$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCC23/925C80CE81E111EE8CF66B0AC4F9AE02/88hJQLK99AJViHBvWcHm7D0hR_A.mft File: 88hJQLK99AJViHBvWcHm7D0hR_A.mft (raw, json) Hash identifier: Okc5AxLf8kD1/n/CUaDlM79ROAGtB58i7MSxIb+eoVc= Subject key identifier: 06:0E:85:86:F0:48:BD:9D:C4:43:9B:1B:DA:92:CB:E6:D5:6C:B7:72 Authority key identifier: F3:C8:49:40:B2:BD:F4:02:55:88:70:6F:59:C1:E6:EC:3D:21:47:F0 Certificate issuer: /CN=A91BCC23/serialNumber=F3C84940B2BDF4025588706F59C1E6EC3D2147F0 Certificate serial: 6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/88hJQLK99AJViHBvWcHm7D0hR_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCC23/925C80CE81E111EE8CF66B0AC4F9AE02/88hJQLK99AJViHBvWcHm7D0hR_A.mft Manifest number: 67 Signing time: Wed 29 May 2024 08:14:34 +0000 Manifest this update: Wed 29 May 2024 08:14:34 +0000 Manifest next update: Wed 05 Jun 2024 08:14:33 +0000 Files and hashes: 1: 88hJQLK99AJViHBvWcHm7D0hR_A.crl (hash: iARjl9GpNfep0D3TKSYayoZYkq/PBsO9bKJ8EXRDZQ4=) 2: D36C048A81E211EEAF423C87C4F9AE02.roa (hash: AgEcJkKDpEPBaGjrS9V0jt2iST6E+qzc3K1SEhivhc4=) 3: FC3C8A6A81E211EE963BAB87C4F9AE02.roa (hash: 548P4XWsPS3JTWuhyip3nqsrffc51BRt/khZw2JCljI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCC23/925C80CE81E111EE8CF66B0AC4F9AE02/88hJQLK99AJViHBvWcHm7D0hR_A.crl rsync://rpki.apnic.net/member_repository/A91BCC23/925C80CE81E111EE8CF66B0AC4F9AE02/88hJQLK99AJViHBvWcHm7D0hR_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/88hJQLK99AJViHBvWcHm7D0hR_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:14:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCC23/serialNumber=F3C84940B2BDF4025588706F59C1E6EC3D2147F0 Validity Not Before: May 29 08:14:34 2024 GMT Not After : Jun 5 08:14:33 2024 GMT Subject: CN=6656e3ea-c615 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:3d:34:4a:d5:da:36:61:c6:76:55:37:b5:71: 9a:54:4a:4f:e7:dd:7f:b0:db:15:9c:3b:80:83:38: b7:a1:0e:ce:c4:19:71:ef:7a:c7:4f:65:67:97:76: 22:f2:53:a9:64:a8:ad:e3:b8:45:1e:87:60:04:a5: c7:61:8f:57:20:30:17:c4:2f:79:61:f8:49:12:19: 4d:34:44:38:eb:5f:ba:55:01:13:3b:ae:e4:cc:8d: 95:33:0e:77:04:f2:28:54:c0:71:80:24:33:1e:ca: aa:3f:d3:67:fd:4d:c2:78:55:48:e8:ad:4a:b4:c1: ab:b6:a8:4a:ad:e4:f1:40:ab:fe:a7:68:90:3d:8c: a8:9e:d3:93:70:ef:f4:98:aa:91:de:39:16:b5:15: c0:9e:66:14:07:9d:0b:b5:5d:79:54:61:d3:3e:c0: eb:16:33:58:fc:b4:c8:ca:48:71:6d:2c:bd:84:2a: eb:b2:cd:e9:17:87:d4:d2:5a:47:bf:cc:a4:2b:05: c3:d6:76:76:6c:09:46:02:1e:29:67:32:23:f4:6e: 65:30:aa:23:a5:8e:bd:b7:37:14:5c:d6:c2:47:9f: 49:7d:f6:20:2c:5f:9a:d9:fc:8a:98:78:92:4c:dd: 50:4b:66:3b:c9:3f:c6:d8:06:c4:94:3b:6f:8e:66: 6b:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:0E:85:86:F0:48:BD:9D:C4:43:9B:1B:DA:92:CB:E6:D5:6C:B7:72 X509v3 Authority Key Identifier: keyid:F3:C8:49:40:B2:BD:F4:02:55:88:70:6F:59:C1:E6:EC:3D:21:47:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCC23/925C80CE81E111EE8CF66B0AC4F9AE02/88hJQLK99AJViHBvWcHm7D0hR_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/88hJQLK99AJViHBvWcHm7D0hR_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCC23/925C80CE81E111EE8CF66B0AC4F9AE02/88hJQLK99AJViHBvWcHm7D0hR_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:6d:5e:71:07:ad:dd:7a:37:fc:62:ac:da:e3:73:50:41:d3: 82:2f:56:af:2e:49:fc:53:3c:17:d3:34:64:1e:0e:31:e1:16: 27:f3:a5:67:10:af:a2:f3:dc:ce:df:dc:61:9f:c2:1f:7c:87: cf:2d:f9:f7:c6:90:95:96:fa:85:09:60:6d:91:b0:a0:a7:f0: bf:8f:2a:a8:de:64:71:64:b2:f4:24:50:f6:ba:44:99:7f:6b: cf:4f:04:62:7f:63:c0:e8:f2:91:82:5a:36:be:83:f3:61:34: a9:7c:dc:fc:fc:6c:a8:49:ce:cd:ea:c5:8d:c1:16:e3:94:a4: 60:68:c5:4a:83:a2:8f:fe:2b:ce:58:bb:70:e2:5a:98:ed:ee: 19:b5:89:80:a1:82:82:46:69:df:26:05:ab:f2:9e:8e:56:34: b2:ab:30:53:92:14:6b:5e:b7:8b:42:5e:90:0f:fa:3d:fc:21: 81:36:f7:14:10:f6:62:b8:77:51:23:9e:bb:d2:3b:3d:24:35: 99:f4:ee:07:92:72:30:9e:8a:b5:f1:92:4f:ea:98:d8:88:f5: 27:90:92:dd:bb:36:e3:e3:07:30:d5:a7:c2:5e:67:29:b5:59: 2e:bf:f6:0b:70:e3:b4:b3:2c:a4:8c:76:ad:75:f3:13:7c:b7: f6:0f:fe:af -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBajANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC Q0MyMzExMC8GA1UEBRMoRjNDODQ5NDBCMkJERjQwMjU1ODg3MDZGNTlDMUU2RUMz RDIxNDdGMDAeFw0yNDA1MjkwODE0MzRaFw0yNDA2MDUwODE0MzNaMBgxFjAUBgNV BAMTDTY2NTZlM2VhLWM2MTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyPTRK1do2YcZ2VTe1cZpUSk/n3X+w2xWcO4CDOLehDs7EGXHvesdPZWeXdiLy U6lkqK3juEUeh2AEpcdhj1cgMBfEL3lh+EkSGU00RDjrX7pVARM7ruTMjZUzDncE 8ihUwHGAJDMeyqo/02f9TcJ4VUjorUq0wau2qEqt5PFAq/6naJA9jKie05Nw7/SY qpHeORa1FcCeZhQHnQu1XXlUYdM+wOsWM1j8tMjKSHFtLL2EKuuyzekXh9TSWke/ zKQrBcPWdnZsCUYCHilnMiP0bmUwqiOljr23NxRc1sJHn0l99iAsX5rZ/IqYeJJM 3VBLZjvJP8bYBsSUO2+OZmvNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBg6FhvBI vZ3EQ5sb2pLL5tVst3IwHwYDVR0jBBgwFoAU88hJQLK99AJViHBvWcHm7D0hR/Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJDQzIzLzkyNUM4MENFODFF MTExRUU4Q0Y2NkIwQUM0RjlBRTAyLzg4aEpRTEs5OUFKVmlIQnZXY0htN0QwaFJf QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvODhoSlFMSzk5QUpWaUhCdldjSG03RDBoUl9BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJD QzIzLzkyNUM4MENFODFFMTExRUU4Q0Y2NkIwQUM0RjlBRTAyLzg4aEpRTEs5OUFK VmlIQnZXY0htN0QwaFJfQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADNtXnEHrd16N/xirNrjc1BB04IvVq8uSfxTPBfTNGQeDjHhFifzpWcQ r6Lz3M7f3GGfwh98h88t+ffGkJWW+oUJYG2RsKCn8L+PKqjeZHFksvQkUPa6RJl/ a89PBGJ/Y8Do8pGCWja+g/NhNKl83Pz8bKhJzs3qxY3BFuOUpGBoxUqDoo/+K85Y u3DiWpjt7hm1iYChgoJGad8mBavyno5WNLKrMFOSFGtet4tCXpAP+j38IYE29xQQ 9mK4d1EjnrvSOz0kNZn07geScjCeirXxkk/qmNiI9SeQkt27NuPjBzDVp8JeZym1 WS6/9gtw47SzLKSMdq118xN8t/YP/q8= -----END CERTIFICATE-----Generated at Wed May 29 10:43:59 2024 by rpki-client on console-ams.rpki-client.org