$ rpki-client -vvf rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft File: tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft (raw, json) Hash identifier: C4s36s0uA+ZFDe8G3H30DPSwPJO2WZRR1xgQSLJNVG0= Subject key identifier: 60:79:F6:3D:A0:70:32:FE:85:CD:C1:40:A1:F8:2E:87:C4:2C:90:68 Authority key identifier: B4:9E:8E:E8:17:03:A4:A0:BA:CC:A8:24:37:80:2F:B5:C3:0B:65:68 Certificate issuer: /CN=A91897BB/serialNumber=B49E8EE81703A4A0BACCA82437802FB5C30B6568 Certificate serial: 06C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft Manifest number: 06C3 Signing time: Sat 18 May 2024 23:03:21 +0000 Manifest this update: Sat 18 May 2024 23:03:21 +0000 Manifest next update: Sat 25 May 2024 23:03:21 +0000 Files and hashes: 1: tJ6O6BcDpKC6zKgkN4AvtcMLZWg.crl (hash: mrpRg0O1pOvFgHzOCFT+bdJCwPNkTzTOA+d3WlbVp9U=) 2: E51ECC8610E711EBAD066E1DC4F9AE02.roa (hash: X8l5WKdTykN4pkEEFbxZ8zv5lBUZDC68tJ50QcKI1zk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.crl rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1736 (0x6c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91897BB/serialNumber=B49E8EE81703A4A0BACCA82437802FB5C30B6568 Validity Not Before: May 18 23:03:21 2024 GMT Not After : May 25 23:03:21 2024 GMT Subject: CN=664933b9-a903 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8b:21:db:05:5e:8e:c3:c1:88:da:de:71:94: d0:b0:5f:70:75:a7:cb:70:41:fb:1b:dc:53:57:e3: 23:ba:19:1b:cd:96:5f:85:b7:af:45:82:95:9c:1e: d9:b0:16:30:e7:ee:2d:84:b4:7e:01:27:d3:7c:3b: f8:7b:57:05:27:12:a2:77:f2:b3:50:51:47:11:72: ef:32:e0:14:8f:6d:ad:ee:bc:dd:0c:cf:8b:78:24: ef:5d:53:14:75:f8:76:c7:03:78:5e:d6:92:85:3f: 63:ba:fe:9f:bc:e5:5e:56:3f:3f:48:4f:85:c5:10: 2e:cc:0b:7b:f6:13:15:a3:73:b0:36:65:8d:1f:66: 3d:d7:7d:7b:b3:2a:25:ae:ad:a0:d9:c9:db:f2:51: 9a:a6:02:1c:fc:d2:b1:f6:2a:34:92:ae:dc:72:0f: 76:b3:bc:17:49:95:f8:7d:59:47:2e:80:c7:65:0c: 36:b4:7e:44:cb:79:f0:53:ca:fb:cb:e2:6e:a0:16: 2e:4f:41:1c:e3:63:70:dc:11:9e:ca:f0:90:08:25: 54:74:69:a3:10:11:81:1c:a5:ad:8e:c4:6f:6f:6d: 11:a8:20:d5:93:d1:f3:ad:d4:50:a4:9b:f9:19:ef: 55:bd:40:74:ae:28:f4:e1:85:75:33:4a:32:67:f5: 98:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:79:F6:3D:A0:70:32:FE:85:CD:C1:40:A1:F8:2E:87:C4:2C:90:68 X509v3 Authority Key Identifier: keyid:B4:9E:8E:E8:17:03:A4:A0:BA:CC:A8:24:37:80:2F:B5:C3:0B:65:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:f3:81:d3:56:ea:81:aa:74:c3:4b:6a:de:8a:6b:70:fc:35: 8d:d9:f7:a7:eb:ce:54:62:e5:cd:37:18:65:5c:27:a3:8e:2d: bc:28:20:31:26:d0:ee:1c:1d:28:b9:cd:25:18:7d:5c:88:5c: 4b:29:6d:42:da:08:e4:c2:9f:93:e4:89:35:4f:e5:c8:5e:d5: 42:64:a9:22:fd:1a:af:a0:20:01:38:07:01:50:a3:c7:b7:22: ca:58:99:e4:0c:5b:b6:9e:48:1b:73:13:19:dd:e0:4f:24:a8: 26:2a:16:67:af:39:3a:d9:85:e7:9c:b3:f3:53:51:72:f0:2a: f8:c3:1e:38:01:39:91:7f:6a:e8:cd:c5:36:e2:6c:e8:19:8c: e5:ac:b6:6c:e7:72:06:32:cf:47:49:b9:ce:1a:cf:a9:53:54: fc:89:54:57:6f:46:d1:97:55:70:07:a9:8b:a7:87:68:10:6a: 4a:35:0b:c2:a5:bc:21:a0:76:a2:20:f4:ec:53:00:c7:99:8b: d6:0f:52:f1:bc:ab:2d:89:41:66:d1:9c:3c:3a:ad:6e:dd:22: 8a:20:7b:30:eb:e5:35:0a:66:60:f7:76:2a:bd:eb:94:7f:78: 79:44:68:3f:96:a5:81:64:38:ee:3b:b1:35:ca:25:79:b3:5a: 98:0e:7a:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk3QkIxMTAvBgNVBAUTKEI0OUU4RUU4MTcwM0E0QTBCQUNDQTgyNDM3ODAyRkI1 QzMwQjY1NjgwHhcNMjQwNTE4MjMwMzIxWhcNMjQwNTI1MjMwMzIxWjAYMRYwFAYD VQQDEw02NjQ5MzNiOS1hOTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxIsh2wVejsPBiNrecZTQsF9wdafLcEH7G9xTV+MjuhkbzZZfhbevRYKVnB7Z sBYw5+4thLR+ASfTfDv4e1cFJxKid/KzUFFHEXLvMuAUj22t7rzdDM+LeCTvXVMU dfh2xwN4XtaShT9juv6fvOVeVj8/SE+FxRAuzAt79hMVo3OwNmWNH2Y91317syol rq2g2cnb8lGapgIc/NKx9io0kq7ccg92s7wXSZX4fVlHLoDHZQw2tH5Ey3nwU8r7 y+JuoBYuT0Ec42Nw3BGeyvCQCCVUdGmjEBGBHKWtjsRvb20RqCDVk9HzrdRQpJv5 Ge9VvUB0rij04YV1M0oyZ/WYOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGB59j2g cDL+hc3BQKH4LofELJBoMB8GA1UdIwQYMBaAFLSejugXA6SgusyoJDeAL7XDC2Vo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTdCQi9GQzczRkEwNjEw RTYxMUVCQjRBMjUyMURDNEY5QUUwMi90SjZPNkJjRHBLQzZ6S2drTjRBdnRjTUxa V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RKNk82QmNEcEtDNnpLZ2tONEF2dGNNTFpXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTdCQi9GQzczRkEwNjEwRTYxMUVCQjRBMjUyMURDNEY5QUUwMi90SjZPNkJjRHBL QzZ6S2drTjRBdnRjTUxaV2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA184HTVuqBqnTDS2reimtw/DWN2fen685UYuXNNxhlXCejji28KCAx JtDuHB0ouc0lGH1ciFxLKW1C2gjkwp+T5Ik1T+XIXtVCZKki/RqvoCABOAcBUKPH tyLKWJnkDFu2nkgbcxMZ3eBPJKgmKhZnrzk62YXnnLPzU1Fy8Cr4wx44ATmRf2ro zcU24mzoGYzlrLZs53IGMs9HSbnOGs+pU1T8iVRXb0bRl1VwB6mLp4doEGpKNQvC pbwhoHaiIPTsUwDHmYvWD1LxvKstiUFm0Zw8Oq1u3SKKIHsw6+U1CmZg93YqveuU f3h5RGg/lqWBZDjuO7E1yiV5s1qYDnoO -----END CERTIFICATE-----Generated at Sun May 19 00:30:18 2024 by rpki-client on console-ams.rpki-client.org