$ rpki-client -vvf rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft File: rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft (raw, json) Hash identifier: WrqQsQowFWmWODyGE8kz/lppR75o4NQA2413tNdlsTA= Subject key identifier: 34:43:B6:66:F7:AA:8E:57:67:0F:38:3F:3C:0B:2E:A6:A1:DC:4B:99 Authority key identifier: AD:3D:87:03:85:0B:12:71:E8:F3:1A:E0:3E:3C:C9:AC:46:60:D9:42 Certificate issuer: /CN=A91B97DB/serialNumber=AD3D8703850B1271E8F31AE03E3CC9AC4660D942 Certificate serial: 0B5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft Manifest number: 0B53 Signing time: Fri 31 May 2024 20:19:45 +0000 Manifest this update: Fri 31 May 2024 20:19:45 +0000 Manifest next update: Fri 07 Jun 2024 20:19:45 +0000 Files and hashes: 1: rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl (hash: Uv8p4KsxPJu+Pf63Felxu6xt2xDJagXeEeum2kVdvlM=) 2: 5A0FAE220F7011EAB8E21167C4F9AE02.roa (hash: Y/uzlOIUU0V4v9M321Rye0oS4n7e4WmILr/kHV5za9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 20:19:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2907 (0xb5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B97DB/serialNumber=AD3D8703850B1271E8F31AE03E3CC9AC4660D942 Validity Not Before: May 31 20:19:45 2024 GMT Not After : Jun 7 20:19:45 2024 GMT Subject: CN=665a30e1-e32a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:5e:b6:72:25:a8:95:82:3f:e8:7d:3c:35:93: 7e:c7:20:8b:e0:c5:1b:62:c4:1b:30:06:63:c0:e5: 7d:77:55:20:1e:92:fd:78:33:37:3c:93:61:cf:97: c3:39:6f:04:31:d0:b3:9e:65:fe:53:bb:e5:e2:b7: 1a:93:fa:52:cf:cd:1f:42:31:1c:ac:f7:59:09:ac: a7:87:60:dd:68:ec:03:9a:b2:c3:05:6a:3d:de:08: e8:31:ce:cb:de:b5:6f:1b:31:27:69:54:8f:66:3e: 53:17:d6:ec:d5:fa:a1:5f:16:a7:a8:2e:9c:fc:18: 8f:da:a2:4f:42:e9:f6:e8:ae:96:ac:b4:3f:70:65: 3d:42:37:9b:a9:75:69:f8:6d:d8:8c:9f:64:5d:79: 7e:83:f7:32:14:b0:ac:51:82:51:9f:11:c2:0d:f6: 68:1c:01:7b:9d:6f:0b:ea:3c:28:54:58:4f:3c:65: d8:73:92:de:9e:dd:33:04:16:9e:22:2c:c0:79:cd: e0:5f:15:a6:b5:45:4e:c1:9b:95:e5:bf:63:f2:f2: 10:cf:23:e5:7c:33:ad:31:74:61:d1:88:d5:6c:e7: 3a:81:b8:9c:47:94:86:62:7f:4f:d4:b9:b8:87:69: 4d:30:4e:9d:9e:ef:9c:6a:d0:cf:ca:fd:27:49:ec: 18:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:43:B6:66:F7:AA:8E:57:67:0F:38:3F:3C:0B:2E:A6:A1:DC:4B:99 X509v3 Authority Key Identifier: keyid:AD:3D:87:03:85:0B:12:71:E8:F3:1A:E0:3E:3C:C9:AC:46:60:D9:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:f0:53:79:ad:01:ca:c7:ad:80:aa:6a:fb:0a:5b:87:7f:21: 75:0d:e3:60:f9:31:c3:81:4b:32:0f:9e:a4:02:79:35:d1:51: fe:9d:9a:69:67:e6:e9:ad:d1:9c:dd:1b:e0:59:4a:d9:73:eb: de:32:95:e7:ba:cf:06:8e:31:c8:ba:a3:81:f4:ed:a4:7e:3c: fe:41:70:38:51:c8:92:b8:fe:12:85:e3:af:f7:47:9c:2d:dc: 0a:8d:d9:45:b7:20:5b:ad:2f:50:28:57:df:b7:fe:9a:36:47: a0:ad:56:d0:42:7b:41:01:6d:a2:83:0a:48:19:ab:36:14:3d: 61:d5:b7:ec:4f:c4:9e:3a:96:ae:99:1b:6d:65:76:85:9f:cd: b5:c2:7e:d4:b6:f9:a1:de:19:29:8d:f3:f2:1f:7d:53:64:16: 21:25:a2:47:7f:24:01:ec:10:44:bc:42:39:8a:7d:9d:dd:79: 9e:64:43:62:12:97:07:0b:48:cd:86:50:a7:19:e3:d0:56:0a: d9:84:58:10:3b:8e:ab:a8:1f:b9:53:84:5c:ac:83:10:49:2e: 03:49:b8:b9:83:4c:5c:b5:60:35:c6:50:5a:c6:ef:5a:f9:2e: 32:c6:83:45:f2:23:e2:ec:4c:b6:d1:65:f0:34:a3:77:41:d9: 1b:e7:72:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3REIxMTAvBgNVBAUTKEFEM0Q4NzAzODUwQjEyNzFFOEYzMUFFMDNFM0NDOUFD NDY2MEQ5NDIwHhcNMjQwNTMxMjAxOTQ1WhcNMjQwNjA3MjAxOTQ1WjAYMRYwFAYD VQQDEw02NjVhMzBlMS1lMzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwV62ciWolYI/6H08NZN+xyCL4MUbYsQbMAZjwOV9d1UgHpL9eDM3PJNhz5fD OW8EMdCznmX+U7vl4rcak/pSz80fQjEcrPdZCaynh2DdaOwDmrLDBWo93gjoMc7L 3rVvGzEnaVSPZj5TF9bs1fqhXxanqC6c/BiP2qJPQun26K6WrLQ/cGU9QjebqXVp +G3YjJ9kXXl+g/cyFLCsUYJRnxHCDfZoHAF7nW8L6jwoVFhPPGXYc5Lent0zBBae IizAec3gXxWmtUVOwZuV5b9j8vIQzyPlfDOtMXRh0YjVbOc6gbicR5SGYn9P1Lm4 h2lNME6dnu+catDPyv0nSewYLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDRDtmb3 qo5XZw84PzwLLqah3EuZMB8GA1UdIwQYMBaAFK09hwOFCxJx6PMa4D48yaxGYNlC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTdEQi80RTQxMEFDRTBG NkYxMUVBQUIwQURCNjRDNEY5QUUwMi9yVDJIQTRVTEVuSG84eHJnUGp6SnJFWmcy VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JUMkhBNFVMRW5Ibzh4cmdQanpKckVaZzJVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTdEQi80RTQxMEFDRTBGNkYxMUVBQUIwQURCNjRDNEY5QUUwMi9yVDJIQTRVTEVu SG84eHJnUGp6SnJFWmcyVUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCv8FN5rQHKx62Aqmr7CluHfyF1DeNg+THDgUsyD56kAnk10VH+nZpp Z+bprdGc3RvgWUrZc+veMpXnus8GjjHIuqOB9O2kfjz+QXA4UciSuP4SheOv90ec LdwKjdlFtyBbrS9QKFfft/6aNkegrVbQQntBAW2igwpIGas2FD1h1bfsT8SeOpau mRttZXaFn821wn7Utvmh3hkpjfPyH31TZBYhJaJHfyQB7BBEvEI5in2d3XmeZENi EpcHC0jNhlCnGePQVgrZhFgQO46rqB+5U4RcrIMQSS4DSbi5g0xctWA1xlBaxu9a +S4yxoNF8iPi7Ey20WXwNKN3Qdkb53Ll -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:26 2024 by rpki-client on console-ams.rpki-client.org