$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9E0E/472C392210EE11EA9852957FC4F9AE02/2spjaZboGaoflR3Gb_Ka0JecBcg.mft File: 2spjaZboGaoflR3Gb_Ka0JecBcg.mft (raw, json) Hash identifier: 4DogwMimCV79TV/KliQd6JOqK0aLVQm0aeQFuGSW75c= Subject key identifier: 3B:0D:E9:93:A6:8E:F5:04:27:9B:7E:13:5B:FF:3E:4B:18:2C:92:E9 Authority key identifier: DA:CA:63:69:96:E8:19:AA:1F:95:1D:C6:6F:F2:9A:D0:97:9C:05:C8 Certificate issuer: /CN=A91A9E0E/serialNumber=DACA636996E819AA1F951DC66FF29AD0979C05C8 Certificate serial: 0B6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2spjaZboGaoflR3Gb_Ka0JecBcg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9E0E/472C392210EE11EA9852957FC4F9AE02/2spjaZboGaoflR3Gb_Ka0JecBcg.mft Manifest number: 0B57 Signing time: Sat 18 May 2024 19:42:25 +0000 Manifest this update: Sat 18 May 2024 19:42:25 +0000 Manifest next update: Sat 25 May 2024 19:42:25 +0000 Files and hashes: 1: 2spjaZboGaoflR3Gb_Ka0JecBcg.crl (hash: Z4nq6ZNyqFPZ5HbJsaHBR5/W8EaZa9SqsEuWvUFKt0o=) 2: 15FB452EE46E11EABA2FD316C4F9AE02.roa (hash: AXlGmtPAr/+ZjGZEvsdIuhh3ValXH523UgvEJrH07C4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9E0E/472C392210EE11EA9852957FC4F9AE02/2spjaZboGaoflR3Gb_Ka0JecBcg.crl rsync://rpki.apnic.net/member_repository/A91A9E0E/472C392210EE11EA9852957FC4F9AE02/2spjaZboGaoflR3Gb_Ka0JecBcg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2spjaZboGaoflR3Gb_Ka0JecBcg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:42:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2923 (0xb6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9E0E/serialNumber=DACA636996E819AA1F951DC66FF29AD0979C05C8 Validity Not Before: May 18 19:42:25 2024 GMT Not After : May 25 19:42:25 2024 GMT Subject: CN=664904a1-79f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ad:08:b3:d9:e5:76:93:f1:5f:88:2f:46:41: f4:63:54:b6:b5:0d:ee:63:30:e3:86:ed:85:a2:b8: 29:a1:0a:b1:c6:33:ec:43:f4:fb:d1:7a:40:fe:ea: 16:cf:d0:90:e4:86:a6:ea:5a:65:2f:fc:cf:98:ec: 85:7f:43:4c:3c:2b:9a:93:98:d6:87:51:37:cc:ce: c2:7a:cf:0e:ec:59:62:24:f1:58:3f:94:ba:e1:c5: 56:c3:3b:56:9e:e5:44:66:e4:39:bc:8d:9c:26:e4: 80:89:ad:22:6c:a2:22:fa:84:9e:87:84:b1:3a:ce: 9f:7e:f4:2f:14:f9:d6:75:f8:de:20:79:64:2d:38: 12:c2:fc:4e:d5:69:c0:b9:ee:42:7d:6f:2f:7f:3c: b2:df:af:20:c4:0f:69:ea:93:76:b7:74:ef:7e:b3: 8a:80:19:28:f6:42:f3:eb:1c:21:dd:99:25:49:7e: c1:dc:10:d0:8c:0f:8b:2c:d4:76:c0:8d:f8:66:97: dd:b3:89:68:ec:d1:4d:a9:5d:12:7f:42:2c:1b:c5: 1d:ae:a9:74:53:c1:2e:5d:b5:7f:8c:e4:76:9d:ac: 41:5b:54:86:85:e8:41:44:29:32:be:f1:46:52:72: 89:93:ab:da:ff:5d:ca:c5:d7:05:4e:1a:54:17:f0: 3d:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:0D:E9:93:A6:8E:F5:04:27:9B:7E:13:5B:FF:3E:4B:18:2C:92:E9 X509v3 Authority Key Identifier: keyid:DA:CA:63:69:96:E8:19:AA:1F:95:1D:C6:6F:F2:9A:D0:97:9C:05:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9E0E/472C392210EE11EA9852957FC4F9AE02/2spjaZboGaoflR3Gb_Ka0JecBcg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2spjaZboGaoflR3Gb_Ka0JecBcg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9E0E/472C392210EE11EA9852957FC4F9AE02/2spjaZboGaoflR3Gb_Ka0JecBcg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:f9:38:46:c3:e1:f4:44:54:67:c9:48:d1:20:53:2f:f3:d4: 96:04:c3:99:46:f6:fe:84:47:4a:59:53:2a:c5:89:ad:f2:92: 7f:67:15:a4:e3:86:08:5f:65:4a:f0:17:2e:e3:c8:08:b6:cb: cb:73:34:ab:eb:82:8b:6e:e4:31:9e:ad:01:13:aa:14:bd:39: 7d:34:7f:b7:1d:82:f6:af:da:b8:ea:fc:16:8c:00:c2:5c:df: a4:15:94:72:93:73:98:36:1e:fa:30:76:7a:9d:45:d0:54:a5: 2f:25:4f:cf:07:fe:20:c9:bf:85:26:aa:02:7a:60:d6:fe:31: b6:cf:d7:0b:eb:fb:56:7c:b4:5a:7b:95:ec:f8:8d:ef:9e:be: b3:75:7b:47:78:63:6a:86:59:a8:17:b5:73:bd:26:24:09:16: dc:a3:c8:af:97:f9:f0:17:9e:e9:44:39:ec:51:7c:3b:4d:af: e5:a1:76:6f:b6:e8:97:3d:3f:9b:62:53:b9:7b:0d:5d:b3:8d: 3a:7a:40:a2:c5:c9:83:c6:eb:f4:88:ef:41:cd:ee:8d:c4:e8: ff:af:52:42:a6:5b:2f:7d:d1:75:a4:9e:80:94:32:e8:a9:77: 86:75:d9:41:34:01:c3:90:f6:eb:bf:0a:ad:fb:fe:ce:e3:b6: bb:33:d9:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlFMEUxMTAvBgNVBAUTKERBQ0E2MzY5OTZFODE5QUExRjk1MURDNjZGRjI5QUQw OTc5QzA1QzgwHhcNMjQwNTE4MTk0MjI1WhcNMjQwNTI1MTk0MjI1WjAYMRYwFAYD VQQDEw02NjQ5MDRhMS03OWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs60Is9nldpPxX4gvRkH0Y1S2tQ3uYzDjhu2ForgpoQqxxjPsQ/T70XpA/uoW z9CQ5Iam6lplL/zPmOyFf0NMPCuak5jWh1E3zM7Ces8O7FliJPFYP5S64cVWwztW nuVEZuQ5vI2cJuSAia0ibKIi+oSeh4SxOs6ffvQvFPnWdfjeIHlkLTgSwvxO1WnA ue5CfW8vfzyy368gxA9p6pN2t3TvfrOKgBko9kLz6xwh3ZklSX7B3BDQjA+LLNR2 wI34Zpfds4lo7NFNqV0Sf0IsG8Udrql0U8EuXbV/jOR2naxBW1SGhehBRCkyvvFG UnKJk6va/13KxdcFThpUF/A9LwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDsN6ZOm jvUEJ5t+E1v/PksYLJLpMB8GA1UdIwQYMBaAFNrKY2mW6BmqH5Udxm/ymtCXnAXI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUUwRS80NzJDMzkyMjEw RUUxMUVBOTg1Mjk1N0ZDNEY5QUUwMi8yc3BqYVpib0dhb2ZsUjNHYl9LYTBKZWNC Y2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJzcGphWmJvR2FvZmxSM0diX0thMEplY0JjZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUUwRS80NzJDMzkyMjEwRUUxMUVBOTg1Mjk1N0ZDNEY5QUUwMi8yc3BqYVpib0dh b2ZsUjNHYl9LYTBKZWNCY2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBL+ThGw+H0RFRnyUjRIFMv89SWBMOZRvb+hEdKWVMqxYmt8pJ/ZxWk 44YIX2VK8Bcu48gItsvLczSr64KLbuQxnq0BE6oUvTl9NH+3HYL2r9q46vwWjADC XN+kFZRyk3OYNh76MHZ6nUXQVKUvJU/PB/4gyb+FJqoCemDW/jG2z9cL6/tWfLRa e5Xs+I3vnr6zdXtHeGNqhlmoF7VzvSYkCRbco8ivl/nwF57pRDnsUXw7Ta/loXZv tuiXPT+bYlO5ew1ds406ekCixcmDxuv0iO9Bze6NxOj/r1JCplsvfdF1pJ6AlDLo qXeGddlBNAHDkPbrvwqt+/7O47a7M9n+ -----END CERTIFICATE-----Generated at Sat May 18 21:31:30 2024 by rpki-client on console-ams.rpki-client.org