$ rpki-client -vvf rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft File: TSkgNoEWBfjziJgBUhslcnoc12U.mft (raw, json) Hash identifier: r3H3zeBDTTFnQuMJH/BXWrYPii5B7ZBFaEyIUWZkJg8= Subject key identifier: 8B:B7:8C:4C:DD:9D:7A:20:10:39:49:37:47:94:E0:C2:79:D6:4D:22 Authority key identifier: 4D:29:20:36:81:16:05:F8:F3:88:98:01:52:1B:25:72:7A:1C:D7:65 Certificate issuer: /CN=A9154DE2/serialNumber=4D292036811605F8F3889801521B25727A1CD765 Certificate serial: 0245 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft Manifest number: 0243 Signing time: Sun 19 May 2024 03:57:14 +0000 Manifest this update: Sun 19 May 2024 03:57:13 +0000 Manifest next update: Sun 26 May 2024 03:57:13 +0000 Files and hashes: 1: TSkgNoEWBfjziJgBUhslcnoc12U.crl (hash: 6YX3faDnmP0MlsiObj+5/6LmxpkUvYZiEs7GQr2bkO4=) 2: EB4F77B8D5E411ECB31AC843C4F9AE02.roa (hash: ohr7V7Y8e5KAcWoKiy8Fvk4ZDUJEjhEtlQUdHa+ddqg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.crl rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 581 (0x245) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154DE2/serialNumber=4D292036811605F8F3889801521B25727A1CD765 Validity Not Before: May 19 03:57:13 2024 GMT Not After : May 26 03:57:13 2024 GMT Subject: CN=66497899-de1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:84:87:7c:4e:74:22:eb:10:9f:34:46:c9:04: 26:94:a3:c2:a8:7a:dc:d7:31:99:17:90:35:03:bb: 95:11:2d:10:8f:11:d4:82:ee:74:a9:07:f1:2f:a0: d9:a3:f4:1d:d2:b8:e2:b4:35:9e:14:da:6e:a4:e4: ef:cc:36:86:02:41:8d:8d:62:94:47:b5:06:37:dd: 5d:cb:d8:63:5b:d7:9c:40:2c:d9:23:41:25:21:66: ac:5e:e8:f9:65:02:75:c9:6b:2c:83:f2:60:d4:d3: e0:c0:e3:f3:6f:e7:ab:aa:08:51:e8:19:ab:81:9f: a8:f1:6f:bc:2e:0c:aa:26:53:a2:f8:6c:d7:fb:01: 76:e7:92:e6:43:3f:c0:e5:14:7e:32:72:2d:0d:de: 9a:51:5d:79:50:61:b5:b8:49:ed:90:be:5d:91:8d: 70:89:d5:b6:f0:06:1c:a6:44:8b:ea:cb:59:a0:72: 27:9a:c2:0b:0c:c0:25:6b:ba:61:7b:92:6e:a7:6d: c4:02:fb:9c:93:22:5d:1e:ca:73:14:7e:c8:f1:b6: 54:b1:56:8c:b8:29:9b:13:33:e8:71:86:80:60:8e: e7:98:c0:90:e6:9f:09:c0:fc:95:ed:46:15:86:32: 43:b0:f2:22:e5:a9:f3:09:f0:bc:3f:1c:38:df:ea: 1d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:B7:8C:4C:DD:9D:7A:20:10:39:49:37:47:94:E0:C2:79:D6:4D:22 X509v3 Authority Key Identifier: keyid:4D:29:20:36:81:16:05:F8:F3:88:98:01:52:1B:25:72:7A:1C:D7:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:c1:04:b6:e7:05:a1:3d:bb:5a:9c:33:50:5a:69:02:75:9c: 9f:da:8e:ba:29:3b:ea:cd:7e:35:35:dc:ac:c0:fe:e9:89:f3: 3a:3a:4d:10:f6:f4:7a:25:8a:e9:52:d3:6a:e8:e7:b8:0f:04: 3e:7c:05:ad:33:23:63:b2:2f:2f:d3:0a:7b:e9:99:29:4b:3a: 01:0e:b4:94:fa:b5:29:d2:8f:9f:d0:b9:e8:de:f9:b4:62:ba: 65:a3:c8:a6:35:4a:3c:9b:5d:28:dc:2d:88:d8:55:93:0c:a0: 98:df:e1:1f:7b:e1:be:3f:45:0b:59:18:17:d5:e7:5d:41:16: d8:de:8a:08:3c:c3:2a:39:e4:c7:ee:71:3c:7e:39:e1:b8:e9: 18:da:00:0b:2b:b9:a6:80:1f:74:37:0f:e5:17:39:55:5f:5c: 13:af:81:7d:ef:1c:12:76:9e:6c:73:26:3b:1b:7b:7c:d4:67: 80:2e:94:07:c0:81:27:68:86:aa:c8:c3:9a:70:fa:7f:87:cd: 96:72:4d:c5:83:0e:cb:5c:3d:98:dd:23:44:4c:f0:24:6d:cc: c7:fc:6f:fb:a6:7d:1d:e5:9f:e4:28:7d:11:17:88:0f:fa:61: 25:8e:98:c2:0b:8c:13:fe:1b:bc:eb:4c:a2:b1:c9:57:19:bf: 22:d6:0f:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRERTIxMTAvBgNVBAUTKDREMjkyMDM2ODExNjA1RjhGMzg4OTgwMTUyMUIyNTcy N0ExQ0Q3NjUwHhcNMjQwNTE5MDM1NzEzWhcNMjQwNTI2MDM1NzEzWjAYMRYwFAYD VQQDEw02NjQ5Nzg5OS1kZTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv4SHfE50IusQnzRGyQQmlKPCqHrc1zGZF5A1A7uVES0QjxHUgu50qQfxL6DZ o/Qd0rjitDWeFNpupOTvzDaGAkGNjWKUR7UGN91dy9hjW9ecQCzZI0ElIWasXuj5 ZQJ1yWssg/Jg1NPgwOPzb+erqghR6BmrgZ+o8W+8LgyqJlOi+GzX+wF255LmQz/A 5RR+MnItDd6aUV15UGG1uEntkL5dkY1widW28AYcpkSL6stZoHInmsILDMAla7ph e5Jup23EAvuckyJdHspzFH7I8bZUsVaMuCmbEzPocYaAYI7nmMCQ5p8JwPyV7UYV hjJDsPIi5anzCfC8Pxw43+od4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIu3jEzd nXogEDlJN0eU4MJ51k0iMB8GA1UdIwQYMBaAFE0pIDaBFgX484iYAVIbJXJ6HNdl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NERFMi8xQzU0MjJEMEQ1 REQxMUVDQTE0Q0M2MjNDNEY5QUUwMi9UU2tnTm9FV0JmanppSmdCVWhzbGNub2Mx MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RTa2dOb0VXQmZqemlKZ0JVaHNsY25vYzEyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NERFMi8xQzU0MjJEMEQ1REQxMUVDQTE0Q0M2MjNDNEY5QUUwMi9UU2tnTm9FV0Jm anppSmdCVWhzbGNub2MxMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKwQS25wWhPbtanDNQWmkCdZyf2o66KTvqzX41NdyswP7pifM6Ok0Q 9vR6JYrpUtNq6Oe4DwQ+fAWtMyNjsi8v0wp76ZkpSzoBDrSU+rUp0o+f0Lno3vm0 Yrplo8imNUo8m10o3C2I2FWTDKCY3+Efe+G+P0ULWRgX1eddQRbY3ooIPMMqOeTH 7nE8fjnhuOkY2gALK7mmgB90Nw/lFzlVX1wTr4F97xwSdp5scyY7G3t81GeALpQH wIEnaIaqyMOacPp/h82Wck3Fgw7LXD2Y3SNETPAkbczH/G/7pn0d5Z/kKH0RF4gP +mEljpjCC4wT/hu860yisclXGb8i1g/+ -----END CERTIFICATE-----Generated at Sun May 19 04:22:04 2024 by rpki-client on console-fra.rpki-client.org