$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft File: MoI4D1fWFw9Fz1IOeywaPNovyq0.mft (raw, json) Hash identifier: sao7ic/PX2dWT0YmWDtNOiGdJ47LbjySptJ2SuJU7tQ= Subject key identifier: 8D:C5:76:69:1F:AB:EB:3A:AE:A7:31:8A:EE:7E:B9:EE:91:22:34:CA Authority key identifier: 32:82:38:0F:57:D6:17:0F:45:CF:52:0E:7B:2C:1A:3C:DA:2F:CA:AD Certificate issuer: /CN=A91EE1DD/serialNumber=3282380F57D6170F45CF520E7B2C1A3CDA2FCAAD Certificate serial: 01FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft Manifest number: 01F8 Signing time: Sun 05 May 2024 04:19:28 +0000 Manifest this update: Sun 05 May 2024 04:19:27 +0000 Manifest next update: Sun 12 May 2024 04:19:27 +0000 Files and hashes: 1: MoI4D1fWFw9Fz1IOeywaPNovyq0.crl (hash: RXDkaODHhjIloovSsZ6SQCI21wiUKtRaf9BAw30BqWQ=) 2: 7D857A30F11811EC86D3AD4BC4F9AE02.roa (hash: DTeUoGILmpR1cuWk4EONESxHDKOdUfVBGiNOOrF79fw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.crl rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 508 (0x1fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE1DD/serialNumber=3282380F57D6170F45CF520E7B2C1A3CDA2FCAAD Validity Not Before: May 5 04:19:27 2024 GMT Not After : May 12 04:19:27 2024 GMT Subject: CN=663708d0-14f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:41:b3:25:9c:02:c9:9a:6f:ff:63:21:79:10: 55:87:3a:19:3b:b0:09:96:41:c5:dd:6a:d9:2e:85: e6:6b:60:40:28:74:c8:bc:f4:61:9d:06:41:3d:5d: 8c:c2:29:3c:14:d2:e6:ac:c2:2c:b3:37:fc:f4:80: 19:d7:8f:71:0a:0f:11:7d:76:24:3e:11:0a:6e:00: 8f:50:c0:03:43:31:02:0f:1b:25:9f:37:8c:97:f6: c9:d5:f7:48:de:54:c0:41:5c:f6:eb:8d:23:71:de: f0:f5:b0:e6:6b:f2:9e:43:07:53:85:92:13:2c:31: a7:6f:08:01:d6:54:9c:fe:d1:2c:5a:5c:7e:85:ef: 3f:f7:d0:50:40:94:9d:c9:1b:54:3e:e5:fe:67:e8: 31:ef:56:5c:5a:d2:e1:15:f5:88:82:70:79:70:ca: eb:9b:84:74:5a:7c:c9:a8:8f:ff:ce:a6:b0:ad:1d: ed:43:87:8a:d2:d1:59:65:de:d6:fc:3f:ba:4f:5d: 53:e2:f5:90:07:6e:4c:b6:23:09:1c:f6:c6:0a:e5: 44:e6:d9:93:5c:df:e6:fe:4a:98:82:75:6b:b9:b4: a9:73:6d:94:86:69:b0:03:4b:3d:83:07:d8:74:b2: 42:a2:58:cc:42:d6:0a:b7:0e:1b:da:21:75:e2:5a: 2e:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:C5:76:69:1F:AB:EB:3A:AE:A7:31:8A:EE:7E:B9:EE:91:22:34:CA X509v3 Authority Key Identifier: keyid:32:82:38:0F:57:D6:17:0F:45:CF:52:0E:7B:2C:1A:3C:DA:2F:CA:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:46:55:9d:50:e1:28:bb:66:67:ac:32:59:d9:c1:74:72:41: 86:76:74:a2:cd:1a:c7:39:0d:aa:06:14:af:92:80:ce:a9:03: 9c:bc:dc:3b:45:01:98:f9:9b:ff:2e:cc:c1:71:d9:33:8a:9d: 3d:1e:03:28:1c:7c:dc:4f:06:5b:fa:8d:37:bd:48:7d:f3:30: 7f:33:40:ba:8f:73:50:e4:18:ed:ac:0b:63:6f:ce:cb:26:fa: ef:59:27:51:dd:f5:dd:5a:d1:a4:9e:ef:1f:a2:17:52:e5:df: f3:8c:68:29:88:75:04:47:d8:18:f7:e5:dd:5f:45:35:1b:c3: bb:9c:4a:8d:7f:9d:d6:1d:96:80:7f:84:64:9b:00:86:d9:1c: 42:c3:7c:97:ea:b6:85:de:6f:98:8b:1a:88:47:e1:18:5e:23: 43:8b:7e:f7:3c:ba:a2:e7:4d:02:e5:72:01:9d:c1:cd:66:0c: 31:68:88:5d:c4:f1:ea:c1:86:dd:99:eb:ed:ef:db:c0:f6:55: 8d:61:72:25:ba:bb:f1:28:c3:25:e0:2f:81:53:c2:7a:72:8d: 7e:00:bd:1a:76:e6:8b:eb:dc:15:54:67:8e:57:fc:78:36:6a: 69:86:29:29:aa:61:cf:0b:a0:80:8f:e9:93:6f:8c:60:3a:f8: 62:e3:ed:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUxREQxMTAvBgNVBAUTKDMyODIzODBGNTdENjE3MEY0NUNGNTIwRTdCMkMxQTND REEyRkNBQUQwHhcNMjQwNTA1MDQxOTI3WhcNMjQwNTEyMDQxOTI3WjAYMRYwFAYD VQQDEw02NjM3MDhkMC0xNGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzkGzJZwCyZpv/2MheRBVhzoZO7AJlkHF3WrZLoXma2BAKHTIvPRhnQZBPV2M wik8FNLmrMIsszf89IAZ149xCg8RfXYkPhEKbgCPUMADQzECDxslnzeMl/bJ1fdI 3lTAQVz2640jcd7w9bDma/KeQwdThZITLDGnbwgB1lSc/tEsWlx+he8/99BQQJSd yRtUPuX+Z+gx71ZcWtLhFfWIgnB5cMrrm4R0WnzJqI//zqawrR3tQ4eK0tFZZd7W /D+6T11T4vWQB25MtiMJHPbGCuVE5tmTXN/m/kqYgnVrubSpc22UhmmwA0s9gwfY dLJColjMQtYKtw4b2iF14louJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI3Fdmkf q+s6rqcxiu5+ue6RIjTKMB8GA1UdIwQYMBaAFDKCOA9X1hcPRc9SDnssGjzaL8qt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTFERC9GMTUwMDNDOEYx MTIxMUVDOTE5NjU0NDRDNEY5QUUwMi9Nb0k0RDFmV0Z3OUZ6MUlPZXl3YVBOb3Z5 cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01vSTREMWZXRnc5RnoxSU9leXdhUE5vdnlxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTFERC9GMTUwMDNDOEYxMTIxMUVDOTE5NjU0NDRDNEY5QUUwMi9Nb0k0RDFmV0Z3 OUZ6MUlPZXl3YVBOb3Z5cTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2RlWdUOEou2ZnrDJZ2cF0ckGGdnSizRrHOQ2qBhSvkoDOqQOcvNw7 RQGY+Zv/LszBcdkzip09HgMoHHzcTwZb+o03vUh98zB/M0C6j3NQ5BjtrAtjb87L JvrvWSdR3fXdWtGknu8fohdS5d/zjGgpiHUER9gY9+XdX0U1G8O7nEqNf53WHZaA f4RkmwCG2RxCw3yX6raF3m+YixqIR+EYXiNDi373PLqi500C5XIBncHNZgwxaIhd xPHqwYbdmevt79vA9lWNYXIlurvxKMMl4C+BU8J6co1+AL0aduaL69wVVGeOV/x4 NmpphikpqmHPC6CAj+mTb4xgOvhi4+24 -----END CERTIFICATE-----Generated at Sun May 5 05:30:51 2024 by rpki-client on console-ams.rpki-client.org