$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/AwfvDynPItsJcPUIPAI8KqDW9Rc.mft File: AwfvDynPItsJcPUIPAI8KqDW9Rc.mft (raw, json) Hash identifier: AwA2Y9mXrQB6Fbj4W6MFOae2krMRPVEiAR4BPgC/wwg= Subject key identifier: BD:AA:CB:76:04:F2:47:69:28:51:45:14:5D:8F:42:0F:A3:62:4F:90 Authority key identifier: 03:07:EF:0F:29:CF:22:DB:09:70:F5:08:3C:02:3C:2A:A0:D6:F5:17 Certificate issuer: /CN=A91D8704/serialNumber=0307EF0F29CF22DB0970F5083C023C2AA0D6F517 Certificate serial: 07DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AwfvDynPItsJcPUIPAI8KqDW9Rc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/AwfvDynPItsJcPUIPAI8KqDW9Rc.mft Manifest number: 07D5 Signing time: Sat 18 May 2024 21:58:58 +0000 Manifest this update: Sat 18 May 2024 21:58:58 +0000 Manifest next update: Sat 25 May 2024 21:58:58 +0000 Files and hashes: 1: AwfvDynPItsJcPUIPAI8KqDW9Rc.crl (hash: sRSJ23GvbdnnP7td3wpXbWsvd0w/xtW4CL24Mo1jwpE=) 2: B1AAC5B2BC4111EA9A5B2786C4F9AE02.roa (hash: icXVNVT7p9gqqT6T6N/nqjjEgwvoL9M+Js5FxgE4rqo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/AwfvDynPItsJcPUIPAI8KqDW9Rc.crl rsync://rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/AwfvDynPItsJcPUIPAI8KqDW9Rc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AwfvDynPItsJcPUIPAI8KqDW9Rc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2011 (0x7db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8704/serialNumber=0307EF0F29CF22DB0970F5083C023C2AA0D6F517 Validity Not Before: May 18 21:58:58 2024 GMT Not After : May 25 21:58:58 2024 GMT Subject: CN=664924a2-32ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:70:28:af:73:ce:99:99:a7:cd:f3:41:c3:43: 5c:bc:02:2c:4e:e8:0a:5a:65:23:93:ec:b9:8f:88: 82:71:b0:07:96:04:4b:bb:59:d8:d5:0e:d5:19:67: 8d:b4:12:f4:ca:9c:b5:92:db:ca:76:58:14:e2:8a: 86:f2:d9:ea:d4:57:fc:fe:7f:3f:00:86:5f:02:0d: 55:d2:60:ff:b5:16:a6:43:f5:51:c1:4b:7d:bb:b4: 40:e3:e9:ca:1e:b5:27:b7:64:2c:5f:37:36:96:ff: 55:a8:84:5b:62:c7:2d:17:94:41:2c:74:af:c1:d7: 55:4b:78:b6:e6:2d:db:11:50:2f:df:8c:4b:8c:96: 53:81:ac:e5:07:44:e7:16:63:d7:e9:61:6f:9c:1a: 78:10:76:63:03:ca:fd:fb:e1:3c:1b:df:98:35:f3: b4:74:cf:e5:e5:b2:3b:97:3a:5d:1f:bf:47:59:40: dd:3b:7f:51:31:d2:f0:f7:64:20:02:55:b2:8c:48: d7:90:4f:e2:d1:a1:60:d6:a1:67:18:ee:0e:fc:5a: 2f:ef:32:df:86:29:7a:2d:eb:1d:96:e4:1c:c0:28: fc:65:ae:7a:4a:18:fc:25:23:2e:bb:4a:70:f5:3b: 0b:6d:bf:3e:48:6d:52:bc:84:93:39:5a:39:f8:84: e4:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:AA:CB:76:04:F2:47:69:28:51:45:14:5D:8F:42:0F:A3:62:4F:90 X509v3 Authority Key Identifier: keyid:03:07:EF:0F:29:CF:22:DB:09:70:F5:08:3C:02:3C:2A:A0:D6:F5:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/AwfvDynPItsJcPUIPAI8KqDW9Rc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AwfvDynPItsJcPUIPAI8KqDW9Rc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/AwfvDynPItsJcPUIPAI8KqDW9Rc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:7e:2e:c6:8e:53:f3:ee:6e:22:ad:42:2a:15:27:ab:60:de: 7d:dc:7e:a2:1c:b9:2e:ef:71:f4:fc:2b:49:4b:7d:32:e4:a5: e8:c2:00:1d:f4:07:2d:28:6c:40:2e:5d:93:de:eb:af:8a:41: e1:1f:a4:80:fe:c6:df:89:a2:8f:d8:6e:21:f7:a6:47:dc:9e: 17:78:ef:c4:d3:ef:6b:d1:eb:78:41:4f:26:97:c2:12:8a:8b: 58:2d:fe:20:63:e3:48:01:49:c4:6b:61:ea:60:b9:49:5c:dd: a4:51:fc:ed:6b:39:18:ff:6f:0e:3f:82:af:d2:78:32:d9:75: bb:d4:7f:51:6b:6d:6c:93:ae:cf:6e:55:e2:c6:c2:2a:02:91: 3c:da:3d:1c:73:e6:b6:f9:57:75:1c:2e:16:1f:1d:fb:42:1b: e0:bb:88:06:02:3a:5a:21:01:46:0b:93:54:61:fd:c1:37:0e: 0d:45:7f:8a:0a:b8:10:ff:29:f6:d6:5d:ce:1a:d7:31:f1:78: 48:69:99:b3:2d:a2:93:37:94:24:08:71:cb:72:a6:78:47:2f: 1c:07:8f:94:e0:3a:f6:bc:4c:6d:ac:62:b5:8c:40:9b:bf:4c: 2a:a7:e7:4f:ed:6d:d4:92:fb:37:a2:6e:db:b0:ee:f7:3b:fd: 01:d7:86:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg3MDQxMTAvBgNVBAUTKDAzMDdFRjBGMjlDRjIyREIwOTcwRjUwODNDMDIzQzJB QTBENkY1MTcwHhcNMjQwNTE4MjE1ODU4WhcNMjQwNTI1MjE1ODU4WjAYMRYwFAYD VQQDEw02NjQ5MjRhMi0zMmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHAor3POmZmnzfNBw0NcvAIsTugKWmUjk+y5j4iCcbAHlgRLu1nY1Q7VGWeN tBL0ypy1ktvKdlgU4oqG8tnq1Ff8/n8/AIZfAg1V0mD/tRamQ/VRwUt9u7RA4+nK HrUnt2QsXzc2lv9VqIRbYsctF5RBLHSvwddVS3i25i3bEVAv34xLjJZTgazlB0Tn FmPX6WFvnBp4EHZjA8r9++E8G9+YNfO0dM/l5bI7lzpdH79HWUDdO39RMdLw92Qg AlWyjEjXkE/i0aFg1qFnGO4O/Fov7zLfhil6LesdluQcwCj8Za56Shj8JSMuu0pw 9TsLbb8+SG1SvISTOVo5+ITkMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL2qy3YE 8kdpKFFFFF2PQg+jYk+QMB8GA1UdIwQYMBaAFAMH7w8pzyLbCXD1CDwCPCqg1vUX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODcwNC81NjU1QUM5OEJD MEMxMUVBOTFFMDlCNjhDNEY5QUUwMi9Bd2Z2RHluUEl0c0pjUFVJUEFJOEtxRFc5 UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0F3ZnZEeW5QSXRzSmNQVUlQQUk4S3FEVzlSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODcwNC81NjU1QUM5OEJDMEMxMUVBOTFFMDlCNjhDNEY5QUUwMi9Bd2Z2RHluUEl0 c0pjUFVJUEFJOEtxRFc5UmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArfi7GjlPz7m4irUIqFSerYN593H6iHLku73H0/CtJS30y5KXowgAd 9ActKGxALl2T3uuvikHhH6SA/sbfiaKP2G4h96ZH3J4XeO/E0+9r0et4QU8ml8IS iotYLf4gY+NIAUnEa2HqYLlJXN2kUfztazkY/28OP4Kv0ngy2XW71H9Ra21sk67P blXixsIqApE82j0cc+a2+Vd1HC4WHx37Qhvgu4gGAjpaIQFGC5NUYf3BNw4NRX+K CrgQ/yn21l3OGtcx8XhIaZmzLaKTN5QkCHHLcqZ4Ry8cB4+U4Dr2vExtrGK1jECb v0wqp+dP7W3Ukvs3om7bsO73O/0B14bz -----END CERTIFICATE-----Generated at Sun May 19 00:16:19 2024 by rpki-client on console-fra.rpki-client.org