$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft File: tDpaYNRoBqaf_vfGdiGexLqLo20.mft (raw, json) Hash identifier: IdQZURgxmVLOknl3U7SpLv4fpn/Mlk1mWJL5P4ORhyo= Subject key identifier: DA:BE:D9:40:51:DA:DB:32:19:B4:B5:C4:DD:5E:6E:5E:98:09:8C:AA Authority key identifier: B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D Certificate issuer: /CN=A91E2AE5/serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Certificate serial: 2AC1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft Manifest number: 2AA5 Signing time: Sat 18 May 2024 15:49:41 +0000 Manifest this update: Sat 18 May 2024 15:49:40 +0000 Manifest next update: Sat 25 May 2024 15:49:40 +0000 Files and hashes: 1: tDpaYNRoBqaf_vfGdiGexLqLo20.crl (hash: /FDBGSZaoJGUEUugdCW6jVdHKgop0RCmolyG4gyAVX4=) 2: 2815E7D4BF4211E9A93A3957C4F9AE02.roa (hash: aA6kp8g67VqUy5NvcJyaimLYGa49hstJeJR2YVQCPpY=) 3: 43487B18BF1811E9A2C00E63C4F9AE02.roa (hash: e9ru84wNK0OCJonuCj0UjA/1i1sjGH7yhEDB2tfRYB4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10945 (0x2ac1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2AE5/serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Validity Not Before: May 18 15:49:40 2024 GMT Not After : May 25 15:49:40 2024 GMT Subject: CN=6648ce14-4074 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d0:94:7a:3b:33:a9:04:65:0c:b4:c2:a2:c6: 72:78:fb:f2:67:66:2c:57:fe:3c:8d:dc:b6:12:e4: 50:52:fd:58:6a:39:18:fa:62:17:f0:3c:fe:db:17: 7a:8b:e6:ef:05:31:97:cc:63:71:5c:67:1a:a5:74: 1a:fd:39:06:4d:ca:06:70:8c:fe:6a:46:40:82:3b: 32:fa:e3:47:31:95:e8:36:b9:bb:f7:b9:39:c0:e5: 35:fd:9d:0b:67:44:52:bc:57:74:b4:b1:d9:b7:45: 43:64:10:e9:19:2c:21:8c:48:a8:e3:0b:af:d9:e8: 87:2e:61:ee:9d:da:ad:d6:ba:a4:11:c5:a0:6b:c5: d8:4b:6d:16:76:16:30:be:c8:4f:03:59:23:8a:c6: 02:5e:67:1e:75:2b:22:22:27:c9:19:cc:31:5a:78: ae:c6:dc:9a:77:be:b6:01:7d:b0:67:c3:6d:20:3e: 9a:03:75:5a:7c:40:b1:4f:5a:f5:26:c3:9f:54:6a: 51:29:17:c6:f1:ec:d9:cc:18:ba:f4:d2:1e:11:83: 9f:32:4b:42:e5:0d:31:d6:36:31:3d:c5:b9:5c:0f: 38:10:ab:c2:05:42:cc:f6:06:05:a0:ba:db:b6:1a: 27:e9:d4:28:37:d7:d1:8b:c6:f6:2c:55:20:e7:44: 2e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:BE:D9:40:51:DA:DB:32:19:B4:B5:C4:DD:5E:6E:5E:98:09:8C:AA X509v3 Authority Key Identifier: keyid:B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:44:9b:34:21:ac:c3:e3:4d:3b:df:3f:f2:06:30:74:c1:a3: 10:fa:94:18:55:8a:71:4f:61:09:18:24:77:1d:69:3f:92:e3: c3:e0:45:0c:e9:ce:7c:ea:66:e2:33:38:53:0e:eb:99:25:d7: ba:b3:b2:4a:d4:c2:af:da:ab:49:05:8d:3e:5c:fe:bc:b5:e4: f6:36:ee:aa:6d:0c:fb:f8:ee:88:83:25:0e:16:f5:c6:5e:a5: c7:d1:6c:3a:40:bf:e1:b3:5c:a7:36:bb:e5:69:00:83:53:b9: 44:23:70:0f:14:36:e2:cb:f9:97:5a:83:4d:c7:6e:97:3b:fb: 95:bd:4e:3f:35:a6:64:29:00:92:e8:ca:d9:94:10:aa:ec:dc: 9c:7c:95:7f:dc:2a:d0:d0:60:a6:9e:a9:9a:97:d7:78:6e:a4: 23:56:a0:03:64:f9:fb:42:42:54:6f:01:6a:09:77:76:4a:9e: 35:ad:6d:53:f0:91:d6:e0:24:2b:18:21:cb:aa:bd:32:40:de: b2:f5:f6:3b:09:95:b3:02:67:92:fd:4b:78:97:1a:0f:ba:71: e9:43:53:6b:03:5a:ea:49:4e:fe:a4:df:ae:cc:01:55:59:8b: 3f:c6:08:57:48:87:da:26:30:ac:2f:02:74:2d:f1:68:30:76: 36:34:cc:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKsEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJBRTUxMTAvBgNVBAUTKEI0M0E1QTYwRDQ2ODA2QTY5RkZFRjdDNjc2MjE5RUM0 QkE4QkEzNkQwHhcNMjQwNTE4MTU0OTQwWhcNMjQwNTI1MTU0OTQwWjAYMRYwFAYD VQQDEw02NjQ4Y2UxNC00MDc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr9CUejszqQRlDLTCosZyePvyZ2YsV/48jdy2EuRQUv1YajkY+mIX8Dz+2xd6 i+bvBTGXzGNxXGcapXQa/TkGTcoGcIz+akZAgjsy+uNHMZXoNrm797k5wOU1/Z0L Z0RSvFd0tLHZt0VDZBDpGSwhjEio4wuv2eiHLmHundqt1rqkEcWga8XYS20WdhYw vshPA1kjisYCXmcedSsiIifJGcwxWniuxtyad762AX2wZ8NtID6aA3VafECxT1r1 JsOfVGpRKRfG8ezZzBi69NIeEYOfMktC5Q0x1jYxPcW5XA84EKvCBULM9gYFoLrb thon6dQoN9fRi8b2LFUg50Qu9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNq+2UBR 2tsyGbS1xN1ebl6YCYyqMB8GA1UdIwQYMBaAFLQ6WmDUaAamn/73xnYhnsS6i6Nt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkFFNS84RDNFNTRFQUVE NTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0JxYWZfdmZHZGlHZXhMcUxv MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3REcGFZTlJvQnFhZl92ZkdkaUdleExxTG8yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkFFNS84RDNFNTRFQUVENTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0Jx YWZfdmZHZGlHZXhMcUxvMjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPRJs0IazD40073z/yBjB0waMQ+pQYVYpxT2EJGCR3HWk/kuPD4EUM 6c586mbiMzhTDuuZJde6s7JK1MKv2qtJBY0+XP68teT2Nu6qbQz7+O6IgyUOFvXG XqXH0Ww6QL/hs1ynNrvlaQCDU7lEI3APFDbiy/mXWoNNx26XO/uVvU4/NaZkKQCS 6MrZlBCq7NycfJV/3CrQ0GCmnqmal9d4bqQjVqADZPn7QkJUbwFqCXd2Sp41rW1T 8JHW4CQrGCHLqr0yQN6y9fY7CZWzAmeS/Ut4lxoPunHpQ1NrA1rqSU7+pN+uzAFV WYs/xghXSIfaJjCsLwJ0LfFoMHY2NMxx -----END CERTIFICATE-----Generated at Sat May 18 17:20:36 2024 by rpki-client on console-ams.rpki-client.org