$ rpki-client -vvf rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft File: g675MVKyUIy8gKNifjon6HvP3so.mft (raw, json) Hash identifier: pVIP1/3GAKu0kgwnsDr9IgwuyUKoZ43xZO4Gcnd26F0= Subject key identifier: D1:E7:7C:25:D8:7F:DF:BD:2D:AC:7B:B4:05:38:74:88:AE:96:62:AA Authority key identifier: 83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA Certificate issuer: /CN=A91D298D/serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA Certificate serial: 072C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft Manifest number: 071F Signing time: Fri 24 May 2024 22:45:23 +0000 Manifest this update: Fri 24 May 2024 22:45:22 +0000 Manifest next update: Fri 31 May 2024 22:45:22 +0000 Files and hashes: 1: g675MVKyUIy8gKNifjon6HvP3so.crl (hash: ZAm7NAJwK7X9JLohXL60VqF0iFVD5G8WlQSVmcMaOXo=) 2: 1229795E652C11EB9B039023C4F9AE02.roa (hash: ALAOZUbLcUOYT5vDZ0TWLEC6V+Neh/Ht+ZoghTc1Yn4=) 3: 51B1F2A665D911EBA6089869C4F9AE02.roa (hash: B8fUt7Pdt2UMWuxfQ9UN+F7Nr16V041q8LjFCjPDInw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 22:14:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1836 (0x72c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D298D/serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA Validity Not Before: May 24 22:45:22 2024 GMT Not After : May 31 22:45:22 2024 GMT Subject: CN=66511883-1807 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:82:cd:f1:cc:0c:60:a1:83:4d:2d:0f:47:e0: dd:79:a3:2b:8b:43:0c:96:92:11:d4:e4:b1:8f:ee: 69:69:72:1d:03:8d:03:6d:28:d7:8a:ca:7f:c7:c5: e7:2c:59:30:a5:92:20:e2:d6:94:9c:97:a3:f9:ec: 3b:c9:02:e1:99:3f:2e:ca:3b:b8:1f:e4:c7:e3:50: c8:65:bd:ae:2a:47:de:4a:93:b7:44:17:c7:97:c5: 0c:a0:07:ad:b4:10:30:18:9d:aa:39:34:04:c6:16: 6d:06:9f:53:43:b5:48:7b:ff:26:d6:7d:c3:95:66: 21:7d:6e:2d:b9:c0:ed:23:b6:27:48:91:26:66:a7: 3b:52:4b:b9:99:27:26:f1:d2:f1:b2:db:44:34:49: 4e:9f:69:1d:27:b5:6e:05:66:89:c7:84:b3:b2:27: 54:b5:1f:3f:45:d4:15:56:88:a7:35:60:c2:cb:36: 0e:e0:b8:f0:b6:e2:92:fa:7c:fa:67:d2:5b:02:90: da:1b:56:b5:80:ad:bc:4b:4b:93:9e:00:c9:e5:0f: be:ca:7d:99:d7:15:16:4e:64:8a:4a:d1:24:d7:21: 2f:a4:64:bd:62:32:61:1e:b6:80:92:c6:a5:e2:ec: bd:7e:c5:d8:c0:df:18:8e:96:06:8d:a0:25:55:8e: 1a:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:E7:7C:25:D8:7F:DF:BD:2D:AC:7B:B4:05:38:74:88:AE:96:62:AA X509v3 Authority Key Identifier: keyid:83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:93:e4:a1:f1:eb:6e:c0:a5:22:3e:d7:0d:88:9a:4b:8e:04: 2d:ec:4b:f6:c5:f4:52:46:99:ac:26:15:2f:66:d9:85:0d:61: a2:83:5e:c4:e0:eb:35:a9:29:57:e8:06:af:c8:ae:94:09:ac: 86:c4:fa:c9:0a:d5:84:36:9c:a9:2c:f0:61:04:6b:20:d8:67: 9a:93:8f:cb:2a:15:78:18:65:e8:c7:69:65:9d:b2:11:dd:af: 0d:08:92:ab:85:96:c0:5f:50:e3:83:a4:77:9b:8e:e7:14:a3: 6f:87:8b:19:c3:68:f5:4b:97:6f:0c:19:a5:e1:c4:24:7f:08: 69:72:bc:76:12:65:f0:4b:ee:1a:ca:2b:02:44:23:be:18:e1: 2f:a1:0c:0d:80:41:e9:f1:fe:59:dd:6f:58:6c:7d:9c:34:2c: 81:1f:3b:b1:1d:e6:c4:61:8c:ae:d6:bf:0f:32:90:9f:db:8a: 18:b8:3b:44:b6:33:30:22:b4:a5:03:13:4d:87:e5:ce:8c:85: fa:93:2e:64:a1:36:20:9c:36:1d:60:db:06:f9:32:12:b5:82: 3b:0e:6c:ec:3c:b5:31:46:de:3d:f1:5d:c2:9d:97:e4:59:1b: 17:74:1a:75:e3:44:f0:1b:0f:86:ff:9b:52:58:c8:9c:64:f0: 84:5b:34:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBywwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI5OEQxMTAvBgNVBAUTKDgzQUVGOTMxNTJCMjUwOENCQzgwQTM2MjdFM0EyN0U4 N0JDRkRFQ0EwHhcNMjQwNTI0MjI0NTIyWhcNMjQwNTMxMjI0NTIyWjAYMRYwFAYD VQQDEw02NjUxMTg4My0xODA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy4LN8cwMYKGDTS0PR+DdeaMri0MMlpIR1OSxj+5paXIdA40DbSjXisp/x8Xn LFkwpZIg4taUnJej+ew7yQLhmT8uyju4H+TH41DIZb2uKkfeSpO3RBfHl8UMoAet tBAwGJ2qOTQExhZtBp9TQ7VIe/8m1n3DlWYhfW4tucDtI7YnSJEmZqc7Uku5mScm 8dLxsttENElOn2kdJ7VuBWaJx4SzsidUtR8/RdQVVoinNWDCyzYO4LjwtuKS+nz6 Z9JbApDaG1a1gK28S0uTngDJ5Q++yn2Z1xUWTmSKStEk1yEvpGS9YjJhHraAksal 4uy9fsXYwN8YjpYGjaAlVY4aywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNHnfCXY f9+9Lax7tAU4dIiulmKqMB8GA1UdIwQYMBaAFIOu+TFSslCMvICjYn46J+h7z97K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjk4RC8yQ0IxMUZDRUYx QTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9nNjc1TVZLeVVJeThnS05pZmpvbjZIdlAz c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c2NzVNVkt5VUl5OGdLTmlmam9uNkh2UDNzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Mjk4RC8yQ0IxMUZDRUYxQTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9nNjc1TVZLeVVJ eThnS05pZmpvbjZIdlAzc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJk+Sh8etuwKUiPtcNiJpLjgQt7Ev2xfRSRpmsJhUvZtmFDWGig17E 4Os1qSlX6AavyK6UCayGxPrJCtWENpypLPBhBGsg2Geak4/LKhV4GGXox2llnbIR 3a8NCJKrhZbAX1Djg6R3m47nFKNvh4sZw2j1S5dvDBml4cQkfwhpcrx2EmXwS+4a yisCRCO+GOEvoQwNgEHp8f5Z3W9YbH2cNCyBHzuxHebEYYyu1r8PMpCf24oYuDtE tjMwIrSlAxNNh+XOjIX6ky5koTYgnDYdYNsG+TIStYI7DmzsPLUxRt498V3CnZfk WRsXdBp140TwGw+G/5tSWMicZPCEWzRo -----END CERTIFICATE-----Generated at Sat May 25 01:00:20 2024 by rpki-client on console-ams.rpki-client.org