$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0A98/8F4864EA35E011EE87C2A670C4F9AE02/1h14JILiVI0iXRvIiINjk97jmBI.mft File: 1h14JILiVI0iXRvIiINjk97jmBI.mft (raw, json) Hash identifier: xdYhMaDQxXS56pucTXMsiLnVA/aIFN06wBgpqNVx4Ms= Subject key identifier: 37:B0:A0:A8:F2:4E:CC:A4:3D:B2:8B:A0:2F:41:AB:F7:6F:4B:AE:0D Authority key identifier: D6:1D:78:24:82:E2:54:8D:22:5D:1B:C8:88:83:63:93:DE:E3:98:12 Certificate issuer: /CN=A91F0A98/serialNumber=D61D782482E2548D225D1BC888836393DEE39812 Certificate serial: 91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1h14JILiVI0iXRvIiINjk97jmBI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0A98/8F4864EA35E011EE87C2A670C4F9AE02/1h14JILiVI0iXRvIiINjk97jmBI.mft Manifest number: 91 Signing time: Wed 15 May 2024 07:04:10 +0000 Manifest this update: Wed 15 May 2024 07:04:08 +0000 Manifest next update: Wed 22 May 2024 07:04:08 +0000 Files and hashes: 1: 1h14JILiVI0iXRvIiINjk97jmBI.crl (hash: nMCEGCm0HmSm+elTDAP5TL4bPj3px+g2nxFPscGgLvQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0A98/8F4864EA35E011EE87C2A670C4F9AE02/1h14JILiVI0iXRvIiINjk97jmBI.crl rsync://rpki.apnic.net/member_repository/A91F0A98/8F4864EA35E011EE87C2A670C4F9AE02/1h14JILiVI0iXRvIiINjk97jmBI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1h14JILiVI0iXRvIiINjk97jmBI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:04:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 145 (0x91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0A98/serialNumber=D61D782482E2548D225D1BC888836393DEE39812 Validity Not Before: May 15 07:04:08 2024 GMT Not After : May 22 07:04:08 2024 GMT Subject: CN=66445e69-2428 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:76:6e:bc:d0:8d:b9:67:ba:de:22:70:14:ed: 40:f4:93:1a:77:70:81:49:6e:88:2f:da:52:7e:76: 3d:44:f5:ea:10:1c:70:db:e3:8d:ce:03:0b:a0:07: c3:0f:51:7d:81:cb:81:b7:92:7e:3d:99:e3:75:1d: 35:38:16:41:f9:64:b4:d0:e2:e6:0d:2d:48:66:22: a9:3a:f6:3a:bf:6b:6d:35:32:01:80:d4:b3:28:21: 41:7f:87:b9:f8:1c:4f:cc:d9:7d:7b:a3:4f:8d:92: 2e:50:16:86:ab:ab:63:6d:9c:ab:63:08:79:ce:f9: 3f:d0:5b:c2:f4:bf:f0:ca:88:89:1f:4d:3a:30:9a: 40:5a:8a:4d:a8:7f:ef:c6:33:13:a1:44:44:a0:9d: 6f:2c:90:18:06:ef:2d:91:ca:4d:be:55:c2:e2:fa: 61:b1:9c:85:1f:35:58:4d:2f:53:5a:65:ac:26:07: d0:2c:9e:62:8c:55:c8:83:87:7d:c0:aa:85:21:d5: de:fe:dd:c8:5f:e2:83:21:49:53:59:c0:ce:ac:61: 95:90:4c:e6:eb:7d:e2:ca:7d:7d:50:ad:3d:42:77: 9f:43:29:dc:9e:2e:8b:0b:e8:2d:c3:9d:d1:cf:66: 00:f3:7b:6e:3b:2b:da:df:c1:d4:de:25:49:35:79: bf:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:B0:A0:A8:F2:4E:CC:A4:3D:B2:8B:A0:2F:41:AB:F7:6F:4B:AE:0D X509v3 Authority Key Identifier: keyid:D6:1D:78:24:82:E2:54:8D:22:5D:1B:C8:88:83:63:93:DE:E3:98:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0A98/8F4864EA35E011EE87C2A670C4F9AE02/1h14JILiVI0iXRvIiINjk97jmBI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1h14JILiVI0iXRvIiINjk97jmBI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0A98/8F4864EA35E011EE87C2A670C4F9AE02/1h14JILiVI0iXRvIiINjk97jmBI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:b2:c7:40:68:a0:21:4c:ba:ae:69:81:38:de:e4:8e:ff:47: 00:6f:d8:12:c1:4d:ed:ea:e0:d5:ec:c5:2d:3a:e4:72:2e:0e: e6:45:90:4e:85:ca:73:14:96:a1:bc:28:7a:df:8b:e3:b9:1c: 3b:8a:d0:55:a1:50:0f:b8:61:c7:93:6c:c1:22:70:37:4b:f4: 6d:eb:c3:48:42:75:7c:8a:0d:bc:c5:6d:52:27:72:1e:02:23: 5d:51:72:47:91:c0:9a:ee:07:21:90:79:d7:67:3b:ed:6a:2f: b5:19:df:cc:0a:b5:d5:d9:74:48:84:f9:82:fd:94:cb:e1:04: ac:bf:be:5d:0e:e9:2e:0b:3c:1a:26:44:2f:f5:71:ca:73:3b: 66:50:49:51:de:90:70:72:5e:c6:83:00:23:da:87:c5:f4:55: ae:5e:be:54:15:2c:ce:f5:8a:e2:00:e7:a9:13:6c:d2:a1:3e: 14:3e:e5:93:ff:58:09:99:be:ca:7e:99:c9:10:48:12:27:9d: 23:aa:5c:84:81:67:e2:3c:9e:7e:c1:40:83:3e:10:38:5c:f2: 41:9d:87:f5:85:02:1d:6b:c3:af:a4:83:ce:90:28:91:b1:20: 6e:c5:d3:15:8b:9b:1b:a8:40:4b:e6:44:46:eb:19:fe:75:bf: ab:f2:d8:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBBOTgxMTAvBgNVBAUTKEQ2MUQ3ODI0ODJFMjU0OEQyMjVEMUJDODg4ODM2Mzkz REVFMzk4MTIwHhcNMjQwNTE1MDcwNDA4WhcNMjQwNTIyMDcwNDA4WjAYMRYwFAYD VQQDEw02NjQ0NWU2OS0yNDI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvXZuvNCNuWe63iJwFO1A9JMad3CBSW6IL9pSfnY9RPXqEBxw2+ONzgMLoAfD D1F9gcuBt5J+PZnjdR01OBZB+WS00OLmDS1IZiKpOvY6v2ttNTIBgNSzKCFBf4e5 +BxPzNl9e6NPjZIuUBaGq6tjbZyrYwh5zvk/0FvC9L/wyoiJH006MJpAWopNqH/v xjMToUREoJ1vLJAYBu8tkcpNvlXC4vphsZyFHzVYTS9TWmWsJgfQLJ5ijFXIg4d9 wKqFIdXe/t3IX+KDIUlTWcDOrGGVkEzm633iyn19UK09QnefQyncni6LC+gtw53R z2YA83tuOyva38HU3iVJNXm/FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDewoKjy TsykPbKLoC9Bq/dvS64NMB8GA1UdIwQYMBaAFNYdeCSC4lSNIl0byIiDY5Pe45gS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEE5OC84RjQ4NjRFQTM1 RTAxMUVFODdDMkE2NzBDNEY5QUUwMi8xaDE0SklMaVZJMGlYUnZJaUlOams5N2pt QkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoMTRKSUxpVkkwaVhSdklpSU5qazk3am1CSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEE5OC84RjQ4NjRFQTM1RTAxMUVFODdDMkE2NzBDNEY5QUUwMi8xaDE0SklMaVZJ MGlYUnZJaUlOams5N2ptQkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXssdAaKAhTLquaYE43uSO/0cAb9gSwU3t6uDV7MUtOuRyLg7mRZBO hcpzFJahvCh634vjuRw7itBVoVAPuGHHk2zBInA3S/Rt68NIQnV8ig28xW1SJ3Ie AiNdUXJHkcCa7gchkHnXZzvtai+1Gd/MCrXV2XRIhPmC/ZTL4QSsv75dDukuCzwa JkQv9XHKcztmUElR3pBwcl7GgwAj2ofF9FWuXr5UFSzO9YriAOepE2zSoT4UPuWT /1gJmb7KfpnJEEgSJ50jqlyEgWfiPJ5+wUCDPhA4XPJBnYf1hQIda8OvpIPOkCiR sSBuxdMVi5sbqEBL5kRG6xn+db+r8thw -----END CERTIFICATE-----Generated at Wed May 15 09:04:46 2024 by rpki-client on console-ams.rpki-client.org