$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft File: TN7H1CHxboUWcqgSOd0Y_IweOVY.mft (raw, json) Hash identifier: GdSvS8MDduH3UR0d8xR5LfuZsHPsUBlrmfEsAFlFBzo= Subject key identifier: 1B:58:71:1E:E3:40:E9:78:F0:B2:2D:C0:3F:C7:9D:8E:59:7E:5F:0C Authority key identifier: 4C:DE:C7:D4:21:F1:6E:85:16:72:A8:12:39:DD:18:FC:8C:1E:39:56 Certificate issuer: /CN=A91D0A62/serialNumber=4CDEC7D421F16E851672A81239DD18FC8C1E3956 Certificate serial: 0404 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft Manifest number: 0401 Signing time: Sun 19 May 2024 02:09:37 +0000 Manifest this update: Sun 19 May 2024 02:09:36 +0000 Manifest next update: Sun 26 May 2024 02:09:36 +0000 Files and hashes: 1: TN7H1CHxboUWcqgSOd0Y_IweOVY.crl (hash: /SaTxOrQrbMBi5eJ3PySdA1pUwHr4u9JTCkLAlD3EdI=) 2: C54BA97E283311ECBE887F3BC4F9AE02.roa (hash: X/FT4st5+ImqbrdQ5iBO/3xpp/J9+a1OV9m+sESj8YI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.crl rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1028 (0x404) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0A62/serialNumber=4CDEC7D421F16E851672A81239DD18FC8C1E3956 Validity Not Before: May 19 02:09:36 2024 GMT Not After : May 26 02:09:36 2024 GMT Subject: CN=66495f61-d4b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:37:85:25:59:f8:6d:28:64:b1:e9:5e:ee:00: c8:51:40:11:d5:88:b0:d3:0c:6b:0a:35:78:dd:05: ba:c1:f6:bd:60:ee:59:75:2d:bb:06:8d:c3:5d:4c: 46:80:06:10:1b:1e:8c:ca:46:bb:42:81:28:45:b5: 59:4e:a2:7a:57:63:53:d0:35:f9:fb:30:e4:91:26: 32:ec:7c:2b:07:43:84:cf:5a:65:89:8b:c8:21:b9: 5d:bc:59:42:06:c8:20:06:51:e4:95:ed:26:a0:4c: ae:7b:bf:52:e8:ae:7e:3e:3a:12:f8:3b:e3:b6:a6: f6:6f:c3:00:d5:1e:93:43:07:86:7e:a3:6f:8a:ce: ee:77:1b:c6:5e:1c:13:77:61:ea:40:dc:aa:c7:40: 50:57:81:b3:a2:49:29:6b:8e:6f:46:cb:9f:87:4e: 62:ce:79:49:11:26:94:86:cc:98:3a:ef:7b:ed:cb: fe:5e:7a:09:43:e5:6c:2c:cf:4c:61:3d:c5:23:b4: 1d:71:3d:48:99:79:76:2d:c0:b8:ef:51:e4:d9:83: d7:91:ef:d0:9a:25:17:83:d0:91:35:f4:50:41:59: 50:6a:30:cf:ad:19:04:43:61:28:a6:97:37:b8:d4: 6f:84:23:1e:e1:39:66:9c:1b:12:90:e3:80:ad:bb: 91:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:58:71:1E:E3:40:E9:78:F0:B2:2D:C0:3F:C7:9D:8E:59:7E:5F:0C X509v3 Authority Key Identifier: keyid:4C:DE:C7:D4:21:F1:6E:85:16:72:A8:12:39:DD:18:FC:8C:1E:39:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:2b:5e:25:b9:65:46:ed:34:b4:14:a8:53:c3:a8:bc:ec:5b: 6f:1e:4c:7b:25:1e:fb:fc:1f:e4:09:c3:e2:7c:a3:1a:96:a0: 4a:20:55:53:69:c5:a1:e0:1e:1f:a8:39:02:48:fc:0d:85:48: cb:f6:a2:3b:89:71:c9:b3:34:d4:a0:ca:28:4e:16:6a:8e:0e: b4:9a:d4:07:35:ed:55:f0:c0:9a:86:71:28:06:7d:bf:4d:6b: 6b:f5:b9:20:f0:a3:87:21:76:ad:c1:b3:28:01:d8:fa:d5:d6: 04:5d:cc:62:2a:3c:a5:8e:3d:c5:6b:c0:3d:8d:a7:83:21:fa: 36:48:50:7b:16:4d:cb:ea:f0:d1:e5:8f:fb:16:81:e7:6c:55: 3d:09:a3:ec:72:f2:54:10:a4:e6:18:5a:18:39:c0:f4:86:24: 4d:ea:22:dd:e3:03:73:7f:f5:e1:ce:fe:00:66:42:da:61:91: 6c:aa:ce:5e:c0:1c:2b:ef:90:9b:10:ee:9d:1d:a1:fc:de:d1: f9:f8:15:33:58:47:7a:66:f3:30:c9:d3:f9:85:a2:31:be:c1: 97:b7:af:c1:11:23:43:cc:74:96:f2:16:3d:fa:ff:2d:48:74: 73:f6:e2:41:b0:2e:a9:df:a1:11:6a:d7:80:61:49:2e:8c:11: 4d:ee:f7:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBBNjIxMTAvBgNVBAUTKDRDREVDN0Q0MjFGMTZFODUxNjcyQTgxMjM5REQxOEZD OEMxRTM5NTYwHhcNMjQwNTE5MDIwOTM2WhcNMjQwNTI2MDIwOTM2WjAYMRYwFAYD VQQDEw02NjQ5NWY2MS1kNGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsDeFJVn4bShksele7gDIUUAR1Yiw0wxrCjV43QW6wfa9YO5ZdS27Bo3DXUxG gAYQGx6Myka7QoEoRbVZTqJ6V2NT0DX5+zDkkSYy7HwrB0OEz1pliYvIIbldvFlC BsggBlHkle0moEyue79S6K5+PjoS+Dvjtqb2b8MA1R6TQweGfqNvis7udxvGXhwT d2HqQNyqx0BQV4Gzokkpa45vRsufh05iznlJESaUhsyYOu977cv+XnoJQ+VsLM9M YT3FI7QdcT1ImXl2LcC471Hk2YPXke/QmiUXg9CRNfRQQVlQajDPrRkEQ2Eoppc3 uNRvhCMe4TlmnBsSkOOArbuRNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBtYcR7j QOl48LItwD/HnY5Zfl8MMB8GA1UdIwQYMBaAFEzex9Qh8W6FFnKoEjndGPyMHjlW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEE2Mi8xRkE5NkRBMDI4 MzExMUVDOTdBMDEzMTZDNEY5QUUwMi9UTjdIMUNIeGJvVVdjcWdTT2QwWV9Jd2VP VlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RON0gxQ0h4Ym9VV2NxZ1NPZDBZX0l3ZU9WWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEE2Mi8xRkE5NkRBMDI4MzExMUVDOTdBMDEzMTZDNEY5QUUwMi9UTjdIMUNIeGJv VVdjcWdTT2QwWV9Jd2VPVlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+K14luWVG7TS0FKhTw6i87FtvHkx7JR77/B/kCcPifKMalqBKIFVT acWh4B4fqDkCSPwNhUjL9qI7iXHJszTUoMooThZqjg60mtQHNe1V8MCahnEoBn2/ TWtr9bkg8KOHIXatwbMoAdj61dYEXcxiKjyljj3Fa8A9jaeDIfo2SFB7Fk3L6vDR 5Y/7FoHnbFU9CaPscvJUEKTmGFoYOcD0hiRN6iLd4wNzf/Xhzv4AZkLaYZFsqs5e wBwr75CbEO6dHaH83tH5+BUzWEd6ZvMwydP5haIxvsGXt6/BESNDzHSW8hY9+v8t SHRz9uJBsC6p36ERateAYUkujBFN7vee -----END CERTIFICATE-----Generated at Sun May 19 02:59:15 2024 by rpki-client on console-ams.rpki-client.org