$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB6FB/11CD1B6E68BC11EE920EDB4DC4F9AE02/b5wj5AN3j-Ace8lQiL_R5rMoqps.mft File: b5wj5AN3j-Ace8lQiL_R5rMoqps.mft (raw, json) Hash identifier: ZPRH8V+sG5zaj5Ucv9BxGahc/79c/5XRhaV0aMEj3zI= Subject key identifier: 99:BE:00:89:84:0B:3D:A6:BA:15:20:8A:29:92:AD:C8:AA:8A:66:82 Authority key identifier: 6F:9C:23:E4:03:77:8F:E0:1C:7B:C9:50:88:BF:D1:E6:B3:28:AA:9B Certificate issuer: /CN=A91DB6FB/serialNumber=6F9C23E403778FE01C7BC95088BFD1E6B328AA9B Certificate serial: 75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b5wj5AN3j-Ace8lQiL_R5rMoqps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB6FB/11CD1B6E68BC11EE920EDB4DC4F9AE02/b5wj5AN3j-Ace8lQiL_R5rMoqps.mft Manifest number: 73 Signing time: Fri 17 May 2024 07:31:50 +0000 Manifest this update: Fri 17 May 2024 07:31:49 +0000 Manifest next update: Fri 24 May 2024 07:31:49 +0000 Files and hashes: 1: b5wj5AN3j-Ace8lQiL_R5rMoqps.crl (hash: q+0qMqhUdMkcZFmdD2UDjvPhaHgeenPbAFjCf4tpP1Y=) 2: 512CFEFE68BD11EE87942B4EC4F9AE02.roa (hash: XYr7qobbtwKguAgGaGwCKgaDEaozLZCNulqeuQS9qtA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB6FB/11CD1B6E68BC11EE920EDB4DC4F9AE02/b5wj5AN3j-Ace8lQiL_R5rMoqps.crl rsync://rpki.apnic.net/member_repository/A91DB6FB/11CD1B6E68BC11EE920EDB4DC4F9AE02/b5wj5AN3j-Ace8lQiL_R5rMoqps.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b5wj5AN3j-Ace8lQiL_R5rMoqps.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 07:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB6FB/serialNumber=6F9C23E403778FE01C7BC95088BFD1E6B328AA9B Validity Not Before: May 17 07:31:49 2024 GMT Not After : May 24 07:31:49 2024 GMT Subject: CN=664707e5-41de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:d6:96:bb:51:0c:f0:3f:cf:b8:e3:e1:70:21: 49:17:bd:0a:02:53:7f:9f:5d:fc:d3:02:70:0e:e3: 19:2c:de:e1:8f:e6:6c:0f:28:bb:ab:00:99:f7:3e: 2e:37:b0:b1:f2:9a:8b:d4:d4:a1:a3:49:0f:7d:0c: d1:79:0e:11:7b:cf:a2:a6:80:09:81:c4:7a:52:e6: 64:a7:23:bf:f3:9c:67:2e:cf:41:bb:3f:cb:59:87: cd:e2:40:d8:e1:ec:da:aa:2b:be:c0:5f:b9:f5:ee: cd:76:9e:7d:94:e1:17:f5:d9:28:c5:7f:59:8c:6b: 63:13:8e:2d:18:5f:10:1d:19:6b:f6:fb:60:96:87: 5d:a4:7a:40:7d:4f:48:40:e1:c0:83:06:c0:92:0d: 23:af:43:61:e8:e8:dd:95:fd:04:3a:02:c4:bb:9b: c7:26:30:16:25:ee:6d:f3:a2:90:d9:e7:59:ed:aa: 49:4d:7c:c5:2d:5e:77:a1:e7:d4:00:65:9c:76:4f: 34:b2:05:52:e6:c3:67:c7:e9:04:60:73:08:f4:74: 48:ce:5f:b6:92:b1:bb:27:62:90:2b:5d:ce:25:e5: 24:a2:60:a3:4e:2d:ae:32:1a:61:88:cb:fd:44:28: ab:f0:c5:6c:b5:46:84:34:42:71:82:03:9f:56:ec: 68:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:BE:00:89:84:0B:3D:A6:BA:15:20:8A:29:92:AD:C8:AA:8A:66:82 X509v3 Authority Key Identifier: keyid:6F:9C:23:E4:03:77:8F:E0:1C:7B:C9:50:88:BF:D1:E6:B3:28:AA:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB6FB/11CD1B6E68BC11EE920EDB4DC4F9AE02/b5wj5AN3j-Ace8lQiL_R5rMoqps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b5wj5AN3j-Ace8lQiL_R5rMoqps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB6FB/11CD1B6E68BC11EE920EDB4DC4F9AE02/b5wj5AN3j-Ace8lQiL_R5rMoqps.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:fa:c3:1c:56:39:5a:57:01:4a:8e:43:96:d5:b1:11:65:6c: 65:f9:47:e5:03:4a:37:de:47:e3:a1:9b:ea:dc:28:2c:05:6a: 9f:d3:7d:54:74:64:24:69:55:43:94:04:e8:d8:84:10:af:a5: d7:2b:89:46:0e:47:6c:be:05:8f:1f:52:4d:85:b4:6e:9d:06: 1f:6c:bc:aa:e8:04:b2:ba:b7:48:3c:5e:f3:ef:ef:d0:01:23: 3f:31:f8:84:67:18:10:4e:82:a2:85:de:68:b9:d8:22:a2:c8: 5a:55:55:54:89:c0:9c:96:f2:b8:82:d5:86:30:84:69:04:6f: d3:97:0f:76:88:e2:dd:ec:91:64:fc:64:29:df:8c:d3:c3:8e: fe:59:64:40:5e:f7:f8:3e:b1:3d:34:7e:56:81:1e:da:1e:9a: d3:60:0d:f2:fc:56:78:38:ef:bb:3f:ee:de:53:3c:f4:01:1e: c7:f4:63:b3:40:70:8e:8b:20:f9:8a:d9:02:9d:c3:ec:52:b6: ec:30:ca:36:7b:d9:18:6e:6d:11:c6:eb:72:d5:05:ca:04:e1: 79:2b:1a:88:95:c8:22:56:7f:c1:b7:ca:62:0b:e6:b2:78:30: aa:89:da:95:44:44:7c:fa:4c:68:2d:c4:bf:52:fa:0b:bf:74: 27:6a:93:98 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QjZGQjExMC8GA1UEBRMoNkY5QzIzRTQwMzc3OEZFMDFDN0JDOTUwODhCRkQxRTZC MzI4QUE5QjAeFw0yNDA1MTcwNzMxNDlaFw0yNDA1MjQwNzMxNDlaMBgxFjAUBgNV BAMTDTY2NDcwN2U1LTQxZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDl1pa7UQzwP8+44+FwIUkXvQoCU3+fXfzTAnAO4xks3uGP5mwPKLurAJn3Pi43 sLHymovU1KGjSQ99DNF5DhF7z6KmgAmBxHpS5mSnI7/znGcuz0G7P8tZh83iQNjh 7NqqK77AX7n17s12nn2U4Rf12SjFf1mMa2MTji0YXxAdGWv2+2CWh12kekB9T0hA 4cCDBsCSDSOvQ2Ho6N2V/QQ6AsS7m8cmMBYl7m3zopDZ51ntqklNfMUtXneh59QA ZZx2TzSyBVLmw2fH6QRgcwj0dEjOX7aSsbsnYpArXc4l5SSiYKNOLa4yGmGIy/1E KKvwxWy1RoQ0QnGCA59W7GhXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmb4AiYQL Paa6FSCKKZKtyKqKZoIwHwYDVR0jBBgwFoAUb5wj5AN3j+Ace8lQiL/R5rMoqpsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURCNkZCLzExQ0QxQjZFNjhC QzExRUU5MjBFREI0REM0RjlBRTAyL2I1d2o1QU4zai1BY2U4bFFpTF9SNXJNb3Fw cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYjV3ajVBTjNqLUFjZThsUWlMX1I1ck1vcXBzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURC NkZCLzExQ0QxQjZFNjhCQzExRUU5MjBFREI0REM0RjlBRTAyL2I1d2o1QU4zai1B Y2U4bFFpTF9SNXJNb3Fwcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACT6wxxWOVpXAUqOQ5bVsRFlbGX5R+UDSjfeR+Ohm+rcKCwFap/TfVR0 ZCRpVUOUBOjYhBCvpdcriUYOR2y+BY8fUk2FtG6dBh9svKroBLK6t0g8XvPv79AB Iz8x+IRnGBBOgqKF3mi52CKiyFpVVVSJwJyW8riC1YYwhGkEb9OXD3aI4t3skWT8 ZCnfjNPDjv5ZZEBe9/g+sT00flaBHtoemtNgDfL8Vng477s/7t5TPPQBHsf0Y7NA cI6LIPmK2QKdw+xStuwwyjZ72RhubRHG63LVBcoE4XkrGoiVyCJWf8G3ymIL5rJ4 MKqJ2pVERHz6TGgtxL9S+gu/dCdqk5g= -----END CERTIFICATE-----Generated at Fri May 17 08:52:54 2024 by rpki-client on console-ams.rpki-client.org