$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.mft File: tSlwZVVtKyKTSTXnUgcivVMz2k8.mft (raw, json) Hash identifier: lDwi0zbJhRunTK0dVzXUVQcK9lgV02fJv5bD3GfJ6QY= Subject key identifier: D1:58:1C:FF:99:D7:CD:B8:C5:9E:92:37:5E:59:E4:3F:77:75:73:55 Authority key identifier: B5:29:70:65:55:6D:2B:22:93:49:35:E7:52:07:22:BD:53:33:DA:4F Certificate issuer: /CN=A91CD7A4/serialNumber=B5297065556D2B22934935E7520722BD5333DA4F Certificate serial: AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSlwZVVtKyKTSTXnUgcivVMz2k8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.mft Manifest number: AC Signing time: Sun 19 May 2024 06:38:19 +0000 Manifest this update: Sun 19 May 2024 06:38:18 +0000 Manifest next update: Sun 26 May 2024 06:38:18 +0000 Files and hashes: 1: tSlwZVVtKyKTSTXnUgcivVMz2k8.crl (hash: gdyWXf4DhFXH2yN6o/MwllyNmOc7j25yicSnKhtL4Oc=) 2: AD47BEC4320611EE845F4A5AC4F9AE02.roa (hash: 4bHJddjDshspH/1XIJ/4VQJxh31gIJKernZ8Tce+/MI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.crl rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSlwZVVtKyKTSTXnUgcivVMz2k8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 175 (0xaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD7A4/serialNumber=B5297065556D2B22934935E7520722BD5333DA4F Validity Not Before: May 19 06:38:18 2024 GMT Not After : May 26 06:38:18 2024 GMT Subject: CN=66499e5b-543c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c1:bd:a2:07:02:d7:90:3c:fd:d2:c4:3d:4f: f9:fe:dc:67:59:11:20:7a:6e:76:a2:2e:eb:4a:ee: a3:d9:c0:25:8f:0c:94:8e:7a:f9:f3:30:be:b0:8e: 1d:c8:6e:94:e0:36:ea:fc:df:ef:57:77:c7:02:9f: 92:aa:f4:83:4f:1c:20:28:fe:de:c3:ff:46:b1:b9: d6:c0:ad:1d:b5:59:c0:ad:ee:6e:94:0b:5b:d6:6b: 49:86:1b:66:af:29:46:62:a3:50:93:b1:1c:9b:5d: 9f:63:e8:89:c3:a3:fe:d6:9a:70:2a:3d:79:51:01: 04:25:44:3e:4c:b2:83:2d:ed:bb:28:a0:a3:1d:a3: a3:0d:33:ba:01:39:b7:50:79:88:1d:9b:8c:e0:4b: 76:b6:51:be:df:10:07:80:72:c9:67:78:2c:fe:71: a0:8c:80:8e:dd:3f:9d:44:ad:a9:50:83:99:06:d3: cf:7f:fd:28:58:51:bd:b6:b6:d3:03:11:46:46:78: e4:47:44:f4:5f:c1:10:e8:99:b3:0e:e3:3b:a3:7f: cc:17:99:20:f4:24:b7:2c:19:92:41:bd:0c:29:65: b4:4d:3f:f1:e1:3b:1d:c6:21:ae:c5:ce:25:35:f1: ce:e6:ed:c2:05:ad:36:e3:97:b3:c3:01:73:76:4f: 88:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:58:1C:FF:99:D7:CD:B8:C5:9E:92:37:5E:59:E4:3F:77:75:73:55 X509v3 Authority Key Identifier: keyid:B5:29:70:65:55:6D:2B:22:93:49:35:E7:52:07:22:BD:53:33:DA:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSlwZVVtKyKTSTXnUgcivVMz2k8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:38:f0:0a:dc:2e:95:5a:27:b7:9c:2b:c0:a0:77:38:b7:6a: cc:92:78:82:d7:21:9a:79:d4:44:cc:88:be:23:7d:b6:39:21: eb:47:35:4c:e1:d1:f2:47:bf:b1:52:2e:2f:2d:1f:cd:e0:34: ef:04:c9:40:a4:a9:39:91:88:68:28:9f:e6:30:e7:df:3b:ed: 3e:d0:25:92:08:12:a0:7b:80:f6:5c:a9:8e:fb:ac:61:c7:d5: 83:c8:f6:c1:a6:72:f5:ba:3e:b4:7f:f1:8c:68:8d:26:c9:ed: df:b8:19:7d:23:8b:af:9f:1d:95:1f:b9:54:70:7e:58:52:4c: 6a:95:1c:6d:87:d9:e6:9a:29:47:d0:f8:5b:63:b8:3e:83:19: aa:51:19:84:55:b4:6f:92:7d:e9:f7:c1:f5:ff:24:bb:89:d6: da:40:8d:c4:86:7a:02:85:41:fa:14:e1:f1:96:ad:5d:ed:aa: d0:65:fe:e0:58:11:17:11:fc:b2:c0:d8:9d:58:c0:21:23:dd: 84:38:eb:6b:0c:ff:f2:9c:fa:4a:7c:ea:32:aa:14:27:b5:8f: a5:61:f1:c1:f2:07:7e:a4:7c:d7:cc:94:61:67:93:e7:77:4e: 06:f9:23:5e:88:33:7e:8f:e8:d9:8e:d0:4a:fb:9c:f0:5d:3c: 17:c0:76:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q3QTQxMTAvBgNVBAUTKEI1Mjk3MDY1NTU2RDJCMjI5MzQ5MzVFNzUyMDcyMkJE NTMzM0RBNEYwHhcNMjQwNTE5MDYzODE4WhcNMjQwNTI2MDYzODE4WjAYMRYwFAYD VQQDEw02NjQ5OWU1Yi01NDNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAucG9ogcC15A8/dLEPU/5/txnWREgem52oi7rSu6j2cAljwyUjnr58zC+sI4d yG6U4Dbq/N/vV3fHAp+SqvSDTxwgKP7ew/9GsbnWwK0dtVnAre5ulAtb1mtJhhtm rylGYqNQk7Ecm12fY+iJw6P+1ppwKj15UQEEJUQ+TLKDLe27KKCjHaOjDTO6ATm3 UHmIHZuM4Et2tlG+3xAHgHLJZ3gs/nGgjICO3T+dRK2pUIOZBtPPf/0oWFG9trbT AxFGRnjkR0T0X8EQ6JmzDuM7o3/MF5kg9CS3LBmSQb0MKWW0TT/x4TsdxiGuxc4l NfHO5u3CBa0245ezwwFzdk+I/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNFYHP+Z 1824xZ6SN15Z5D93dXNVMB8GA1UdIwQYMBaAFLUpcGVVbSsik0k151IHIr1TM9pP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDdBNC8zQ0M3MTk5NjEx ODcxMUVFQjM5RkUyNDNDNEY5QUUwMi90U2x3WlZWdEt5S1RTVFhuVWdjaXZWTXoy azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RTbHdaVlZ0S3lLVFNUWG5VZ2NpdlZNejJrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDdBNC8zQ0M3MTk5NjExODcxMUVFQjM5RkUyNDNDNEY5QUUwMi90U2x3WlZWdEt5 S1RTVFhuVWdjaXZWTXoyazgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZOPAK3C6VWie3nCvAoHc4t2rMkniC1yGaedREzIi+I322OSHrRzVM 4dHyR7+xUi4vLR/N4DTvBMlApKk5kYhoKJ/mMOffO+0+0CWSCBKge4D2XKmO+6xh x9WDyPbBpnL1uj60f/GMaI0mye3fuBl9I4uvnx2VH7lUcH5YUkxqlRxth9nmmilH 0PhbY7g+gxmqURmEVbRvkn3p98H1/yS7idbaQI3EhnoChUH6FOHxlq1d7arQZf7g WBEXEfyywNidWMAhI92EOOtrDP/ynPpKfOoyqhQntY+lYfHB8gd+pHzXzJRhZ5Pn d04G+SNeiDN+j+jZjtBK+5zwXTwXwHZo -----END CERTIFICATE-----Generated at Sun May 19 08:25:08 2024 by rpki-client on console-ams.rpki-client.org