$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.mft File: JTgA7RbtD_M39wQNDj3xFBwWFhw.mft (raw, json) Hash identifier: chqVh5mV5f9qik0QYqujfs7Cav00cGg9JAOjyzSP2Ro= Subject key identifier: AE:F4:90:18:38:20:4C:9B:9D:B6:17:25:C4:C1:B1:68:E6:57:D4:30 Authority key identifier: 25:38:00:ED:16:ED:0F:F3:37:F7:04:0D:0E:3D:F1:14:1C:16:16:1C Certificate issuer: /CN=A91FB8C9/serialNumber=253800ED16ED0FF337F7040D0E3DF1141C16161C Certificate serial: 0122 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JTgA7RbtD_M39wQNDj3xFBwWFhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.mft Manifest number: 011E Signing time: Sat 27 Apr 2024 05:06:14 +0000 Manifest this update: Sat 27 Apr 2024 05:06:14 +0000 Manifest next update: Sat 04 May 2024 05:06:14 +0000 Files and hashes: 1: JTgA7RbtD_M39wQNDj3xFBwWFhw.crl (hash: 24tfO6wI6Pp3wXaNGTzA6Fh7EpUSzEDO54iDtubj2Lg=) 2: 2D215B32584111EDBE50107CC4F9AE02.roa (hash: rrOHCLGQIv68ZsqeTx/13ZAeIZvs4cOHhVflXZxAbPw=) 3: D45117DEEBF311EEAECC405FC4F9AE02.roa (hash: MHy45cbH6T4nu+N3NfKp5kLBXQfmG03uGs2Mvxd9hrI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.crl rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JTgA7RbtD_M39wQNDj3xFBwWFhw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 03:36:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB8C9/serialNumber=253800ED16ED0FF337F7040D0E3DF1141C16161C Validity Not Before: Apr 27 05:06:14 2024 GMT Not After : May 4 05:06:14 2024 GMT Subject: CN=662c87c6-5430 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d7:31:ec:2b:68:61:48:32:83:9d:f8:e5:82: 24:a2:fb:af:08:12:90:ae:af:02:c4:bb:77:bd:28: 33:ed:4e:d0:53:b2:c5:6f:fb:88:42:0b:49:9b:c4: 7c:ff:fd:c9:2c:a7:f5:54:f2:26:22:a7:49:b6:04: a8:21:9c:0b:6c:d1:fd:69:a4:d3:c1:75:55:32:38: bc:ae:40:f3:d0:63:a6:87:0d:34:b8:43:56:98:cd: e2:00:9f:78:f5:9d:a2:c4:c4:03:18:1d:9e:eb:17: 3f:09:a1:f7:f3:44:10:c9:e6:99:23:37:c6:44:33: 0c:f2:8e:72:0a:a9:bb:fb:9a:92:fc:29:2c:7f:ad: ba:48:1d:bf:72:2b:f5:93:3b:d9:47:03:77:db:5f: ec:a7:fa:be:91:69:d6:fe:1e:08:0c:a1:e9:10:69: c7:05:d3:b0:76:fd:9f:7b:63:92:e8:cb:50:3f:37: 3b:6e:94:f3:b1:52:9b:c9:ec:41:58:22:bc:07:cd: ae:dd:6c:2a:d4:a8:9b:52:6f:be:76:2a:12:bf:f1: a2:da:e8:f7:38:7e:08:c1:3a:97:01:3f:01:e3:20: 6e:fe:3d:aa:44:4f:1a:08:de:45:21:08:e4:ab:6f: e8:52:53:15:b4:cc:f9:a4:da:4f:e0:00:8f:b2:2b: 15:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:F4:90:18:38:20:4C:9B:9D:B6:17:25:C4:C1:B1:68:E6:57:D4:30 X509v3 Authority Key Identifier: keyid:25:38:00:ED:16:ED:0F:F3:37:F7:04:0D:0E:3D:F1:14:1C:16:16:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JTgA7RbtD_M39wQNDj3xFBwWFhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:83:73:36:d9:61:f7:04:ef:ed:d9:af:66:cf:c8:2d:da:59: 28:61:38:49:d6:89:77:5d:8d:20:11:82:b0:71:66:c3:b6:4f: d2:22:b4:dd:09:48:79:a1:8e:65:9f:38:41:89:53:0f:fb:85: a3:7f:be:ca:57:8c:2d:b6:b0:71:ed:82:91:fb:77:1f:89:9e: 6c:59:d4:dd:19:94:bb:14:23:8b:8d:9d:4e:ad:86:32:f5:b4: a2:c8:fb:0d:22:fa:0c:1f:c4:f9:39:ac:98:42:3b:87:a3:88: dd:76:c0:91:8c:81:3e:b9:3e:a0:80:e3:70:5a:2b:be:ef:98: b3:1d:ab:a0:2c:76:03:6a:b5:b4:93:93:d6:d1:c1:ed:7a:af: 0b:05:c8:a2:7b:75:d3:ff:17:f9:1e:d4:a2:ec:ff:88:f5:f3: 82:dd:a1:42:06:71:e2:a4:d5:f3:a6:ea:40:4c:a2:7b:32:2d: 8c:79:42:7b:a5:4a:02:bf:60:72:cf:b0:95:9f:c9:12:0d:5e: 1b:db:64:7b:73:50:3c:b7:45:6c:09:d4:ef:63:03:52:e5:86: 2c:5b:41:fd:d6:df:54:80:bb:7c:2c:92:17:ee:02:33:a1:f7: b3:c5:20:12:f9:d2:81:df:70:ab:18:ba:c7:a3:26:97:b1:a2: f2:3a:0d:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI4QzkxMTAvBgNVBAUTKDI1MzgwMEVEMTZFRDBGRjMzN0Y3MDQwRDBFM0RGMTE0 MUMxNjE2MUMwHhcNMjQwNDI3MDUwNjE0WhcNMjQwNTA0MDUwNjE0WjAYMRYwFAYD VQQDEw02NjJjODdjNi01NDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAytcx7CtoYUgyg5345YIkovuvCBKQrq8CxLt3vSgz7U7QU7LFb/uIQgtJm8R8 //3JLKf1VPImIqdJtgSoIZwLbNH9aaTTwXVVMji8rkDz0GOmhw00uENWmM3iAJ94 9Z2ixMQDGB2e6xc/CaH380QQyeaZIzfGRDMM8o5yCqm7+5qS/Cksf626SB2/civ1 kzvZRwN321/sp/q+kWnW/h4IDKHpEGnHBdOwdv2fe2OS6MtQPzc7bpTzsVKbyexB WCK8B82u3Wwq1KibUm++dioSv/Gi2uj3OH4IwTqXAT8B4yBu/j2qRE8aCN5FIQjk q2/oUlMVtMz5pNpP4ACPsisVSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK70kBg4 IEybnbYXJcTBsWjmV9QwMB8GA1UdIwQYMBaAFCU4AO0W7Q/zN/cEDQ498RQcFhYc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjhDOS8yMTk3QjA5MjU4 M0YxMUVEODE4MUU1N0JDNEY5QUUwMi9KVGdBN1JidERfTTM5d1FORGozeEZCd1dG aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pUZ0E3UmJ0RF9NMzl3UU5EajN4RkJ3V0Zody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjhDOS8yMTk3QjA5MjU4M0YxMUVEODE4MUU1N0JDNEY5QUUwMi9KVGdBN1JidERf TTM5d1FORGozeEZCd1dGaHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxg3M22WH3BO/t2a9mz8gt2lkoYThJ1ol3XY0gEYKwcWbDtk/SIrTd CUh5oY5lnzhBiVMP+4Wjf77KV4wttrBx7YKR+3cfiZ5sWdTdGZS7FCOLjZ1OrYYy 9bSiyPsNIvoMH8T5OayYQjuHo4jddsCRjIE+uT6ggONwWiu+75izHaugLHYDarW0 k5PW0cHteq8LBciie3XT/xf5HtSi7P+I9fOC3aFCBnHipNXzpupATKJ7Mi2MeUJ7 pUoCv2Byz7CVn8kSDV4b22R7c1A8t0VsCdTvYwNS5YYsW0H91t9UgLt8LJIX7gIz ofezxSAS+dKB33CrGLrHoyaXsaLyOg3O -----END CERTIFICATE-----Generated at Sat Apr 27 10:21:01 2024 by rpki-client on console-ams.rpki-client.org