$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft File: rehZrZQNGhc_pkzXBYZ9SH5nNog.mft (raw, json) Hash identifier: xR87Ju8SGeM+yfzqVKrnODdEolHFde7b0feKXykZmio= Subject key identifier: A9:E4:BC:94:48:7E:E0:67:92:7E:6A:5F:7D:E8:BE:C2:52:51:5D:FD Authority key identifier: AD:E8:59:AD:94:0D:1A:17:3F:A6:4C:D7:05:86:7D:48:7E:67:36:88 Certificate issuer: /CN=A91FDAD4/serialNumber=ADE859AD940D1A173FA64CD705867D487E673688 Certificate serial: 013B Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft Manifest number: 0137 Signing time: Sat 25 May 2024 03:06:45 +0000 Manifest this update: Sat 25 May 2024 03:06:44 +0000 Manifest next update: Sat 01 Jun 2024 03:06:44 +0000 Files and hashes: 1: rehZrZQNGhc_pkzXBYZ9SH5nNog.crl (hash: LhP/vwa4ERhZ1zUv/MRYFLqFqagjlY0RedPF3KCZigg=) 2: A99BC9D64CAC11EDA3BF485AC4F9AE02.roa (hash: 3rJgdxfYw3z0Qha7Cf2nWFVdNS9QkKvrwb2nEAGi284=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.crl rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 02:50:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 315 (0x13b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDAD4/serialNumber=ADE859AD940D1A173FA64CD705867D487E673688 Validity Not Before: May 25 03:06:44 2024 GMT Not After : Jun 1 03:06:44 2024 GMT Subject: CN=665155c5-37a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ad:39:4f:fd:f2:2c:4d:00:00:e5:74:a9:d0: 41:cf:e6:3b:e3:17:e6:94:0b:a1:54:2e:37:23:89: 3b:06:a9:0e:c6:15:64:95:11:e6:d5:cf:6e:df:2b: 35:11:a5:65:23:06:2b:64:e5:0b:ee:0c:e3:75:75: 03:32:6f:e2:21:e4:7f:90:5a:8e:8b:14:a6:bd:dc: 20:14:cc:13:ff:04:27:7f:e1:57:42:ca:ab:95:00: eb:d0:ea:8c:97:f5:1d:4d:e0:e2:34:6a:8d:41:e0: 10:65:ff:8c:8c:73:7e:bd:07:af:05:03:59:dd:6d: 0d:11:bf:d3:90:94:0a:53:05:5c:ab:b9:6f:7e:db: 19:33:72:90:b4:ea:3c:40:57:ea:21:9d:9c:f3:f8: ab:bb:b7:db:d3:47:8d:e5:78:ed:f3:cf:c7:bc:46: dc:2a:10:89:92:b7:d8:9c:9e:53:74:66:eb:f5:be: be:c4:e6:55:aa:78:9a:bc:35:45:4e:2d:bd:e4:ea: bd:06:0b:33:bd:0f:55:b0:87:e3:7d:1b:66:d1:de: f7:dc:40:11:f3:87:44:b5:08:44:4f:8b:6f:8b:7b: 99:2a:34:03:d4:b9:07:2e:48:7c:64:ef:7a:a5:bb: a4:5a:9a:01:72:3b:03:8d:17:2f:8b:f5:44:7d:03: d8:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:E4:BC:94:48:7E:E0:67:92:7E:6A:5F:7D:E8:BE:C2:52:51:5D:FD X509v3 Authority Key Identifier: keyid:AD:E8:59:AD:94:0D:1A:17:3F:A6:4C:D7:05:86:7D:48:7E:67:36:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:c2:70:42:3e:da:1f:0d:b5:c2:f1:03:ea:45:6d:8f:25:48: 88:0c:6a:ab:d8:9f:8f:08:ee:10:9f:76:0f:1f:00:ba:5b:86: e8:f3:24:86:1a:44:86:86:53:68:9e:7c:6b:3a:1e:b7:9e:79: af:8f:9a:22:1c:a4:f2:b6:0f:cf:1f:e9:8f:df:d8:7b:c9:cf: aa:a7:35:33:81:72:da:03:cf:62:bf:d7:65:4a:28:22:59:0f: 06:38:38:08:92:3d:df:a7:04:4e:2c:87:eb:7f:af:98:df:aa: 86:81:70:29:df:ea:5c:7c:b3:e6:4c:4b:b5:fd:34:18:65:7e: a7:8e:a7:c3:d6:73:65:9c:b1:ab:57:91:0c:86:9d:03:cf:09: 34:b0:72:1d:89:5a:bf:f6:23:54:5b:c4:bb:d8:2a:4d:92:58: f1:e7:eb:d0:82:f0:14:99:70:bf:a1:52:6c:a3:ae:39:6d:1c: 18:9c:23:f8:03:a7:a5:93:c5:18:af:41:c5:97:6a:55:b7:0c: a0:73:44:db:6b:c2:94:c3:d3:92:11:f6:8c:42:5c:7a:19:ae: 7e:eb:cf:60:5b:28:10:ed:e0:8c:6c:08:4a:ea:b6:c8:f2:7a: 47:ca:d2:c3:84:4d:8e:27:80:e8:20:2f:57:fc:88:df:ed:43: 19:ac:c2:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRBRDQxMTAvBgNVBAUTKEFERTg1OUFEOTQwRDFBMTczRkE2NENENzA1ODY3RDQ4 N0U2NzM2ODgwHhcNMjQwNTI1MDMwNjQ0WhcNMjQwNjAxMDMwNjQ0WjAYMRYwFAYD VQQDEw02NjUxNTVjNS0zN2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt605T/3yLE0AAOV0qdBBz+Y74xfmlAuhVC43I4k7BqkOxhVklRHm1c9u3ys1 EaVlIwYrZOUL7gzjdXUDMm/iIeR/kFqOixSmvdwgFMwT/wQnf+FXQsqrlQDr0OqM l/UdTeDiNGqNQeAQZf+MjHN+vQevBQNZ3W0NEb/TkJQKUwVcq7lvftsZM3KQtOo8 QFfqIZ2c8/iru7fb00eN5Xjt88/HvEbcKhCJkrfYnJ5TdGbr9b6+xOZVqniavDVF Ti295Oq9BgszvQ9VsIfjfRtm0d733EAR84dEtQhET4tvi3uZKjQD1LkHLkh8ZO96 pbukWpoBcjsDjRcvi/VEfQPYHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKnkvJRI fuBnkn5qX33ovsJSUV39MB8GA1UdIwQYMBaAFK3oWa2UDRoXP6ZM1wWGfUh+ZzaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREFENC9DODVFODM3QTQz OTkxMUVEODM5RDcyMEVDNEY5QUUwMi9yZWhaclpRTkdoY19wa3pYQllaOVNINW5O b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3JlaFpyWlFOR2hjX3BrelhCWVo5U0g1bk5vZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REFENC9DODVFODM3QTQzOTkxMUVEODM5RDcyMEVDNEY5QUUwMi9yZWhaclpRTkdo Y19wa3pYQllaOVNINW5Ob2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgwnBCPtofDbXC8QPqRW2PJUiIDGqr2J+PCO4Qn3YPHwC6W4bo8ySG GkSGhlNonnxrOh63nnmvj5oiHKTytg/PH+mP39h7yc+qpzUzgXLaA89iv9dlSigi WQ8GODgIkj3fpwROLIfrf6+Y36qGgXAp3+pcfLPmTEu1/TQYZX6njqfD1nNlnLGr V5EMhp0Dzwk0sHIdiVq/9iNUW8S72CpNkljx5+vQgvAUmXC/oVJso645bRwYnCP4 A6elk8UYr0HFl2pVtwygc0Tba8KUw9OSEfaMQlx6Ga5+689gWygQ7eCMbAhK6rbI 8npHytLDhE2OJ4DoIC9X/Ijf7UMZrMLp -----END CERTIFICATE-----Generated at Sat May 25 04:35:36 2024 by rpki-client on console-ams.rpki-client.org