$ rpki-client -vvf rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft File: tnwkXksr7q0jwfBd0w_5B32HuOY.mft (raw, json) Hash identifier: VM/puQ8ZqFpoWYWYGktc8EBAMgRnp88xjwb3BDUEttU= Subject key identifier: A0:38:AD:F0:1C:9F:37:A9:82:8B:8D:BD:F6:16:3B:D9:17:C2:C6:88 Authority key identifier: B6:7C:24:5E:4B:2B:EE:AD:23:C1:F0:5D:D3:0F:F9:07:7D:87:B8:E6 Certificate issuer: /CN=A91116C7/serialNumber=B67C245E4B2BEEAD23C1F05DD30FF9077D87B8E6 Certificate serial: 11D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft Manifest number: 11D1 Signing time: Sat 18 May 2024 17:43:46 +0000 Manifest this update: Sat 18 May 2024 17:43:46 +0000 Manifest next update: Sat 25 May 2024 17:43:46 +0000 Files and hashes: 1: tnwkXksr7q0jwfBd0w_5B32HuOY.crl (hash: VYf/VgxXZiITyOh+YO/vgp7inYNzx8xpfMAnbkugnHQ=) 2: 0CAF01A6C6C811E8AECD6165C4F9AE02.roa (hash: U5orWrmpKJgxXY35oZM7izfy/QA51Cr/03RTHm+0ZYA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.crl rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4567 (0x11d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91116C7/serialNumber=B67C245E4B2BEEAD23C1F05DD30FF9077D87B8E6 Validity Not Before: May 18 17:43:46 2024 GMT Not After : May 25 17:43:46 2024 GMT Subject: CN=6648e8d2-4a49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:16:20:71:d5:c6:ae:3f:c3:8a:13:e8:14:62: ec:2f:f3:f8:ee:09:f1:33:2f:34:02:4e:20:a8:14: 2b:58:b9:e4:6e:77:b6:bc:8d:66:dd:64:06:49:aa: a4:e8:ee:b6:e3:4c:42:7f:de:04:9b:78:c5:d0:81: e5:5a:7b:34:c1:f3:e5:63:4c:15:c0:0f:48:4d:7d: 28:48:76:df:e4:20:e4:8c:72:05:56:a3:40:43:1e: da:37:95:29:08:79:ab:22:f4:b7:9b:32:e4:93:09: 4c:bf:f5:99:3c:a8:8b:5b:8b:6b:08:5a:8e:39:1f: f3:c5:14:87:7f:c9:fe:4e:19:d1:aa:20:b3:8c:95: cb:4c:4e:e9:59:1c:2d:39:57:77:cc:7f:7b:c3:60: bf:88:1d:1b:3d:b4:23:eb:fc:71:90:0c:91:26:d9: c7:65:41:32:5a:a5:09:7e:38:b8:63:e4:9e:04:16: e8:98:de:e8:ce:06:ce:4d:53:e8:4f:3f:78:98:d9: d6:08:44:91:37:1f:bc:17:e8:35:58:fe:e4:d5:75: cb:4d:4b:42:83:bb:de:61:5b:17:5a:17:25:e7:0a: 08:dc:75:42:0d:ee:e0:69:ae:1b:1f:57:69:4c:8f: 2f:b3:a1:d8:f2:5e:e9:48:88:d7:85:15:6b:10:fc: 78:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:38:AD:F0:1C:9F:37:A9:82:8B:8D:BD:F6:16:3B:D9:17:C2:C6:88 X509v3 Authority Key Identifier: keyid:B6:7C:24:5E:4B:2B:EE:AD:23:C1:F0:5D:D3:0F:F9:07:7D:87:B8:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:2c:55:74:6b:1d:ba:26:c1:3d:f1:75:b6:47:86:bf:6d:b0: 64:46:84:44:1a:cd:a9:f4:e2:cf:25:c2:e2:02:0e:80:35:69: eb:59:b6:2d:fa:02:50:7b:24:71:9c:82:42:1b:b7:81:58:f0: 9c:5c:3c:1c:fa:1c:9b:1c:b5:dc:2e:fe:cd:e4:8d:2a:47:bb: 29:fc:c5:15:d1:44:f1:81:9d:53:2c:1a:5c:41:5c:07:31:4b: 46:35:ae:78:34:60:c6:aa:56:31:16:bf:d9:34:3a:7e:cb:b4: 64:8e:b0:ed:8f:60:26:70:80:36:92:58:9e:20:04:c6:e9:32: 59:cf:44:59:34:ed:ea:39:fc:72:de:ad:ad:a8:21:03:f4:67: 97:f5:15:1e:87:67:bb:7d:99:96:71:03:e2:e9:36:88:1f:50: 96:f2:85:35:a0:a0:be:0a:43:68:82:d9:44:5c:06:b2:fe:86: 06:99:10:e7:62:f8:40:e8:55:37:4f:e7:26:23:b4:bc:68:1b: b7:ff:96:f8:d4:10:19:c9:44:d6:4c:d0:76:f6:55:16:b4:ef: 5d:bf:0a:9b:42:65:e3:a4:c9:85:33:f5:0f:d3:ac:cd:53:dd: 32:d8:4b:f2:26:3a:95:57:37:37:10:40:f4:5e:7c:bc:3f:71: 36:1a:10:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE2QzcxMTAvBgNVBAUTKEI2N0MyNDVFNEIyQkVFQUQyM0MxRjA1REQzMEZGOTA3 N0Q4N0I4RTYwHhcNMjQwNTE4MTc0MzQ2WhcNMjQwNTI1MTc0MzQ2WjAYMRYwFAYD VQQDEw02NjQ4ZThkMi00YTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqRYgcdXGrj/DihPoFGLsL/P47gnxMy80Ak4gqBQrWLnkbne2vI1m3WQGSaqk 6O6240xCf94Em3jF0IHlWns0wfPlY0wVwA9ITX0oSHbf5CDkjHIFVqNAQx7aN5Up CHmrIvS3mzLkkwlMv/WZPKiLW4trCFqOOR/zxRSHf8n+ThnRqiCzjJXLTE7pWRwt OVd3zH97w2C/iB0bPbQj6/xxkAyRJtnHZUEyWqUJfji4Y+SeBBbomN7ozgbOTVPo Tz94mNnWCESRNx+8F+g1WP7k1XXLTUtCg7veYVsXWhcl5woI3HVCDe7gaa4bH1dp TI8vs6HY8l7pSIjXhRVrEPx4qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKA4rfAc nzepgouNvfYWO9kXwsaIMB8GA1UdIwQYMBaAFLZ8JF5LK+6tI8HwXdMP+Qd9h7jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTZDNy9DODU2RDZDNEM2 QzYxMUU4ODJBNDEyNjBDNEY5QUUwMi90bndrWGtzcjdxMGp3ZkJkMHdfNUIzMkh1 T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rud2tYa3NyN3EwandmQmQwd181QjMySHVPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTZDNy9DODU2RDZDNEM2QzYxMUU4ODJBNDEyNjBDNEY5QUUwMi90bndrWGtzcjdx MGp3ZkJkMHdfNUIzMkh1T1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiLFV0ax26JsE98XW2R4a/bbBkRoREGs2p9OLPJcLiAg6ANWnrWbYt +gJQeyRxnIJCG7eBWPCcXDwc+hybHLXcLv7N5I0qR7sp/MUV0UTxgZ1TLBpcQVwH MUtGNa54NGDGqlYxFr/ZNDp+y7RkjrDtj2AmcIA2klieIATG6TJZz0RZNO3qOfxy 3q2tqCED9GeX9RUeh2e7fZmWcQPi6TaIH1CW8oU1oKC+CkNogtlEXAay/oYGmRDn YvhA6FU3T+cmI7S8aBu3/5b41BAZyUTWTNB29lUWtO9dvwqbQmXjpMmFM/UP06zN U90y2EvyJjqVVzc3EED0Xny8P3E2GhAb -----END CERTIFICATE-----Generated at Sat May 18 18:21:35 2024 by rpki-client on console-ams.rpki-client.org