$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft File: R4pL3QESHRxrMz7MPiW6Gohxmao.mft (raw, json) Hash identifier: cVPZw6ZGI+xjpvx+o31n4q5PIP7Q0lV8lWYlDkGWcWk= Subject key identifier: 75:9E:F5:68:E9:23:05:B6:F0:3A:DB:59:B5:4F:12:77:D0:8C:F9:A9 Authority key identifier: 47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA Certificate issuer: /CN=A91DF076/serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Certificate serial: 0D10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft Manifest number: 0D08 Signing time: Sat 18 May 2024 18:44:52 +0000 Manifest this update: Sat 18 May 2024 18:44:51 +0000 Manifest next update: Sat 25 May 2024 18:44:51 +0000 Files and hashes: 1: R4pL3QESHRxrMz7MPiW6Gohxmao.crl (hash: bGU90NbIOvhyUMrjQ4GO+DfV1/msQjiaXRSM2uG5A3Q=) 2: 7043D43679BB11ECB6D72266C4F9AE02.roa (hash: xOxXMfOXHt2qRd+Rnz4yuRb/4BHfIz/GTJSc2sQzyVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3344 (0xd10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF076/serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Validity Not Before: May 18 18:44:51 2024 GMT Not After : May 25 18:44:51 2024 GMT Subject: CN=6648f724-c7e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:07:10:47:e9:b0:eb:5a:e9:de:23:16:38:3e: 95:1f:fd:3a:7f:2e:0a:90:0e:cd:28:a8:2d:aa:b9: e4:0d:3a:96:28:5a:44:7f:25:82:93:52:18:33:25: 25:81:41:2f:f7:ba:b7:a0:f4:05:2f:2b:af:f7:37: ba:4c:96:38:f1:f8:1e:97:c7:09:70:d8:b2:03:45: e2:74:4a:8f:9a:85:8f:ff:d9:0e:bf:5f:00:02:1d: 86:f5:2c:40:1b:d6:cb:ac:bd:70:98:a3:d3:1b:58: 80:56:6b:52:dc:bf:78:c4:b5:f2:3a:8c:3e:98:53: 8f:63:8e:19:36:cb:3a:ab:fc:a2:90:1a:2f:fd:99: 95:8a:2a:13:a2:1b:7b:7c:9e:a3:44:20:05:96:0a: 49:a2:4c:e3:83:0b:ea:15:5f:52:5b:fe:3e:e5:f5: 77:11:cd:96:86:f9:36:04:4b:ef:53:34:17:4e:bd: 85:e3:4a:cb:4e:52:13:28:ee:25:ba:6a:44:e6:63: 00:4c:4e:6f:c8:3a:0f:6f:68:da:1f:4b:3f:e9:65: 6c:45:96:68:be:5b:00:02:63:97:34:8c:f4:55:0a: b1:61:d2:ef:bf:6f:6a:95:c6:ed:08:e2:ff:5a:75: e4:79:6c:6f:83:f6:f4:88:cf:98:de:81:10:0d:d3: 53:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:9E:F5:68:E9:23:05:B6:F0:3A:DB:59:B5:4F:12:77:D0:8C:F9:A9 X509v3 Authority Key Identifier: keyid:47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:0b:7f:a9:be:04:a2:23:32:6e:88:3b:3b:b8:13:d0:57:f9: 40:49:de:c5:e8:78:19:23:50:ed:d0:c0:aa:33:f8:80:4b:f0: 23:49:b2:e5:43:8a:58:10:b6:82:6e:d8:3f:91:24:4b:79:47: 19:4a:44:ad:7b:e6:89:1a:fd:14:2c:0c:b3:91:3a:75:bd:fd: 9d:6c:da:86:f6:ec:65:83:fb:62:a3:75:b1:c3:97:2c:9c:b7: 6d:09:a0:f7:ff:fa:58:fe:0b:66:c5:d5:04:9a:39:85:31:2d: c2:66:a4:3b:bb:60:73:05:28:0c:f9:90:0f:12:60:e3:2a:12: b2:fd:27:9d:36:1c:5c:f3:87:39:21:50:33:0e:cb:c7:34:1e: 0c:6f:83:dd:ba:e4:5a:37:25:c1:be:8b:09:36:55:9d:29:50: 12:85:81:ac:6c:6a:ed:7a:54:8d:9d:a5:81:ce:26:e2:f2:9a: e2:2a:fc:cb:fb:46:ab:be:72:46:c4:b0:9f:a5:5c:85:e7:43: 9a:6d:6b:d8:db:41:58:ac:8f:57:95:1a:f6:e5:dd:57:93:97: 48:5a:30:15:f3:a2:2b:16:22:7e:cd:a6:fd:d0:3e:38:cb:84: 22:2a:9c:3d:1d:b2:f2:7a:ea:22:69:54:31:84:74:26:6b:ce: bc:ba:76:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDRAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwNzYxMTAvBgNVBAUTKDQ3OEE0QkREMDExMjFEMUM2QjMzM0VDQzNFMjVCQTFB ODg3MTk5QUEwHhcNMjQwNTE4MTg0NDUxWhcNMjQwNTI1MTg0NDUxWjAYMRYwFAYD VQQDEw02NjQ4ZjcyNC1jN2U0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtgcQR+mw61rp3iMWOD6VH/06fy4KkA7NKKgtqrnkDTqWKFpEfyWCk1IYMyUl gUEv97q3oPQFLyuv9ze6TJY48fgel8cJcNiyA0XidEqPmoWP/9kOv18AAh2G9SxA G9bLrL1wmKPTG1iAVmtS3L94xLXyOow+mFOPY44ZNss6q/yikBov/ZmViioToht7 fJ6jRCAFlgpJokzjgwvqFV9SW/4+5fV3Ec2Whvk2BEvvUzQXTr2F40rLTlITKO4l umpE5mMATE5vyDoPb2jaH0s/6WVsRZZovlsAAmOXNIz0VQqxYdLvv29qlcbtCOL/ WnXkeWxvg/b0iM+Y3oEQDdNTcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHWe9Wjp IwW28DrbWbVPEnfQjPmpMB8GA1UdIwQYMBaAFEeKS90BEh0cazM+zD4luhqIcZmq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjA3Ni9BNDA4RjU4MkI5 MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hSeHJNejdNUGlXNkdvaHht YW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1I0cEwzUUVTSFJ4ck16N01QaVc2R29oeG1hby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjA3Ni9BNDA4RjU4MkI5MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hS eHJNejdNUGlXNkdvaHhtYW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyC3+pvgSiIzJuiDs7uBPQV/lASd7F6HgZI1Dt0MCqM/iAS/AjSbLl Q4pYELaCbtg/kSRLeUcZSkSte+aJGv0ULAyzkTp1vf2dbNqG9uxlg/tio3Wxw5cs nLdtCaD3//pY/gtmxdUEmjmFMS3CZqQ7u2BzBSgM+ZAPEmDjKhKy/SedNhxc84c5 IVAzDsvHNB4Mb4PduuRaNyXBvosJNlWdKVAShYGsbGrtelSNnaWBzibi8priKvzL +0arvnJGxLCfpVyF50OabWvY20FYrI9XlRr25d1Xk5dIWjAV86IrFiJ+zab90D44 y4QiKpw9HbLyeuoiaVQxhHQma868unbc -----END CERTIFICATE-----Generated at Sat May 18 20:16:07 2024 by rpki-client on console-ams.rpki-client.org