$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft File: 5dmsjXWxbbnyPICt2LO72OWLaHg.mft (raw, json) Hash identifier: ez26RkDpDriFy2rbcVwC5rCKcSpW59jX/DGAa/CZ1kA= Subject key identifier: 35:0F:14:D3:C5:DF:FB:FD:9C:BE:A9:B3:2D:E4:6C:89:A1:CB:4C:58 Authority key identifier: E5:D9:AC:8D:75:B1:6D:B9:F2:3C:80:AD:D8:B3:BB:D8:E5:8B:68:78 Certificate issuer: /CN=A91D8400/serialNumber=E5D9AC8D75B16DB9F23C80ADD8B3BBD8E58B6878 Certificate serial: 0331 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft Manifest number: 032D Signing time: Sat 27 Apr 2024 02:56:20 +0000 Manifest this update: Sat 27 Apr 2024 02:56:19 +0000 Manifest next update: Sat 04 May 2024 02:56:19 +0000 Files and hashes: 1: 5dmsjXWxbbnyPICt2LO72OWLaHg.crl (hash: gMs7ekuB8H0dTJhKoJyJ6ynIYmTnAbxOb0/88RxIyUw=) 2: 46C1646C781611ECADCDAB0EC4F9AE02.roa (hash: iQ/vrHsjX2+tHZEpTj8rOF7TVYl+rxcjNmL10uTq7dk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.crl rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 02:56:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 817 (0x331) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8400/serialNumber=E5D9AC8D75B16DB9F23C80ADD8B3BBD8E58B6878 Validity Not Before: Apr 27 02:56:19 2024 GMT Not After : May 4 02:56:19 2024 GMT Subject: CN=662c6953-8310 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:51:37:8f:e1:66:67:66:b9:bd:0d:d3:38:14: 8b:58:8b:65:87:68:a7:53:04:53:8e:1d:88:82:f5: 6c:6f:da:21:e2:ae:6c:bd:83:02:fc:2d:fd:d3:a7: 2f:83:bb:ea:8e:75:e8:f6:01:5f:31:84:f3:2b:b8: c8:5c:1c:90:89:c5:dc:d2:e2:5d:b0:65:d7:43:da: eb:fc:12:5d:f5:86:3b:79:54:85:ab:02:4b:0f:e8: 70:d3:97:ed:33:de:b2:54:39:eb:f0:bb:d1:f5:a2: 07:64:55:75:bc:c3:6c:65:9e:d6:6b:43:25:aa:83: 2a:72:2c:ce:bf:f6:b8:c3:7b:57:54:40:45:81:fb: 18:51:67:a2:f2:bf:9d:0e:00:de:40:21:e7:f8:51: 23:04:9e:00:c4:08:44:81:02:34:2c:fb:7e:dd:15: c4:55:0f:b4:ce:74:d3:08:24:0f:fe:c3:1f:6c:4e: 61:a2:3d:3d:2e:b0:49:84:f1:e3:3f:8b:c1:4f:d3: 6d:0f:03:71:e3:3d:63:ef:79:9c:e5:b0:34:7c:1a: 4f:22:e9:80:46:4e:a8:06:68:3a:d4:fa:8f:76:2d: 7b:fe:7f:50:cc:85:0a:eb:c4:07:b9:c9:cd:4c:59: 06:cd:98:b2:e7:1c:0b:ec:a6:00:ef:6c:65:97:b7: cd:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:0F:14:D3:C5:DF:FB:FD:9C:BE:A9:B3:2D:E4:6C:89:A1:CB:4C:58 X509v3 Authority Key Identifier: keyid:E5:D9:AC:8D:75:B1:6D:B9:F2:3C:80:AD:D8:B3:BB:D8:E5:8B:68:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:af:b3:fc:aa:32:7a:3e:14:34:24:bf:1c:be:be:77:d5:3e: eb:22:09:88:bd:62:46:23:1a:1d:7c:a4:c7:0c:80:f7:7d:32: e3:bc:59:2a:5b:c6:09:f7:49:6d:e7:ce:1a:83:35:4f:a5:35: 3f:3a:26:5e:f2:9b:9f:57:cf:7a:f5:82:b4:1a:91:fc:78:b7: fe:b8:64:da:70:c7:94:31:d1:41:9b:6b:0b:b0:a9:5a:02:38: 71:f2:1c:27:c3:36:ea:fb:f7:ab:ef:1f:00:bd:87:1f:1a:c0: 2a:79:9c:1b:f9:dc:2f:11:a2:e3:44:c2:c5:88:53:5f:b0:49: c0:66:93:a1:7b:d5:19:1f:9d:c7:ad:57:20:0e:69:23:28:9c: d6:f7:98:5e:2b:75:e0:5b:4d:7d:83:c9:c3:a7:24:de:01:e4: 15:a3:a5:17:9a:31:cf:52:d5:d8:4b:fb:b7:b0:00:87:c8:12: 3a:9c:84:68:f6:54:0b:a9:5b:83:3a:9b:da:34:fe:4b:7c:38: e3:3f:8b:9e:7e:09:a4:8e:64:0c:5c:bc:d2:6e:44:45:84:ed: 6d:35:4e:d9:1d:5a:86:22:89:d6:ca:c1:11:54:dd:2d:eb:36: 74:35:ce:50:20:3f:64:ba:3e:19:0c:c3:c0:62:d7:78:67:a8: ec:f4:27:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg0MDAxMTAvBgNVBAUTKEU1RDlBQzhENzVCMTZEQjlGMjNDODBBREQ4QjNCQkQ4 RTU4QjY4NzgwHhcNMjQwNDI3MDI1NjE5WhcNMjQwNTA0MDI1NjE5WjAYMRYwFAYD VQQDEw02NjJjNjk1My04MzEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwlE3j+FmZ2a5vQ3TOBSLWItlh2inUwRTjh2IgvVsb9oh4q5svYMC/C3906cv g7vqjnXo9gFfMYTzK7jIXByQicXc0uJdsGXXQ9rr/BJd9YY7eVSFqwJLD+hw05ft M96yVDnr8LvR9aIHZFV1vMNsZZ7Wa0MlqoMqcizOv/a4w3tXVEBFgfsYUWei8r+d DgDeQCHn+FEjBJ4AxAhEgQI0LPt+3RXEVQ+0znTTCCQP/sMfbE5hoj09LrBJhPHj P4vBT9NtDwNx4z1j73mc5bA0fBpPIumARk6oBmg61PqPdi17/n9QzIUK68QHucnN TFkGzZiy5xwL7KYA72xll7fNlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDUPFNPF 3/v9nL6psy3kbImhy0xYMB8GA1UdIwQYMBaAFOXZrI11sW258jyArdizu9jli2h4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODQwMC9GNjgxQkJBNDc4 MTExMUVDQTM5N0QwMzRDNEY5QUUwMi81ZG1zalhXeGJibnlQSUN0MkxPNzJPV0xh SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVkbXNqWFd4YmJueVBJQ3QyTE83Mk9XTGFIZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODQwMC9GNjgxQkJBNDc4MTExMUVDQTM5N0QwMzRDNEY5QUUwMi81ZG1zalhXeGJi bnlQSUN0MkxPNzJPV0xhSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEr7P8qjJ6PhQ0JL8cvr531T7rIgmIvWJGIxodfKTHDID3fTLjvFkq W8YJ90lt584agzVPpTU/OiZe8pufV8969YK0GpH8eLf+uGTacMeUMdFBm2sLsKla Ajhx8hwnwzbq+/er7x8AvYcfGsAqeZwb+dwvEaLjRMLFiFNfsEnAZpOhe9UZH53H rVcgDmkjKJzW95heK3XgW019g8nDpyTeAeQVo6UXmjHPUtXYS/u3sACHyBI6nIRo 9lQLqVuDOpvaNP5LfDjjP4uefgmkjmQMXLzSbkRFhO1tNU7ZHVqGIonWysERVN0t 6zZ0Nc5QID9kuj4ZDMPAYtd4Z6js9CdQ -----END CERTIFICATE-----Generated at Sat Apr 27 10:20:35 2024 by rpki-client on console-ams.rpki-client.org