$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/cJdlx9TTMfTDasa-NH-mah8CNJA.mft File: cJdlx9TTMfTDasa-NH-mah8CNJA.mft (raw, json) Hash identifier: gqFkBainC7a5/Oc5T2K+A83VHDVW7nV5lPdiL4OXGko= Subject key identifier: 9A:45:A1:B4:AE:14:49:48:C5:60:7A:8B:3A:FD:DE:7F:E6:31:77:8A Authority key identifier: 70:97:65:C7:D4:D3:31:F4:C3:6A:C6:BE:34:7F:A6:6A:1F:02:34:90 Certificate issuer: /CN=A91AE85E/serialNumber=709765C7D4D331F4C36AC6BE347FA66A1F023490 Certificate serial: 341F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJdlx9TTMfTDasa-NH-mah8CNJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/cJdlx9TTMfTDasa-NH-mah8CNJA.mft Manifest number: 33EE Signing time: Sat 18 May 2024 14:18:51 +0000 Manifest this update: Sat 18 May 2024 14:18:50 +0000 Manifest next update: Sat 25 May 2024 14:18:50 +0000 Files and hashes: 1: cJdlx9TTMfTDasa-NH-mah8CNJA.crl (hash: WVnyzZ5bZjFKbqQIxWUz89dKFl4E15ZByc0fGT8ciL8=) 2: 392987D254F611E79DF7E643C4F9AE02.roa (hash: 4h7J78rlX+2vspK7F8UUEGHUI6kq314rWzgttdFWu+g=) 3: 09E2DC32B12B11E59337F35AC4F9AE02.roa (hash: 8FFLZzcqxB9olqH/wxHcdyGypFHaehu5WrrAFHlsuD4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/cJdlx9TTMfTDasa-NH-mah8CNJA.crl rsync://rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/cJdlx9TTMfTDasa-NH-mah8CNJA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJdlx9TTMfTDasa-NH-mah8CNJA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:18:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13343 (0x341f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE85E/serialNumber=709765C7D4D331F4C36AC6BE347FA66A1F023490 Validity Not Before: May 18 14:18:50 2024 GMT Not After : May 25 14:18:50 2024 GMT Subject: CN=6648b8ca-4289 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:e2:ab:ba:49:9b:26:65:30:f1:9c:3b:9b:8b: 98:1a:0a:43:68:e0:34:ac:3f:03:42:01:dc:b1:f9: 9c:1d:6d:e8:ac:89:20:df:b2:7f:05:d8:7c:ca:11: fc:33:95:2c:ba:c9:94:fc:59:50:e6:61:73:2b:5d: 40:af:3b:1c:9b:06:ca:34:bf:fb:11:7f:3e:52:a9: 94:b3:f9:00:45:b3:98:81:b1:0a:4e:42:c6:6c:57: ce:d3:2d:a5:9c:a4:30:8d:c1:ce:62:f3:73:94:e8: b5:36:f2:82:61:76:74:a4:09:08:87:a9:62:e2:ba: c1:70:80:66:77:cd:e5:0b:f5:1a:92:4d:e4:8b:31: 61:8b:e8:27:6a:48:1f:40:23:c7:81:2d:3a:b0:0f: 38:d1:f8:a1:ed:94:b4:23:60:28:dd:fd:2e:f2:a6: a9:6e:6a:65:f4:f7:32:6b:19:69:df:ef:c0:16:5b: 28:b9:a9:82:0c:46:3e:1b:47:69:36:41:57:a1:46: 14:d6:e1:4e:84:48:4e:ee:5d:3e:3a:95:60:eb:85: c4:84:e6:21:43:18:37:49:a9:c5:fd:a7:7e:78:f9: cf:ef:89:bb:7c:83:25:e0:87:17:41:21:97:3b:37: 12:ae:e5:fd:99:06:5d:d4:69:35:e2:6c:1c:fb:b2: 66:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:45:A1:B4:AE:14:49:48:C5:60:7A:8B:3A:FD:DE:7F:E6:31:77:8A X509v3 Authority Key Identifier: keyid:70:97:65:C7:D4:D3:31:F4:C3:6A:C6:BE:34:7F:A6:6A:1F:02:34:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/cJdlx9TTMfTDasa-NH-mah8CNJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJdlx9TTMfTDasa-NH-mah8CNJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/cJdlx9TTMfTDasa-NH-mah8CNJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:3e:84:13:da:f7:18:1d:d8:7e:0a:cc:76:89:37:f4:43:c7: 2b:23:02:be:47:0d:5e:72:60:06:70:65:aa:d0:0a:db:e1:4f: e1:54:32:dd:1c:eb:bf:06:4f:6f:d3:6a:50:86:bf:9e:b6:8b: d8:2d:b5:96:14:c8:00:69:83:8d:48:48:b1:83:fe:db:fc:b8: ee:43:a7:bf:cc:9f:5a:ea:04:c2:42:9f:82:4d:2e:90:75:66: 34:d7:3c:02:69:81:b9:ba:e7:28:a2:fe:60:b3:31:a8:b1:2b: 76:b2:27:0b:bd:5b:f7:6f:28:23:9d:43:89:5d:8f:34:e9:ad: d9:35:a8:42:fe:6d:79:0d:4c:51:42:cb:93:46:4d:3c:5d:51: 18:47:2c:53:ed:6b:1f:b3:ba:27:bf:f4:ae:24:d5:ab:6f:56: e4:e3:2e:f2:99:f8:d8:aa:26:80:92:a6:4c:c3:de:d3:b7:f2: e5:4b:97:ce:12:16:a7:d7:88:6b:00:42:fb:6c:1c:64:23:cf: c0:bc:c6:93:84:3e:4f:4a:9b:b2:e3:ab:53:95:3b:53:95:b4: e8:8d:e7:e4:09:b8:02:72:f6:c8:8e:45:ec:20:d4:ea:24:60: 54:9e:1b:e4:76:2d:1a:f5:f7:f5:9b:0e:fc:b1:24:29:9b:df: c6:0f:ac:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU4NUUxMTAvBgNVBAUTKDcwOTc2NUM3RDREMzMxRjRDMzZBQzZCRTM0N0ZBNjZB MUYwMjM0OTAwHhcNMjQwNTE4MTQxODUwWhcNMjQwNTI1MTQxODUwWjAYMRYwFAYD VQQDEw02NjQ4YjhjYS00Mjg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7OKrukmbJmUw8Zw7m4uYGgpDaOA0rD8DQgHcsfmcHW3orIkg37J/Bdh8yhH8 M5UsusmU/FlQ5mFzK11ArzscmwbKNL/7EX8+UqmUs/kARbOYgbEKTkLGbFfO0y2l nKQwjcHOYvNzlOi1NvKCYXZ0pAkIh6li4rrBcIBmd83lC/Uakk3kizFhi+gnakgf QCPHgS06sA840fih7ZS0I2Ao3f0u8qapbmpl9Pcyaxlp3+/AFlsouamCDEY+G0dp NkFXoUYU1uFOhEhO7l0+OpVg64XEhOYhQxg3SanF/ad+ePnP74m7fIMl4IcXQSGX OzcSruX9mQZd1Gk14mwc+7JmPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJpFobSu FElIxWB6izr93n/mMXeKMB8GA1UdIwQYMBaAFHCXZcfU0zH0w2rGvjR/pmofAjSQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTg1RS8wQkVEMzUyNjFE NkUxMUUyQjA0QTYxQUYwOEIwMkNEMi9jSmRseDlUVE1mVERhc2EtTkgtbWFoOENO SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NKZGx4OVRUTWZURGFzYS1OSC1tYWg4Q05KQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTg1RS8wQkVEMzUyNjFENkUxMUUyQjA0QTYxQUYwOEIwMkNEMi9jSmRseDlUVE1m VERhc2EtTkgtbWFoOENOSkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtPoQT2vcYHdh+Csx2iTf0Q8crIwK+Rw1ecmAGcGWq0Arb4U/hVDLd HOu/Bk9v02pQhr+etovYLbWWFMgAaYONSEixg/7b/LjuQ6e/zJ9a6gTCQp+CTS6Q dWY01zwCaYG5uucoov5gszGosSt2sicLvVv3bygjnUOJXY806a3ZNahC/m15DUxR QsuTRk08XVEYRyxT7Wsfs7onv/SuJNWrb1bk4y7ymfjYqiaAkqZMw97Tt/LlS5fO Ehan14hrAEL7bBxkI8/AvMaThD5PSpuy46tTlTtTlbTojefkCbgCcvbIjkXsINTq JGBUnhvkdi0a9ff1mw78sSQpm9/GD6yN -----END CERTIFICATE-----Generated at Sat May 18 15:58:25 2024 by rpki-client on console-ams.rpki-client.org