$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft File: sTgy_KSTRJYjasOJSZjD3VE9fAk.mft (raw, json) Hash identifier: yFdjlP0YEjklRT0eQeluVlDV66FWKInXSwZVOczFNBw= Subject key identifier: 02:96:68:07:B6:DB:87:F8:7F:8C:52:25:77:78:33:EF:9A:03:09:86 Authority key identifier: B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 Certificate issuer: /CN=A91D4A16/serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Certificate serial: DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft Manifest number: D9 Signing time: Sun 19 May 2024 06:05:28 +0000 Manifest this update: Sun 19 May 2024 06:05:28 +0000 Manifest next update: Sun 26 May 2024 06:05:28 +0000 Files and hashes: 1: sTgy_KSTRJYjasOJSZjD3VE9fAk.crl (hash: Xwxb8BvmmZXXBn9rXpfgZLhuLlaAg6A9MLxC4JwiHUA=) 2: AAE6C020CC5E11ED8812DA68C4F9AE02.roa (hash: lSoidaFmpDS5MY9m7Ma1YPASIErHiR97XohoZLyqWYY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4A16/serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Validity Not Before: May 19 06:05:28 2024 GMT Not After : May 26 06:05:28 2024 GMT Subject: CN=664996a8-7f7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:76:d9:a5:e8:10:96:03:1a:8d:fa:02:6c:d4: 44:2b:11:fe:e5:5a:f2:c2:ee:b4:3a:e0:d2:d6:de: 0e:a0:f0:55:4f:f1:61:ab:c8:e0:9e:d4:d1:48:f4: e4:b5:1a:9c:10:1c:75:de:a7:55:04:3b:53:9e:41: ce:2c:9f:83:8e:77:d2:3d:3d:e3:ff:0a:4e:af:5c: 81:63:64:80:4b:8b:7a:2d:b3:de:03:5a:ca:55:d8: fc:9c:33:c0:13:d0:38:68:d0:c2:1d:d8:24:98:48: 7e:20:68:e5:64:f6:83:64:7d:fb:25:4b:f8:19:0d: 4b:e0:ed:a6:b7:27:99:fa:d2:d4:55:dc:ca:21:cd: f8:f1:34:be:5d:2c:82:5a:3f:99:d4:af:63:d0:b4: 30:43:4f:03:ac:7d:c8:9a:f5:14:61:21:52:54:02: 9a:f4:27:bd:5f:9e:2a:a8:b3:84:4f:84:22:25:c9: 4d:18:43:bb:9b:ab:71:85:61:1d:ce:bc:75:c7:d3: c6:ec:6b:07:cf:96:8a:03:84:5d:4e:e8:f9:b2:1b: 02:eb:3d:05:9b:a9:49:8c:c4:34:7f:ef:fa:56:2c: 87:cc:32:89:3c:9e:2f:8d:3f:10:b6:ff:71:04:41: 99:98:ff:df:75:b1:5b:da:01:69:c6:1d:2a:8a:79: 80:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:96:68:07:B6:DB:87:F8:7F:8C:52:25:77:78:33:EF:9A:03:09:86 X509v3 Authority Key Identifier: keyid:B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:91:4a:91:b8:74:1d:14:8f:fc:dd:e4:a1:9d:93:cf:84:1f: 28:01:6c:b9:49:67:61:fc:ed:3a:4e:85:55:a5:62:10:a9:f7: 13:fa:b3:82:40:60:73:a9:33:57:49:af:0c:25:7e:1e:5e:9a: 6b:95:8f:ac:74:3a:9a:a6:22:2c:63:5d:f6:5e:85:39:ba:ed: aa:2f:ea:8d:a8:54:1f:d8:24:88:c5:e1:cd:ee:de:3f:c7:24: e1:a5:19:25:5d:bb:5a:06:58:7b:b5:1d:29:11:cd:75:41:79: 34:14:7e:83:65:18:ac:61:2d:48:7e:4e:f9:89:cf:78:04:98: da:94:74:8a:e2:46:c2:f8:5f:7b:93:22:39:0e:fd:d6:a7:ed: 9e:94:ec:10:d7:74:88:ef:aa:6e:ed:ac:62:af:e8:60:85:d2: 94:17:57:55:4e:15:bb:37:48:3b:14:54:1e:94:15:9d:67:b5: 56:d0:0a:bd:19:06:8c:52:3d:48:c5:0d:35:b6:64:d1:d3:0b: 03:81:bf:56:08:40:8a:61:63:97:e5:7e:40:a0:82:1e:07:fd: ff:ed:b8:e0:f8:ae:b8:9b:ba:3f:49:5f:a7:6a:98:d1:44:3e: 22:a1:9c:d2:c2:bf:ec:8a:c3:cd:e6:82:51:e4:be:c2:0e:4d: 5a:ee:43:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRBMTYxMTAvBgNVBAUTKEIxMzgzMkZDQTQ5MzQ0OTYyMzZBQzM4OTQ5OThDM0RE NTEzRDdDMDkwHhcNMjQwNTE5MDYwNTI4WhcNMjQwNTI2MDYwNTI4WjAYMRYwFAYD VQQDEw02NjQ5OTZhOC03ZjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4nbZpegQlgMajfoCbNREKxH+5Vrywu60OuDS1t4OoPBVT/Fhq8jgntTRSPTk tRqcEBx13qdVBDtTnkHOLJ+DjnfSPT3j/wpOr1yBY2SAS4t6LbPeA1rKVdj8nDPA E9A4aNDCHdgkmEh+IGjlZPaDZH37JUv4GQ1L4O2mtyeZ+tLUVdzKIc348TS+XSyC Wj+Z1K9j0LQwQ08DrH3ImvUUYSFSVAKa9Ce9X54qqLOET4QiJclNGEO7m6txhWEd zrx1x9PG7GsHz5aKA4RdTuj5shsC6z0Fm6lJjMQ0f+/6ViyHzDKJPJ4vjT8Qtv9x BEGZmP/fdbFb2gFpxh0qinmAiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAKWaAe2 24f4f4xSJXd4M++aAwmGMB8GA1UdIwQYMBaAFLE4Mvykk0SWI2rDiUmYw91RPXwJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEExNi9CQUU3RUZGRUND NTMxMUVEODFGNEM1MTVDNEY5QUUwMi9zVGd5X0tTVFJKWWphc09KU1pqRDNWRTlm QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NUZ3lfS1NUUkpZamFzT0pTWmpEM1ZFOWZBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEExNi9CQUU3RUZGRUNDNTMxMUVEODFGNEM1MTVDNEY5QUUwMi9zVGd5X0tTVFJK WWphc09KU1pqRDNWRTlmQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzkUqRuHQdFI/83eShnZPPhB8oAWy5SWdh/O06ToVVpWIQqfcT+rOC QGBzqTNXSa8MJX4eXpprlY+sdDqapiIsY132XoU5uu2qL+qNqFQf2CSIxeHN7t4/ xyThpRklXbtaBlh7tR0pEc11QXk0FH6DZRisYS1Ifk75ic94BJjalHSK4kbC+F97 kyI5Dv3Wp+2elOwQ13SI76pu7axir+hghdKUF1dVThW7N0g7FFQelBWdZ7VW0Aq9 GQaMUj1IxQ01tmTR0wsDgb9WCECKYWOX5X5AoIIeB/3/7bjg+K64m7o/SV+napjR RD4ioZzSwr/sisPN5oJR5L7CDk1a7kM0 -----END CERTIFICATE-----Generated at Sun May 19 07:40:45 2024 by rpki-client on console-fra.rpki-client.org