$ rpki-client -vvf rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/rTRF20IBCxIVpJ5CfxrnQA14i_s.mft File: rTRF20IBCxIVpJ5CfxrnQA14i_s.mft (raw, json) Hash identifier: d2sw9O2orxi54WJ4IVuyM8ZZRonlhAsQN2KNFzNVHa4= Subject key identifier: DC:7C:18:6A:0A:3A:02:22:A6:48:49:3D:BD:BC:BB:B2:39:C8:F7:31 Authority key identifier: AD:34:45:DB:42:01:0B:12:15:A4:9E:42:7F:1A:E7:40:0D:78:8B:FB Certificate issuer: /CN=A9155647/serialNumber=AD3445DB42010B1215A49E427F1AE7400D788BFB Certificate serial: 28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rTRF20IBCxIVpJ5CfxrnQA14i_s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/rTRF20IBCxIVpJ5CfxrnQA14i_s.mft Manifest number: 20 Signing time: Sun 19 May 2024 08:44:20 +0000 Manifest this update: Sun 19 May 2024 08:44:19 +0000 Manifest next update: Sun 26 May 2024 08:44:19 +0000 Files and hashes: 1: rTRF20IBCxIVpJ5CfxrnQA14i_s.crl (hash: sDdbIDOjgpchYKhmrE3SxHyCHj0e+Ul/2elAv0/oG/k=) 2: 0DBEE8A6F37011EEACC7EB7AC4F9AE02.roa (hash: /gSA3t31p4sHh/nVImDlZ6C1qeedlIwa0gXefZnIFWo=) 3: B1262C9810F811EF96FA272DC4F9AE02.roa (hash: Xr2Z3gGybxDNnnBP0KJnMXxaraczB8aTyFg8EUHQcwg=) 4: BDA8549C147611EF86060639C4F9AE02.roa (hash: wTNoP9jfPSKorrEACwE3ZHI6Y51n8T4eyG7+tEhcdjo=) 5: 6C8DB570FE1911EEBC22905DC4F9AE02.roa (hash: hPgoNHbP8TnQMLHkO9eUXhsu4qNgnVEZOfgux/wVtSU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/rTRF20IBCxIVpJ5CfxrnQA14i_s.crl rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/rTRF20IBCxIVpJ5CfxrnQA14i_s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rTRF20IBCxIVpJ5CfxrnQA14i_s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155647/serialNumber=AD3445DB42010B1215A49E427F1AE7400D788BFB Validity Not Before: May 19 08:44:19 2024 GMT Not After : May 26 08:44:19 2024 GMT Subject: CN=6649bbe4-ade6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:29:f5:e3:79:b3:fa:c7:db:95:b1:ea:f9:9b: 5b:29:28:df:68:e3:2c:34:a9:aa:e2:94:7a:de:7d: 73:74:22:a5:92:f8:5a:86:94:3f:02:6f:10:ad:3d: 23:b5:ec:55:5f:37:b5:a4:05:01:09:25:ea:55:c0: 57:6f:eb:58:60:f5:a6:f4:b5:8a:71:81:9a:28:eb: 6d:e8:39:8e:34:35:df:3e:6c:b1:34:7e:ac:e8:6b: 04:96:11:8e:8d:8c:6d:0d:56:a2:ac:dd:ea:9e:ac: 61:58:39:24:5c:f4:bc:29:60:f2:bc:e0:d9:12:2c: d4:a3:f9:ad:a2:78:d8:71:21:51:e1:3e:07:4e:0d: e8:be:aa:a4:62:e2:df:dd:73:e8:3d:70:51:df:95: 32:72:4f:12:e0:0a:6c:10:1b:7b:d8:d8:be:d7:9f: 8a:ff:ef:94:ee:87:28:b2:3b:a8:3a:ae:24:bb:31: d6:cd:2b:00:5b:f2:34:53:c7:9a:ed:c6:2b:8b:9d: 97:1e:8a:15:da:88:3e:c1:ff:74:46:1d:b8:45:eb: 9a:09:7a:b7:7d:80:43:85:d9:8d:62:92:aa:52:1e: 92:eb:c0:ac:81:1d:4b:ca:de:7c:87:57:6c:29:a7: 76:3b:eb:dc:2d:27:a1:84:5a:49:df:36:18:11:09: 29:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:7C:18:6A:0A:3A:02:22:A6:48:49:3D:BD:BC:BB:B2:39:C8:F7:31 X509v3 Authority Key Identifier: keyid:AD:34:45:DB:42:01:0B:12:15:A4:9E:42:7F:1A:E7:40:0D:78:8B:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/rTRF20IBCxIVpJ5CfxrnQA14i_s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rTRF20IBCxIVpJ5CfxrnQA14i_s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/rTRF20IBCxIVpJ5CfxrnQA14i_s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:38:94:f5:19:c6:9f:bd:a3:88:48:7e:16:cb:5e:73:84:8b: 01:15:89:52:27:ca:10:af:92:4c:ce:f2:9c:ea:61:4d:43:ad: f2:29:67:b2:4e:e1:37:f4:68:ed:c6:a1:4a:c2:3b:75:34:60: 43:66:3d:6d:45:f2:22:94:73:a2:e0:e1:c6:3c:4f:3f:b6:34: 42:df:51:a7:11:d4:ad:3c:21:70:e2:d3:d9:98:76:16:98:3d: 53:25:ab:40:38:a2:61:3b:d4:4d:90:8d:47:1e:70:3e:b9:27: 98:fa:2b:a5:90:ea:e6:ba:81:23:89:37:a0:12:0d:da:06:2d: 14:0d:91:bf:be:19:98:2e:03:b5:6d:5e:7f:8b:09:e5:51:29: be:38:e1:31:41:43:9c:bb:e8:6b:be:c8:7f:00:01:bd:b1:bb: 84:1e:9d:79:5d:8b:b0:08:17:14:07:78:4a:77:10:3f:18:cc: 27:7d:0b:00:a3:f5:bf:d4:48:83:05:36:a2:29:a3:0a:8f:4b: 58:01:81:2f:25:e0:24:be:04:a9:89:bb:36:5f:01:e7:e7:22: ab:a2:f9:ea:27:5e:62:98:37:f0:4e:1d:3d:46:f7:ad:89:6b: 28:a9:d3:60:4f:16:f2:83:ac:f5:ed:70:fa:df:ff:c3:74:c9: bd:30:e4:8a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NTY0NzExMC8GA1UEBRMoQUQzNDQ1REI0MjAxMEIxMjE1QTQ5RTQyN0YxQUU3NDAw RDc4OEJGQjAeFw0yNDA1MTkwODQ0MTlaFw0yNDA1MjYwODQ0MTlaMBgxFjAUBgNV BAMTDTY2NDliYmU0LWFkZTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBKfXjebP6x9uVser5m1spKN9o4yw0qarilHrefXN0IqWS+FqGlD8CbxCtPSO1 7FVfN7WkBQEJJepVwFdv61hg9ab0tYpxgZoo623oOY40Nd8+bLE0fqzoawSWEY6N jG0NVqKs3eqerGFYOSRc9LwpYPK84NkSLNSj+a2ieNhxIVHhPgdODei+qqRi4t/d c+g9cFHflTJyTxLgCmwQG3vY2L7Xn4r/75TuhyiyO6g6riS7MdbNKwBb8jRTx5rt xiuLnZceihXaiD7B/3RGHbhF65oJerd9gEOF2Y1ikqpSHpLrwKyBHUvK3nyHV2wp p3Y769wtJ6GEWknfNhgRCSmLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU3HwYago6 AiKmSEk9vby7sjnI9zEwHwYDVR0jBBgwFoAUrTRF20IBCxIVpJ5CfxrnQA14i/sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1NjQ3LzkwNUMxMDQ2RjM2 RjExRUU5OTcyRUI3OUM0RjlBRTAyL3JUUkYyMElCQ3hJVnBKNUNmeHJuUUExNGlf cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvclRSRjIwSUJDeElWcEo1Q2Z4cm5RQTE0aV9zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1 NjQ3LzkwNUMxMDQ2RjM2RjExRUU5OTcyRUI3OUM0RjlBRTAyL3JUUkYyMElCQ3hJ VnBKNUNmeHJuUUExNGlfcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE44lPUZxp+9o4hIfhbLXnOEiwEViVInyhCvkkzO8pzqYU1DrfIpZ7JO 4Tf0aO3GoUrCO3U0YENmPW1F8iKUc6Lg4cY8Tz+2NELfUacR1K08IXDi09mYdhaY PVMlq0A4omE71E2QjUcecD65J5j6K6WQ6ua6gSOJN6ASDdoGLRQNkb++GZguA7Vt Xn+LCeVRKb444TFBQ5y76Gu+yH8AAb2xu4QenXldi7AIFxQHeEp3ED8YzCd9CwCj 9b/USIMFNqIpowqPS1gBgS8l4CS+BKmJuzZfAefnIqui+eonXmKYN/BOHT1G962J ayip02BPFvKDrPXtcPrf/8N0yb0w5Io= -----END CERTIFICATE-----Generated at Sun May 19 09:32:16 2024 by rpki-client on console-ams.rpki-client.org