$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.mft File: tgQSzpgJwQxn3eq7oOM1462k_hA.mft (raw, json) Hash identifier: qvww127tqh+F97xPp/vMwuu7BPjlvjlIjdl1A/9cDvY= Subject key identifier: BB:A1:CF:65:11:72:6C:0C:78:76:6C:A6:85:E7:D4:37:E6:E5:05:94 Authority key identifier: B6:04:12:CE:98:09:C1:0C:67:DD:EA:BB:A0:E3:35:E3:AD:A4:FE:10 Certificate issuer: /CN=A91BF306/serialNumber=B60412CE9809C10C67DDEABBA0E335E3ADA4FE10 Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgQSzpgJwQxn3eq7oOM1462k_hA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.mft Manifest number: 72 Signing time: Fri 31 May 2024 08:20:21 +0000 Manifest this update: Fri 31 May 2024 08:20:20 +0000 Manifest next update: Fri 07 Jun 2024 08:20:20 +0000 Files and hashes: 1: tgQSzpgJwQxn3eq7oOM1462k_hA.crl (hash: IAxerLfHlFXsv98RtYHEQT391DbOHtbbTM7Hpuve4GQ=) 2: 3CED465E8E0811EE8450D961C4F9AE02.roa (hash: 7Y9vxZXOKDWs2TXEF20NagK7/g30mcl6YUCvtQvsTVI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.crl rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgQSzpgJwQxn3eq7oOM1462k_hA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 07:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF306/serialNumber=B60412CE9809C10C67DDEABBA0E335E3ADA4FE10 Validity Not Before: May 31 08:20:20 2024 GMT Not After : Jun 7 08:20:20 2024 GMT Subject: CN=66598844-52b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:30:dd:a7:7a:0d:75:db:49:05:59:92:33:ba: 0c:58:de:7e:61:d7:6d:99:bb:17:24:ce:24:e2:b9: 01:0b:87:13:52:38:98:ce:ee:0d:c7:6a:3b:1a:82: 0c:b1:e1:e1:b6:e6:17:86:86:44:90:ab:88:71:f5: 51:df:08:b0:91:a1:4b:9b:c2:79:87:ab:1c:5b:8a: bb:77:22:e1:f3:f3:d7:93:b3:bf:19:d5:71:5c:14: b8:df:bd:e3:96:ae:c9:36:e5:4e:df:e7:14:8b:95: 76:45:21:6f:b9:03:11:15:af:18:76:d7:dc:bb:fa: ea:df:e6:ba:58:34:ac:e2:ad:c8:54:46:1e:5a:e0: 31:40:f9:e1:ff:4f:2b:8f:74:03:42:11:c3:e9:fa: 0c:d2:df:1a:1a:48:96:0b:9f:11:49:37:f7:95:7e: 39:e8:81:8f:6a:f3:fa:d4:86:ef:75:71:9a:bd:f4: 3e:7a:3a:cb:98:b0:48:02:b1:04:f4:60:c1:de:c9: b1:c0:97:00:68:e4:e6:80:27:8d:c8:9f:fe:b6:b5: b6:a0:0a:ca:bc:46:c0:90:14:a9:49:24:13:82:b8: e3:39:32:40:a1:3d:a2:61:67:37:34:ad:cf:8d:9c: 5f:ca:6b:d3:d8:ac:a0:d3:8f:45:57:e1:2e:d3:9f: f2:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:A1:CF:65:11:72:6C:0C:78:76:6C:A6:85:E7:D4:37:E6:E5:05:94 X509v3 Authority Key Identifier: keyid:B6:04:12:CE:98:09:C1:0C:67:DD:EA:BB:A0:E3:35:E3:AD:A4:FE:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgQSzpgJwQxn3eq7oOM1462k_hA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:e4:a0:c5:2f:4e:9f:6f:72:d8:f4:5f:b8:92:d0:21:94:c8: db:28:54:9c:25:5f:23:24:0e:51:5a:6f:89:97:f7:71:86:b7: 00:88:d8:22:e9:c7:73:4c:a4:d4:ce:78:e3:84:c3:23:2f:67: ef:1b:d0:ba:27:1c:a8:7f:f2:12:84:a0:f5:68:9b:18:ff:3a: 48:9a:2d:7b:1f:f3:8e:da:e2:a8:01:b0:4b:1e:26:bc:07:ec: c7:60:c8:fb:ea:a9:ef:d5:b6:54:08:00:c4:57:e7:7a:90:95: cf:3a:7b:08:00:7a:46:90:60:82:87:dc:fe:46:fa:2b:b0:f6: 6c:b6:28:05:b2:f8:20:33:06:54:2d:54:ce:c2:0e:0c:7d:10: af:ef:19:8a:63:4f:e7:aa:c0:45:5b:a7:8a:f5:11:ed:eb:d1: f8:8c:33:d3:5c:78:98:c9:54:af:e7:f5:ca:db:1b:bb:27:79: 33:8b:93:ae:65:6d:c3:cb:84:fb:5c:09:86:44:f0:58:44:28: 41:56:63:b1:8d:20:42:29:70:b9:66:ca:dd:77:26:f7:b9:af: ec:54:f4:49:b7:d9:15:de:bb:37:f1:62:61:61:f3:c2:a5:b0: ca:df:2a:08:db:0d:76:eb:09:d9:aa:81:32:b1:ca:ba:49:47: 7d:18:69:9a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RjMwNjExMC8GA1UEBRMoQjYwNDEyQ0U5ODA5QzEwQzY3RERFQUJCQTBFMzM1RTNB REE0RkUxMDAeFw0yNDA1MzEwODIwMjBaFw0yNDA2MDcwODIwMjBaMBgxFjAUBgNV BAMTDTY2NTk4ODQ0LTUyYjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7MN2neg1120kFWZIzugxY3n5h122ZuxckziTiuQELhxNSOJjO7g3Hajsaggyx 4eG25heGhkSQq4hx9VHfCLCRoUubwnmHqxxbirt3IuHz89eTs78Z1XFcFLjfveOW rsk25U7f5xSLlXZFIW+5AxEVrxh219y7+urf5rpYNKzirchURh5a4DFA+eH/TyuP dANCEcPp+gzS3xoaSJYLnxFJN/eVfjnogY9q8/rUhu91cZq99D56OsuYsEgCsQT0 YMHeybHAlwBo5OaAJ43In/62tbagCsq8RsCQFKlJJBOCuOM5MkChPaJhZzc0rc+N nF/Ka9PYrKDTj0VX4S7Tn/IhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUu6HPZRFy bAx4dmymhefUN+blBZQwHwYDVR0jBBgwFoAUtgQSzpgJwQxn3eq7oOM1462k/hAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJGMzA2LzE3MTc5MjBFNzE2 QjExRUVCMTY3MzI3N0M0RjlBRTAyL3RnUVN6cGdKd1F4bjNlcTdvT00xNDYya19o QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdGdRU3pwZ0p3UXhuM2VxN29PTTE0NjJrX2hBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJG MzA2LzE3MTc5MjBFNzE2QjExRUVCMTY3MzI3N0M0RjlBRTAyL3RnUVN6cGdKd1F4 bjNlcTdvT00xNDYya19oQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACfkoMUvTp9vctj0X7iS0CGUyNsoVJwlXyMkDlFab4mX93GGtwCI2CLp x3NMpNTOeOOEwyMvZ+8b0LonHKh/8hKEoPVomxj/OkiaLXsf847a4qgBsEseJrwH 7MdgyPvqqe/VtlQIAMRX53qQlc86ewgAekaQYIKH3P5G+iuw9my2KAWy+CAzBlQt VM7CDgx9EK/vGYpjT+eqwEVbp4r1Ee3r0fiMM9NceJjJVK/n9crbG7sneTOLk65l bcPLhPtcCYZE8FhEKEFWY7GNIEIpcLlmyt13Jve5r+xU9Em32RXeuzfxYmFh88Kl sMrfKgjbDXbrCdmqgTKxyrpJR30YaZo= -----END CERTIFICATE-----Generated at Fri May 31 10:02:42 2024 by rpki-client on console-ams.rpki-client.org