$ rpki-client -vvf rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft File: tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft (raw, json) Hash identifier: xBk3VfiiFVSrL1UCCmLLp163OaJwtKdLJCHO82lMVjk= Subject key identifier: 79:1B:84:3D:5B:9A:EA:AE:38:A5:7D:3D:09:37:70:07:38:DB:2C:CA Authority key identifier: B6:64:51:F9:71:88:CA:F8:18:4D:07:C1:30:A2:5D:95:76:F8:C1:05 Certificate issuer: /CN=A916A0AF/serialNumber=B66451F97188CAF8184D07C130A25D9576F8C105 Certificate serial: 04B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tmRR-XGIyvgYTQfBMKJdlXb4wQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft Manifest number: 04AE Signing time: Sat 01 Jun 2024 02:30:49 +0000 Manifest this update: Sat 01 Jun 2024 02:30:49 +0000 Manifest next update: Sat 08 Jun 2024 02:30:49 +0000 Files and hashes: 1: tmRR-XGIyvgYTQfBMKJdlXb4wQU.crl (hash: b6m/+WwTIBK3RdtFoqJBxKPqbWCoiCc6J+LcMIGVUpo=) 2: 529F69FCE5CA11EBB98C5577C4F9AE02.roa (hash: iGGEAjUC0++42POw1gb2SZmwmNS0zkkpPN27YBry/aI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.crl rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tmRR-XGIyvgYTQfBMKJdlXb4wQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1203 (0x4b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A0AF/serialNumber=B66451F97188CAF8184D07C130A25D9576F8C105 Validity Not Before: Jun 1 02:30:49 2024 GMT Not After : Jun 8 02:30:49 2024 GMT Subject: CN=665a87d9-f854 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a1:55:cf:d2:5c:8a:14:1f:01:24:df:1d:3e: ba:05:bb:29:92:76:c3:8a:ce:c5:49:fc:29:c4:5e: bd:3c:a8:1e:12:6e:51:31:42:ed:f1:dc:06:3b:80: f5:5b:e4:59:7b:cb:56:8e:37:c7:50:0c:6c:e6:98: 65:b0:20:fc:a2:95:28:eb:26:5f:f5:ca:b4:f1:14: 41:e6:8f:83:16:4f:a7:a2:85:7b:4d:bc:7e:a0:86: 35:65:72:05:a0:f5:fe:c6:df:02:2c:ea:f7:9f:60: 9b:1b:c4:23:45:5d:4e:42:2f:0f:95:c3:12:9e:7c: 68:54:00:e7:fe:c3:dd:bc:3e:bc:56:09:97:59:b0: 4d:7e:5e:3f:2d:42:8a:b8:cf:99:19:90:6b:38:7d: 33:8a:e3:b0:64:56:ae:19:29:e9:59:c3:31:cb:5a: 4f:31:7f:c3:1a:eb:42:29:6c:dc:cc:62:06:de:c0: a7:d6:3e:82:82:38:e8:f5:c7:29:73:12:92:eb:91: f4:cc:bf:cf:c5:50:65:5a:ce:ad:24:18:bb:a1:8a: 11:a0:d6:ca:7f:c7:76:bc:ee:2f:0f:a8:95:01:41: fe:d6:ac:e7:a5:4a:c2:27:9c:ee:da:60:ae:40:cd: 1a:5c:2c:f7:67:34:f2:fd:5b:20:be:26:9c:3c:06: 29:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:1B:84:3D:5B:9A:EA:AE:38:A5:7D:3D:09:37:70:07:38:DB:2C:CA X509v3 Authority Key Identifier: keyid:B6:64:51:F9:71:88:CA:F8:18:4D:07:C1:30:A2:5D:95:76:F8:C1:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tmRR-XGIyvgYTQfBMKJdlXb4wQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A0AF/FD65B4D8E4A611EBB94AA54CC4F9AE02/tmRR-XGIyvgYTQfBMKJdlXb4wQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:fd:30:18:88:00:3a:db:ea:dd:8a:bf:51:66:a1:88:52:cd: d6:58:1d:0f:25:c5:89:77:44:e3:70:f6:65:03:34:7e:b3:dd: c6:82:04:07:b7:c5:eb:a9:10:46:05:e6:86:bd:11:4b:f5:8b: 5f:a5:ce:c8:ce:69:b2:28:7a:35:e0:a1:2d:10:ec:44:ee:d3: dc:da:dc:d0:66:fc:da:35:63:d3:aa:e3:8d:4b:60:ed:c3:3c: cb:be:85:02:b7:05:43:79:b5:20:c2:9f:3e:45:2b:8b:a5:7f: c5:a1:ca:fb:b8:44:e1:d0:e5:36:1d:a8:3a:ff:ec:2f:5d:c0: e9:b4:ee:1b:1a:5b:57:7d:8a:72:67:c3:45:96:72:bd:a5:4d: be:07:b7:31:d2:2d:4c:67:39:9b:c5:a0:31:27:00:5f:ef:e8: a7:7f:12:01:2e:af:ca:c1:f4:5c:62:ba:61:8a:51:34:73:96: db:5e:db:15:d4:46:7b:26:2f:be:f4:7d:3f:9c:78:ba:2a:a1: 96:07:ef:23:70:d0:7d:f6:69:70:be:d8:b4:97:6c:dc:04:94: 59:f4:c2:06:8b:c0:4c:33:f5:8b:53:d3:ef:27:e9:15:a3:91: ae:81:08:70:f6:00:f8:63:d6:02:79:d6:34:07:65:b8:73:ad: 75:72:d1:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEwQUYxMTAvBgNVBAUTKEI2NjQ1MUY5NzE4OENBRjgxODREMDdDMTMwQTI1RDk1 NzZGOEMxMDUwHhcNMjQwNjAxMDIzMDQ5WhcNMjQwNjA4MDIzMDQ5WjAYMRYwFAYD VQQDEw02NjVhODdkOS1mODU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqFVz9JcihQfASTfHT66BbspknbDis7FSfwpxF69PKgeEm5RMULt8dwGO4D1 W+RZe8tWjjfHUAxs5phlsCD8opUo6yZf9cq08RRB5o+DFk+nooV7Tbx+oIY1ZXIF oPX+xt8CLOr3n2CbG8QjRV1OQi8PlcMSnnxoVADn/sPdvD68VgmXWbBNfl4/LUKK uM+ZGZBrOH0ziuOwZFauGSnpWcMxy1pPMX/DGutCKWzczGIG3sCn1j6Cgjjo9ccp cxKS65H0zL/PxVBlWs6tJBi7oYoRoNbKf8d2vO4vD6iVAUH+1qznpUrCJ5zu2mCu QM0aXCz3ZzTy/VsgviacPAYpQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHkbhD1b muquOKV9PQk3cAc42yzKMB8GA1UdIwQYMBaAFLZkUflxiMr4GE0HwTCiXZV2+MEF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTBBRi9GRDY1QjREOEU0 QTYxMUVCQjk0QUE1NENDNEY5QUUwMi90bVJSLVhHSXl2Z1lUUWZCTUtKZGxYYjR3 UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RtUlItWEdJeXZnWVRRZkJNS0pkbFhiNHdRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTBBRi9GRDY1QjREOEU0QTYxMUVCQjk0QUE1NENDNEY5QUUwMi90bVJSLVhHSXl2 Z1lUUWZCTUtKZGxYYjR3UVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCe/TAYiAA62+rdir9RZqGIUs3WWB0PJcWJd0TjcPZlAzR+s93GggQH t8XrqRBGBeaGvRFL9Ytfpc7IzmmyKHo14KEtEOxE7tPc2tzQZvzaNWPTquONS2Dt wzzLvoUCtwVDebUgwp8+RSuLpX/Focr7uETh0OU2Hag6/+wvXcDptO4bGltXfYpy Z8NFlnK9pU2+B7cx0i1MZzmbxaAxJwBf7+infxIBLq/KwfRcYrphilE0c5bbXtsV 1EZ7Ji++9H0/nHi6KqGWB+8jcNB99mlwvti0l2zcBJRZ9MIGi8BMM/WLU9PvJ+kV o5GugQhw9gD4Y9YCedY0B2W4c611ctET -----END CERTIFICATE-----Generated at Sat Jun 1 04:59:02 2024 by rpki-client on console-fra.rpki-client.org