$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.mft File: l9KbDTJFW7XG8SV4X0D1vCcJ99Q.mft (raw, json) Hash identifier: wv5b4OdD1Jn5Y2SVOyArzszJiYNGOb0sJJTGc/q6gyw= Subject key identifier: 87:8F:80:6C:72:97:E3:B9:87:BA:B0:93:78:64:0F:1E:61:34:1E:ED Authority key identifier: 97:D2:9B:0D:32:45:5B:B5:C6:F1:25:78:5F:40:F5:BC:27:09:F7:D4 Certificate issuer: /CN=A91DF8DB/serialNumber=97D29B0D32455BB5C6F125785F40F5BC2709F7D4 Certificate serial: 12CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.mft Manifest number: 12C4 Signing time: Fri 31 May 2024 17:51:15 +0000 Manifest this update: Fri 31 May 2024 17:51:14 +0000 Manifest next update: Fri 07 Jun 2024 17:51:14 +0000 Files and hashes: 1: l9KbDTJFW7XG8SV4X0D1vCcJ99Q.crl (hash: JiCEr55ZfV6JCHpU7pT07mkHIGU3VtLqImPjk8HVW40=) 2: A6C9934CA74111E88B3EAB2BC4F9AE02.roa (hash: s7VpnTSLDsHZsGNqsZ/Rq45TDSa/M6doyP2DP45iRqE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.crl rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 17:51:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4811 (0x12cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF8DB/serialNumber=97D29B0D32455BB5C6F125785F40F5BC2709F7D4 Validity Not Before: May 31 17:51:14 2024 GMT Not After : Jun 7 17:51:14 2024 GMT Subject: CN=665a0e12-4881 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:84:ba:22:8c:bf:41:c5:21:be:07:5c:65:da: 02:6d:ee:c6:6d:ed:99:18:80:eb:07:c1:63:d1:d0: c9:33:a4:d6:fa:62:69:aa:b6:e0:8d:69:ef:7a:00: 95:f0:7e:1a:5f:52:ea:5d:f8:e1:05:7d:56:a3:46: f0:61:45:ff:b1:51:a0:8b:9e:fb:10:c6:70:28:b2: 89:5b:b2:57:ad:77:11:c4:97:f0:d7:22:e3:9d:e8: 56:a9:e5:ae:8c:5d:49:0c:cf:fe:16:2c:51:9d:c0: 63:c5:44:b9:08:f9:b9:37:0e:b7:28:6a:75:72:c2: 12:73:b0:96:8f:8c:78:2b:65:2c:03:01:1a:f6:64: c6:d1:5a:46:8a:23:2a:42:9b:32:52:36:32:20:0d: 64:87:2d:39:d2:04:af:cf:b0:d2:04:3a:22:d5:cf: 9f:01:65:02:e3:99:36:ef:fb:c1:fa:cb:41:c0:46: 2b:b3:e6:67:ec:1d:11:ad:bf:8a:15:e9:48:00:a0: ab:c2:2b:f7:72:af:5c:9c:08:5d:05:ce:c3:97:db: ea:f1:03:ae:47:6e:f4:aa:68:45:41:2c:8b:05:61: 9d:cf:49:49:54:e3:34:d0:fd:6f:cb:24:25:0e:5c: 48:72:45:43:09:9e:39:96:5f:12:c0:02:90:43:dd: 26:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:8F:80:6C:72:97:E3:B9:87:BA:B0:93:78:64:0F:1E:61:34:1E:ED X509v3 Authority Key Identifier: keyid:97:D2:9B:0D:32:45:5B:B5:C6:F1:25:78:5F:40:F5:BC:27:09:F7:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:ce:c2:7f:81:10:bd:ec:d4:eb:16:92:67:21:52:96:b6:e2: 1e:36:00:1c:96:08:c7:aa:cd:34:f1:fd:7d:79:36:11:82:db: 26:35:0f:bf:e1:d2:94:14:01:5d:51:3a:6a:1e:b6:23:7a:30: 28:8f:98:c6:82:dc:9c:29:0a:09:b6:53:1b:da:79:55:b2:99: 39:c0:47:55:7c:29:70:f1:3c:cf:cc:e3:cd:17:14:a0:86:ad: 2f:32:ce:63:28:6f:55:0c:ea:d1:35:77:16:05:33:4a:26:ac: 41:2e:b8:e2:26:31:c8:7c:28:3b:71:88:4e:da:ff:d0:17:55: 4b:dc:39:63:d7:ff:c5:6f:96:db:8e:87:2e:dd:1b:76:98:a2: 96:59:b0:36:c4:8e:92:b6:d8:38:aa:d9:61:49:81:ae:53:67: 5b:9c:f2:55:c9:4b:85:98:d3:25:90:72:bd:03:4f:31:d8:4d: 09:d0:8f:15:e6:95:59:ff:e0:70:3e:4c:e3:13:17:87:1c:2b: 50:78:13:27:7b:ce:2e:d9:31:ef:03:eb:e8:b5:ee:20:4d:ac: 88:22:70:02:86:cd:14:05:ef:d6:c3:92:35:0f:be:d9:88:a0: c0:e3:60:79:13:81:4e:ce:0c:7b:d4:59:8f:7a:e0:21:a5:35: 4e:f4:93:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEsswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4REIxMTAvBgNVBAUTKDk3RDI5QjBEMzI0NTVCQjVDNkYxMjU3ODVGNDBGNUJD MjcwOUY3RDQwHhcNMjQwNTMxMTc1MTE0WhcNMjQwNjA3MTc1MTE0WjAYMRYwFAYD VQQDEw02NjVhMGUxMi00ODgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2YS6Ioy/QcUhvgdcZdoCbe7Gbe2ZGIDrB8Fj0dDJM6TW+mJpqrbgjWnvegCV 8H4aX1LqXfjhBX1Wo0bwYUX/sVGgi577EMZwKLKJW7JXrXcRxJfw1yLjnehWqeWu jF1JDM/+FixRncBjxUS5CPm5Nw63KGp1csISc7CWj4x4K2UsAwEa9mTG0VpGiiMq QpsyUjYyIA1khy050gSvz7DSBDoi1c+fAWUC45k27/vB+stBwEYrs+Zn7B0Rrb+K FelIAKCrwiv3cq9cnAhdBc7Dl9vq8QOuR270qmhFQSyLBWGdz0lJVOM00P1vyyQl DlxIckVDCZ45ll8SwAKQQ90myQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIePgGxy l+O5h7qwk3hkDx5hNB7tMB8GA1UdIwQYMBaAFJfSmw0yRVu1xvEleF9A9bwnCffU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjhEQi82NTc5Mzc4Qzk5 MzQxMUU4QTAzNzM3MjRDNEY5QUUwMi9sOUtiRFRKRlc3WEc4U1Y0WDBEMXZDY0o5 OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w5S2JEVEpGVzdYRzhTVjRYMEQxdkNjSjk5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjhEQi82NTc5Mzc4Qzk5MzQxMUU4QTAzNzM3MjRDNEY5QUUwMi9sOUtiRFRKRlc3 WEc4U1Y0WDBEMXZDY0o5OVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXzsJ/gRC97NTrFpJnIVKWtuIeNgAclgjHqs008f19eTYRgtsmNQ+/ 4dKUFAFdUTpqHrYjejAoj5jGgtycKQoJtlMb2nlVspk5wEdVfClw8TzPzOPNFxSg hq0vMs5jKG9VDOrRNXcWBTNKJqxBLrjiJjHIfCg7cYhO2v/QF1VL3Dlj1//Fb5bb jocu3Rt2mKKWWbA2xI6Sttg4qtlhSYGuU2dbnPJVyUuFmNMlkHK9A08x2E0J0I8V 5pVZ/+BwPkzjExeHHCtQeBMne84u2THvA+vote4gTayIInAChs0UBe/Ww5I1D77Z iKDA42B5E4FOzgx71FmPeuAhpTVO9JMF -----END CERTIFICATE-----Generated at Fri May 31 20:34:18 2024 by rpki-client on console-ams.rpki-client.org