$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.mft File: tksRCOmO7If7awwovgFkXHCLSsU.mft (raw, json) Hash identifier: aYD1qHGRdwepbhDESPVWCdluih0kvtsqBmC9AsJiegE= Subject key identifier: FE:F6:D6:55:6D:99:26:55:1D:A3:5E:29:70:4D:46:13:E4:F1:08:56 Authority key identifier: B6:4B:11:08:E9:8E:EC:87:FB:6B:0C:28:BE:01:64:5C:70:8B:4A:C5 Certificate issuer: /CN=A91BAE17/serialNumber=B64B1108E98EEC87FB6B0C28BE01645C708B4AC5 Certificate serial: 2895 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tksRCOmO7If7awwovgFkXHCLSsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.mft Manifest number: 2881 Signing time: Sat 18 May 2024 15:53:26 +0000 Manifest this update: Sat 18 May 2024 15:53:25 +0000 Manifest next update: Sat 25 May 2024 15:53:25 +0000 Files and hashes: 1: tksRCOmO7If7awwovgFkXHCLSsU.crl (hash: 7uSQsuOTnq13ZUpw5xdLB2+8+MmnLv76oRsNRQYHui8=) 2: 98845C5C54EC11E791C3F825C4F9AE02.roa (hash: MSi3NqfJZvJeYbKlVl8T9Ife50w6CCOupwfF4p/lupg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.crl rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tksRCOmO7If7awwovgFkXHCLSsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10389 (0x2895) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAE17/serialNumber=B64B1108E98EEC87FB6B0C28BE01645C708B4AC5 Validity Not Before: May 18 15:53:25 2024 GMT Not After : May 25 15:53:25 2024 GMT Subject: CN=6648cef5-09ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:d8:ba:5a:c3:b1:f9:0e:6e:03:fc:37:f9:1a: cd:46:dd:5e:95:63:6e:f4:41:f7:f8:5f:ee:0e:6b: 25:8e:90:dd:4c:bc:7d:02:45:f2:76:34:09:6d:6a: 82:bc:28:a2:64:ce:db:b8:90:a1:4b:f8:86:22:d5: a4:c7:51:02:7e:ec:33:5d:95:34:48:2c:8d:96:03: fa:9a:9c:ac:9c:59:db:69:f9:70:9f:52:78:a0:48: 77:ed:07:92:20:07:53:a1:d7:09:26:b9:29:c0:cc: d7:ce:e1:6e:1b:b6:2f:b8:48:c3:e9:2e:26:d1:06: f0:4e:1e:5d:12:fd:a9:3b:14:c6:2a:09:2f:24:db: 0a:09:0b:a1:af:3f:fc:46:db:32:19:5a:88:51:21: 74:06:5d:05:64:47:0d:4f:95:fb:f3:a4:3f:b5:e3: db:ba:5d:60:9f:70:15:c3:80:bb:ec:f8:f4:14:5a: 20:13:2b:64:69:7b:59:0d:e7:07:f6:9a:0e:65:ae: ce:a6:fe:51:6e:71:a2:94:a5:6e:82:d4:78:5e:72: 35:cf:f0:ce:2a:0d:bb:04:b9:e3:3b:6b:83:2a:87: 1f:a3:89:b3:98:86:ed:8e:77:d7:94:1a:a1:4b:e5: 7d:86:da:65:03:0b:ac:9d:7f:17:23:66:5a:30:24: 4d:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:F6:D6:55:6D:99:26:55:1D:A3:5E:29:70:4D:46:13:E4:F1:08:56 X509v3 Authority Key Identifier: keyid:B6:4B:11:08:E9:8E:EC:87:FB:6B:0C:28:BE:01:64:5C:70:8B:4A:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tksRCOmO7If7awwovgFkXHCLSsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:35:4a:54:81:46:80:e9:3f:96:72:6a:6d:cc:56:bb:59:f0: 4d:d6:b9:d2:70:80:70:80:b1:9d:6d:96:de:e5:ad:14:31:3d: 42:87:33:80:55:fb:d5:2f:b0:1a:63:91:e7:f4:4c:c3:14:0e: f8:bf:e6:63:f3:a0:2f:ac:36:0e:0c:99:a1:ea:78:72:3f:41: d2:c3:c9:6a:6f:7b:64:3f:b6:e0:33:01:39:74:f1:10:df:4f: ae:46:60:cd:c8:29:6c:35:59:ca:45:10:05:8c:b7:f7:7b:a6: 90:e7:b6:87:2b:d5:08:ce:a0:18:30:b3:0b:d0:02:8d:31:ee: 53:01:39:81:21:83:b9:52:5f:e0:6f:47:b3:5b:b7:f1:8d:6c: 16:ec:1f:5e:af:b1:33:21:d4:65:fe:23:01:81:e6:bf:95:ee: 31:f1:e7:91:3a:ac:bb:37:22:51:fe:d1:25:5c:c2:f3:52:86: cb:21:66:26:18:c3:f3:b2:84:f4:dc:7c:64:99:ca:77:e9:b3: a9:5d:c4:6e:5c:1c:d2:83:6a:fe:ef:08:9b:17:d7:53:e5:19: de:24:f5:08:81:f7:ab:f5:de:4d:32:e4:22:be:57:2b:77:c6: 57:38:8e:fa:33:ae:26:7f:17:c6:c7:c4:f4:c8:72:4a:09:53: fd:b4:a4:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFFMTcxMTAvBgNVBAUTKEI2NEIxMTA4RTk4RUVDODdGQjZCMEMyOEJFMDE2NDVD NzA4QjRBQzUwHhcNMjQwNTE4MTU1MzI1WhcNMjQwNTI1MTU1MzI1WjAYMRYwFAYD VQQDEw02NjQ4Y2VmNS0wOWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA79i6WsOx+Q5uA/w3+RrNRt1elWNu9EH3+F/uDmsljpDdTLx9AkXydjQJbWqC vCiiZM7buJChS/iGItWkx1ECfuwzXZU0SCyNlgP6mpysnFnbaflwn1J4oEh37QeS IAdTodcJJrkpwMzXzuFuG7YvuEjD6S4m0QbwTh5dEv2pOxTGKgkvJNsKCQuhrz/8 RtsyGVqIUSF0Bl0FZEcNT5X786Q/tePbul1gn3AVw4C77Pj0FFogEytkaXtZDecH 9poOZa7Opv5RbnGilKVugtR4XnI1z/DOKg27BLnjO2uDKocfo4mzmIbtjnfXlBqh S+V9htplAwusnX8XI2ZaMCRNtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP721lVt mSZVHaNeKXBNRhPk8QhWMB8GA1UdIwQYMBaAFLZLEQjpjuyH+2sMKL4BZFxwi0rF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUUxNy80NDVFRTA5NDU4 QkQxMUU0OTM4M0FCNzZDNEY5QUUwMi90a3NSQ09tTzdJZjdhd3dvdmdGa1hIQ0xT c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rrc1JDT21PN0lmN2F3d292Z0ZrWEhDTFNzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUUxNy80NDVFRTA5NDU4QkQxMUU0OTM4M0FCNzZDNEY5QUUwMi90a3NSQ09tTzdJ Zjdhd3dvdmdGa1hIQ0xTc1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgNUpUgUaA6T+WcmptzFa7WfBN1rnScIBwgLGdbZbe5a0UMT1ChzOA VfvVL7AaY5Hn9EzDFA74v+Zj86AvrDYODJmh6nhyP0HSw8lqb3tkP7bgMwE5dPEQ 30+uRmDNyClsNVnKRRAFjLf3e6aQ57aHK9UIzqAYMLML0AKNMe5TATmBIYO5Ul/g b0ezW7fxjWwW7B9er7EzIdRl/iMBgea/le4x8eeROqy7NyJR/tElXMLzUobLIWYm GMPzsoT03Hxkmcp36bOpXcRuXBzSg2r+7wibF9dT5RneJPUIgfer9d5NMuQivlcr d8ZXOI76M64mfxfGx8T0yHJKCVP9tKRw -----END CERTIFICATE-----Generated at Sat May 18 17:20:34 2024 by rpki-client on console-ams.rpki-client.org