$ rpki-client -vvf rpki.apnic.net/member_repository/A91F577C/58DB98C6568C11EC826B2F1EC4F9AE02/rIkZDTdnL9a0Ix0T_Hf7Jp_Qdqg.mft File: rIkZDTdnL9a0Ix0T_Hf7Jp_Qdqg.mft (raw, json) Hash identifier: 39szVRlVMuAwqzxdLY9zLmlKstIbRv38o1atE6U8Mls= Subject key identifier: 70:CB:92:0A:F1:84:0F:91:32:A2:CA:B8:AB:D5:40:BE:02:1B:F2:E0 Authority key identifier: AC:89:19:0D:37:67:2F:D6:B4:23:1D:13:FC:77:FB:26:9F:D0:76:A8 Certificate issuer: /CN=A91F577C/serialNumber=AC89190D37672FD6B4231D13FC77FB269FD076A8 Certificate serial: 0389 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rIkZDTdnL9a0Ix0T_Hf7Jp_Qdqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F577C/58DB98C6568C11EC826B2F1EC4F9AE02/rIkZDTdnL9a0Ix0T_Hf7Jp_Qdqg.mft Manifest number: 0385 Signing time: Sun 05 May 2024 02:49:02 +0000 Manifest this update: Sun 05 May 2024 02:49:01 +0000 Manifest next update: Sun 12 May 2024 02:49:01 +0000 Files and hashes: 1: rIkZDTdnL9a0Ix0T_Hf7Jp_Qdqg.crl (hash: A8tOzwMGgOPoPIE3ZR8T+0g9RBdAmQHmG6VUKs2U+XQ=) 2: 21A599EE568F11ECBF026D35C4F9AE02.roa (hash: liGyG8V04DU0SuiEsQM1L/7y6sW/3oCjQ1cVNrkVeUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F577C/58DB98C6568C11EC826B2F1EC4F9AE02/rIkZDTdnL9a0Ix0T_Hf7Jp_Qdqg.crl rsync://rpki.apnic.net/member_repository/A91F577C/58DB98C6568C11EC826B2F1EC4F9AE02/rIkZDTdnL9a0Ix0T_Hf7Jp_Qdqg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rIkZDTdnL9a0Ix0T_Hf7Jp_Qdqg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:49:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 905 (0x389) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F577C/serialNumber=AC89190D37672FD6B4231D13FC77FB269FD076A8 Validity Not Before: May 5 02:49:01 2024 GMT Not After : May 12 02:49:01 2024 GMT Subject: CN=6636f39e-bddb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:1d:4d:ec:09:51:4b:c3:e6:8f:f3:b8:96:39: f1:3b:c2:f6:69:1c:1c:69:46:06:8d:78:9f:2c:34: 55:14:23:1b:76:a2:f7:ac:3d:97:8a:45:c0:43:c6: 79:ca:84:04:76:cc:2a:98:eb:7f:56:cd:0b:7f:3c: 1e:5d:d3:10:dd:45:99:d4:83:27:08:a6:2e:ba:15: 0c:63:9b:14:19:0d:05:c5:18:77:12:8c:d1:c9:ee: c2:e6:73:59:c2:37:1b:ad:3d:14:d4:86:65:da:f8: 7b:6b:e0:75:9f:c7:65:c5:27:f0:f4:ed:e8:d1:a9: d6:69:9f:f7:5a:4d:48:85:b8:a1:2f:e1:40:1e:22: 96:26:14:74:65:df:60:a3:04:59:f5:4e:0d:8f:d2: f8:48:30:16:d9:b1:d1:07:01:c7:bc:da:c9:1d:4b: 05:5b:01:44:60:cb:42:79:e2:53:cc:03:5c:35:b3: c5:95:dc:74:57:de:a6:be:da:c5:c1:71:d4:38:09: 6f:bf:96:19:40:f1:5e:79:13:41:5a:a5:86:76:64: fd:fa:13:fd:c7:4c:c4:04:4f:8c:79:fa:22:62:a0: 9a:4d:ad:c0:e5:08:68:84:00:64:c9:2d:56:cc:5b: 5a:52:a8:ae:07:43:21:bf:37:5f:2c:39:f4:42:a7: 09:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:CB:92:0A:F1:84:0F:91:32:A2:CA:B8:AB:D5:40:BE:02:1B:F2:E0 X509v3 Authority Key Identifier: keyid:AC:89:19:0D:37:67:2F:D6:B4:23:1D:13:FC:77:FB:26:9F:D0:76:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F577C/58DB98C6568C11EC826B2F1EC4F9AE02/rIkZDTdnL9a0Ix0T_Hf7Jp_Qdqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rIkZDTdnL9a0Ix0T_Hf7Jp_Qdqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F577C/58DB98C6568C11EC826B2F1EC4F9AE02/rIkZDTdnL9a0Ix0T_Hf7Jp_Qdqg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:99:5b:9e:dd:f5:71:42:80:91:5b:26:8f:fb:cd:e8:31:9b: e9:9d:02:57:03:25:50:bb:67:c2:e4:f1:a5:91:ab:c8:bd:68: 61:48:40:95:f0:46:58:65:1f:69:5d:dc:36:eb:8d:93:94:b7: 38:cc:c3:d5:64:82:7b:5d:dc:32:71:49:f3:8e:ac:86:cf:27: af:d2:72:de:b4:1a:75:cc:8a:ef:45:43:e5:98:a1:cc:85:ef: 52:c2:6b:5c:2c:56:e3:0d:4a:bb:43:cc:be:a7:d9:8d:00:b9: 68:b8:ea:47:6e:88:61:71:32:b2:dd:5e:bf:43:8a:72:c2:01: c3:d9:b7:6b:16:f2:19:96:5e:6d:d1:fb:f5:01:1b:37:06:8c: 32:b3:94:90:64:ff:3a:42:d2:9b:db:f2:a2:ca:e7:57:dc:89: 75:ff:fd:e1:00:64:24:21:82:b7:ba:56:cd:23:77:9a:e0:e0: 1d:40:0c:cb:82:28:32:0c:40:bb:ce:e5:bb:01:65:47:98:b4: a3:c8:42:e9:6e:e1:7b:f7:89:bc:d3:fa:1e:d8:c3:ee:91:51: 16:72:74:2d:79:10:3d:7c:61:01:4c:61:1f:d7:38:41:3a:37: 54:4c:38:da:ad:7f:3e:11:91:34:e2:b4:08:e1:49:26:c8:63: ea:c4:65:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU3N0MxMTAvBgNVBAUTKEFDODkxOTBEMzc2NzJGRDZCNDIzMUQxM0ZDNzdGQjI2 OUZEMDc2QTgwHhcNMjQwNTA1MDI0OTAxWhcNMjQwNTEyMDI0OTAxWjAYMRYwFAYD VQQDEw02NjM2ZjM5ZS1iZGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5R1N7AlRS8Pmj/O4ljnxO8L2aRwcaUYGjXifLDRVFCMbdqL3rD2XikXAQ8Z5 yoQEdswqmOt/Vs0LfzweXdMQ3UWZ1IMnCKYuuhUMY5sUGQ0FxRh3EozRye7C5nNZ wjcbrT0U1IZl2vh7a+B1n8dlxSfw9O3o0anWaZ/3Wk1IhbihL+FAHiKWJhR0Zd9g owRZ9U4Nj9L4SDAW2bHRBwHHvNrJHUsFWwFEYMtCeeJTzANcNbPFldx0V96mvtrF wXHUOAlvv5YZQPFeeRNBWqWGdmT9+hP9x0zEBE+MefoiYqCaTa3A5QhohABkyS1W zFtaUqiuB0MhvzdfLDn0QqcJ9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHDLkgrx hA+RMqLKuKvVQL4CG/LgMB8GA1UdIwQYMBaAFKyJGQ03Zy/WtCMdE/x3+yaf0Hao MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTc3Qy81OERCOThDNjU2 OEMxMUVDODI2QjJGMUVDNEY5QUUwMi9ySWtaRFRkbkw5YTBJeDBUX0hmN0pwX1Fk cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JJa1pEVGRuTDlhMEl4MFRfSGY3SnBfUWRxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTc3Qy81OERCOThDNjU2OEMxMUVDODI2QjJGMUVDNEY5QUUwMi9ySWtaRFRkbkw5 YTBJeDBUX0hmN0pwX1FkcWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4mVue3fVxQoCRWyaP+83oMZvpnQJXAyVQu2fC5PGlkavIvWhhSECV 8EZYZR9pXdw2642TlLc4zMPVZIJ7XdwycUnzjqyGzyev0nLetBp1zIrvRUPlmKHM he9SwmtcLFbjDUq7Q8y+p9mNALlouOpHbohhcTKy3V6/Q4pywgHD2bdrFvIZll5t 0fv1ARs3Bowys5SQZP86QtKb2/KiyudX3Il1//3hAGQkIYK3ulbNI3ea4OAdQAzL gigyDEC7zuW7AWVHmLSjyELpbuF794m80/oe2MPukVEWcnQteRA9fGEBTGEf1zhB OjdUTDjarX8+EZE04rQI4UkmyGPqxGXP -----END CERTIFICATE-----Generated at Sun May 5 03:52:21 2024 by rpki-client on console-ams.rpki-client.org