$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft File: g86FOnpm6rnh8jNGcR09yX1XWXg.mft (raw, json) Hash identifier: tO3Hp+3ZFuXTvf4CQorVXxlI1HmEhVa9wk9+4SZPy9U= Subject key identifier: 2B:3F:C5:0F:BB:FA:DD:E4:F2:7A:36:08:DA:25:82:81:33:40:88:D4 Authority key identifier: 83:CE:85:3A:7A:66:EA:B9:E1:F2:33:46:71:1D:3D:C9:7D:57:59:78 Certificate issuer: /CN=A91E9BC4/serialNumber=83CE853A7A66EAB9E1F23346711D3DC97D575978 Certificate serial: 0D6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft Manifest number: 0D63 Signing time: Thu 02 May 2024 18:41:06 +0000 Manifest this update: Thu 02 May 2024 18:41:05 +0000 Manifest next update: Thu 09 May 2024 18:41:05 +0000 Files and hashes: 1: g86FOnpm6rnh8jNGcR09yX1XWXg.crl (hash: IlL6pEHmh2DGdA+/kMrALhDTrgL+mX4OoS35J5JwzBc=) 2: 3B495FFCA46211E9B730310FC4F9AE02.roa (hash: 9CcirKqxpdNHPxtXI8/MHTjJYP2t94IiPdFAh8Rx4sE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.crl rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 18:41:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3436 (0xd6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9BC4/serialNumber=83CE853A7A66EAB9E1F23346711D3DC97D575978 Validity Not Before: May 2 18:41:05 2024 GMT Not After : May 9 18:41:05 2024 GMT Subject: CN=6633de42-1e04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:32:1b:36:8e:44:6a:8d:9b:16:f6:93:25:74: 18:50:ac:3f:22:b7:9d:79:69:bc:11:56:44:6e:b7: 7d:81:9f:dd:59:72:60:fe:44:18:bd:11:dd:58:be: 67:63:45:d3:29:db:7f:d8:8c:12:da:ef:c1:45:52: d2:40:a4:ce:6b:ab:f4:cb:f4:d0:9c:11:7f:2b:81: 46:e1:cc:b5:f2:c8:81:73:f0:b9:e3:88:bc:79:3b: c3:c2:a5:74:9a:68:4c:50:d2:54:83:67:39:59:ac: 35:78:2d:97:a5:ff:05:a6:da:c4:55:8a:15:4c:85: 3b:7d:35:40:48:99:6b:f8:22:ec:f0:6a:ea:b9:39: 53:8c:65:05:80:e4:3c:79:57:4e:ad:fb:7c:e9:e9: 25:15:18:f9:3b:5c:78:25:4e:7d:4c:04:11:df:6f: 15:66:e3:21:45:f3:fb:e9:86:77:35:40:cd:ee:2f: 1a:d1:bf:ab:d9:4e:1f:c8:ef:ac:55:ab:31:43:b9: 82:8d:84:0c:98:1c:ea:df:f5:ff:51:f4:11:53:c8: 5a:a5:4f:6b:3a:cd:f0:8e:d6:97:88:9a:34:df:90: 3b:9c:18:11:3a:19:2b:02:b3:a3:96:f7:d5:6e:ae: 8b:6b:15:5d:cf:ec:c7:33:f7:50:18:b1:67:2d:e9: 00:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:3F:C5:0F:BB:FA:DD:E4:F2:7A:36:08:DA:25:82:81:33:40:88:D4 X509v3 Authority Key Identifier: keyid:83:CE:85:3A:7A:66:EA:B9:E1:F2:33:46:71:1D:3D:C9:7D:57:59:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:ed:f0:04:c6:1d:b7:27:08:37:52:f2:e9:6f:c7:34:16:7c: d5:79:df:ae:58:9e:a4:2a:d4:e6:ec:8e:01:29:cf:c0:df:7d: c2:55:ff:a5:bd:99:17:c2:a1:0d:20:ff:07:fe:b2:58:fa:28: 4b:15:95:6e:cc:5d:da:8c:d8:fb:7a:7a:2a:8b:3f:fc:ff:2b: f8:e8:6f:8d:48:5d:a7:23:57:6f:32:23:9f:a7:c2:c6:1e:f8: 71:c6:f6:b3:a4:b9:5a:10:c5:03:c2:eb:89:3f:80:24:3c:1e: 2d:80:65:7c:74:8a:ec:2b:d3:41:ed:85:4b:6e:dd:db:de:40: 74:95:95:e6:6a:6a:1a:1c:25:71:11:06:28:4f:82:29:d0:fa: d5:3a:df:96:5f:1b:3c:f2:32:09:ee:e4:7b:3f:2d:20:cf:26: 1e:93:69:ac:36:50:7f:53:a3:ef:9b:00:9d:79:60:df:6d:b0: 92:61:e5:f6:e0:12:05:ad:c6:5c:f3:64:1e:5e:86:79:e4:17: 4a:c3:7e:7c:67:c3:e5:f4:4c:de:4c:b4:4b:f6:06:dc:43:f9: 92:01:d4:31:23:75:37:78:95:86:87:64:0f:44:6d:b0:c9:a4: 4f:90:53:55:ca:1c:42:75:7a:b9:da:0b:0a:44:41:2a:52:34: 1f:4c:41:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCQzQxMTAvBgNVBAUTKDgzQ0U4NTNBN0E2NkVBQjlFMUYyMzM0NjcxMUQzREM5 N0Q1NzU5NzgwHhcNMjQwNTAyMTg0MTA1WhcNMjQwNTA5MTg0MTA1WjAYMRYwFAYD VQQDEw02NjMzZGU0Mi0xZTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4zIbNo5Eao2bFvaTJXQYUKw/IredeWm8EVZEbrd9gZ/dWXJg/kQYvRHdWL5n Y0XTKdt/2IwS2u/BRVLSQKTOa6v0y/TQnBF/K4FG4cy18siBc/C544i8eTvDwqV0 mmhMUNJUg2c5Waw1eC2Xpf8FptrEVYoVTIU7fTVASJlr+CLs8GrquTlTjGUFgOQ8 eVdOrft86eklFRj5O1x4JU59TAQR328VZuMhRfP76YZ3NUDN7i8a0b+r2U4fyO+s VasxQ7mCjYQMmBzq3/X/UfQRU8hapU9rOs3wjtaXiJo035A7nBgROhkrArOjlvfV bq6LaxVdz+zHM/dQGLFnLekAiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCs/xQ+7 +t3k8no2CNolgoEzQIjUMB8GA1UdIwQYMBaAFIPOhTp6Zuq54fIzRnEdPcl9V1l4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUJDNC85MkU4MjFGMEE0 NjAxMUU5ODEwQTVDMEJDNEY5QUUwMi9nODZGT25wbTZybmg4ak5HY1IwOXlYMVhX WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c4NkZPbnBtNnJuaDhqTkdjUjA5eVgxWFdYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUJDNC85MkU4MjFGMEE0NjAxMUU5ODEwQTVDMEJDNEY5QUUwMi9nODZGT25wbTZy bmg4ak5HY1IwOXlYMVhXWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAa7fAExh23Jwg3UvLpb8c0FnzVed+uWJ6kKtTm7I4BKc/A333CVf+l vZkXwqENIP8H/rJY+ihLFZVuzF3ajNj7enoqiz/8/yv46G+NSF2nI1dvMiOfp8LG HvhxxvazpLlaEMUDwuuJP4AkPB4tgGV8dIrsK9NB7YVLbt3b3kB0lZXmamoaHCVx EQYoT4Ip0PrVOt+WXxs88jIJ7uR7Py0gzyYek2msNlB/U6PvmwCdeWDfbbCSYeX2 4BIFrcZc82QeXoZ55BdKw358Z8Pl9EzeTLRL9gbcQ/mSAdQxI3U3eJWGh2QPRG2w yaRPkFNVyhxCdXq52gsKREEqUjQfTEGe -----END CERTIFICATE-----Generated at Thu May 2 20:05:00 2024 by rpki-client on console-ams.rpki-client.org