$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft File: 0I2GgcK-TUfCopBV9m5olVhGF_c.mft (raw, json) Hash identifier: xMxBt1GrAIukdobGzphw7uHTLong17IVa9X7VM2t0NA= Subject key identifier: 9C:ED:CB:F0:3D:41:1F:91:74:5A:7F:1C:2C:E5:75:4F:FF:11:0D:7C Authority key identifier: D0:8D:86:81:C2:BE:4D:47:C2:A2:90:55:F6:6E:68:95:58:46:17:F7 Certificate issuer: /CN=A91FCEB1/serialNumber=D08D8681C2BE4D47C2A29055F66E6895584617F7 Certificate serial: 19A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft Manifest number: 1FDA Signing time: Fri 26 Apr 2024 16:21:21 +0000 Manifest this update: Fri 26 Apr 2024 16:21:20 +0000 Manifest next update: Fri 03 May 2024 16:21:20 +0000 Files and hashes: 1: 0I2GgcK-TUfCopBV9m5olVhGF_c.crl (hash: 5GxhvFmfi19H4S0nNJlUAZfNJctDhX26Mlr5VGwRUlM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.crl rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 16:21:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6569 (0x19a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCEB1/serialNumber=D08D8681C2BE4D47C2A29055F66E6895584617F7 Validity Not Before: Apr 26 16:21:20 2024 GMT Not After : May 3 16:21:20 2024 GMT Subject: CN=662bd480-789f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c7:94:cc:be:9e:e5:52:50:59:6a:05:f8:25: fa:af:9d:d2:4f:fb:1c:bb:09:cc:15:24:a0:52:e2: ef:a1:29:28:c4:5a:f0:5c:e8:88:08:e3:d7:8c:3c: 32:cc:b3:9b:16:1e:d4:f7:c9:dc:58:df:c6:09:f7: 78:8e:c6:a2:3a:96:84:09:51:89:1c:47:63:9c:c0: 1c:06:53:d1:b7:e6:e8:c0:1c:76:4a:48:07:21:62: 09:01:cd:fa:0b:08:a8:04:e4:29:56:81:76:a1:33: 66:25:4b:f9:31:98:96:94:1b:be:96:f9:26:e4:78: 76:94:f2:c9:b8:a2:7f:bf:62:2d:5d:9c:22:45:ad: c5:e6:52:bd:c1:13:21:20:6a:59:aa:03:08:3f:bd: 71:bb:ea:9d:ae:5f:69:60:d1:c1:a4:67:c5:00:c1: db:2f:ed:e9:71:0c:f1:5e:7a:00:9c:f3:c4:61:89: 1d:40:84:df:89:ec:b0:ce:5b:39:ac:ad:d0:3e:34: 84:47:66:34:cd:4e:a3:83:ea:da:0d:aa:11:32:1d: 3e:00:d9:b5:e4:c7:c7:d8:d5:c9:d7:c2:6b:25:50: 42:e6:60:28:23:ce:d4:f4:9c:c7:ce:16:fb:c1:c5: a1:73:47:27:02:e6:7a:84:c3:45:db:07:52:42:08: c1:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:ED:CB:F0:3D:41:1F:91:74:5A:7F:1C:2C:E5:75:4F:FF:11:0D:7C X509v3 Authority Key Identifier: keyid:D0:8D:86:81:C2:BE:4D:47:C2:A2:90:55:F6:6E:68:95:58:46:17:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:8b:b9:80:2a:75:f8:97:3f:9d:47:28:30:85:2f:35:ad:b6: 6e:da:42:11:84:ce:8d:db:55:19:7d:8b:a7:6e:55:87:8a:d7: d6:eb:c8:da:18:e9:7c:6a:95:00:9e:fd:f6:9b:0c:ee:38:b3: 8c:c0:e7:09:fa:1e:f6:40:95:9d:87:f4:30:22:8b:25:9d:4d: 3d:f4:0d:69:c9:ad:48:ab:38:1d:06:b6:5f:64:8d:4d:b1:30: b0:5c:42:ae:ae:4a:13:90:bf:a8:14:33:b5:93:a8:26:a6:95: 48:3e:a6:49:17:d6:33:c5:c5:01:a4:09:4e:3c:7d:16:6c:7a: 5f:fd:ee:f5:ed:b5:5e:7e:d1:f7:9b:3b:40:3c:57:c2:ba:b1: 10:b1:97:bd:80:2f:45:4f:33:ab:37:52:70:77:c8:c3:ae:e4: 45:ca:05:b6:56:27:36:56:8b:72:92:8e:0a:f9:c8:03:a7:c0: a2:26:da:3b:4f:06:e9:41:a6:82:f9:a9:94:e0:6f:2c:a7:7c: e2:8c:f1:9a:d8:8a:58:4b:f0:5d:9e:60:bb:ef:c0:d8:f8:20: f6:e8:c4:ad:14:80:10:5d:96:67:a6:40:35:1f:48:95:70:b1: 90:8a:63:74:0e:04:67:c9:c0:17:1f:fb:6c:54:4b:2b:17:a2: 65:4c:96:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNFQjExMTAvBgNVBAUTKEQwOEQ4NjgxQzJCRTRENDdDMkEyOTA1NUY2NkU2ODk1 NTg0NjE3RjcwHhcNMjQwNDI2MTYyMTIwWhcNMjQwNTAzMTYyMTIwWjAYMRYwFAYD VQQDEw02NjJiZDQ4MC03ODlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs8eUzL6e5VJQWWoF+CX6r53ST/scuwnMFSSgUuLvoSkoxFrwXOiICOPXjDwy zLObFh7U98ncWN/GCfd4jsaiOpaECVGJHEdjnMAcBlPRt+bowBx2SkgHIWIJAc36 CwioBOQpVoF2oTNmJUv5MZiWlBu+lvkm5Hh2lPLJuKJ/v2ItXZwiRa3F5lK9wRMh IGpZqgMIP71xu+qdrl9pYNHBpGfFAMHbL+3pcQzxXnoAnPPEYYkdQITfieywzls5 rK3QPjSER2Y0zU6jg+raDaoRMh0+ANm15MfH2NXJ18JrJVBC5mAoI87U9JzHzhb7 wcWhc0cnAuZ6hMNF2wdSQgjB/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJzty/A9 QR+RdFp/HCzldU//EQ18MB8GA1UdIwQYMBaAFNCNhoHCvk1HwqKQVfZuaJVYRhf3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0VCMS85QzE0QjQwNjNB MjExMUU3OUFBMEQ1MUNDNEY5QUUwMi8wSTJHZ2NLLVRVZkNvcEJWOW01b2xWaEdG X2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBJMkdnY0stVFVmQ29wQlY5bTVvbFZoR0ZfYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0VCMS85QzE0QjQwNjNBMjExMUU3OUFBMEQ1MUNDNEY5QUUwMi8wSTJHZ2NLLVRV ZkNvcEJWOW01b2xWaEdGX2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCi7mAKnX4lz+dRygwhS81rbZu2kIRhM6N21UZfYunblWHitfW68ja GOl8apUAnv32mwzuOLOMwOcJ+h72QJWdh/QwIoslnU099A1pya1IqzgdBrZfZI1N sTCwXEKurkoTkL+oFDO1k6gmppVIPqZJF9YzxcUBpAlOPH0WbHpf/e717bVeftH3 mztAPFfCurEQsZe9gC9FTzOrN1Jwd8jDruRFygW2Vic2Votyko4K+cgDp8CiJto7 TwbpQaaC+amU4G8sp3zijPGa2IpYS/BdnmC778DY+CD26MStFIAQXZZnpkA1H0iV cLGQimN0DgRnycAXH/tsVEsrF6JlTJav -----END CERTIFICATE-----Generated at Sat Apr 27 10:21:01 2024 by rpki-client on console-ams.rpki-client.org