$ rpki-client -vvf rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.mft File: su3iAzROnKc1AcVRQvmugWCeiYc.mft (raw, json) Hash identifier: f4NlLAQY9WCWvVQsEbsxomLxA3LeTfYRyGGyuAoYXLI= Subject key identifier: BB:E5:BC:21:85:82:74:21:06:54:A0:31:4D:93:95:5E:26:27:3B:73 Authority key identifier: B2:ED:E2:03:34:4E:9C:A7:35:01:C5:51:42:F9:AE:81:60:9E:89:87 Certificate issuer: /CN=A91E46A5/serialNumber=B2EDE203344E9CA73501C55142F9AE81609E8987 Certificate serial: 0BAE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/su3iAzROnKc1AcVRQvmugWCeiYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.mft Manifest number: 0BA2 Signing time: Sat 18 May 2024 19:15:09 +0000 Manifest this update: Sat 18 May 2024 19:15:09 +0000 Manifest next update: Sat 25 May 2024 19:15:09 +0000 Files and hashes: 1: su3iAzROnKc1AcVRQvmugWCeiYc.crl (hash: EuRpD5IF+IHfTiRRr16uuo68Y7RYncD1M4s24U9BLwc=) 2: CE094B08006B11EAA2719060C4F9AE02.roa (hash: dOJZkUEaHGDxq3KseNGr6t2j+y9rL6m4ZpTIrBzFXZg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.crl rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/su3iAzROnKc1AcVRQvmugWCeiYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2990 (0xbae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E46A5/serialNumber=B2EDE203344E9CA73501C55142F9AE81609E8987 Validity Not Before: May 18 19:15:09 2024 GMT Not After : May 25 19:15:09 2024 GMT Subject: CN=6648fe3d-6a3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:65:53:52:cb:61:1e:3a:42:2c:d0:2a:8d:7d: 12:67:96:2d:16:51:66:ed:05:c4:1f:31:ac:79:cf: ce:47:c8:a6:5a:98:f1:ae:3c:1f:ea:4f:75:49:25: 45:7f:b9:c5:5e:3c:b1:b9:3a:50:53:c0:88:19:f3: 60:65:ee:98:36:dd:3e:89:03:38:db:25:1f:ef:2a: 44:1a:39:bc:44:9a:30:c6:d9:3a:bf:11:39:7b:ca: 45:9e:bb:4f:59:2c:ba:10:e3:0a:02:93:49:fb:15: 77:27:9c:0a:3c:20:95:fc:b9:e9:7a:63:d0:ba:7a: e1:b0:c0:7a:44:cc:91:92:66:d7:17:b4:53:aa:0f: 00:eb:4d:52:84:27:27:10:8c:66:9f:9c:40:99:4a: b2:15:68:3b:c3:8f:5c:71:0a:a9:48:41:ff:cd:7a: 18:68:9d:1b:a1:fa:55:20:88:35:24:a5:97:c3:e7: 30:9e:68:db:70:64:35:dd:38:cc:4e:0f:ec:ef:53: 9f:26:fe:2f:cc:27:00:5b:1e:04:f0:92:6e:b8:fe: 41:25:bb:b9:80:ac:5a:f9:3c:ba:f2:fc:14:9f:75: e2:69:d7:be:f0:0f:f0:b9:b4:88:95:3b:e4:5b:56: 14:ff:a5:96:82:2f:32:09:2d:51:81:5d:52:88:47: b7:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:E5:BC:21:85:82:74:21:06:54:A0:31:4D:93:95:5E:26:27:3B:73 X509v3 Authority Key Identifier: keyid:B2:ED:E2:03:34:4E:9C:A7:35:01:C5:51:42:F9:AE:81:60:9E:89:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/su3iAzROnKc1AcVRQvmugWCeiYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:02:7b:b6:81:09:dd:4e:30:5f:73:68:1c:b2:05:9c:7e:44: 80:ce:1b:70:7f:5e:7a:6c:0b:45:fa:4f:32:fb:ca:3c:d7:32: 2c:61:82:65:4a:d8:16:c5:80:c8:d4:a7:7a:cd:71:5d:35:36: 60:db:06:7e:d5:93:24:89:ba:49:c0:52:09:b2:e5:c8:e3:c5: d4:3a:07:4d:88:4f:c5:99:91:2d:38:f1:9b:7d:75:a1:72:78: 97:a7:72:29:57:50:57:ff:86:fd:37:5c:d1:36:50:ff:8a:2b: 49:1a:83:ea:74:ad:0a:9d:5e:be:f2:67:8f:35:5c:0e:40:f0: ee:9b:71:c7:4a:13:98:e5:55:6b:7f:22:6c:24:39:1c:c2:e3: 6a:71:9b:fd:d4:6c:0c:12:cc:1d:ef:cf:da:32:77:5a:48:bb: 7b:5f:23:7b:b4:8c:c7:10:10:4a:92:ad:08:e1:a1:e9:0b:3d: 7c:12:0d:f9:3d:9a:b3:00:4a:b0:c9:f1:aa:64:c7:08:8d:44: d6:0f:8d:2f:f6:1d:41:9f:21:f8:60:13:a4:94:fa:f7:95:29: d6:06:a0:de:3f:8d:a2:f0:ac:d3:bf:8f:d4:d0:82:d6:db:f6: 24:69:b4:f3:07:b6:22:5c:ad:d1:e3:68:cf:ff:b5:f4:d9:d5: 85:5d:ea:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC64wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ2QTUxMTAvBgNVBAUTKEIyRURFMjAzMzQ0RTlDQTczNTAxQzU1MTQyRjlBRTgx NjA5RTg5ODcwHhcNMjQwNTE4MTkxNTA5WhcNMjQwNTI1MTkxNTA5WjAYMRYwFAYD VQQDEw02NjQ4ZmUzZC02YTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArmVTUsthHjpCLNAqjX0SZ5YtFlFm7QXEHzGsec/OR8imWpjxrjwf6k91SSVF f7nFXjyxuTpQU8CIGfNgZe6YNt0+iQM42yUf7ypEGjm8RJowxtk6vxE5e8pFnrtP WSy6EOMKApNJ+xV3J5wKPCCV/LnpemPQunrhsMB6RMyRkmbXF7RTqg8A601ShCcn EIxmn5xAmUqyFWg7w49ccQqpSEH/zXoYaJ0bofpVIIg1JKWXw+cwnmjbcGQ13TjM Tg/s71OfJv4vzCcAWx4E8JJuuP5BJbu5gKxa+Ty68vwUn3Xiade+8A/wubSIlTvk W1YU/6WWgi8yCS1RgV1SiEe3DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLvlvCGF gnQhBlSgMU2TlV4mJztzMB8GA1UdIwQYMBaAFLLt4gM0TpynNQHFUUL5roFgnomH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDZBNS8wMjMxQzE1NDAw NkIxMUVBOTdDMUJENUZDNEY5QUUwMi9zdTNpQXpST25LYzFBY1ZSUXZtdWdXQ2Vp WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3N1M2lBelJPbktjMUFjVlJRdm11Z1dDZWlZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDZBNS8wMjMxQzE1NDAwNkIxMUVBOTdDMUJENUZDNEY5QUUwMi9zdTNpQXpST25L YzFBY1ZSUXZtdWdXQ2VpWWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0Anu2gQndTjBfc2gcsgWcfkSAzhtwf156bAtF+k8y+8o81zIsYYJl StgWxYDI1Kd6zXFdNTZg2wZ+1ZMkibpJwFIJsuXI48XUOgdNiE/FmZEtOPGbfXWh cniXp3IpV1BX/4b9N1zRNlD/iitJGoPqdK0KnV6+8mePNVwOQPDum3HHShOY5VVr fyJsJDkcwuNqcZv91GwMEswd78/aMndaSLt7XyN7tIzHEBBKkq0I4aHpCz18Eg35 PZqzAEqwyfGqZMcIjUTWD40v9h1BnyH4YBOklPr3lSnWBqDeP42i8KzTv4/U0ILW 2/YkabTzB7YiXK3R42jP/7X02dWFXepm -----END CERTIFICATE-----Generated at Sat May 18 20:16:07 2024 by rpki-client on console-ams.rpki-client.org