$ rpki-client -vvf rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft File: TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft (raw, json) Hash identifier: RbOjruiPlg2CuOKy1Ty9OxuI2ABW7iZ3qOFwXbowJss= Subject key identifier: A9:AD:5F:6C:9C:20:04:56:ED:F2:1B:1E:2A:D5:7F:EF:D8:AB:3B:1A Authority key identifier: 4C:EE:EE:6D:36:63:C1:3F:D8:2E:93:1D:AC:69:F1:70:46:FC:99:B3 Certificate issuer: /CN=A914D271/serialNumber=4CEEEE6D3663C13FD82E931DAC69F17046FC99B3 Certificate serial: B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft Manifest number: AD Signing time: Sun 19 May 2024 06:38:37 +0000 Manifest this update: Sun 19 May 2024 06:38:36 +0000 Manifest next update: Sun 26 May 2024 06:38:36 +0000 Files and hashes: 1: TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl (hash: mJ6gtmkASx501KA+G+4KHczY55As5hbWOWBxAruM3/U=) 2: 5EAB725014A211EEA889E832C4F9AE02.roa (hash: N9v1fXpAWQUpJZbuaCy/aYTK4l+eZ+kCyMuepJ8AyXI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D271/serialNumber=4CEEEE6D3663C13FD82E931DAC69F17046FC99B3 Validity Not Before: May 19 06:38:36 2024 GMT Not After : May 26 06:38:36 2024 GMT Subject: CN=66499e6d-6272 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:9a:98:d2:f6:ba:46:bd:cb:e5:d3:9e:61:0d: bb:06:1d:f5:9e:00:63:97:d3:15:65:68:38:aa:56: 0c:be:d3:5d:50:f9:b2:b5:d0:af:41:3f:3e:26:aa: 99:2c:b3:f0:01:59:4f:81:fe:3b:0d:df:6e:c7:6e: 13:b5:01:6b:e0:3a:d3:42:a4:ba:a2:e0:bb:26:cf: 95:4f:54:c7:b2:e4:df:12:5d:05:38:d6:b1:76:7a: 2c:c9:86:60:1a:45:ea:5c:a5:ac:72:a1:a0:c4:5c: c3:db:a1:e6:55:01:71:46:3d:1f:28:6e:ef:19:97: dd:ce:46:1c:6c:c7:b2:7e:e2:06:c3:3e:6b:a4:82: 9f:1b:4c:2a:10:32:dc:24:98:c7:25:ad:0b:3f:af: 5f:a9:43:4e:80:b8:64:df:fa:2f:a6:b8:2e:30:e4: 19:df:da:da:36:06:7c:21:26:53:f1:3f:7c:6e:50: 2f:de:83:4f:d3:41:24:68:59:60:cb:b8:4b:e3:3a: 26:59:ed:3c:83:62:d0:0c:94:5c:b4:b4:e7:40:c1: bb:99:31:0e:cb:e8:d7:a2:a7:3b:5c:f4:a9:04:25: 74:38:85:dc:3c:96:bb:41:84:d1:9e:7d:77:d5:9c: 00:4f:5e:50:69:63:d7:23:95:43:de:e5:c2:7b:f6: d5:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:AD:5F:6C:9C:20:04:56:ED:F2:1B:1E:2A:D5:7F:EF:D8:AB:3B:1A X509v3 Authority Key Identifier: keyid:4C:EE:EE:6D:36:63:C1:3F:D8:2E:93:1D:AC:69:F1:70:46:FC:99:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:86:a3:20:13:21:ff:d9:0b:25:bc:d7:3e:c0:94:a8:70:ab: 42:97:fc:51:b1:bd:ab:eb:3d:ef:3d:fa:2a:5b:03:99:f5:e2: 02:b5:6e:b8:b4:0e:34:2f:b1:12:bf:cf:94:a9:b4:c1:1f:d4: 29:ca:2a:f4:bd:5e:6e:bc:1e:fc:d2:6c:77:44:73:29:dc:84: 30:4e:8f:45:5a:dd:1a:40:8c:fb:de:c4:1d:bd:11:30:81:93: 0c:c4:55:58:27:28:d2:73:e6:83:61:1f:52:5f:8d:cc:21:77: e6:63:3e:4b:89:2b:2f:23:ae:f0:5e:f1:c6:f4:be:82:32:2e: 41:92:02:3e:3e:95:92:e9:c5:87:80:f6:50:53:58:26:1f:0b: 92:23:d2:fe:87:31:62:fa:a9:a5:f5:03:2f:a7:3c:ac:d0:24: b1:a8:52:84:3b:80:ce:7c:65:64:26:b9:df:cc:96:3f:ad:a8: da:94:a8:4e:af:a4:10:09:a2:49:7d:02:8c:e6:e6:f1:14:2a: 96:cd:9a:75:e1:13:e2:6c:39:6c:e4:2b:10:f5:57:fb:29:8b: d0:86:61:84:12:43:c0:bd:fb:22:2a:c1:54:f7:30:4c:26:f5: f4:a7:c9:41:99:94:00:5c:95:35:d5:b4:98:75:5b:d0:df:9e: 1f:d3:bd:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQyNzExMTAvBgNVBAUTKDRDRUVFRTZEMzY2M0MxM0ZEODJFOTMxREFDNjlGMTcw NDZGQzk5QjMwHhcNMjQwNTE5MDYzODM2WhcNMjQwNTI2MDYzODM2WjAYMRYwFAYD VQQDEw02NjQ5OWU2ZC02MjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv5qY0va6Rr3L5dOeYQ27Bh31ngBjl9MVZWg4qlYMvtNdUPmytdCvQT8+JqqZ LLPwAVlPgf47Dd9ux24TtQFr4DrTQqS6ouC7Js+VT1THsuTfEl0FONaxdnosyYZg GkXqXKWscqGgxFzD26HmVQFxRj0fKG7vGZfdzkYcbMeyfuIGwz5rpIKfG0wqEDLc JJjHJa0LP69fqUNOgLhk3/ovprguMOQZ39raNgZ8ISZT8T98blAv3oNP00EkaFlg y7hL4zomWe08g2LQDJRctLTnQMG7mTEOy+jXoqc7XPSpBCV0OIXcPJa7QYTRnn13 1ZwAT15QaWPXI5VD3uXCe/bVmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKmtX2yc IARW7fIbHirVf+/YqzsaMB8GA1UdIwQYMBaAFEzu7m02Y8E/2C6THaxp8XBG/Jmz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDI3MS8yODE0RjBERTEx QjExMUVFOTA0N0JGMThDNEY5QUUwMi9UTzd1YlRaandUX1lMcE1kckdueGNFYjht Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RPN3ViVFpqd1RfWUxwTWRyR254Y0ViOG1iTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDI3MS8yODE0RjBERTExQjExMUVFOTA0N0JGMThDNEY5QUUwMi9UTzd1YlRaandU X1lMcE1kckdueGNFYjhtYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4hqMgEyH/2QslvNc+wJSocKtCl/xRsb2r6z3vPfoqWwOZ9eICtW64 tA40L7ESv8+UqbTBH9Qpyir0vV5uvB780mx3RHMp3IQwTo9FWt0aQIz73sQdvREw gZMMxFVYJyjSc+aDYR9SX43MIXfmYz5LiSsvI67wXvHG9L6CMi5BkgI+PpWS6cWH gPZQU1gmHwuSI9L+hzFi+qml9QMvpzys0CSxqFKEO4DOfGVkJrnfzJY/rajalKhO r6QQCaJJfQKM5ubxFCqWzZp14RPibDls5CsQ9Vf7KYvQhmGEEkPAvfsiKsFU9zBM JvX0p8lBmZQAXJU11bSYdVvQ354f071O -----END CERTIFICATE-----Generated at Sun May 19 08:25:01 2024 by rpki-client on console-ams.rpki-client.org