$ rpki-client -vvf rpki.apnic.net/member_repository/A91230B8/F1F890F0965911ED8CC78A60C4F9AE02/-7q2kK3-EO9DS3GJVPFzh9Y4Rmg.mft File: -7q2kK3-EO9DS3GJVPFzh9Y4Rmg.mft (raw, json) Hash identifier: 99lc9M28PRxEDN4hApBP/JE5n/+jrsiM4TgLknIQbVA= Subject key identifier: 4F:CB:5F:96:6B:B0:9D:86:58:1E:C4:8A:CE:10:73:34:8F:0D:B8:1B Authority key identifier: FB:BA:B6:90:AD:FE:10:EF:43:4B:71:89:54:F1:73:87:D6:38:46:68 Certificate issuer: /CN=A91230B8/serialNumber=FBBAB690ADFE10EF434B718954F17387D6384668 Certificate serial: 0107 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-7q2kK3-EO9DS3GJVPFzh9Y4Rmg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91230B8/F1F890F0965911ED8CC78A60C4F9AE02/-7q2kK3-EO9DS3GJVPFzh9Y4Rmg.mft Manifest number: 0102 Signing time: Sun 19 May 2024 05:40:51 +0000 Manifest this update: Sun 19 May 2024 05:40:50 +0000 Manifest next update: Sun 26 May 2024 05:40:50 +0000 Files and hashes: 1: -7q2kK3-EO9DS3GJVPFzh9Y4Rmg.crl (hash: u5gg/r9tPOHg9oXl5UhRLf6YVJyLxEDzhgzCHm9tdUs=) 2: B966D678C0C611EE8F5F0458C4F9AE02.roa (hash: TqG7R4Q3a4wcn9CqVt9B0ue++RWLw1qZwpwj8h3vDBY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91230B8/F1F890F0965911ED8CC78A60C4F9AE02/-7q2kK3-EO9DS3GJVPFzh9Y4Rmg.crl rsync://rpki.apnic.net/member_repository/A91230B8/F1F890F0965911ED8CC78A60C4F9AE02/-7q2kK3-EO9DS3GJVPFzh9Y4Rmg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-7q2kK3-EO9DS3GJVPFzh9Y4Rmg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91230B8/serialNumber=FBBAB690ADFE10EF434B718954F17387D6384668 Validity Not Before: May 19 05:40:50 2024 GMT Not After : May 26 05:40:50 2024 GMT Subject: CN=664990e3-b6be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ab:dc:45:36:61:8a:87:6d:e9:ed:0a:47:85: ed:6d:c8:90:30:1a:be:48:1b:9c:f5:4d:d3:5e:9f: d1:05:ab:c6:e0:a4:4e:78:90:77:16:ba:c1:4f:ff: 49:7e:44:f3:2c:c2:9e:ca:c7:2a:12:89:55:35:cc: e4:97:87:d4:2c:5a:7a:ab:4b:ac:ac:4d:e2:f8:bb: 49:cd:2c:78:df:26:b9:ce:ff:71:29:50:15:79:f5: 4c:64:9a:9d:bc:de:eb:63:6d:e2:8e:2e:af:96:87: c7:6e:2b:56:ea:f4:26:83:5f:86:fd:b3:6a:84:47: 6a:b4:e7:03:7b:a2:f1:db:4d:2e:10:84:91:04:c8: eb:0f:de:24:a3:4d:c3:d4:8b:0c:e7:db:05:cd:36: a2:07:86:42:e8:3b:68:e2:26:4f:95:ec:1a:51:6a: ae:03:7d:ee:36:96:02:ee:05:70:36:36:3d:2e:48: 35:eb:ee:b9:86:8b:47:1b:6a:a1:bf:47:7b:a3:b9: 28:b0:db:09:e6:23:4e:e3:1a:be:a3:9d:5a:fb:b2: b0:93:e4:85:66:99:5c:82:07:a7:36:ab:21:7c:44: b7:15:6d:b2:cd:83:90:a9:fd:3c:ca:ae:ac:19:a5: 45:35:35:56:97:21:bc:ff:8c:e3:eb:b9:48:e9:65: 9b:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:CB:5F:96:6B:B0:9D:86:58:1E:C4:8A:CE:10:73:34:8F:0D:B8:1B X509v3 Authority Key Identifier: keyid:FB:BA:B6:90:AD:FE:10:EF:43:4B:71:89:54:F1:73:87:D6:38:46:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91230B8/F1F890F0965911ED8CC78A60C4F9AE02/-7q2kK3-EO9DS3GJVPFzh9Y4Rmg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-7q2kK3-EO9DS3GJVPFzh9Y4Rmg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91230B8/F1F890F0965911ED8CC78A60C4F9AE02/-7q2kK3-EO9DS3GJVPFzh9Y4Rmg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:1f:d2:88:a3:16:c7:25:3d:77:56:f4:e5:73:21:0e:f6:07: 21:0b:01:24:81:48:86:85:37:2e:8c:ef:03:e4:f2:6a:b7:d1: cd:0b:ed:7d:2f:a8:c2:8e:97:02:ed:22:e7:0c:ff:72:b7:43: b4:3b:1e:9c:10:e3:50:70:bc:fa:55:d1:5f:ad:70:72:4a:43: b7:80:99:1a:82:d2:08:69:ea:2e:40:db:3a:05:ce:8b:89:8e: a8:65:a7:c5:0c:da:a3:a1:c1:e0:bf:5b:93:5f:6e:5f:e8:47: 2f:63:f3:fc:ab:a1:64:02:3a:27:71:6a:c5:0f:bf:1a:af:06: f8:f0:e5:7a:9f:dd:7a:ae:c2:ad:5f:79:a9:c2:6f:23:9a:e3: d0:cd:ee:a1:86:64:7c:b4:9d:4d:81:ce:25:bc:9b:41:49:f7: fc:2a:24:c2:76:53:d4:f6:05:89:03:ff:03:a4:80:e9:7e:2c: 6c:ef:22:b2:04:27:36:36:86:ca:2c:b8:7e:f4:e5:e5:fa:20: 18:ec:9c:44:53:2a:9a:07:7e:35:69:e2:b1:67:a1:b0:60:62: 4a:64:80:08:3f:11:1a:2e:ad:4e:ca:a1:d4:23:b2:7f:bf:f9: b9:60:a0:b6:32:90:64:26:e8:e4:67:b2:43:b4:09:f0:db:bd: a1:fc:df:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjMwQjgxMTAvBgNVBAUTKEZCQkFCNjkwQURGRTEwRUY0MzRCNzE4OTU0RjE3Mzg3 RDYzODQ2NjgwHhcNMjQwNTE5MDU0MDUwWhcNMjQwNTI2MDU0MDUwWjAYMRYwFAYD VQQDEw02NjQ5OTBlMy1iNmJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo6vcRTZhiodt6e0KR4XtbciQMBq+SBuc9U3TXp/RBavG4KROeJB3FrrBT/9J fkTzLMKeyscqEolVNczkl4fULFp6q0usrE3i+LtJzSx43ya5zv9xKVAVefVMZJqd vN7rY23iji6vlofHbitW6vQmg1+G/bNqhEdqtOcDe6Lx200uEISRBMjrD94ko03D 1IsM59sFzTaiB4ZC6Dto4iZPlewaUWquA33uNpYC7gVwNjY9Lkg16+65hotHG2qh v0d7o7kosNsJ5iNO4xq+o51a+7Kwk+SFZplcggenNqshfES3FW2yzYOQqf08yq6s GaVFNTVWlyG8/4zj67lI6WWbIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE/LX5Zr sJ2GWB7Eis4QczSPDbgbMB8GA1UdIwQYMBaAFPu6tpCt/hDvQ0txiVTxc4fWOEZo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzBCOC9GMUY4OTBGMDk2 NTkxMUVEOENDNzhBNjBDNEY5QUUwMi8tN3Eya0szLUVPOURTM0dKVlBGemg5WTRS bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy03cTJrSzMtRU85RFMzR0pWUEZ6aDlZNFJtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzBCOC9GMUY4OTBGMDk2NTkxMUVEOENDNzhBNjBDNEY5QUUwMi8tN3Eya0szLUVP OURTM0dKVlBGemg5WTRSbWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmH9KIoxbHJT13VvTlcyEO9gchCwEkgUiGhTcujO8D5PJqt9HNC+19 L6jCjpcC7SLnDP9yt0O0Ox6cEONQcLz6VdFfrXBySkO3gJkagtIIaeouQNs6Bc6L iY6oZafFDNqjocHgv1uTX25f6EcvY/P8q6FkAjoncWrFD78arwb48OV6n916rsKt X3mpwm8jmuPQze6hhmR8tJ1Ngc4lvJtBSff8KiTCdlPU9gWJA/8DpIDpfixs7yKy BCc2NobKLLh+9OXl+iAY7JxEUyqaB341aeKxZ6GwYGJKZIAIPxEaLq1OyqHUI7J/ v/m5YKC2MpBkJujkZ7JDtAnw272h/N+R -----END CERTIFICATE-----Generated at Sun May 19 06:14:32 2024 by rpki-client on console-ams.rpki-client.org