$ rpki-client -vvf rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft File: s8j34GTam1qm6nlgF-xg0okDeCo.mft (raw, json) Hash identifier: bxNEhVlAX7gYWxgzRE725EFJbdM5Fw4KvzgA7WQXXu0= Subject key identifier: F9:10:C3:EB:08:CB:8B:BF:6D:AF:16:25:AC:EF:1F:0D:24:4D:04:8F Authority key identifier: B3:C8:F7:E0:64:DA:9B:5A:A6:EA:79:60:17:EC:60:D2:89:03:78:2A Certificate issuer: /CN=A91D671F/serialNumber=B3C8F7E064DA9B5AA6EA796017EC60D28903782A Certificate serial: 154F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft Manifest number: 153D Signing time: Sat 04 May 2024 17:25:54 +0000 Manifest this update: Sat 04 May 2024 17:25:54 +0000 Manifest next update: Sat 11 May 2024 17:25:54 +0000 Files and hashes: 1: s8j34GTam1qm6nlgF-xg0okDeCo.crl (hash: QR0he4gh7bRe2fOuw3AuA4QkU7R2S3V4Y9STcx9EcOc=) 2: A135DDD4162211EC9B4B6F77C4F9AE02.roa (hash: ABQ35rht8dRSIjduImCnOzg+uGJxj7hI65HorgyDMg4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.crl rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:25:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5455 (0x154f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D671F/serialNumber=B3C8F7E064DA9B5AA6EA796017EC60D28903782A Validity Not Before: May 4 17:25:54 2024 GMT Not After : May 11 17:25:54 2024 GMT Subject: CN=66366fa2-cdd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:31:09:75:50:03:be:7b:89:29:94:39:b7:1f: 52:34:47:b2:89:d0:f4:29:29:92:ae:25:61:bd:02: 97:75:89:04:6f:bd:61:4a:72:19:76:85:11:06:8c: e5:7f:47:29:2a:5b:85:66:93:d0:77:2f:c4:40:2b: 9a:c3:08:6f:ec:c4:f5:03:88:ee:94:0b:81:ea:83: b9:39:42:76:c6:4c:5c:a3:7e:ff:99:1c:6f:10:20: df:05:d6:27:e1:41:de:35:f9:21:69:1b:66:8f:ad: 76:f0:61:01:42:a2:ec:32:f1:da:b6:ed:22:ad:68: 6e:6a:d0:ed:42:81:3b:a2:14:d1:03:e4:9a:1d:87: 1c:08:6d:db:fe:75:7c:4c:b6:a9:b1:6c:02:c3:e6: f2:75:b9:76:45:e8:51:d6:9e:eb:49:89:d0:30:50: 69:76:d0:1a:c9:19:99:b8:0f:58:ad:8d:b0:08:6e: a7:a5:e8:0c:ee:48:50:0f:56:4b:25:95:2c:b0:31: 66:00:f6:24:69:01:aa:23:39:4f:e1:d1:71:27:79: 41:d1:14:d3:e0:89:c9:bb:cf:53:e3:00:10:20:d8: d0:81:eb:6f:85:2a:c5:10:05:9c:63:84:ce:dc:e8: 37:79:90:36:4b:54:b3:19:e3:06:61:cf:43:e2:3d: 46:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:10:C3:EB:08:CB:8B:BF:6D:AF:16:25:AC:EF:1F:0D:24:4D:04:8F X509v3 Authority Key Identifier: keyid:B3:C8:F7:E0:64:DA:9B:5A:A6:EA:79:60:17:EC:60:D2:89:03:78:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:71:fc:1d:f4:a3:22:5a:5e:17:8b:b2:6b:ef:ab:82:92:03: d4:ce:d0:da:85:31:e5:cc:05:67:ce:16:f2:a1:ce:40:4d:60: 56:34:62:16:2e:b3:64:5a:b9:82:92:5f:9f:a2:59:84:21:6c: 13:dd:0c:40:8c:8b:b6:8b:20:2c:2f:ff:78:46:20:0a:0c:25: 3f:b7:76:34:4b:85:9d:ed:8e:c3:a7:91:c0:65:d7:b9:74:07: 63:d9:75:8c:ef:51:b2:ee:58:9d:63:21:a6:31:87:73:61:10: ac:47:e6:b3:13:15:a3:14:a6:39:9f:80:06:36:17:ff:8f:54: a7:9d:4b:6f:60:9b:82:0c:fa:0c:89:58:9c:2f:03:bd:ac:aa: 94:d7:b3:b3:58:b3:8b:69:b3:35:dd:01:ba:e8:ac:9f:81:1c: 8d:14:61:9e:c1:13:89:ad:42:0c:f2:3f:9a:2d:26:8b:60:86: f2:aa:fc:a4:79:b9:93:df:26:1f:b6:14:ad:67:ba:b1:5a:68: 87:1e:1e:12:ee:58:d9:bd:91:e2:f8:46:15:ec:87:76:77:b2: 66:22:3f:18:b3:5c:7e:19:70:78:07:0d:00:8b:05:11:01:ad: af:4d:df:55:00:db:32:e9:2b:65:5d:4c:a5:d8:6c:e1:3a:6a: bb:a7:ea:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY3MUYxMTAvBgNVBAUTKEIzQzhGN0UwNjREQTlCNUFBNkVBNzk2MDE3RUM2MEQy ODkwMzc4MkEwHhcNMjQwNTA0MTcyNTU0WhcNMjQwNTExMTcyNTU0WjAYMRYwFAYD VQQDEw02NjM2NmZhMi1jZGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzEJdVADvnuJKZQ5tx9SNEeyidD0KSmSriVhvQKXdYkEb71hSnIZdoURBozl f0cpKluFZpPQdy/EQCuawwhv7MT1A4julAuB6oO5OUJ2xkxco37/mRxvECDfBdYn 4UHeNfkhaRtmj6128GEBQqLsMvHatu0irWhuatDtQoE7ohTRA+SaHYccCG3b/nV8 TLapsWwCw+bydbl2RehR1p7rSYnQMFBpdtAayRmZuA9YrY2wCG6npegM7khQD1ZL JZUssDFmAPYkaQGqIzlP4dFxJ3lB0RTT4InJu89T4wAQINjQgetvhSrFEAWcY4TO 3Og3eZA2S1SzGeMGYc9D4j1GAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPkQw+sI y4u/ba8WJazvHw0kTQSPMB8GA1UdIwQYMBaAFLPI9+Bk2ptapup5YBfsYNKJA3gq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjcxRi8xRURDMTBCQzE3 MUUxMUU4ODU2QkM0NDNDNEY5QUUwMi9zOGozNEdUYW0xcW02bmxnRi14ZzBva0Rl Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M4ajM0R1RhbTFxbTZubGdGLXhnMG9rRGVDby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjcxRi8xRURDMTBCQzE3MUUxMUU4ODU2QkM0NDNDNEY5QUUwMi9zOGozNEdUYW0x cW02bmxnRi14ZzBva0RlQ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAcfwd9KMiWl4Xi7Jr76uCkgPUztDahTHlzAVnzhbyoc5ATWBWNGIW LrNkWrmCkl+folmEIWwT3QxAjIu2iyAsL/94RiAKDCU/t3Y0S4Wd7Y7Dp5HAZde5 dAdj2XWM71Gy7lidYyGmMYdzYRCsR+azExWjFKY5n4AGNhf/j1SnnUtvYJuCDPoM iVicLwO9rKqU17OzWLOLabM13QG66KyfgRyNFGGewROJrUIM8j+aLSaLYIbyqvyk ebmT3yYfthStZ7qxWmiHHh4S7ljZvZHi+EYV7Id2d7JmIj8Ys1x+GXB4Bw0AiwUR Aa2vTd9VANsy6StlXUyl2GzhOmq7p+qT -----END CERTIFICATE-----Generated at Sat May 4 19:58:44 2024 by rpki-client on console-ams.rpki-client.org