$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft File: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft (raw, json) Hash identifier: 63ICcZ2qJUwBuzYQWCNoKlXuLWRMr66raQkx+VIZmfU= Subject key identifier: F4:79:07:FE:AA:EF:85:AD:97:22:85:27:D5:A8:97:BC:3C:47:AC:DB Authority key identifier: 68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 Certificate issuer: /CN=A91CE216/serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Certificate serial: 06F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft Manifest number: 06F1 Signing time: Sat 18 May 2024 22:46:10 +0000 Manifest this update: Sat 18 May 2024 22:46:09 +0000 Manifest next update: Sat 25 May 2024 22:46:09 +0000 Files and hashes: 1: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl (hash: ABT3exJSTzZ5/TK8jFWdFYS7mp768d0J7efdIpMRfSU=) 2: 7F2355F2FE2A11EA8A51B85AC4F9AE02.roa (hash: k1OCR/hebk2sDyU2kQY6MZJlVjmexhMLICsY/iovIDg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1781 (0x6f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE216/serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Validity Not Before: May 18 22:46:09 2024 GMT Not After : May 25 22:46:09 2024 GMT Subject: CN=66492fb1-35bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:3a:1c:ed:61:e0:a2:a0:c1:dc:eb:9b:9b:42: 45:55:90:a3:16:34:59:57:f9:3e:aa:c8:61:d1:e9: 30:21:dd:8f:1a:c0:f8:97:b7:b1:93:ad:f5:b7:aa: df:3e:0b:ca:b8:02:96:80:56:75:59:9f:38:cc:14: df:e0:57:22:8e:b9:c2:3e:7b:2d:cb:e4:05:47:e7: b8:6e:7f:fd:3c:0a:da:2e:87:05:fe:8d:91:ff:08: c4:f5:dc:36:fb:75:65:4c:fa:6d:e0:14:c2:3d:99: c1:23:b5:1c:94:93:85:aa:bf:cb:e5:74:f0:bb:e1: df:23:0f:8c:dc:11:43:90:2d:cf:92:cb:40:15:77: c0:d8:b5:72:55:12:48:e6:54:d8:4f:e4:57:04:2d: 94:fe:fe:40:90:b6:8e:58:b8:a3:6f:67:a5:d3:46: 7b:08:ad:83:d5:48:c1:5e:0a:b0:14:8d:43:0e:e5: e1:52:d3:ff:4b:4e:1b:02:63:d0:b9:7f:dd:b1:da: f4:be:57:33:2a:52:b5:fc:40:74:43:27:92:40:b0: 9f:d3:b5:c0:04:1b:6f:7a:a1:c3:a2:b8:37:2e:4a: 6f:de:7b:cd:0b:12:97:d7:47:1a:c2:92:d8:7b:68: a3:6c:8e:5a:68:6e:4e:43:f3:40:6b:3a:82:5d:6f: 89:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:79:07:FE:AA:EF:85:AD:97:22:85:27:D5:A8:97:BC:3C:47:AC:DB X509v3 Authority Key Identifier: keyid:68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:60:98:3c:f6:a9:c8:f1:5c:da:0f:78:41:2c:42:2f:dd:9b: f2:7a:60:cf:45:22:a3:9d:06:e0:b1:04:23:fd:04:75:ee:2d: 9b:ec:2e:a1:56:dd:16:08:99:53:d8:57:41:5f:d0:36:1b:ab: 55:4d:79:c3:45:8c:fc:c7:df:a0:b9:ca:34:19:a7:c4:06:55: 83:92:5f:24:b5:30:45:42:22:39:eb:e1:a7:9c:73:ca:bb:90: 4d:cf:29:97:98:0c:b6:8c:5e:66:7a:d3:99:2a:d1:e9:f6:fb: bd:c4:84:97:46:14:f4:d8:bc:78:3c:86:33:e6:95:b8:56:df: d3:ea:44:76:82:5c:fe:2a:7b:df:30:20:74:82:6e:5c:16:25: 2a:4d:79:9c:c1:d8:c7:5c:4c:e2:79:ab:09:71:14:17:35:60: 42:e3:48:03:30:c9:72:3b:3f:84:60:18:92:19:dc:d9:71:2b: 6c:b0:40:d1:fb:d1:97:db:56:aa:e7:8e:ee:ad:03:6c:aa:1e: 6b:9b:2c:cd:c1:af:e2:c3:f7:aa:27:b9:c5:eb:5d:64:ad:d1: f7:26:31:ea:1e:39:0a:22:f8:48:71:5d:f4:9d:db:49:41:85: e9:9b:2c:2a:78:b6:9b:19:50:2e:ac:f2:90:a8:f2:dd:7b:66: 3c:b7:a6:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyMTYxMTAvBgNVBAUTKDY4QTRGQzgxMkQwMTkxMzYzRTFDNEExMzA5OUY1M0Iw MjczNzY1NzkwHhcNMjQwNTE4MjI0NjA5WhcNMjQwNTI1MjI0NjA5WjAYMRYwFAYD VQQDEw02NjQ5MmZiMS0zNWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0joc7WHgoqDB3Oubm0JFVZCjFjRZV/k+qshh0ekwId2PGsD4l7exk631t6rf PgvKuAKWgFZ1WZ84zBTf4FcijrnCPnsty+QFR+e4bn/9PAraLocF/o2R/wjE9dw2 +3VlTPpt4BTCPZnBI7UclJOFqr/L5XTwu+HfIw+M3BFDkC3PkstAFXfA2LVyVRJI 5lTYT+RXBC2U/v5AkLaOWLijb2el00Z7CK2D1UjBXgqwFI1DDuXhUtP/S04bAmPQ uX/dsdr0vlczKlK1/EB0QyeSQLCf07XABBtveqHDorg3Lkpv3nvNCxKX10cawpLY e2ijbI5aaG5OQ/NAazqCXW+JOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPR5B/6q 74WtlyKFJ9Wol7w8R6zbMB8GA1UdIwQYMBaAFGik/IEtAZE2PhxKEwmfU7AnN2V5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTIxNi9BRjU3QjZGQ0ZF MjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtUWS1IRW9UQ1o5VHNDYzNa WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FLVDhnUzBCa1RZLUhFb1RDWjlUc0NjM1pYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTIxNi9BRjU3QjZGQ0ZFMjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtU WS1IRW9UQ1o5VHNDYzNaWGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoYJg89qnI8VzaD3hBLEIv3ZvyemDPRSKjnQbgsQQj/QR17i2b7C6h Vt0WCJlT2FdBX9A2G6tVTXnDRYz8x9+guco0GafEBlWDkl8ktTBFQiI56+GnnHPK u5BNzymXmAy2jF5metOZKtHp9vu9xISXRhT02Lx4PIYz5pW4Vt/T6kR2glz+Knvf MCB0gm5cFiUqTXmcwdjHXEzieasJcRQXNWBC40gDMMlyOz+EYBiSGdzZcStssEDR +9GX21aq547urQNsqh5rmyzNwa/iw/eqJ7nF611krdH3JjHqHjkKIvhIcV30ndtJ QYXpmywqeLabGVAurPKQqPLde2Y8t6bl -----END CERTIFICATE-----Generated at Sun May 19 00:30:21 2024 by rpki-client on console-ams.rpki-client.org