$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft File: 2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft (raw, json) Hash identifier: roQDOo3RupmgRJjh5IDdm7FO1DTlDog78RkbDKJ9wZg= Subject key identifier: D5:58:0F:59:4F:15:AC:1B:1C:50:96:DC:11:F2:35:9F:D7:A8:52:59 Authority key identifier: D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D Certificate issuer: /CN=A91C2B93/serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Certificate serial: 13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft Manifest number: 10 Signing time: Sun 19 May 2024 08:51:07 +0000 Manifest this update: Sun 19 May 2024 08:51:07 +0000 Manifest next update: Sun 26 May 2024 08:51:07 +0000 Files and hashes: 1: 2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl (hash: RlyhfPje4tmkERtmvlalTtq6UD4cwgU7JEkxlkgrj04=) 2: B00A68E6014A11EFA8F03B5BC4F9AE02.roa (hash: dCFmmnGaeXc/Xyg5+AqlJy4nQ5RSSq2JLasc/NAHwbg=) 3: E2037F8C019911EFAFFEEC5DC4F9AE02.roa (hash: Om1Rc8FPcByfXN7P7h9FuPt4QrBbGaM+Ndfd120fzOc=) 4: B0BE3042014A11EFA8F03B5BC4F9AE02.roa (hash: KPY2wegfaa3tnC/Njnc64HaModZkMYm0j/OEMDfIXmk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2B93/serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Validity Not Before: May 19 08:51:07 2024 GMT Not After : May 26 08:51:07 2024 GMT Subject: CN=6649bd7b-7bdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:06:d8:ef:bb:c0:66:53:3c:6d:1d:a3:77:ce: ac:8a:4f:9e:45:91:0b:cb:96:fb:ed:72:9f:60:49: 57:68:c3:51:f0:58:b9:a8:42:ed:c3:b2:9c:a3:e3: 88:b8:ac:95:e7:53:b6:b3:23:d4:bd:eb:4e:f0:29: d2:48:9e:50:68:0e:ed:01:77:bb:88:70:d8:d9:7b: ee:dc:42:af:ba:e0:c3:4f:5a:6e:82:ee:78:ad:a8: a7:39:a0:03:22:cd:c0:d5:b7:ab:eb:dd:f7:34:97: 5e:29:53:c3:7e:c8:04:74:b7:d2:ae:53:26:bc:61: e2:82:d7:0e:3b:e5:4d:5d:75:91:d1:da:59:16:ad: 16:7e:cd:a0:75:ba:c7:53:45:30:20:ff:63:32:a8: 49:e1:c5:fb:17:d5:2e:a5:a1:06:39:19:95:7b:6a: 38:31:54:e9:ae:4a:1f:c2:4b:5b:81:1f:8e:ce:67: ec:d9:de:28:5a:f3:ff:b8:8e:9b:a4:46:c5:ea:8f: 5f:32:27:01:48:e2:d4:a2:fd:c4:5c:18:cd:21:29: fc:8a:be:32:d0:76:19:d2:34:d6:ba:d9:5a:1d:c3: 79:d5:79:79:67:59:bd:6d:e9:89:44:31:e5:50:32: 32:fc:84:ee:82:64:8e:a7:d1:69:bc:01:22:3a:7b: 11:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:58:0F:59:4F:15:AC:1B:1C:50:96:DC:11:F2:35:9F:D7:A8:52:59 X509v3 Authority Key Identifier: keyid:D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:80:9e:e9:88:a9:9e:2b:bd:46:b6:f7:2b:6c:27:96:ed:ae: 48:44:01:7b:f5:d3:f7:28:83:63:b9:ac:d9:c9:7c:4e:b4:6a: c7:f0:41:87:64:eb:e4:8d:33:ce:15:48:d3:1b:a9:c7:42:6a: 32:b7:3b:f0:47:25:ea:f4:4e:e8:8c:f0:46:37:02:09:92:34: 53:f3:f9:26:b4:f2:fb:c2:41:6b:18:7e:64:26:c3:59:f3:9f: 70:3f:08:5b:72:b9:22:a2:2a:2e:71:ab:88:8c:ac:e5:01:79: 9a:20:6f:ca:c2:45:bb:ac:5c:21:49:af:14:25:b4:6f:72:8d: e2:59:a6:af:0b:bf:2b:cd:f9:0e:16:4b:6a:81:f0:dc:5f:df: c9:c3:3b:1b:1c:00:da:c6:54:5f:80:07:a6:b6:29:7b:bc:f0: 57:2f:af:fe:3f:51:9d:bc:7c:5a:af:8b:7e:24:bb:d1:08:44: 05:a8:f2:64:8b:f7:41:d3:1a:d7:01:de:bb:3d:8c:c8:53:af: 67:40:a0:04:b5:41:7f:e3:cb:72:58:e7:ec:7a:d0:29:da:e7: aa:53:dc:d1:79:35:b2:d5:41:dc:18:be:f0:cd:f0:35:ab:d4: 76:8a:da:85:ca:01:27:02:1d:cc:2d:b5:d9:c8:73:13:a0:f9: b7:28:74:2e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MkI5MzExMC8GA1UEBRMoRDlENjVGN0YzNjA5MEM0MDFCQ0YyMEQ0QkM4MEM0M0Yw REM1OTMzRDAeFw0yNDA1MTkwODUxMDdaFw0yNDA1MjYwODUxMDdaMBgxFjAUBgNV BAMTDTY2NDliZDdiLTdiZGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzBtjvu8BmUzxtHaN3zqyKT55FkQvLlvvtcp9gSVdow1HwWLmoQu3Dspyj44i4 rJXnU7azI9S9607wKdJInlBoDu0Bd7uIcNjZe+7cQq+64MNPWm6C7nitqKc5oAMi zcDVt6vr3fc0l14pU8N+yAR0t9KuUya8YeKC1w475U1ddZHR2lkWrRZ+zaB1usdT RTAg/2MyqEnhxfsX1S6loQY5GZV7ajgxVOmuSh/CS1uBH47OZ+zZ3iha8/+4jpuk RsXqj18yJwFI4tSi/cRcGM0hKfyKvjLQdhnSNNa62Vodw3nVeXlnWb1t6YlEMeVQ MjL8hO6CZI6n0Wm8ASI6exGBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1VgPWU8V rBscUJbcEfI1n9eoUlkwHwYDVR0jBBgwFoAU2dZffzYJDEAbzyDUvIDEPw3Fkz0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMyQjkzLzNBQzg3NEVFMDE0 MzExRUY4MjVBNjQ2NUM0RjlBRTAyLzJkWmZmellKREVBYnp5RFV2SURFUHczRmt6 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMmRaZmZ6WUpERUFienlEVXZJREVQdzNGa3owLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMy QjkzLzNBQzg3NEVFMDE0MzExRUY4MjVBNjQ2NUM0RjlBRTAyLzJkWmZmellKREVB Ynp5RFV2SURFUHczRmt6MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJCAnumIqZ4rvUa29ytsJ5btrkhEAXv10/cog2O5rNnJfE60asfwQYdk 6+SNM84VSNMbqcdCajK3O/BHJer0TuiM8EY3AgmSNFPz+Sa08vvCQWsYfmQmw1nz n3A/CFtyuSKiKi5xq4iMrOUBeZogb8rCRbusXCFJrxQltG9yjeJZpq8LvyvN+Q4W S2qB8Nxf38nDOxscANrGVF+AB6a2KXu88Fcvr/4/UZ28fFqvi34ku9EIRAWo8mSL 90HTGtcB3rs9jMhTr2dAoAS1QX/jy3JY5+x60Cna56pT3NF5NbLVQdwYvvDN8DWr 1HaK2oXKAScCHcwttdnIcxOg+bcodC4= -----END CERTIFICATE-----Generated at Sun May 19 09:32:18 2024 by rpki-client on console-ams.rpki-client.org