$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.mft File: 8XiofFRzBDe6WfqpzhhP-HkP5PE.mft (raw, json) Hash identifier: N3RcjBxl4clFRaP1pXSc0eoy+lM3zLQqnVDuuWQdiTM= Subject key identifier: F7:45:F3:E6:7C:7F:57:08:E5:1A:D5:7C:B4:DA:BD:05:BA:28:21:EE Authority key identifier: F1:78:A8:7C:54:73:04:37:BA:59:FA:A9:CE:18:4F:F8:79:0F:E4:F1 Certificate issuer: /CN=A91D6792/serialNumber=F178A87C54730437BA59FAA9CE184FF8790FE4F1 Certificate serial: 040C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XiofFRzBDe6WfqpzhhP-HkP5PE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.mft Manifest number: 0408 Signing time: Wed 01 May 2024 02:27:32 +0000 Manifest this update: Wed 01 May 2024 02:27:32 +0000 Manifest next update: Wed 08 May 2024 02:27:32 +0000 Files and hashes: 1: 8XiofFRzBDe6WfqpzhhP-HkP5PE.crl (hash: Dy8d0KXf+OXhoEpL1d4bI7sEmBuSpAUspGSvxMsKCmM=) 2: CB89040A73EA11EC8A823312C4F9AE02.roa (hash: VWACMX0qJ91cqDyM+9SmFltgc58PA9sZAuMzvXa9qhg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.crl rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XiofFRzBDe6WfqpzhhP-HkP5PE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 02:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1036 (0x40c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6792/serialNumber=F178A87C54730437BA59FAA9CE184FF8790FE4F1 Validity Not Before: May 1 02:27:32 2024 GMT Not After : May 8 02:27:32 2024 GMT Subject: CN=6631a894-1e0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:da:f5:d1:a7:16:b5:47:73:5f:f8:c0:55:20: 7b:5d:23:62:d0:e6:5d:14:c3:c4:71:47:de:0f:c7: 6c:4e:80:aa:1d:cf:19:ef:21:20:fd:d8:9f:7a:9a: 37:2e:23:e3:45:66:c2:43:52:18:e5:aa:19:3f:bb: 34:10:03:06:cb:10:9c:fa:43:b3:51:e2:ca:6e:cf: d5:f2:c8:76:10:49:93:37:b2:97:31:48:c2:67:df: d0:73:cd:c5:a1:be:7e:2f:81:2d:dd:a0:5d:fc:54: a1:8e:18:84:3a:7e:1c:c7:ec:9f:c4:40:46:ce:39: 95:41:52:5f:40:c4:9b:40:47:4b:4b:5b:b9:bb:56: 39:84:b4:49:05:9e:a2:4e:8f:77:b7:f0:9c:22:e6: f0:8d:f2:de:fc:5e:f8:0c:68:02:3d:ae:65:89:6b: 5f:0e:ea:b1:91:c4:19:76:92:9c:46:c1:7f:3f:b9: 5f:f8:4f:00:d0:47:40:f5:d2:97:06:32:51:f2:bf: 16:9b:85:0a:06:b4:77:3b:e9:c7:bb:03:5f:76:bc: 56:40:fb:28:50:1a:02:ba:d8:57:0e:7c:52:ad:f1: 75:2c:5b:9c:00:3c:09:3c:1d:83:3c:22:57:bd:9c: ea:9f:3e:40:a5:41:d7:a2:62:a9:20:67:ee:13:cf: 64:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:45:F3:E6:7C:7F:57:08:E5:1A:D5:7C:B4:DA:BD:05:BA:28:21:EE X509v3 Authority Key Identifier: keyid:F1:78:A8:7C:54:73:04:37:BA:59:FA:A9:CE:18:4F:F8:79:0F:E4:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XiofFRzBDe6WfqpzhhP-HkP5PE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:01:57:7d:6d:84:3d:f1:e1:c2:b1:60:27:9e:5a:46:ba:b5: ae:ed:34:3e:ef:54:4a:57:11:31:4d:29:fa:1d:f1:a3:6e:83: b0:be:96:9f:a0:e4:70:c5:b1:ed:1e:19:86:4e:8c:13:2c:a5: 41:93:4f:12:eb:b9:91:a1:41:d9:87:08:80:d7:84:80:65:86: 18:c0:f1:02:97:23:9c:02:36:77:71:ee:12:b2:6a:fe:b1:85: e8:2a:00:0f:25:54:3f:68:f2:0b:26:e6:8e:29:e9:d5:e4:e9: 39:5b:45:fb:84:7a:5e:a1:64:a4:58:4a:2a:d5:97:5f:bc:dd: 1e:dc:ba:2a:1e:52:9c:44:cb:49:46:47:46:23:2e:c3:50:1d: 0e:eb:50:1c:3e:ee:1c:ed:24:1e:07:b2:6a:5a:71:41:76:28: 10:35:14:1f:85:23:38:ba:19:fe:2a:1a:1d:19:30:a4:df:fd: de:8c:51:68:25:9c:6f:0d:16:2e:ce:d3:9e:44:fb:47:9f:03: 66:f3:03:cd:dc:07:52:eb:76:61:00:51:bf:93:ac:89:27:82: 3c:74:fe:6a:68:70:cb:9b:55:5f:e3:c8:01:4c:a4:79:cd:14: 8e:c3:87:aa:dc:e8:19:40:62:9f:d3:d4:4d:28:f2:ea:f3:75: 22:ee:de:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY3OTIxMTAvBgNVBAUTKEYxNzhBODdDNTQ3MzA0MzdCQTU5RkFBOUNFMTg0RkY4 NzkwRkU0RjEwHhcNMjQwNTAxMDIyNzMyWhcNMjQwNTA4MDIyNzMyWjAYMRYwFAYD VQQDEw02NjMxYTg5NC0xZTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA49r10acWtUdzX/jAVSB7XSNi0OZdFMPEcUfeD8dsToCqHc8Z7yEg/difepo3 LiPjRWbCQ1IY5aoZP7s0EAMGyxCc+kOzUeLKbs/V8sh2EEmTN7KXMUjCZ9/Qc83F ob5+L4Et3aBd/FShjhiEOn4cx+yfxEBGzjmVQVJfQMSbQEdLS1u5u1Y5hLRJBZ6i To93t/CcIubwjfLe/F74DGgCPa5liWtfDuqxkcQZdpKcRsF/P7lf+E8A0EdA9dKX BjJR8r8Wm4UKBrR3O+nHuwNfdrxWQPsoUBoCuthXDnxSrfF1LFucADwJPB2DPCJX vZzqnz5ApUHXomKpIGfuE89koQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPdF8+Z8 f1cI5RrVfLTavQW6KCHuMB8GA1UdIwQYMBaAFPF4qHxUcwQ3uln6qc4YT/h5D+Tx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjc5Mi9EQkYxQzc3MjIx RUQxMUVDQkU5QzlBMUNDNEY5QUUwMi84WGlvZkZSekJEZTZXZnFwemhoUC1Ia1A1 UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhYaW9mRlJ6QkRlNldmcXB6aGhQLUhrUDVQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Njc5Mi9EQkYxQzc3MjIxRUQxMUVDQkU5QzlBMUNDNEY5QUUwMi84WGlvZkZSekJE ZTZXZnFwemhoUC1Ia1A1UEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQAVd9bYQ98eHCsWAnnlpGurWu7TQ+71RKVxExTSn6HfGjboOwvpaf oORwxbHtHhmGTowTLKVBk08S67mRoUHZhwiA14SAZYYYwPEClyOcAjZ3ce4Ssmr+ sYXoKgAPJVQ/aPILJuaOKenV5Ok5W0X7hHpeoWSkWEoq1ZdfvN0e3LoqHlKcRMtJ RkdGIy7DUB0O61AcPu4c7SQeB7JqWnFBdigQNRQfhSM4uhn+KhodGTCk3/3ejFFo JZxvDRYuztOeRPtHnwNm8wPN3AdS63ZhAFG/k6yJJ4I8dP5qaHDLm1Vf48gBTKR5 zRSOw4eq3OgZQGKf09RNKPLq83Ui7t4/ -----END CERTIFICATE-----Generated at Wed May 1 04:49:29 2024 by rpki-client on console-ams.rpki-client.org