$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft File: maB2Nu64AHCDMDGWpYxBvsxoj4A.mft (raw, json) Hash identifier: tX4q+vT+tMH6SCyufKNFFG1Iu8uwM2JQTvb3z0zOXGs= Subject key identifier: 98:C5:28:82:88:78:B8:74:28:4D:52:4A:49:A0:EA:98:7B:E2:4A:8A Authority key identifier: 99:A0:76:36:EE:B8:00:70:83:30:31:96:A5:8C:41:BE:CC:68:8F:80 Certificate issuer: /CN=A91EEC3B/serialNumber=99A07636EEB8007083303196A58C41BECC688F80 Certificate serial: 0B0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft Manifest number: 29E5 Signing time: Mon 06 May 2024 17:01:37 +0000 Manifest this update: Mon 06 May 2024 17:01:36 +0000 Manifest next update: Mon 13 May 2024 17:01:36 +0000 Files and hashes: 1: maB2Nu64AHCDMDGWpYxBvsxoj4A.crl (hash: JIqUNO7ursKVtVJTuQhkhYZklRxFwG3XjmD9qGLQLUY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.crl rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 16:15:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2831 (0xb0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEC3B/serialNumber=99A07636EEB8007083303196A58C41BECC688F80 Validity Not Before: May 6 17:01:36 2024 GMT Not After : May 13 17:01:36 2024 GMT Subject: CN=66390cf1-e469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:70:8c:da:11:0e:24:94:59:60:91:7b:91:b4: dc:c5:c5:c1:b2:2a:4f:cc:bf:a9:88:98:45:89:e4: 64:a0:1e:11:4f:5b:8e:2a:56:cf:7d:2b:cc:f3:3a: 42:63:51:94:0b:f8:f9:bc:fe:d2:04:9e:3f:a0:8d: 20:19:0e:c5:d4:f4:e9:54:ca:50:17:3f:5b:ae:f4: f8:d1:c2:cb:76:81:22:72:2b:cf:cd:79:90:74:bc: 09:ed:88:8e:28:d3:cb:05:40:39:41:a1:6b:52:4d: f4:91:59:87:55:63:81:8d:b7:4e:c3:5d:f5:1b:28: 5d:62:93:5e:ce:44:cf:f6:8f:c3:3c:cc:ca:2d:bf: 77:8f:4d:1f:26:4d:78:2e:79:13:24:21:0f:f8:87: 86:f9:30:8b:d4:ac:38:14:37:43:df:29:71:7a:e7: 5c:93:ec:f0:37:79:03:6b:cb:15:2d:db:20:9d:eb: 08:c3:18:85:1a:3b:20:9b:04:60:5a:f0:e1:d5:6c: 5a:25:c3:f6:ef:d4:8e:f2:54:19:bf:8f:a9:90:e5: 05:5e:87:27:9f:3f:5f:39:07:e7:8e:a3:83:fd:22: 76:b3:74:16:b5:d9:88:a0:02:c6:a9:63:8f:ec:4d: 9e:92:cc:6a:56:78:30:28:39:ab:52:70:56:b1:24: d7:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:C5:28:82:88:78:B8:74:28:4D:52:4A:49:A0:EA:98:7B:E2:4A:8A X509v3 Authority Key Identifier: keyid:99:A0:76:36:EE:B8:00:70:83:30:31:96:A5:8C:41:BE:CC:68:8F:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:27:5d:76:12:8a:b3:2b:fd:43:64:f3:f2:43:cd:77:84:bc: 35:76:36:ba:d1:db:53:c0:e1:54:44:1b:7c:93:b2:f7:2f:80: be:ab:56:64:1c:79:20:94:f3:47:7d:b8:71:f8:b0:74:fc:be: aa:b8:c7:9a:18:97:1d:bf:02:84:0d:be:fa:7a:47:5f:88:b1: 00:62:c8:1b:91:0a:a5:99:68:96:69:41:48:52:3b:68:34:87: e6:2b:2f:cc:3c:d7:b9:58:be:33:ea:52:7d:3c:31:62:b6:90: 84:7f:7e:eb:e2:a0:72:25:19:de:6b:be:51:7b:b0:7c:86:25: 71:46:bd:33:35:fc:d7:5b:00:55:4b:e0:dd:ab:ff:64:86:bd: 9c:0f:85:d6:aa:16:4f:90:72:9c:49:77:d8:6e:eb:98:06:33: 66:d2:d2:f5:5f:2c:9b:dc:b6:a1:eb:af:69:95:28:0c:be:d6: 2d:14:a3:d6:90:39:8e:81:93:7d:56:d9:6c:5e:82:d4:a3:62: 92:9b:ed:51:cb:03:01:3b:3d:eb:77:e5:83:b7:43:78:e6:df: e1:89:25:ba:22:c3:94:fa:73:58:82:2a:a7:39:4b:3a:84:72: 89:9f:6c:87:d2:52:34:7c:11:e4:c4:f9:92:34:df:e3:57:34: 43:db:7f:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCw8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVDM0IxMTAvBgNVBAUTKDk5QTA3NjM2RUVCODAwNzA4MzMwMzE5NkE1OEM0MUJF Q0M2ODhGODAwHhcNMjQwNTA2MTcwMTM2WhcNMjQwNTEzMTcwMTM2WjAYMRYwFAYD VQQDEw02NjM5MGNmMS1lNDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzXCM2hEOJJRZYJF7kbTcxcXBsipPzL+piJhFieRkoB4RT1uOKlbPfSvM8zpC Y1GUC/j5vP7SBJ4/oI0gGQ7F1PTpVMpQFz9brvT40cLLdoEicivPzXmQdLwJ7YiO KNPLBUA5QaFrUk30kVmHVWOBjbdOw131GyhdYpNezkTP9o/DPMzKLb93j00fJk14 LnkTJCEP+IeG+TCL1Kw4FDdD3ylxeudck+zwN3kDa8sVLdsgnesIwxiFGjsgmwRg WvDh1WxaJcP279SO8lQZv4+pkOUFXocnnz9fOQfnjqOD/SJ2s3QWtdmIoALGqWOP 7E2eksxqVngwKDmrUnBWsSTXSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJjFKIKI eLh0KE1SSkmg6ph74kqKMB8GA1UdIwQYMBaAFJmgdjbuuABwgzAxlqWMQb7MaI+A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUMzQi82QjM3RTE5Qzg0 MTcxMUU3ODVGMTcwODBDNEY5QUUwMi9tYUIyTnU2NEFIQ0RNREdXcFl4QnZzeG9q NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21hQjJOdTY0QUhDRE1ER1dwWXhCdnN4b2o0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RUMzQi82QjM3RTE5Qzg0MTcxMUU3ODVGMTcwODBDNEY5QUUwMi9tYUIyTnU2NEFI Q0RNREdXcFl4QnZzeG9qNEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwJ112EoqzK/1DZPPyQ813hLw1dja60dtTwOFURBt8k7L3L4C+q1Zk HHkglPNHfbhx+LB0/L6quMeaGJcdvwKEDb76ekdfiLEAYsgbkQqlmWiWaUFIUjto NIfmKy/MPNe5WL4z6lJ9PDFitpCEf37r4qByJRnea75Re7B8hiVxRr0zNfzXWwBV S+Ddq/9khr2cD4XWqhZPkHKcSXfYbuuYBjNm0tL1Xyyb3Lah669plSgMvtYtFKPW kDmOgZN9VtlsXoLUo2KSm+1RywMBOz3rd+WDt0N45t/hiSW6IsOU+nNYgiqnOUs6 hHKJn2yH0lI0fBHkxPmSNN/jVzRD239A -----END CERTIFICATE-----Generated at Mon May 6 17:43:27 2024 by rpki-client on console-ams.rpki-client.org