$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF26F/846EC62EA78E11E580241B62C4F9AE02/aVxF2kJFO04LBivxfb9Eclx4g4c.mft File: aVxF2kJFO04LBivxfb9Eclx4g4c.mft (raw, json) Hash identifier: Re+DQJV16eYl7Wn/J99YBRMYJRotS56Q3b3IpyNUnSk= Subject key identifier: 3E:13:50:54:91:5E:E5:4F:C5:F6:10:2E:9F:43:BD:6A:22:7F:DA:EE Authority key identifier: 69:5C:45:DA:42:45:3B:4E:0B:06:2B:F1:7D:BF:44:72:5C:78:83:87 Certificate issuer: /CN=A91DF26F/serialNumber=695C45DA42453B4E0B062BF17DBF44725C788387 Certificate serial: 21C0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aVxF2kJFO04LBivxfb9Eclx4g4c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF26F/846EC62EA78E11E580241B62C4F9AE02/aVxF2kJFO04LBivxfb9Eclx4g4c.mft Manifest number: 21C0 Signing time: Sat 18 May 2024 14:43:59 +0000 Manifest this update: Sat 18 May 2024 14:43:58 +0000 Manifest next update: Sat 25 May 2024 14:43:58 +0000 Files and hashes: 1: aVxF2kJFO04LBivxfb9Eclx4g4c.crl (hash: Tn6f17jvAIsgLJwvUG1HArebYgeTVReM8KvrI3kPtuk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF26F/846EC62EA78E11E580241B62C4F9AE02/aVxF2kJFO04LBivxfb9Eclx4g4c.crl rsync://rpki.apnic.net/member_repository/A91DF26F/846EC62EA78E11E580241B62C4F9AE02/aVxF2kJFO04LBivxfb9Eclx4g4c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aVxF2kJFO04LBivxfb9Eclx4g4c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:43:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8640 (0x21c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF26F/serialNumber=695C45DA42453B4E0B062BF17DBF44725C788387 Validity Not Before: May 18 14:43:58 2024 GMT Not After : May 25 14:43:58 2024 GMT Subject: CN=6648beaf-2456 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:cb:2c:19:30:e0:20:33:9c:84:ef:51:29:be: 9c:4a:32:ec:bf:63:26:48:42:10:2a:ff:c3:04:53: 3b:72:37:15:be:d4:91:8a:60:fb:24:29:98:45:a0: d2:b0:0b:b6:54:23:3a:d3:1a:5e:2f:51:a5:72:6c: e5:4d:aa:56:69:91:ad:fb:b4:5e:da:5e:80:88:38: 69:1b:bc:bf:8e:e1:e2:4b:7c:fe:bd:5c:1b:69:81: 49:22:11:68:0b:c5:68:68:a2:7e:62:eb:60:8a:ee: 18:d6:26:0d:ef:7e:ab:d3:38:ec:db:c5:46:c2:f5: 4d:67:35:3f:c0:e4:3c:dd:97:90:33:53:b0:6a:7f: 7e:53:00:7e:f8:fc:ce:ab:64:d1:83:f9:fe:ed:42: 5c:13:99:fe:67:7e:55:1c:39:43:84:32:19:bc:0c: 5f:8f:8e:cd:d5:3b:fc:d8:fb:a4:7d:36:11:b4:a3: 24:58:3c:19:2b:d2:ab:47:95:1c:cd:df:22:e4:80: 66:40:0a:6d:04:50:ce:d7:7a:b2:16:2b:d6:41:38: 1d:16:cc:c6:83:9d:6c:d5:e5:c1:e9:b8:5d:a6:1d: a3:78:c4:45:d2:7e:12:a3:4d:da:6b:2a:ae:1d:60: 71:36:7c:26:5e:b1:4e:d6:e4:5c:26:f3:b1:11:db: 77:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:13:50:54:91:5E:E5:4F:C5:F6:10:2E:9F:43:BD:6A:22:7F:DA:EE X509v3 Authority Key Identifier: keyid:69:5C:45:DA:42:45:3B:4E:0B:06:2B:F1:7D:BF:44:72:5C:78:83:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF26F/846EC62EA78E11E580241B62C4F9AE02/aVxF2kJFO04LBivxfb9Eclx4g4c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aVxF2kJFO04LBivxfb9Eclx4g4c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF26F/846EC62EA78E11E580241B62C4F9AE02/aVxF2kJFO04LBivxfb9Eclx4g4c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:4c:29:c3:d3:f1:ba:7b:37:c3:63:d7:28:6f:0f:3f:b1:32: 18:08:47:3c:8d:2e:a3:6d:f6:e0:41:92:9f:bc:05:d7:8f:5e: e7:d2:de:14:70:3e:0b:09:8d:01:53:3d:0f:7e:a3:d3:90:8a: 4a:e4:da:e1:e3:53:01:74:67:ec:b7:0d:61:6b:7a:00:7f:d2: 6f:43:9b:8f:02:a1:83:a7:d1:79:19:01:0e:ad:93:96:ca:3d: 00:59:58:96:b3:49:7a:4a:e0:45:7e:f5:07:1b:bb:58:02:74: af:b8:55:b3:91:91:9b:04:a0:2c:80:4c:ea:d2:42:13:da:ba: ee:8e:4e:3d:ca:d5:9d:3a:99:14:2a:36:d8:e6:ff:67:16:b6: 70:62:97:f5:d4:f7:13:27:4b:a6:9f:55:9c:7a:43:6b:6e:98: be:00:b8:a0:30:40:3e:a7:5d:4b:de:fc:f6:b9:3b:30:4d:c4: f7:e9:ca:6e:0f:32:a9:2b:9d:e3:5f:e9:c2:26:76:dd:7b:95: 2a:2f:87:6f:22:a7:e0:b0:03:29:fc:7e:ec:cd:d3:9e:8c:d2: 36:ce:57:a8:ff:10:a1:de:2e:cd:60:34:ff:0c:b1:42:6e:00: e2:30:bf:d4:33:23:4a:c5:e8:f4:a8:57:13:ca:2f:9f:6e:f7: 3e:9c:34:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYyNkYxMTAvBgNVBAUTKDY5NUM0NURBNDI0NTNCNEUwQjA2MkJGMTdEQkY0NDcy NUM3ODgzODcwHhcNMjQwNTE4MTQ0MzU4WhcNMjQwNTI1MTQ0MzU4WjAYMRYwFAYD VQQDEw02NjQ4YmVhZi0yNDU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo8ssGTDgIDOchO9RKb6cSjLsv2MmSEIQKv/DBFM7cjcVvtSRimD7JCmYRaDS sAu2VCM60xpeL1GlcmzlTapWaZGt+7Re2l6AiDhpG7y/juHiS3z+vVwbaYFJIhFo C8VoaKJ+Yutgiu4Y1iYN736r0zjs28VGwvVNZzU/wOQ83ZeQM1Owan9+UwB++PzO q2TRg/n+7UJcE5n+Z35VHDlDhDIZvAxfj47N1Tv82PukfTYRtKMkWDwZK9KrR5Uc zd8i5IBmQAptBFDO13qyFivWQTgdFszGg51s1eXB6bhdph2jeMRF0n4So03aayqu HWBxNnwmXrFO1uRcJvOxEdt37wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD4TUFSR XuVPxfYQLp9DvWoif9ruMB8GA1UdIwQYMBaAFGlcRdpCRTtOCwYr8X2/RHJceIOH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjI2Ri84NDZFQzYyRUE3 OEUxMUU1ODAyNDFCNjJDNEY5QUUwMi9hVnhGMmtKRk8wNExCaXZ4ZmI5RWNseDRn NGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FWeEYya0pGTzA0TEJpdnhmYjlFY2x4NGc0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjI2Ri84NDZFQzYyRUE3OEUxMUU1ODAyNDFCNjJDNEY5QUUwMi9hVnhGMmtKRk8w NExCaXZ4ZmI5RWNseDRnNGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrTCnD0/G6ezfDY9cobw8/sTIYCEc8jS6jbfbgQZKfvAXXj17n0t4U cD4LCY0BUz0PfqPTkIpK5Nrh41MBdGfstw1ha3oAf9JvQ5uPAqGDp9F5GQEOrZOW yj0AWViWs0l6SuBFfvUHG7tYAnSvuFWzkZGbBKAsgEzq0kIT2rrujk49ytWdOpkU KjbY5v9nFrZwYpf11PcTJ0umn1WcekNrbpi+ALigMEA+p11L3vz2uTswTcT36cpu DzKpK53jX+nCJnbde5UqL4dvIqfgsAMp/H7szdOejNI2zleo/xCh3i7NYDT/DLFC bgDiML/UMyNKxej0qFcTyi+fbvc+nDSq -----END CERTIFICATE-----Generated at Sat May 18 15:58:26 2024 by rpki-client on console-ams.rpki-client.org