$ rpki-client -vvf rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.mft File: 0dZcikMk4of26pFbOfXTYC0eN6Y.mft (raw, json) Hash identifier: NUZHTgK2bcEG9M9wPy+ZZNtsw6Q8+gDfRaIHo70minc= Subject key identifier: 25:3D:B0:34:7E:FB:67:7D:17:D9:EF:B1:4B:6B:5E:50:42:B6:7A:82 Authority key identifier: D1:D6:5C:8A:43:24:E2:87:F6:EA:91:5B:39:F5:D3:60:2D:1E:37:A6 Certificate issuer: /CN=A91743EF/serialNumber=D1D65C8A4324E287F6EA915B39F5D3602D1E37A6 Certificate serial: 1753 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0dZcikMk4of26pFbOfXTYC0eN6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.mft Manifest number: 1743 Signing time: Fri 31 May 2024 17:16:22 +0000 Manifest this update: Fri 31 May 2024 17:16:21 +0000 Manifest next update: Fri 07 Jun 2024 17:16:21 +0000 Files and hashes: 1: 0dZcikMk4of26pFbOfXTYC0eN6Y.crl (hash: r1zL8d2uy9lvd47C1lF2TwUVX71UtI3IiXhs5XQfmH0=) 2: 8B2EE9667A0911EE934F1262C4F9AE02.roa (hash: k9iCQXzhjwfzVaU7vow/nBOXFL+lk5IPY/l7RxNnfPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.crl rsync://rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0dZcikMk4of26pFbOfXTYC0eN6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 17:16:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5971 (0x1753) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91743EF/serialNumber=D1D65C8A4324E287F6EA915B39F5D3602D1E37A6 Validity Not Before: May 31 17:16:21 2024 GMT Not After : Jun 7 17:16:21 2024 GMT Subject: CN=665a05e5-b7e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:a0:c4:95:a3:96:a2:70:4c:55:d6:2f:39:5d: a4:0e:10:52:5c:af:12:90:9c:f7:72:7b:c1:27:4b: 14:4c:95:81:0c:cd:30:39:62:20:4f:e7:1f:77:4c: b4:1d:3c:1a:f5:3f:35:c0:88:14:0a:0c:1d:a8:02: 87:65:9c:cd:72:77:45:0b:d5:9c:b1:70:f4:7c:b3: 52:93:31:45:f2:18:be:98:17:9c:3e:17:5a:f1:68: cf:b5:1e:22:aa:40:1c:18:da:c7:bc:64:79:83:eb: 9e:59:f2:92:20:b8:4e:36:10:df:93:e9:21:56:57: 25:c9:8d:fe:a9:29:ba:e2:04:ac:cc:2f:60:62:ff: e9:fe:75:cf:98:91:e5:32:ae:84:9c:99:25:68:b7: 95:f0:f1:18:73:e2:ea:b3:4f:13:e4:be:b9:fa:6f: 99:5a:9b:1d:99:57:4f:59:26:0b:c2:ff:b3:0a:d2: 40:33:43:6a:fe:d9:cb:b5:99:78:39:c2:b3:99:dc: db:0a:37:32:e9:24:b7:4d:d0:e2:9c:c4:5b:7f:88: ea:d6:3e:e6:a4:e3:90:26:3b:08:41:55:a8:d9:aa: 67:db:8c:e2:1e:44:d0:87:b4:7d:73:0a:17:f7:da: 29:f4:a6:1d:8f:c8:51:f9:56:79:1a:fe:5d:81:13: 16:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:3D:B0:34:7E:FB:67:7D:17:D9:EF:B1:4B:6B:5E:50:42:B6:7A:82 X509v3 Authority Key Identifier: keyid:D1:D6:5C:8A:43:24:E2:87:F6:EA:91:5B:39:F5:D3:60:2D:1E:37:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0dZcikMk4of26pFbOfXTYC0eN6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:84:e6:52:30:90:02:68:82:61:4f:5e:2d:c4:23:2c:b4:8a: d9:ed:c0:0e:16:d2:9c:16:3c:2e:86:25:7e:3d:26:e6:45:4a: 59:54:f8:ba:dc:16:8d:7b:5b:df:a2:41:dd:04:47:59:33:7a: 11:10:02:e7:71:47:68:a6:c8:73:25:64:45:de:bc:ae:2d:27: 6f:5f:f3:33:69:c9:fc:a1:af:74:e6:18:20:76:14:bc:d7:ff: 47:da:70:77:18:23:69:10:75:8a:e6:2c:88:21:61:e8:a0:d7: 52:75:ab:8d:8b:f3:b3:78:c3:41:de:85:9d:5d:bb:f7:19:9a: 07:5c:cb:f0:af:9d:40:5f:7b:76:65:6c:89:0c:2f:90:86:c3: 7e:0a:16:6b:db:6d:ed:68:ce:49:3d:bd:74:eb:1c:ed:04:c7: 81:7b:b5:59:24:2f:c9:7e:8f:c0:04:24:dd:d1:eb:5b:24:af: ef:6b:a4:45:9d:37:68:b8:cf:8e:7e:cc:ec:53:4d:5b:15:12: ac:6f:a7:70:d0:5f:a4:da:9c:d9:03:e8:52:7f:b6:96:81:51: 07:48:56:ac:a1:c0:30:94:c0:0f:57:57:dd:37:d3:8a:4b:70: fd:1e:59:b2:db:67:ec:2d:8d:e6:bb:d3:81:18:be:15:6a:86: 85:f1:6e:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF1MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQzRUYxMTAvBgNVBAUTKEQxRDY1QzhBNDMyNEUyODdGNkVBOTE1QjM5RjVEMzYw MkQxRTM3QTYwHhcNMjQwNTMxMTcxNjIxWhcNMjQwNjA3MTcxNjIxWjAYMRYwFAYD VQQDEw02NjVhMDVlNS1iN2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3KDElaOWonBMVdYvOV2kDhBSXK8SkJz3cnvBJ0sUTJWBDM0wOWIgT+cfd0y0 HTwa9T81wIgUCgwdqAKHZZzNcndFC9WcsXD0fLNSkzFF8hi+mBecPhda8WjPtR4i qkAcGNrHvGR5g+ueWfKSILhONhDfk+khVlclyY3+qSm64gSszC9gYv/p/nXPmJHl Mq6EnJklaLeV8PEYc+Lqs08T5L65+m+ZWpsdmVdPWSYLwv+zCtJAM0Nq/tnLtZl4 OcKzmdzbCjcy6SS3TdDinMRbf4jq1j7mpOOQJjsIQVWo2apn24ziHkTQh7R9cwoX 99op9KYdj8hR+VZ5Gv5dgRMWoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCU9sDR+ +2d9F9nvsUtrXlBCtnqCMB8GA1UdIwQYMBaAFNHWXIpDJOKH9uqRWzn102AtHjem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDNFRi9FNkFCQjAxMEJB NDAxMUU3QTA4RDI2NkZDNEY5QUUwMi8wZFpjaWtNazRvZjI2cEZiT2ZYVFlDMGVO NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBkWmNpa01rNG9mMjZwRmJPZlhUWUMwZU42WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDNFRi9FNkFCQjAxMEJBNDAxMUU3QTA4RDI2NkZDNEY5QUUwMi8wZFpjaWtNazRv ZjI2cEZiT2ZYVFlDMGVONlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBihOZSMJACaIJhT14txCMstIrZ7cAOFtKcFjwuhiV+PSbmRUpZVPi6 3BaNe1vfokHdBEdZM3oREALncUdopshzJWRF3ryuLSdvX/Mzacn8oa905hggdhS8 1/9H2nB3GCNpEHWK5iyIIWHooNdSdauNi/OzeMNB3oWdXbv3GZoHXMvwr51AX3t2 ZWyJDC+QhsN+ChZr223taM5JPb106xztBMeBe7VZJC/Jfo/ABCTd0etbJK/va6RF nTdouM+OfszsU01bFRKsb6dw0F+k2pzZA+hSf7aWgVEHSFasocAwlMAPV1fdN9OK S3D9Hlmy22fsLY3mu9OBGL4VaoaF8W6s -----END CERTIFICATE-----Generated at Fri May 31 20:34:06 2024 by rpki-client on console-ams.rpki-client.org