$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft File: tBFqjm2pkf3PcWJue-oR_2nLqEY.mft (raw, json) Hash identifier: liqldILa7jxZXTbwDsaL8gOlaSX9ikscahRPmLEqoPc= Subject key identifier: 7A:72:CD:82:E4:04:FE:B6:B3:F6:20:B3:85:28:0F:A1:D8:98:61:E1 Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0AB4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft Manifest number: 0A89 Signing time: Thu 30 May 2024 20:44:19 +0000 Manifest this update: Thu 30 May 2024 20:44:18 +0000 Manifest next update: Thu 06 Jun 2024 20:44:18 +0000 Files and hashes: 1: tBFqjm2pkf3PcWJue-oR_2nLqEY.crl (hash: cjnfZ2GJHPXRkQw0WSozIeeV1gMuOYBW2iqg+emWMw4=) 2: 946C9032170C11EF9616D914C4F9AE02.roa (hash: eZbzets2NnIpQlXnpxHjcK387J7I0d6vk9iOAq6eEqQ=) 3: E7DE70DC3D9A11EA9606E13AC4F9AE02.roa (hash: devSm5ZGB3czKgy3n2V9OzUuNNTaXd53LcQTXNq4H04=) 4: 3F0F6E96BE5411EDAD9B2A1BC4F9AE02.roa (hash: vPkGIHgQPJ1VAQ3X3HAo9z/KW3qD/rBAtvMfS+J6XPE=) 5: 9584CC888FD611ECB5BAF00AC4F9AE02.roa (hash: VcVU0/0tTaasbm9jhiz7e/Hf2MQnH1cEpcPF+kDjdno=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 20:43:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2740 (0xab4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: May 30 20:44:18 2024 GMT Not After : Jun 6 20:44:18 2024 GMT Subject: CN=6658e523-83b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:78:f5:0b:f7:96:7e:04:e3:58:5d:71:d3:73: 69:0d:4d:5d:bf:22:04:97:e6:ad:6f:e4:19:e0:c0: 69:39:3f:5b:22:06:9e:3c:83:4e:c2:2e:39:41:0e: 84:67:8a:fb:6b:6f:db:41:8f:9a:05:80:c3:28:cd: 31:3e:73:e4:6d:93:2a:26:ba:eb:f0:07:b8:db:db: 75:e8:ff:c1:89:59:dd:bd:34:7b:b2:9f:eb:ac:43: 4f:9d:a3:0e:bf:87:ef:fb:e5:73:17:bc:92:52:f9: 69:12:c8:88:0a:c7:d4:43:4c:c6:21:8d:9e:05:44: 8d:72:c8:86:91:50:76:18:f1:77:1f:ee:e7:0a:13: ee:64:cf:97:8c:bf:d8:91:9b:22:d8:88:1d:1d:37: 7e:8c:85:08:07:e5:f0:c6:7f:75:80:35:67:92:6c: ba:97:2e:4a:7b:e8:41:40:02:e8:b9:06:bf:00:e6: 46:5b:4f:af:8f:8b:dc:6b:8c:89:38:5a:c0:3b:58: 32:3f:85:b0:f2:29:d6:76:9c:49:20:0d:8b:09:da: e4:7c:c0:89:5a:8e:75:ca:f5:54:46:b0:86:ad:cb: 9e:00:03:4f:0b:e1:eb:d1:35:2e:ea:9f:d7:00:97: 55:7f:d4:04:f1:51:57:ea:78:e6:fa:31:23:16:20: 0e:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:72:CD:82:E4:04:FE:B6:B3:F6:20:B3:85:28:0F:A1:D8:98:61:E1 X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:a0:4e:b4:19:52:59:81:20:3d:26:99:21:09:e6:11:8d:6c: 5e:f6:a5:1a:3f:e2:42:46:01:d9:c2:c6:2e:f9:97:89:d9:a6: b5:fe:20:70:be:f7:a2:dc:18:86:25:8d:c1:15:d3:86:85:6a: 6b:fa:af:80:85:28:28:f8:2e:75:90:1f:62:5e:81:a9:1d:43: 68:7f:09:3a:3a:3e:45:9d:68:21:7b:7e:e1:a4:05:81:5f:5c: a1:13:47:29:8f:c0:ef:99:72:19:1c:48:53:7e:fc:e2:6e:1e: d4:4f:a0:dc:c6:27:c5:fb:62:82:52:c8:b9:40:7c:93:8d:f4: ca:9e:e6:ce:51:2a:48:69:b4:a3:f7:47:6b:90:af:16:38:65: 5f:38:5b:de:3a:4a:60:4f:52:d5:5e:45:8f:56:f2:68:4a:ea: 1f:58:75:9c:b7:c7:2c:07:b2:6e:3d:d2:bf:1d:9a:91:0a:a9: a0:7b:a3:3e:e6:04:17:39:d8:ba:f9:19:44:eb:8e:1b:19:97: 8b:08:3d:12:41:ab:61:8d:0f:da:4e:9c:ff:89:6f:f4:f4:7a: 5f:fb:10:96:fd:fc:27:04:28:7b:20:f7:20:07:45:9b:ff:53: 17:8e:ff:a7:49:fa:bb:fb:7e:18:c6:ab:f8:4d:0a:d6:5b:9a: 5d:67:ed:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjQwNTMwMjA0NDE4WhcNMjQwNjA2MjA0NDE4WjAYMRYwFAYD VQQDEw02NjU4ZTUyMy04M2I1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Hj1C/eWfgTjWF1x03NpDU1dvyIEl+atb+QZ4MBpOT9bIgaePINOwi45QQ6E Z4r7a2/bQY+aBYDDKM0xPnPkbZMqJrrr8Ae429t16P/BiVndvTR7sp/rrENPnaMO v4fv++VzF7ySUvlpEsiICsfUQ0zGIY2eBUSNcsiGkVB2GPF3H+7nChPuZM+XjL/Y kZsi2IgdHTd+jIUIB+Xwxn91gDVnkmy6ly5Ke+hBQALouQa/AOZGW0+vj4vca4yJ OFrAO1gyP4Ww8inWdpxJIA2LCdrkfMCJWo51yvVURrCGrcueAANPC+Hr0TUu6p/X AJdVf9QE8VFX6njm+jEjFiAOPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHpyzYLk BP62s/Ygs4UoD6HYmGHhMB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDQwMi9GREJGRDAyMDNEOTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtm M1BjV0p1ZS1vUl8ybkxxRVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsoE60GVJZgSA9JpkhCeYRjWxe9qUaP+JCRgHZwsYu+ZeJ2aa1/iBw vvei3BiGJY3BFdOGhWpr+q+AhSgo+C51kB9iXoGpHUNofwk6Oj5FnWghe37hpAWB X1yhE0cpj8DvmXIZHEhTfvzibh7UT6DcxifF+2KCUsi5QHyTjfTKnubOUSpIabSj 90drkK8WOGVfOFveOkpgT1LVXkWPVvJoSuofWHWct8csB7JuPdK/HZqRCqmge6M+ 5gQXOdi6+RlE644bGZeLCD0SQathjQ/aTpz/iW/09Hpf+xCW/fwnBCh7IPcgB0Wb /1MXjv+nSfq7+34Yxqv4TQrWW5pdZ+33 -----END CERTIFICATE-----Generated at Thu May 30 21:49:39 2024 by rpki-client on console-ams.rpki-client.org