$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft File: 8ghPeg88CpH4Jf79nxA18zVBWEw.mft (raw, json) Hash identifier: u9uQvJ07sXVw0CJ+HAFoiWt84AM/PTQvBPXN6cyClIs= Subject key identifier: 1A:89:A9:C3:9C:DE:B2:9E:2A:E3:6D:85:33:32:94:ED:90:AE:EB:9C Authority key identifier: F2:08:4F:7A:0F:3C:0A:91:F8:25:FE:FD:9F:10:35:F3:35:41:58:4C Certificate issuer: /CN=A91EAEAF/serialNumber=F2084F7A0F3C0A91F825FEFD9F1035F33541584C Certificate serial: 0151 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft Manifest number: 014F Signing time: Sun 05 May 2024 05:01:27 +0000 Manifest this update: Sun 05 May 2024 05:01:26 +0000 Manifest next update: Sun 12 May 2024 05:01:26 +0000 Files and hashes: 1: 8ghPeg88CpH4Jf79nxA18zVBWEw.crl (hash: ge4sGDCKd3upSWnji7jzCX+48P9cNbaUJTYZGE/TvjM=) 2: EF0EFF5833F511EDA5C4F37DC4F9AE02.roa (hash: bvSpv9ufPXfeUHUBo907zxCzqsiJ9vO7QbKLUhCyJr0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.crl rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 337 (0x151) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAEAF/serialNumber=F2084F7A0F3C0A91F825FEFD9F1035F33541584C Validity Not Before: May 5 05:01:26 2024 GMT Not After : May 12 05:01:26 2024 GMT Subject: CN=663712a6-082a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:17:1e:8f:d4:3e:61:b7:42:e3:ee:47:15:87: 1a:5c:4b:b7:54:d0:30:6b:3c:d4:75:f3:36:70:1b: 03:13:96:b2:9a:53:55:23:08:79:5c:9c:c5:35:b1: ed:93:8f:94:fa:3d:c8:b7:e0:07:17:06:2d:5c:39: c5:b7:c9:dc:d7:6b:7d:6e:07:eb:36:e2:6b:16:c4: 9d:82:67:a1:73:e3:76:83:7b:f7:14:37:76:67:07: 4e:48:5f:fb:2b:78:be:48:3b:40:de:17:7f:40:1f: 9f:00:e5:6f:b4:ce:ce:9a:29:8f:ad:61:76:fb:0d: 0b:1f:63:e7:e7:19:4d:f9:33:7c:ca:97:95:51:a1: 25:16:dd:a2:e0:9e:ae:f7:06:e5:6c:69:79:b0:64: 57:cd:20:22:82:a7:84:7f:89:5f:9f:07:37:92:25: 21:b4:b8:19:0e:cc:df:23:3e:e9:44:eb:98:6a:0d: 9f:f8:ee:a7:1e:96:7f:2d:5b:4e:f8:93:29:b2:9e: 70:c1:f7:c4:6a:ee:7e:f7:8b:b9:6d:b5:2e:1c:0f: b8:98:d4:d4:19:7e:8a:35:54:22:11:ed:62:31:f1: 6b:8b:a8:08:c1:d3:85:8e:14:ca:44:d0:89:e9:ba: 84:6a:0a:45:52:47:d2:9a:37:66:52:74:9e:a4:c2: 33:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:89:A9:C3:9C:DE:B2:9E:2A:E3:6D:85:33:32:94:ED:90:AE:EB:9C X509v3 Authority Key Identifier: keyid:F2:08:4F:7A:0F:3C:0A:91:F8:25:FE:FD:9F:10:35:F3:35:41:58:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:8f:70:34:e8:b7:f1:52:1b:ff:b4:ac:9c:41:f8:4f:0f:52: 05:df:78:65:23:68:df:d5:a7:d7:92:ca:46:ce:b3:e0:d8:d7: 1b:33:00:25:10:b2:cc:a1:75:07:ff:b5:f1:fc:5d:a8:f6:c0: 0b:33:2b:5f:82:19:d8:30:55:bb:9a:8f:89:ea:67:14:3f:74: f5:78:5e:e5:c6:fe:e6:68:6a:b5:47:1f:3f:fa:08:32:e9:bd: 20:24:94:43:5d:bd:e4:64:6f:1b:88:5b:d1:57:16:05:de:c9: 37:a2:5f:4f:08:cb:8d:09:2c:ee:48:f1:73:bc:55:c7:49:d1: 60:d5:1e:ee:cc:b4:f8:9a:ed:ce:b1:ed:e3:85:a4:9c:05:c6: 80:9f:72:d8:10:65:b7:7e:88:02:67:93:4c:a3:71:5e:2f:fc: 94:65:16:b8:29:9d:53:24:3b:2b:c4:d0:9c:4f:2b:15:3e:28: 01:a0:e5:69:a8:a7:f3:27:bc:b5:10:b1:5f:4d:c2:a5:a2:25: d3:75:c0:80:ef:64:02:3d:ee:d9:3d:09:31:9f:54:9c:5c:ff: f1:b0:01:6f:00:f7:c9:c3:6c:9a:9f:37:3b:09:ee:1c:9d:0b: a5:45:1e:96:c3:42:0e:e3:aa:6e:e3:65:17:3c:6e:b1:08:0a: 81:47:35:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFQUYxMTAvBgNVBAUTKEYyMDg0RjdBMEYzQzBBOTFGODI1RkVGRDlGMTAzNUYz MzU0MTU4NEMwHhcNMjQwNTA1MDUwMTI2WhcNMjQwNTEyMDUwMTI2WjAYMRYwFAYD VQQDEw02NjM3MTJhNi0wODJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuRcej9Q+YbdC4+5HFYcaXEu3VNAwazzUdfM2cBsDE5aymlNVIwh5XJzFNbHt k4+U+j3It+AHFwYtXDnFt8nc12t9bgfrNuJrFsSdgmehc+N2g3v3FDd2ZwdOSF/7 K3i+SDtA3hd/QB+fAOVvtM7OmimPrWF2+w0LH2Pn5xlN+TN8ypeVUaElFt2i4J6u 9wblbGl5sGRXzSAigqeEf4lfnwc3kiUhtLgZDszfIz7pROuYag2f+O6nHpZ/LVtO +JMpsp5wwffEau5+94u5bbUuHA+4mNTUGX6KNVQiEe1iMfFri6gIwdOFjhTKRNCJ 6bqEagpFUkfSmjdmUnSepMIzRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBqJqcOc 3rKeKuNthTMylO2QruucMB8GA1UdIwQYMBaAFPIIT3oPPAqR+CX+/Z8QNfM1QVhM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUVBRi9CRTM1MjFCODMz RjExMUVEQjgzNjEwODZDNEY5QUUwMi84Z2hQZWc4OENwSDRKZjc5bnhBMTh6VkJX RXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhnaFBlZzg4Q3BINEpmNzlueEExOHpWQldFdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUVBRi9CRTM1MjFCODMzRjExMUVEQjgzNjEwODZDNEY5QUUwMi84Z2hQZWc4OENw SDRKZjc5bnhBMTh6VkJXRXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5j3A06LfxUhv/tKycQfhPD1IF33hlI2jf1afXkspGzrPg2NcbMwAl ELLMoXUH/7Xx/F2o9sALMytfghnYMFW7mo+J6mcUP3T1eF7lxv7maGq1Rx8/+ggy 6b0gJJRDXb3kZG8biFvRVxYF3sk3ol9PCMuNCSzuSPFzvFXHSdFg1R7uzLT4mu3O se3jhaScBcaAn3LYEGW3fogCZ5NMo3FeL/yUZRa4KZ1TJDsrxNCcTysVPigBoOVp qKfzJ7y1ELFfTcKloiXTdcCA72QCPe7ZPQkxn1ScXP/xsAFvAPfJw2yanzc7Ce4c nQulRR6Ww0IO46pu42UXPG6xCAqBRzW/ -----END CERTIFICATE-----Generated at Sun May 5 06:13:37 2024 by rpki-client on console-ams.rpki-client.org