$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft File: 1Sj61Lh2q_twrziSIg8pPheRtrw.mft (raw, json) Hash identifier: Gsvpzfy8hqaeB2z1UX7+BW3gUcUEvzUQutox6n+h9ik= Subject key identifier: 46:1F:51:88:8C:EE:5D:23:40:4E:63:3F:14:83:AB:E1:44:A2:E3:C9 Authority key identifier: D5:28:FA:D4:B8:76:AB:FB:70:AF:38:92:22:0F:29:3E:17:91:B6:BC Certificate issuer: /CN=A91CE6C5/serialNumber=D528FAD4B876ABFB70AF3892220F293E1791B6BC Certificate serial: 026F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft Manifest number: 0267 Signing time: Fri 03 May 2024 03:56:09 +0000 Manifest this update: Fri 03 May 2024 03:56:08 +0000 Manifest next update: Fri 10 May 2024 03:56:08 +0000 Files and hashes: 1: 1Sj61Lh2q_twrziSIg8pPheRtrw.crl (hash: 6jRF2ZlwdyFRvI1c9W6vnCHD8t2JTlHXetCozypcQxE=) 2: A0841A68D0D511EC81001E73C4F9AE02.roa (hash: HT+iJuMBxdgYK5g+jEQD2a03TeM+F29o6gZsZ/BsbjI=) 3: F0E906D6046C11EFBDB55E14C4F9AE02.roa (hash: +EvIAKSVcLLKRH7JM7c6If3efy9mrsYAMLXqlQEuIUY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.crl rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 623 (0x26f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6C5/serialNumber=D528FAD4B876ABFB70AF3892220F293E1791B6BC Validity Not Before: May 3 03:56:08 2024 GMT Not After : May 10 03:56:08 2024 GMT Subject: CN=66346059-bf60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b6:22:06:fe:fe:12:15:1b:bf:d6:ee:45:7c: 83:57:d0:da:39:e2:d4:71:91:22:86:e4:8f:d8:55: 5a:49:39:cd:07:bf:41:44:1d:1d:ab:ed:ac:2e:e5: f0:7c:f3:6e:c5:f3:89:54:a1:38:21:30:c0:1a:b4: 3f:b7:98:a8:9c:c9:96:44:f5:ef:7d:f4:70:be:2e: 17:48:d9:1b:5d:4f:91:65:c9:ea:e8:e0:67:2a:8d: a1:b1:3b:c4:be:f8:1c:ac:b9:b9:52:5a:29:46:e6: 22:81:87:62:02:1c:3d:9f:59:3d:3f:52:a4:78:bf: 7c:57:fb:c3:51:97:73:85:df:43:05:6d:44:02:dd: 2b:f3:68:98:41:fb:b7:41:34:dd:c6:45:69:1f:80: ac:b8:66:1b:81:ab:31:d8:5d:75:e0:26:30:93:9b: 58:f1:46:5f:fa:ea:fa:e3:a5:39:80:27:3a:1d:f6: d9:a3:bd:ac:7c:d4:1c:c9:90:15:c7:d9:d9:88:87: 33:20:13:04:b4:d0:e6:69:7b:4e:3f:84:69:ef:45: 54:dd:88:a7:7b:89:5b:9a:78:90:7f:ee:d2:41:b1: 8b:d0:43:75:3a:04:d6:79:a2:2d:63:82:0b:5c:6c: b9:91:a3:57:4c:65:ea:93:34:55:43:9b:79:d0:56: 32:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:1F:51:88:8C:EE:5D:23:40:4E:63:3F:14:83:AB:E1:44:A2:E3:C9 X509v3 Authority Key Identifier: keyid:D5:28:FA:D4:B8:76:AB:FB:70:AF:38:92:22:0F:29:3E:17:91:B6:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:13:c9:a8:e7:68:be:94:83:e3:0c:f3:29:04:0b:86:31:3b: bd:c8:ab:09:66:9d:51:8e:5d:af:87:e3:ea:6d:ac:87:8a:2a: 3c:1a:3c:17:d1:4e:17:b1:4a:1b:dd:d7:c5:fb:a1:e8:96:42: 2d:4e:2f:19:b1:f4:c6:db:ea:ee:f7:99:e9:12:3b:53:ae:19: 23:bc:dc:2d:ca:4c:d9:4b:ef:b9:27:6a:7f:1a:6e:c2:15:98: 3e:bb:0e:c5:0b:4f:54:8d:c0:d9:74:59:be:3d:cd:20:1e:46: f2:a9:8f:fb:32:9a:3c:e2:84:74:61:8d:ed:ce:8b:33:88:63: 95:62:16:ab:9e:3d:72:a5:29:01:07:3b:b1:d4:60:85:75:fa: 5f:26:39:60:34:de:3e:66:ec:0f:25:f3:f7:5c:85:f9:07:db: a6:d3:d5:0f:24:a3:13:9f:4b:77:cb:2c:64:07:68:95:c0:21: b3:e1:45:ef:19:f4:39:24:f1:8f:cc:42:84:4e:ee:64:79:e5: 57:54:c5:70:2f:b8:bd:91:01:0d:76:fb:c8:95:81:27:1a:22: f5:0a:e7:f5:09:20:5c:12:77:dd:3c:c0:be:9f:33:93:45:9e: 56:a9:22:ae:1c:20:34:8c:af:38:14:8e:75:12:ec:b3:07:e9: 3e:bc:a8:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2QzUxMTAvBgNVBAUTKEQ1MjhGQUQ0Qjg3NkFCRkI3MEFGMzg5MjIyMEYyOTNF MTc5MUI2QkMwHhcNMjQwNTAzMDM1NjA4WhcNMjQwNTEwMDM1NjA4WjAYMRYwFAYD VQQDEw02NjM0NjA1OS1iZjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo7YiBv7+EhUbv9buRXyDV9DaOeLUcZEihuSP2FVaSTnNB79BRB0dq+2sLuXw fPNuxfOJVKE4ITDAGrQ/t5ionMmWRPXvffRwvi4XSNkbXU+RZcnq6OBnKo2hsTvE vvgcrLm5UlopRuYigYdiAhw9n1k9P1KkeL98V/vDUZdzhd9DBW1EAt0r82iYQfu3 QTTdxkVpH4CsuGYbgasx2F114CYwk5tY8UZf+ur646U5gCc6HfbZo72sfNQcyZAV x9nZiIczIBMEtNDmaXtOP4Rp70VU3Yine4lbmniQf+7SQbGL0EN1OgTWeaItY4IL XGy5kaNXTGXqkzRVQ5t50FYyLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEYfUYiM 7l0jQE5jPxSDq+FEouPJMB8GA1UdIwQYMBaAFNUo+tS4dqv7cK84kiIPKT4Xkba8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZDNS9FODI2NjAyMEM2 QzAxMUVDOEFCNzU1M0ZDNEY5QUUwMi8xU2o2MUxoMnFfdHdyemlTSWc4cFBoZVJ0 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFTajYxTGgycV90d3J6aVNJZzhwUGhlUnRydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTZDNS9FODI2NjAyMEM2QzAxMUVDOEFCNzU1M0ZDNEY5QUUwMi8xU2o2MUxoMnFf dHdyemlTSWc4cFBoZVJ0cncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApE8mo52i+lIPjDPMpBAuGMTu9yKsJZp1Rjl2vh+PqbayHiio8GjwX 0U4XsUob3dfF+6HolkItTi8ZsfTG2+ru95npEjtTrhkjvNwtykzZS++5J2p/Gm7C FZg+uw7FC09UjcDZdFm+Pc0gHkbyqY/7Mpo84oR0YY3tzosziGOVYharnj1ypSkB Bzux1GCFdfpfJjlgNN4+ZuwPJfP3XIX5B9um09UPJKMTn0t3yyxkB2iVwCGz4UXv GfQ5JPGPzEKETu5keeVXVMVwL7i9kQENdvvIlYEnGiL1Cuf1CSBcEnfdPMC+nzOT RZ5WqSKuHCA0jK84FI51EuyzB+k+vKjr -----END CERTIFICATE-----Generated at Fri May 3 04:45:27 2024 by rpki-client on console-fra.rpki-client.org