$ rpki-client -vvf rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft File: rTu2A7FO-ybXFWgvsEE1Hsj502c.mft (raw, json) Hash identifier: 0yedykSrhpFCc4oexUAfJVM6ljnfBgjCrWXWK/ECxUQ= Subject key identifier: F2:76:E7:AB:3C:9B:0E:2D:E2:07:F3:5A:5B:8C:97:BE:F0:51:20:EE Authority key identifier: AD:3B:B6:03:B1:4E:FB:26:D7:15:68:2F:B0:41:35:1E:C8:F9:D3:67 Certificate issuer: /CN=A9191436/serialNumber=AD3BB603B14EFB26D715682FB041351EC8F9D367 Certificate serial: 11FC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft Manifest number: 11E2 Signing time: Sat 18 May 2024 17:44:10 +0000 Manifest this update: Sat 18 May 2024 17:44:10 +0000 Manifest next update: Sat 25 May 2024 17:44:10 +0000 Files and hashes: 1: rTu2A7FO-ybXFWgvsEE1Hsj502c.crl (hash: w7qd82SsdBI3rkKI9C+7hcCVetxBRClLIXnejAiUq5k=) 2: 403398AA233111EEAF768F66C4F9AE02.roa (hash: FLNHQ37nVN7jzWdzIG3Z7vJwyk/LRxgATl+aq5j57sQ=) 3: E4AFD636233211EE8737EE2AC4F9AE02.roa (hash: I4Cnkf7lzkqLnc4f4vTRyRNiopCEkAOSa+SBIvRJfZM=) 4: 4426B244F6A011EC8E197883C4F9AE02.roa (hash: bBZfLoHpOK0OlB0OzQEVHa924CCG++Yge8OBC7CQuI4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.crl rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4604 (0x11fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191436/serialNumber=AD3BB603B14EFB26D715682FB041351EC8F9D367 Validity Not Before: May 18 17:44:10 2024 GMT Not After : May 25 17:44:10 2024 GMT Subject: CN=6648e8ea-4431 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:22:b9:c2:91:42:12:77:0c:5d:a0:53:19:80: e1:6e:f2:95:95:3c:ab:6b:a9:a1:f9:ab:1c:ee:97: d2:e2:a1:d4:7a:25:e3:dc:3d:39:f4:22:43:0c:16: 85:ee:89:5e:af:54:8e:67:96:07:67:17:55:80:df: 80:6b:f6:04:fe:32:ff:de:b2:7b:1e:a5:ec:b3:5f: e3:54:4e:ee:8d:0a:d5:1d:7e:ae:8a:3f:de:90:5e: 84:ce:7a:ec:ef:76:c1:ba:5f:2f:72:e8:28:a3:77: 83:7b:55:21:57:ce:ee:b8:e1:17:ca:f6:02:af:ed: c7:6d:d3:37:b3:be:2c:7c:90:ac:7d:41:0e:d4:ff: 55:d8:ea:88:10:08:7c:7d:94:95:2e:ce:85:35:74: 98:74:b1:4c:31:8f:a6:22:13:9f:83:69:29:ca:ae: 02:36:84:2c:d6:65:17:f3:c5:29:ec:10:d8:8d:d1: a8:22:ae:c7:80:f1:fa:d4:54:f5:dc:68:7d:2f:9b: 05:b5:6c:05:52:f4:4f:9f:4f:bb:dc:70:86:08:76: 18:48:4a:d8:43:2d:c8:fb:5a:e3:98:da:f3:5d:53: 4e:67:d9:d0:74:0e:5d:22:52:86:b6:1b:85:f7:ce: fe:ce:27:f0:bb:ed:dd:53:23:6b:fc:7f:4c:8b:50: 18:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:76:E7:AB:3C:9B:0E:2D:E2:07:F3:5A:5B:8C:97:BE:F0:51:20:EE X509v3 Authority Key Identifier: keyid:AD:3B:B6:03:B1:4E:FB:26:D7:15:68:2F:B0:41:35:1E:C8:F9:D3:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:d1:77:ad:f7:36:08:59:01:58:a8:c7:72:59:22:37:b3:83: 0f:4d:79:df:58:e4:31:e6:0e:de:de:68:d0:6d:ab:64:78:75: d7:86:d2:ea:a5:e8:2c:cd:a7:1b:5b:88:47:21:12:39:9e:3d: fc:dd:f4:35:b8:60:2c:f4:b1:f8:db:50:01:bc:16:29:18:74: 21:82:58:fc:62:c4:5c:17:92:a9:52:05:fd:d4:d1:12:c0:40: 6f:42:6a:4e:9f:d3:72:87:04:c0:f0:a0:a0:e7:40:33:3f:22: fc:58:e9:48:2c:92:67:64:e1:a1:12:87:d4:85:27:78:80:7e: cb:ed:a0:92:47:eb:9d:28:62:f4:b2:52:76:27:30:fc:74:bd: eb:a8:d9:77:5c:32:81:5f:5c:e3:e6:ef:55:14:16:c0:76:2a: 14:4e:97:80:1f:ae:37:e9:fe:6f:96:f9:7a:fa:5f:7a:c2:a5: fa:d8:cd:48:12:1a:55:1b:29:3a:d1:64:83:f8:9b:94:1b:65: ac:6e:07:ca:bd:50:5f:e0:a9:41:59:98:96:8c:e1:42:e3:d7: 1c:3d:29:c5:0c:fe:14:c8:46:69:2c:5b:14:16:c4:42:b6:ef: 3f:b3:04:e7:52:b3:f1:b9:bc:9b:f5:75:eb:e2:8d:12:ec:dd: e8:22:66:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE0MzYxMTAvBgNVBAUTKEFEM0JCNjAzQjE0RUZCMjZENzE1NjgyRkIwNDEzNTFF QzhGOUQzNjcwHhcNMjQwNTE4MTc0NDEwWhcNMjQwNTI1MTc0NDEwWjAYMRYwFAYD VQQDEw02NjQ4ZThlYS00NDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7CK5wpFCEncMXaBTGYDhbvKVlTyra6mh+asc7pfS4qHUeiXj3D059CJDDBaF 7oler1SOZ5YHZxdVgN+Aa/YE/jL/3rJ7HqXss1/jVE7ujQrVHX6uij/ekF6Eznrs 73bBul8vcugoo3eDe1UhV87uuOEXyvYCr+3HbdM3s74sfJCsfUEO1P9V2OqIEAh8 fZSVLs6FNXSYdLFMMY+mIhOfg2kpyq4CNoQs1mUX88Up7BDYjdGoIq7HgPH61FT1 3Gh9L5sFtWwFUvRPn0+73HCGCHYYSErYQy3I+1rjmNrzXVNOZ9nQdA5dIlKGthuF 987+zifwu+3dUyNr/H9Mi1AYDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPJ256s8 mw4t4gfzWluMl77wUSDuMB8GA1UdIwQYMBaAFK07tgOxTvsm1xVoL7BBNR7I+dNn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTQzNi9BMzBCNUE0QUM3 OEMxMUU4QTc2Q0Q5MTRDNEY5QUUwMi9yVHUyQTdGTy15YlhGV2d2c0VFMUhzajUw MmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JUdTJBN0ZPLXliWEZXZ3ZzRUUxSHNqNTAyYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTQzNi9BMzBCNUE0QUM3OEMxMUU4QTc2Q0Q5MTRDNEY5QUUwMi9yVHUyQTdGTy15 YlhGV2d2c0VFMUhzajUwMmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBY0Xet9zYIWQFYqMdyWSI3s4MPTXnfWOQx5g7e3mjQbatkeHXXhtLq pegszacbW4hHIRI5nj383fQ1uGAs9LH421ABvBYpGHQhglj8YsRcF5KpUgX91NES wEBvQmpOn9NyhwTA8KCg50AzPyL8WOlILJJnZOGhEofUhSd4gH7L7aCSR+udKGL0 slJ2JzD8dL3rqNl3XDKBX1zj5u9VFBbAdioUTpeAH6436f5vlvl6+l96wqX62M1I EhpVGyk60WSD+JuUG2WsbgfKvVBf4KlBWZiWjOFC49ccPSnFDP4UyEZpLFsUFsRC tu8/swTnUrPxubyb9XXr4o0S7N3oImas -----END CERTIFICATE-----Generated at Sat May 18 18:21:38 2024 by rpki-client on console-ams.rpki-client.org