$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft File: TAYxLToLHGP1R9TWRXxM1a9xQ80.mft (raw, json) Hash identifier: PbFNSzdYq43KjfwyXOd6ZuYV56bkoVMx3+RZQcHYXHA= Subject key identifier: 23:1D:DC:58:F1:69:06:C4:1C:67:87:48:74:7F:B0:B9:39:E9:C7:F5 Authority key identifier: 4C:06:31:2D:3A:0B:1C:63:F5:47:D4:D6:45:7C:4C:D5:AF:71:43:CD Certificate issuer: /CN=A91E0EF2/serialNumber=4C06312D3A0B1C63F547D4D6457C4CD5AF7143CD Certificate serial: 037A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft Manifest number: 0377 Signing time: Sun 19 May 2024 02:47:30 +0000 Manifest this update: Sun 19 May 2024 02:47:29 +0000 Manifest next update: Sun 26 May 2024 02:47:29 +0000 Files and hashes: 1: TAYxLToLHGP1R9TWRXxM1a9xQ80.crl (hash: 0i/30Nz0zvGeXelE/n4PgleuJV9kF3Mtd3VWkTJsQ5c=) 2: 09C2A1645A3511ED8F0A3087C4F9AE02.roa (hash: kFZl4IQNhnU2aj7rGn68m71oMcBKAQdxzYX/r9H/7DI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.crl rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 890 (0x37a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF2/serialNumber=4C06312D3A0B1C63F547D4D6457C4CD5AF7143CD Validity Not Before: May 19 02:47:29 2024 GMT Not After : May 26 02:47:29 2024 GMT Subject: CN=66496841-6a8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:21:82:a3:50:28:19:3e:04:3a:e8:1a:4f:79: 15:8a:b2:d9:07:e8:a4:df:23:f0:8f:84:ae:37:5f: b0:00:f2:01:2f:33:91:4e:a7:cc:c0:e4:32:e0:41: 8a:b0:a4:9a:4c:23:63:7e:c3:99:38:a6:83:5b:34: f7:13:12:fa:07:42:4f:e0:32:56:ca:39:f8:b0:de: 35:fa:b4:73:8f:12:9f:51:3d:10:ca:8a:49:f4:ba: 74:ff:1a:09:a0:a4:07:63:a2:24:3c:09:be:12:e7: b9:8b:5d:4d:3b:9a:da:e8:10:02:b9:9e:3e:d7:8e: 52:41:5e:78:eb:ed:25:aa:43:da:e7:4c:06:15:ed: 28:64:33:66:af:50:4a:13:21:b5:92:31:28:8e:ef: 11:16:3b:38:1d:0e:a7:6e:17:ea:13:32:d9:97:5c: a5:8f:6b:c8:1e:df:24:20:66:98:74:6b:ca:ad:3b: 06:31:17:a3:12:ae:6d:d8:58:c6:71:af:ea:55:b0: cd:b9:a0:ca:cf:22:4f:cf:64:73:a8:b2:61:2c:d9: e3:c4:9e:9e:3c:8a:b0:9d:df:cb:58:f2:e0:ee:98: d0:3f:82:20:a5:9d:46:69:dd:23:14:fc:b6:5f:6f: 90:92:ff:fc:43:2b:85:1d:74:3c:ca:15:6d:a0:cd: 0b:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:1D:DC:58:F1:69:06:C4:1C:67:87:48:74:7F:B0:B9:39:E9:C7:F5 X509v3 Authority Key Identifier: keyid:4C:06:31:2D:3A:0B:1C:63:F5:47:D4:D6:45:7C:4C:D5:AF:71:43:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:84:30:00:e3:fa:ea:cc:83:9d:09:bb:a2:4e:94:7f:0f:2b: 5c:2c:80:c0:35:70:5f:16:7b:98:31:50:b9:f9:5f:a0:63:3e: 37:3b:0b:ee:9a:5e:8c:9e:0e:32:b5:bb:b8:8a:be:e7:fa:a1: 1d:d7:83:58:5c:0f:a9:cf:a9:c4:c0:ef:dc:9d:86:db:bb:be: 31:2e:1a:a4:e0:74:02:29:ac:17:b8:d1:9b:64:da:aa:02:89: fd:ca:71:af:2d:f6:06:ef:1a:4c:c0:a2:1e:78:8b:95:b4:fb: 46:a7:f9:2d:ea:ad:d0:d5:91:b1:5d:6f:97:94:32:00:99:94: 04:93:f1:4a:64:d7:a0:c9:ad:f6:8a:77:e2:89:47:e3:4b:3c: 57:74:51:99:99:5a:9d:59:65:d8:6d:c7:99:d1:6c:39:6b:09: ed:f8:30:25:71:e1:30:f6:6d:97:85:23:75:7b:51:56:f6:bc: b1:91:a4:74:8f:02:90:d7:77:7d:ce:1f:fd:f6:35:04:1a:dd: 2d:25:22:8a:55:c7:c0:77:1e:b6:68:47:74:7f:b5:2b:c4:62: d0:20:3e:c2:35:79:0e:38:5a:2a:79:bb:f9:16:b9:e2:f0:61: 88:f6:81:e2:94:b0:61:49:6e:10:3e:7d:8a:a3:66:26:b4:bd: f9:f1:55:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjIxMTAvBgNVBAUTKDRDMDYzMTJEM0EwQjFDNjNGNTQ3RDRENjQ1N0M0Q0Q1 QUY3MTQzQ0QwHhcNMjQwNTE5MDI0NzI5WhcNMjQwNTI2MDI0NzI5WjAYMRYwFAYD VQQDEw02NjQ5Njg0MS02YThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmyGCo1AoGT4EOugaT3kVirLZB+ik3yPwj4SuN1+wAPIBLzORTqfMwOQy4EGK sKSaTCNjfsOZOKaDWzT3ExL6B0JP4DJWyjn4sN41+rRzjxKfUT0QyopJ9Lp0/xoJ oKQHY6IkPAm+Eue5i11NO5ra6BACuZ4+145SQV546+0lqkPa50wGFe0oZDNmr1BK EyG1kjEoju8RFjs4HQ6nbhfqEzLZl1ylj2vIHt8kIGaYdGvKrTsGMRejEq5t2FjG ca/qVbDNuaDKzyJPz2RzqLJhLNnjxJ6ePIqwnd/LWPLg7pjQP4IgpZ1Gad0jFPy2 X2+Qkv/8QyuFHXQ8yhVtoM0LewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCMd3Fjx aQbEHGeHSHR/sLk56cf1MB8GA1UdIwQYMBaAFEwGMS06Cxxj9UfU1kV8TNWvcUPN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGMi9CNTA1NDY1MjVF RTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9UQVl4TFRvTEhHUDFSOVRXUlh4TTFhOXhR ODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RBWXhMVG9MSEdQMVI5VFdSWHhNMWE5eFE4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEVGMi9CNTA1NDY1MjVFRTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9UQVl4TFRvTEhH UDFSOVRXUlh4TTFhOXhRODAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwhDAA4/rqzIOdCbuiTpR/DytcLIDANXBfFnuYMVC5+V+gYz43Owvu ml6Mng4ytbu4ir7n+qEd14NYXA+pz6nEwO/cnYbbu74xLhqk4HQCKawXuNGbZNqq Aon9ynGvLfYG7xpMwKIeeIuVtPtGp/kt6q3Q1ZGxXW+XlDIAmZQEk/FKZNegya32 infiiUfjSzxXdFGZmVqdWWXYbceZ0Ww5awnt+DAlceEw9m2XhSN1e1FW9ryxkaR0 jwKQ13d9zh/99jUEGt0tJSKKVcfAdx62aEd0f7UrxGLQID7CNXkOOFoqebv5Frni 8GGI9oHilLBhSW4QPn2Ko2YmtL358VVJ -----END CERTIFICATE-----Generated at Sun May 19 03:38:16 2024 by rpki-client on console-ams.rpki-client.org