$ rpki-client -vvf rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/aTtxpbXaYFTff5wNN5z1IMHI8pE.mft File: aTtxpbXaYFTff5wNN5z1IMHI8pE.mft (raw, json) Hash identifier: c0jSHp5ICh42/+dqotBCe1zxOpajWOIUyJ+7JujXy6k= Subject key identifier: 5D:08:99:55:A0:3E:B1:FC:3D:D4:A4:00:41:51:4F:FC:F2:0D:15:84 Authority key identifier: 69:3B:71:A5:B5:DA:60:54:DF:7F:9C:0D:37:9C:F5:20:C1:C8:F2:91 Certificate issuer: /CN=A917DB52/serialNumber=693B71A5B5DA6054DF7F9C0D379CF520C1C8F291 Certificate serial: 0721 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTtxpbXaYFTff5wNN5z1IMHI8pE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/aTtxpbXaYFTff5wNN5z1IMHI8pE.mft Manifest number: 071A Signing time: Fri 31 May 2024 23:24:30 +0000 Manifest this update: Fri 31 May 2024 23:24:29 +0000 Manifest next update: Fri 07 Jun 2024 23:24:29 +0000 Files and hashes: 1: aTtxpbXaYFTff5wNN5z1IMHI8pE.crl (hash: 1aIgG6LF7816yO+ZXi0CClUqgw0Ma3a9Ccnd3SKb1OE=) 2: D7A207C2F33611EAA449F44CC4F9AE02.roa (hash: 0YMqBzPvoFQA0axPjDRgV3CXDJ6fUaHaP0ohkfzBp/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/aTtxpbXaYFTff5wNN5z1IMHI8pE.crl rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/aTtxpbXaYFTff5wNN5z1IMHI8pE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTtxpbXaYFTff5wNN5z1IMHI8pE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 23:16:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1825 (0x721) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DB52/serialNumber=693B71A5B5DA6054DF7F9C0D379CF520C1C8F291 Validity Not Before: May 31 23:24:29 2024 GMT Not After : Jun 7 23:24:29 2024 GMT Subject: CN=665a5c2e-0801 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:7e:02:8e:c5:bd:53:fc:0a:8a:c1:b6:14:fd: 0e:5e:fc:2d:28:e5:97:c8:bf:be:52:b3:17:a4:0a: 14:b9:19:b0:00:bd:7a:db:33:4f:72:ad:ec:ef:bb: f9:37:9f:bb:0f:0a:a6:27:a9:bf:f6:a8:ef:d7:24: 8e:2c:f3:60:c2:75:cb:23:10:22:a0:7d:08:bc:3f: 48:c4:f7:c3:c9:d7:18:a0:b6:4e:ea:73:f0:5c:b7: c9:0e:2d:62:b7:96:7a:7d:d0:45:bc:c5:32:2e:a0: 0d:09:fb:6c:ff:eb:03:37:42:6a:14:af:9e:de:2d: bc:00:a3:54:a6:06:7a:c3:a8:05:61:1b:d2:3e:ff: e6:ca:66:29:72:49:8a:63:a6:15:6a:9e:87:02:e6: ea:df:c0:a5:36:1a:2d:1c:de:e9:fa:d5:d9:c3:8d: af:a4:5f:7c:3f:71:83:46:f4:0d:21:e8:f3:71:14: 70:b8:a3:a3:89:d3:c5:0e:ea:46:ce:76:74:18:da: 04:f7:a8:e7:68:52:63:cd:a6:fc:da:67:32:8c:b4: 42:38:b7:49:8e:55:11:b7:f4:e8:9e:13:35:3f:40: 8f:a6:ef:6d:1e:79:99:10:a1:76:94:7b:40:c6:8f: a5:f3:26:2f:f6:ea:4d:54:52:17:17:5b:4f:10:95: 69:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:08:99:55:A0:3E:B1:FC:3D:D4:A4:00:41:51:4F:FC:F2:0D:15:84 X509v3 Authority Key Identifier: keyid:69:3B:71:A5:B5:DA:60:54:DF:7F:9C:0D:37:9C:F5:20:C1:C8:F2:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/aTtxpbXaYFTff5wNN5z1IMHI8pE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTtxpbXaYFTff5wNN5z1IMHI8pE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/aTtxpbXaYFTff5wNN5z1IMHI8pE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:1c:b0:dc:e2:9a:7a:0c:46:85:27:d7:af:67:ad:fc:ac:9f: 11:a0:34:49:44:e3:71:40:1e:3c:51:0c:aa:fb:d3:f5:a2:bd: 49:d1:f1:ba:00:03:cb:17:bf:37:3c:35:26:d6:60:2a:3a:fd: 4e:2a:19:89:dc:56:bd:d3:cb:09:dd:2a:cb:14:f5:d5:f2:f2: 6f:21:a4:c7:43:59:2d:29:2b:4d:98:2d:d5:86:c2:94:0f:1c: 84:74:0a:90:3d:f5:b8:b1:04:8a:e3:89:d5:ba:4b:d2:94:ab: 98:01:01:98:3e:29:5f:b4:28:04:82:08:a4:3c:e2:58:50:6e: 0e:c5:70:b7:12:4f:4e:36:dd:bc:27:df:d5:99:33:88:30:a2: 5a:2c:7c:ab:2f:b2:74:d1:6a:f0:d6:31:a1:97:9f:6e:42:10: 56:ab:59:7c:57:3d:f9:9f:b3:f3:07:61:ea:55:be:95:6a:d7: 53:99:4c:6b:59:8c:52:9f:5c:47:6a:7a:aa:9e:c1:12:80:31: 11:2f:af:74:c2:b1:c3:e9:98:b9:d2:e1:bb:cd:37:00:ba:a3: 4a:6e:fc:29:c3:dc:a8:f5:27:74:d9:bd:b7:37:6b:ba:89:b0: 08:84:ec:c2:a0:3f:cc:c4:35:93:59:70:86:1d:f1:81:0f:b5: 43:07:5f:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RCNTIxMTAvBgNVBAUTKDY5M0I3MUE1QjVEQTYwNTRERjdGOUMwRDM3OUNGNTIw QzFDOEYyOTEwHhcNMjQwNTMxMjMyNDI5WhcNMjQwNjA3MjMyNDI5WjAYMRYwFAYD VQQDEw02NjVhNWMyZS0wODAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk34CjsW9U/wKisG2FP0OXvwtKOWXyL++UrMXpAoUuRmwAL162zNPcq3s77v5 N5+7DwqmJ6m/9qjv1ySOLPNgwnXLIxAioH0IvD9IxPfDydcYoLZO6nPwXLfJDi1i t5Z6fdBFvMUyLqANCfts/+sDN0JqFK+e3i28AKNUpgZ6w6gFYRvSPv/mymYpckmK Y6YVap6HAubq38ClNhotHN7p+tXZw42vpF98P3GDRvQNIejzcRRwuKOjidPFDupG znZ0GNoE96jnaFJjzab82mcyjLRCOLdJjlURt/TonhM1P0CPpu9tHnmZEKF2lHtA xo+l8yYv9upNVFIXF1tPEJVpzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF0ImVWg PrH8PdSkAEFRT/zyDRWEMB8GA1UdIwQYMBaAFGk7caW12mBU33+cDTec9SDByPKR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REI1Mi80NUY1NTZCRUYy ODAxMUVBODcxQkFENkFDNEY5QUUwMi9hVHR4cGJYYVlGVGZmNXdOTjV6MUlNSEk4 cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FUdHhwYlhhWUZUZmY1d05ONXoxSU1ISThwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REI1Mi80NUY1NTZCRUYyODAxMUVBODcxQkFENkFDNEY5QUUwMi9hVHR4cGJYYVlG VGZmNXdOTjV6MUlNSEk4cEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwHLDc4pp6DEaFJ9evZ638rJ8RoDRJRONxQB48UQyq+9P1or1J0fG6 AAPLF783PDUm1mAqOv1OKhmJ3Fa908sJ3SrLFPXV8vJvIaTHQ1ktKStNmC3VhsKU DxyEdAqQPfW4sQSK44nVukvSlKuYAQGYPilftCgEggikPOJYUG4OxXC3Ek9ONt28 J9/VmTOIMKJaLHyrL7J00Wrw1jGhl59uQhBWq1l8Vz35n7PzB2HqVb6VatdTmUxr WYxSn1xHanqqnsESgDERL690wrHD6Zi50uG7zTcAuqNKbvwpw9yo9Sd02b23N2u6 ibAIhOzCoD/MxDWTWXCGHfGBD7VDB19y -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:19 2024 by rpki-client on console-ams.rpki-client.org