$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft File: tlTdX1sVILMlvAnEv0yt88r7NCk.mft (raw, json) Hash identifier: DArO8E4KuSJ2cClyYYqqAiYNAJ8cFenWBaybECwqMGc= Subject key identifier: F1:38:AD:94:7C:8E:0A:B5:4D:1A:97:B3:AD:98:51:39:9D:72:8E:FA Authority key identifier: B6:54:DD:5F:5B:15:20:B3:25:BC:09:C4:BF:4C:AD:F3:CA:FB:34:29 Certificate issuer: /CN=A91E3B25/serialNumber=B654DD5F5B1520B325BC09C4BF4CADF3CAFB3429 Certificate serial: 084E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft Manifest number: 1E4C Signing time: Fri 31 May 2024 17:25:16 +0000 Manifest this update: Fri 31 May 2024 17:25:16 +0000 Manifest next update: Fri 07 Jun 2024 17:25:16 +0000 Files and hashes: 1: tlTdX1sVILMlvAnEv0yt88r7NCk.crl (hash: iPJRYFYvhTgwIcaAMvib4Npa5e/XgxkzrtjpjUsQLOI=) 2: 3D13A01EA9AB11EAA4DBEA5EC4F9AE02.roa (hash: /rJ72nX+kkgSo0V45R+mQxQnHh38w+ytfp+FOoflTT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.crl rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 17:25:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2126 (0x84e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3B25/serialNumber=B654DD5F5B1520B325BC09C4BF4CADF3CAFB3429 Validity Not Before: May 31 17:25:16 2024 GMT Not After : Jun 7 17:25:16 2024 GMT Subject: CN=665a07fc-6b1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:3e:1e:e1:be:d8:7d:4c:9a:7f:b8:07:b9:4b: 6f:29:74:51:1f:3b:5a:85:2b:1a:89:02:35:be:01: 45:78:32:9a:cc:0f:b9:c5:e8:27:63:65:75:14:bf: db:83:6b:91:04:84:45:81:b3:93:14:fb:2b:a1:1e: 9a:55:cc:15:ff:19:15:0a:36:06:66:86:e5:58:20: 72:47:6a:a1:79:81:a6:d7:19:5b:7e:61:d4:9a:fb: ed:a9:b1:92:58:c5:e4:7b:c4:0d:c7:0c:a3:25:86: 69:02:03:a0:d8:4e:df:e4:67:f4:eb:51:f6:82:89: ec:c4:ed:06:7b:e3:7e:9b:cc:ff:3b:e7:db:7e:28: d2:0c:e2:05:f7:8e:fb:b7:df:2d:b3:ad:7b:d3:94: 78:62:59:e8:39:1c:58:89:72:9f:d6:c4:e0:bb:7e: 4b:41:26:4e:e2:60:80:1b:54:e4:8a:28:fc:75:28: 68:76:10:c2:51:a3:5b:d5:ea:bd:5b:9c:49:fa:4c: 46:66:98:33:8c:be:2d:f0:0a:e9:be:3e:85:6a:e4: 8a:30:e8:ef:61:0c:3b:38:7f:d5:46:92:c4:19:d2: 29:46:13:99:31:2f:ba:fb:c7:64:ae:0c:f3:5f:22: 74:ac:22:c0:ce:89:d3:40:29:73:4e:31:b0:9d:21: de:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:38:AD:94:7C:8E:0A:B5:4D:1A:97:B3:AD:98:51:39:9D:72:8E:FA X509v3 Authority Key Identifier: keyid:B6:54:DD:5F:5B:15:20:B3:25:BC:09:C4:BF:4C:AD:F3:CA:FB:34:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:11:de:f9:ed:12:31:92:39:46:9f:d6:c4:02:6f:c7:2f:8d: 7e:5d:18:fc:50:18:5a:cf:4b:19:3b:b5:12:f1:6e:99:68:e3: 68:04:37:6f:f5:d8:a3:a1:dd:70:fc:0b:41:e6:1b:3b:3b:93: 20:7b:3b:97:5c:dc:64:21:c5:42:d9:29:a8:ee:1c:40:d2:db: 79:20:e2:5b:f5:ad:80:80:67:11:9a:1c:e3:34:f8:b7:57:fc: e2:ef:02:fa:a2:e9:b6:33:ca:56:88:11:80:a5:f0:48:b5:1d: 9d:89:c5:70:28:52:43:1d:e3:52:e2:ab:76:a1:b2:f3:c5:af: 91:19:25:aa:2a:e4:11:16:11:06:97:89:1f:36:66:81:0e:c6: b0:81:47:53:4f:a4:a1:0c:3f:e0:c0:9c:14:00:7d:5b:47:ae: 8f:7c:bf:b9:02:26:aa:fd:9f:15:37:fe:3e:b1:d5:02:5d:3c: a0:46:15:fb:91:a0:9d:3e:bc:7a:fe:4b:a6:7c:51:86:f3:3d: 40:18:e5:87:b6:ba:e4:c1:31:45:7a:24:d7:ff:bf:2d:3f:e2: bb:e0:11:0e:fd:a2:5f:86:56:8d:73:d7:fe:a8:18:b0:a3:c2: a5:98:fa:df:b8:b3:6d:a2:f0:76:78:0c:3e:91:4a:18:42:34: b2:40:1b:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCE4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCMjUxMTAvBgNVBAUTKEI2NTRERDVGNUIxNTIwQjMyNUJDMDlDNEJGNENBREYz Q0FGQjM0MjkwHhcNMjQwNTMxMTcyNTE2WhcNMjQwNjA3MTcyNTE2WjAYMRYwFAYD VQQDEw02NjVhMDdmYy02YjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5j4e4b7YfUyaf7gHuUtvKXRRHztahSsaiQI1vgFFeDKazA+5xegnY2V1FL/b g2uRBIRFgbOTFPsroR6aVcwV/xkVCjYGZoblWCByR2qheYGm1xlbfmHUmvvtqbGS WMXke8QNxwyjJYZpAgOg2E7f5Gf061H2gonsxO0Ge+N+m8z/O+fbfijSDOIF9477 t98ts61705R4YlnoORxYiXKf1sTgu35LQSZO4mCAG1Tkiij8dShodhDCUaNb1eq9 W5xJ+kxGZpgzjL4t8Arpvj6FauSKMOjvYQw7OH/VRpLEGdIpRhOZMS+6+8dkrgzz XyJ0rCLAzonTQClzTjGwnSHeywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPE4rZR8 jgq1TRqXs62YUTmdco76MB8GA1UdIwQYMBaAFLZU3V9bFSCzJbwJxL9MrfPK+zQp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0IyNS83RTg5MkNDMkY2 MTUxMUU3QjgzMDA5NkRDNEY5QUUwMi90bFRkWDFzVklMTWx2QW5FdjB5dDg4cjdO Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RsVGRYMXNWSUxNbHZBbkV2MHl0ODhyN05Day5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0IyNS83RTg5MkNDMkY2MTUxMUU3QjgzMDA5NkRDNEY5QUUwMi90bFRkWDFzVklM TWx2QW5FdjB5dDg4cjdOQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcEd757RIxkjlGn9bEAm/HL41+XRj8UBhaz0sZO7US8W6ZaONoBDdv 9dijod1w/AtB5hs7O5MgezuXXNxkIcVC2Smo7hxA0tt5IOJb9a2AgGcRmhzjNPi3 V/zi7wL6oum2M8pWiBGApfBItR2dicVwKFJDHeNS4qt2obLzxa+RGSWqKuQRFhEG l4kfNmaBDsawgUdTT6ShDD/gwJwUAH1bR66PfL+5Aiaq/Z8VN/4+sdUCXTygRhX7 kaCdPrx6/kumfFGG8z1AGOWHtrrkwTFFeiTX/78tP+K74BEO/aJfhlaNc9f+qBiw o8KlmPrfuLNtovB2eAw+kUoYQjSyQBuU -----END CERTIFICATE-----Generated at Fri May 31 19:47:53 2024 by rpki-client on console-fra.rpki-client.org