$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.mft File: tnJ-39N9HiwXXBCBGh04qirGyJw.mft (raw, json) Hash identifier: MqXGSTBrK1KKyJ2HrvgaOH0LuyuT9gLtphtwjhZr0MQ= Subject key identifier: 9E:A7:59:E2:48:58:72:17:A7:1E:86:25:1B:9B:36:0E:A2:CF:1E:66 Authority key identifier: B6:72:7E:DF:D3:7D:1E:2C:17:5C:10:81:1A:1D:38:AA:2A:C6:C8:9C Certificate issuer: /CN=A91BD3D2/serialNumber=B6727EDFD37D1E2C175C10811A1D38AA2AC6C89C Certificate serial: A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnJ-39N9HiwXXBCBGh04qirGyJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.mft Manifest number: 9D Signing time: Sun 19 May 2024 06:51:38 +0000 Manifest this update: Sun 19 May 2024 06:51:37 +0000 Manifest next update: Sun 26 May 2024 06:51:37 +0000 Files and hashes: 1: tnJ-39N9HiwXXBCBGh04qirGyJw.crl (hash: H7a2YiTavrGJC6XmvMbl1gewayblv6kjKxjuFh/mCZg=) 2: 862D5B3A2C8611EEB04B7B66C4F9AE02.roa (hash: /mCBbh0EpdJglUX6f2RyAGtt1DV/FaGs/dNz5ctYOlI=) 3: 207C8A52AC7611EEB465AF75C4F9AE02.roa (hash: OC8kdJyuGXU0Yb4WKs/F92dMNZJfek4oISbI+7aQJxI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.crl rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnJ-39N9HiwXXBCBGh04qirGyJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 161 (0xa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD3D2/serialNumber=B6727EDFD37D1E2C175C10811A1D38AA2AC6C89C Validity Not Before: May 19 06:51:37 2024 GMT Not After : May 26 06:51:37 2024 GMT Subject: CN=6649a17a-7e43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:67:9c:f5:41:5c:de:02:fe:8e:8c:dc:eb:84: 71:1d:07:05:c5:35:5e:e4:0c:9f:58:4b:69:51:ef: 96:be:a5:3a:f9:60:e5:ca:53:43:82:8a:07:83:66: ad:fc:8b:bc:c2:cd:9b:7c:23:a7:36:cb:28:95:2d: 53:06:31:4b:1e:aa:9c:d7:bc:05:0b:e4:f5:46:4c: 01:fc:13:d7:a8:64:5a:4d:b6:fd:c3:28:6d:80:21: 5e:58:d0:71:07:6f:d7:cf:06:9a:e1:95:e1:94:33: a6:0f:13:9c:1c:87:1b:fb:a0:f8:59:cb:9d:74:ea: 2e:3f:4e:ec:68:92:b2:3c:a7:42:3e:a6:da:74:ca: 2f:ea:47:60:70:3a:77:fc:62:0b:0f:cb:42:27:a9: 77:e7:b2:97:bc:f6:76:ac:a5:9a:55:0f:43:5b:48: fc:80:e3:dd:51:69:77:f2:24:d1:d2:f1:c8:f2:67: a0:4b:f2:04:f9:52:88:2e:c8:6b:55:68:a6:0e:60: f9:36:93:16:12:66:42:a7:c7:35:ac:a4:00:0e:b9: 98:aa:d2:02:b8:af:d1:9b:18:73:55:d1:54:a5:c6: 86:79:27:48:c5:a5:9a:2a:3b:7d:a6:29:bc:05:27: f5:94:dc:90:56:5d:1d:57:48:f7:c5:63:27:6f:a9: 8b:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:A7:59:E2:48:58:72:17:A7:1E:86:25:1B:9B:36:0E:A2:CF:1E:66 X509v3 Authority Key Identifier: keyid:B6:72:7E:DF:D3:7D:1E:2C:17:5C:10:81:1A:1D:38:AA:2A:C6:C8:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnJ-39N9HiwXXBCBGh04qirGyJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:1e:f6:d1:21:77:02:3a:32:75:21:69:c2:3e:dd:9b:ed:c9: a1:47:99:0a:af:92:47:ed:5f:a5:97:f6:9c:01:eb:06:72:d6: e3:54:ef:1d:67:ce:f0:dd:a8:d1:78:cb:74:aa:27:03:cd:ae: ec:fc:ff:38:64:9b:e6:f5:81:ad:5f:10:4e:42:d6:02:96:c7: c1:73:1f:11:36:29:c4:d6:dd:85:16:db:17:3f:71:fd:cf:48: 9f:e8:8b:f9:58:bc:c9:ee:2e:08:ae:6f:a3:12:6e:53:8f:08: a3:24:90:ec:e0:5a:af:43:c2:56:77:0b:f1:99:4b:b5:0f:6a: 12:b3:f7:41:35:4b:e3:98:c4:6a:94:b2:77:ce:2c:84:59:6e: 5c:ee:09:f0:25:1d:97:43:05:e0:1f:bd:ec:f9:db:1d:fa:b3: e1:08:71:f2:89:d4:fe:9a:b5:83:d5:48:93:59:7f:66:ae:e5: 0c:48:0b:84:b0:92:71:7f:ab:4f:ae:bb:60:51:7d:e6:02:82: b9:26:0c:be:92:64:c5:dc:d6:44:f9:9b:23:e4:6e:89:f8:26: 19:35:88:85:36:c2:83:2b:20:29:ed:5b:d3:9a:95:4c:b3:6d: 6f:95:5d:77:04:4d:66:bb:e8:b4:e4:9b:4c:a8:ff:db:17:5c: 53:8d:bd:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQzRDIxMTAvBgNVBAUTKEI2NzI3RURGRDM3RDFFMkMxNzVDMTA4MTFBMUQzOEFB MkFDNkM4OUMwHhcNMjQwNTE5MDY1MTM3WhcNMjQwNTI2MDY1MTM3WjAYMRYwFAYD VQQDEw02NjQ5YTE3YS03ZTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Wec9UFc3gL+jozc64RxHQcFxTVe5AyfWEtpUe+WvqU6+WDlylNDgooHg2at /Iu8ws2bfCOnNssolS1TBjFLHqqc17wFC+T1RkwB/BPXqGRaTbb9wyhtgCFeWNBx B2/Xzwaa4ZXhlDOmDxOcHIcb+6D4WcuddOouP07saJKyPKdCPqbadMov6kdgcDp3 /GILD8tCJ6l357KXvPZ2rKWaVQ9DW0j8gOPdUWl38iTR0vHI8megS/IE+VKILshr VWimDmD5NpMWEmZCp8c1rKQADrmYqtICuK/RmxhzVdFUpcaGeSdIxaWaKjt9pim8 BSf1lNyQVl0dV0j3xWMnb6mL3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ6nWeJI WHIXpx6GJRubNg6izx5mMB8GA1UdIwQYMBaAFLZyft/TfR4sF1wQgRodOKoqxsic MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDNEMi80MkMxRDhGODJD ODYxMUVFQTlCNzRGNDNDNEY5QUUwMi90bkotMzlOOUhpd1hYQkNCR2gwNHFpckd5 SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RuSi0zOU45SGl3WFhCQ0JHaDA0cWlyR3lKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDNEMi80MkMxRDhGODJDODYxMUVFQTlCNzRGNDNDNEY5QUUwMi90bkotMzlOOUhp d1hYQkNCR2gwNHFpckd5SncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiHvbRIXcCOjJ1IWnCPt2b7cmhR5kKr5JH7V+ll/acAesGctbjVO8d Z87w3ajReMt0qicDza7s/P84ZJvm9YGtXxBOQtYClsfBcx8RNinE1t2FFtsXP3H9 z0if6Iv5WLzJ7i4Irm+jEm5TjwijJJDs4FqvQ8JWdwvxmUu1D2oSs/dBNUvjmMRq lLJ3ziyEWW5c7gnwJR2XQwXgH73s+dsd+rPhCHHyidT+mrWD1UiTWX9mruUMSAuE sJJxf6tPrrtgUX3mAoK5Jgy+kmTF3NZE+Zsj5G6J+CYZNYiFNsKDKyAp7VvTmpVM s21vlV13BE1mu+i05JtMqP/bF1xTjb3/ -----END CERTIFICATE-----Generated at Sun May 19 08:25:07 2024 by rpki-client on console-ams.rpki-client.org