validity Not Before: May 15 06:47:16 2024 GMT Not After : May 22 06:47:16 2024 GMT Subject: CN=66445a74-a4d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:7c:76:e8:01:31:1c:9d:1d:90:25:5c:bb:16: e7:a7:fd:c2:01:95:62:f1:be:f6:e2:44:0d:20:aa: fb:d5:97:f5:ed:98:85:3d:a2:bc:0e:4d:1d:66:06: 96:7c:47:0e:7a:f2:27:48:32:17:8d:36:42:f0:90: d0:7f:7d:8f:dc:04:19:0c:6c:87:fa:3e:04:4c:37: 38:17:f9:14:be:b0:ff:0b:c6:50:34:19:db:c9:b0: 7d:33:37:ad:39:a7:94:23:e7:bb:dc:42:0a:28:eb: 40:03:03:31:60:c7:53:9f:e4:b0:b4:65:63:9d:25: 3f:52:eb:0d:af:43:74:24:bc:ea:d6:71:7b:2a:05: 81:bc:1d:c4:42:66:ab:34:88:27:31:fc:b6:aa:f9: 7a:8b:48:e8:18:41:b1:0c:48:81:71:31:70:09:18: fe:2c:7f:17:f4:f2:26:58:1a:41:36:ee:84:51:33: 28:08:5e:2f:f7:a0:fe:b8:22:57:6d:75:99:23:07: fd:74:66:06:a6:7f:0d:1c:46:2f:47:69:cb:ba:51: 3a:ce:90:88:0d:52:12:84:f5:d3:1d:66:83:3d:df: 16:51:ee:12:8a:54:ba:c4:f9:1b:7e:56:f1:68:87: f0:1f:3f:89:d6:95:4c:3c:df:6b:f8:18:31:ce:05: b3:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:57:E2:D0:E0:AC:BD:2A:34:1E:CF:91:9A:18:6A:81:D4:28:D8:C8 X509v3 Authority Key Identifier: keyid:A5:50:EE:99:44:28:2F:CF:C3:84:B0:82:BF:FA:88:F8:6D:B0:41:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pVDumUQoL8_DhLCCv_qI-G2wQXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:24:5d:45:66:54:1f:19:45:94:7b:d4:10:b0:75:34:7d:0e: 5e:4c:d5:41:4b:f7:7e:b4:aa:b8:8c:09:54:a3:9c:53:aa:f1: 3c:b0:5f:62:82:79:4c:e4:75:07:fd:d8:c8:38:13:a8:a9:29: f7:78:2a:e9:f1:2e:94:75:7a:57:56:fc:f2:1a:f7:c5:ca:a4: dc:af:35:50:9c:e2:ee:21:0f:2e:7b:c5:db:f8:9a:19:a2:7a: e2:6b:ac:7a:7b:2a:f6:ca:c1:ab:4c:f1:18:97:97:51:d4:3a: a0:83:1c:63:f6:b6:55:27:95:40:2a:fd:2a:10:f7:9c:3c:ea: e9:96:88:3f:a9:eb:28:4a:20:f6:10:bc:2a:d3:b5:4a:db:67: 17:9f:22:5e:a2:80:bd:39:25:1f:52:c5:dd:31:cd:f3:ac:4e: d4:0a:5d:de:46:3d:8c:7b:68:ef:0d:f3:d9:72:3a:e1:c0:cf: de:e3:d9:ff:18:a9:a0:dd:0b:0b:ec:95:a8:0d:52:4b:86:b6: c7:33:d5:9c:36:7c:96:f0:ef:19:e2:a1:96:6d:a4:7e:de:be: 0a:ae:05:c9:92:ef:9c:eb:22:fb:e5:b2:90:9f:ed:9f:62:8e: f1:aa:c6:6a:1c:95:50:47:a5:10:b4:a4:1a:f6:c4:90:40:63: 36:34:21:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q1QjUxMTAvBgNVBAUTKEE1NTBFRTk5NDQyODJGQ0ZDMzg0QjA4MkJGRkE4OEY4 NkRCMDQxNzkwHhcNMjQwNTE1MDY0NzE2WhcNMjQwNTIyMDY0NzE2WjAYMRYwFAYD VQQDEw02NjQ0NWE3NC1hNGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3x26AExHJ0dkCVcuxbnp/3CAZVi8b724kQNIKr71Zf17ZiFPaK8Dk0dZgaW fEcOevInSDIXjTZC8JDQf32P3AQZDGyH+j4ETDc4F/kUvrD/C8ZQNBnbybB9Mzet OaeUI+e73EIKKOtAAwMxYMdTn+SwtGVjnSU/UusNr0N0JLzq1nF7KgWBvB3EQmar NIgnMfy2qvl6i0joGEGxDEiBcTFwCRj+LH8X9PImWBpBNu6EUTMoCF4v96D+uCJX bXWZIwf9dGYGpn8NHEYvR2nLulE6zpCIDVIShPXTHWaDPd8WUe4SilS6xPkbflbx aIfwHz+J1pVMPN9r+BgxzgWzDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNxX4tDg rL0qNB7PkZoYaoHUKNjIMB8GA1UdIwQYMBaAFKVQ7plEKC/Pw4Swgr/6iPhtsEF5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDVCNS9BNDZCOTkxMjE2 NEQxMUVFOTY4NTg1MzRDNEY5QUUwMi9wVkR1bVVRb0w4X0RoTENDdl9xSS1HMndR WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BWRHVtVVFvTDhfRGhMQ0N2X3FJLUcyd1FYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDVCNS9BNDZCOTkxMjE2NEQxMUVFOTY4NTg1MzRDNEY5QUUwMi9wVkR1bVVRb0w4 X0RoTENDdl9xSS1HMndRWGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdJF1FZlQfGUWUe9QQsHU0fQ5eTNVBS/d+tKq4jAlUo5xTqvE8sF9i gnlM5HUH/djIOBOoqSn3eCrp8S6UdXpXVvzyGvfFyqTcrzVQnOLuIQ8ue8Xb+JoZ onria6x6eyr2ysGrTPEYl5dR1Dqggxxj9rZVJ5VAKv0qEPecPOrplog/qesoSiD2 ELwq07VK22cXnyJeooC9OSUfUsXdMc3zrE7UCl3eRj2Me2jvDfPZcjrhwM/e49n/ GKmg3QsL7JWoDVJLhrbHM9WcNnyW8O8Z4qGWbaR+3r4KrgXJku+c6yL75bKQn+2f Yo7xqsZqHJVQR6UQtKQa9sSQQGM2NCGa -----END CERTIFICATE-----Generated at Wed May 15 09:04:45 2024 by rpki-client on console-ams.rpki-client.org