$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft File: tii4qSXEXjrDpxvkEUZimYv0s-A.mft (raw, json) Hash identifier: BiHG/T2CZH5je0Ubxsdgz0WvZuuZPj+DWsBdSNKRYdM= Subject key identifier: 5F:8E:27:6D:E7:70:7B:A5:A4:F6:F7:85:B0:CF:68:C3:E8:6C:FE:4F Authority key identifier: B6:28:B8:A9:25:C4:5E:3A:C3:A7:1B:E4:11:46:62:99:8B:F4:B3:E0 Certificate issuer: /CN=A91CA8EA/serialNumber=B628B8A925C45E3AC3A71BE4114662998BF4B3E0 Certificate serial: 03D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft Manifest number: 03CB Signing time: Sun 19 May 2024 02:25:00 +0000 Manifest this update: Sun 19 May 2024 02:24:59 +0000 Manifest next update: Sun 26 May 2024 02:24:59 +0000 Files and hashes: 1: tii4qSXEXjrDpxvkEUZimYv0s-A.crl (hash: pif9Yci7zsMOau8AuCrft5QWvAUE9GOuEieHPrxc8Lw=) 2: 14A07422D45E11EEB37CB639C4F9AE02.roa (hash: nG4YRGpTri2EvHlJTJHeJXOnJo+V1CyAuzEb1Zxwv9k=) 3: 207388F2D45E11EE8D29793EC4F9AE02.roa (hash: 0MLHTxdXjJr4xQjhr2hOHvYGlL6GShqhdXBiCt0rZcY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.crl rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:24:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 981 (0x3d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA8EA/serialNumber=B628B8A925C45E3AC3A71BE4114662998BF4B3E0 Validity Not Before: May 19 02:24:59 2024 GMT Not After : May 26 02:24:59 2024 GMT Subject: CN=664962fb-c1bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:98:2a:c6:cd:fc:f1:3c:9d:ef:3a:26:3e:00: 05:63:07:a4:e1:ac:9b:23:87:0f:61:47:e8:bc:a9: d5:66:75:e3:79:6e:eb:45:be:60:95:5f:f3:66:d5: a3:c0:76:dd:94:bd:9f:b9:02:f9:c0:be:31:c5:d7: b1:0c:bd:ce:a6:35:ac:32:31:11:4a:ca:2a:cf:74: 1c:d5:fb:3e:ae:b8:09:4a:6a:f7:71:e3:88:4c:b9: 39:84:22:20:6f:6e:00:4e:43:7f:70:76:c9:ae:66: 1b:3f:9e:32:fa:17:24:81:dd:f3:29:9e:4e:92:b3: 5f:a9:de:40:c3:4a:f2:92:14:ec:ea:5b:67:86:45: 2a:70:ba:bd:cf:f4:81:b1:b9:77:4e:6b:51:ca:1f: ac:ac:5d:7f:77:d0:71:5d:53:bf:19:0b:14:f3:78: 7e:fa:80:e4:7d:ef:92:08:5f:76:c5:8b:49:39:f8: 10:fb:e4:04:9f:d8:62:68:50:8d:a3:0c:db:1c:5c: 9d:82:1f:57:ed:5f:53:09:4b:1b:11:35:61:fb:61: 5b:65:46:8d:7b:85:26:d7:68:9c:a4:89:16:b3:f8: 85:87:74:42:75:da:18:48:a7:8b:1d:49:57:0c:d5: 16:67:20:18:77:2a:f4:10:7e:c2:3e:bb:9d:ae:e3: d1:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:8E:27:6D:E7:70:7B:A5:A4:F6:F7:85:B0:CF:68:C3:E8:6C:FE:4F X509v3 Authority Key Identifier: keyid:B6:28:B8:A9:25:C4:5E:3A:C3:A7:1B:E4:11:46:62:99:8B:F4:B3:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:72:da:70:dd:87:1e:1f:d1:bc:4f:3a:6c:bd:b2:e1:10:9a: 14:70:96:2b:c7:37:34:8e:a6:06:2c:63:1e:95:ea:c8:05:7d: 7b:43:57:ea:8b:59:d4:88:ff:9e:fd:3c:f3:72:f2:bc:96:c7: 1f:b1:76:d4:75:dc:7f:18:ca:2c:68:db:95:cb:30:77:f3:60: b0:32:6d:a6:a8:68:63:46:6d:c3:c7:f2:f0:9a:b3:86:eb:ca: ba:71:8d:0f:7f:0a:9e:91:f7:6a:e6:22:95:2a:3e:64:02:fa: 62:66:e8:2c:89:39:c0:14:ee:ea:77:fc:a7:36:49:e4:1c:17: 39:aa:ae:9b:fe:62:65:ba:40:c6:cb:7f:6d:68:76:cc:ee:71: 20:b4:44:47:d5:65:16:84:71:d7:3f:d5:48:49:19:c6:3d:42: f2:ba:b3:2c:b2:13:f9:da:67:8d:f1:03:77:30:f0:c5:65:5d: cb:d3:e1:e6:02:00:b0:00:8f:1f:de:cb:67:3e:d7:a6:b8:53: 37:68:a5:db:a4:bd:c5:51:b0:73:ff:3a:2b:96:15:94:37:4e: 90:c5:a5:28:ad:ac:d3:79:4c:11:86:ef:ea:5e:ad:e1:2c:e4: 08:43:af:aa:5a:52:d7:ae:9f:1e:1a:e8:57:23:2a:65:8c:4c: 97:e8:0b:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E4RUExMTAvBgNVBAUTKEI2MjhCOEE5MjVDNDVFM0FDM0E3MUJFNDExNDY2Mjk5 OEJGNEIzRTAwHhcNMjQwNTE5MDIyNDU5WhcNMjQwNTI2MDIyNDU5WjAYMRYwFAYD VQQDEw02NjQ5NjJmYi1jMWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupgqxs388Tyd7zomPgAFYwek4aybI4cPYUfovKnVZnXjeW7rRb5glV/zZtWj wHbdlL2fuQL5wL4xxdexDL3OpjWsMjERSsoqz3Qc1fs+rrgJSmr3ceOITLk5hCIg b24ATkN/cHbJrmYbP54y+hckgd3zKZ5OkrNfqd5Aw0rykhTs6ltnhkUqcLq9z/SB sbl3TmtRyh+srF1/d9BxXVO/GQsU83h++oDkfe+SCF92xYtJOfgQ++QEn9hiaFCN owzbHFydgh9X7V9TCUsbETVh+2FbZUaNe4Um12icpIkWs/iFh3RCddoYSKeLHUlX DNUWZyAYdyr0EH7CPrudruPRkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF+OJ23n cHulpPb3hbDPaMPobP5PMB8GA1UdIwQYMBaAFLYouKklxF46w6cb5BFGYpmL9LPg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQThFQS9EOENBMTNDMjQw NDkxMUVDOUI2RUZFN0JDNEY5QUUwMi90aWk0cVNYRVhqckRweHZrRVVaaW1ZdjBz LUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RpaTRxU1hFWGpyRHB4dmtFVVppbVl2MHMtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QThFQS9EOENBMTNDMjQwNDkxMUVDOUI2RUZFN0JDNEY5QUUwMi90aWk0cVNYRVhq ckRweHZrRVVaaW1ZdjBzLUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3ctpw3YceH9G8TzpsvbLhEJoUcJYrxzc0jqYGLGMelerIBX17Q1fq i1nUiP+e/TzzcvK8lscfsXbUddx/GMosaNuVyzB382CwMm2mqGhjRm3Dx/LwmrOG 68q6cY0Pfwqekfdq5iKVKj5kAvpiZugsiTnAFO7qd/ynNknkHBc5qq6b/mJlukDG y39taHbM7nEgtERH1WUWhHHXP9VISRnGPULyurMsshP52meN8QN3MPDFZV3L0+Hm AgCwAI8f3stnPtemuFM3aKXbpL3FUbBz/zorlhWUN06QxaUorazTeUwRhu/qXq3h LOQIQ6+qWlLXrp8eGuhXIypljEyX6AsS -----END CERTIFICATE-----Generated at Sun May 19 03:14:50 2024 by rpki-client on console-fra.rpki-client.org