$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft File: AaQS70FsiE9vY38b2oAOtu9nttY.mft (raw, json) Hash identifier: DRuqEdRpBrUKAFNVNmWIWXAyJW2UVQDaf36ASs+GS14= Subject key identifier: D8:5D:8F:71:0A:5B:C2:44:3A:27:26:3D:9B:03:92:65:96:6B:85:FF Authority key identifier: 01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 Certificate issuer: /CN=A91E4845/serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Certificate serial: 2114 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft Manifest number: 20FC Signing time: Sat 18 May 2024 16:15:01 +0000 Manifest this update: Sat 18 May 2024 16:15:01 +0000 Manifest next update: Sat 25 May 2024 16:15:01 +0000 Files and hashes: 1: AaQS70FsiE9vY38b2oAOtu9nttY.crl (hash: sBARLOwqt94hqm4lhwPxOS4vrtmNKdRPh9zonZc9KgM=) 2: B517FDAAC49F11ED8CF0B945C4F9AE02.roa (hash: q+Bp4il3k3Nf2HcSC8fRGkv+SGqRhHOgY4Fo0DshqU8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8468 (0x2114) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4845/serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Validity Not Before: May 18 16:15:01 2024 GMT Not After : May 25 16:15:01 2024 GMT Subject: CN=6648d405-2ff5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b8:4e:77:c9:f0:f5:31:57:af:91:2b:7a:6e: 7c:6d:c0:e6:5f:e1:0f:42:5f:b9:4c:9b:37:b5:f7: b8:31:5b:a0:15:2e:a9:42:e6:36:3f:ff:35:51:40: a3:bd:8c:48:f1:14:de:5a:cb:c9:8a:7e:5d:5d:7e: 90:e8:a9:fa:1f:e8:bd:ea:93:f9:12:66:43:5b:0c: 41:48:88:89:1e:2c:a4:c3:29:40:cc:94:29:97:94: 30:24:c0:05:b7:97:07:a6:dd:09:cc:d1:71:dc:19: 90:c7:a6:a5:df:dc:9c:38:fa:0b:b6:03:d0:f2:f4: 47:21:16:c8:18:55:5d:4d:24:75:3a:0b:d7:96:53: 27:af:4b:c7:64:be:71:c3:76:c7:55:1f:99:ef:b0: 4e:70:ed:b5:95:9c:29:94:fd:9b:4a:13:af:92:88: b6:a5:00:3a:3f:35:84:c7:fe:21:82:ca:a4:97:c7: c3:4a:c3:c1:50:19:c3:9c:1f:0a:3e:52:cd:cc:f8: 78:46:64:01:85:ae:21:0b:25:ee:bf:81:fe:c8:27: a4:17:a9:44:0e:2a:79:e8:50:3f:14:bb:74:71:5b: e4:c2:8b:b1:6b:13:df:c5:28:5c:ee:d7:16:b3:c1: b9:69:12:a3:a3:6e:f7:e5:c0:fd:09:ed:4c:f2:02: d1:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:5D:8F:71:0A:5B:C2:44:3A:27:26:3D:9B:03:92:65:96:6B:85:FF X509v3 Authority Key Identifier: keyid:01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:6d:aa:a7:f7:2e:e9:90:45:9d:1b:34:93:48:38:bc:e3:7e: 0a:cc:66:e5:32:d6:5b:35:15:ff:09:b7:61:54:74:e8:42:33: 42:51:57:58:56:f0:c5:57:06:02:b3:d1:00:9e:b7:ab:e5:10: 93:8b:52:70:0f:bc:eb:0b:12:65:8d:8f:34:34:dd:1e:bd:d0: 0e:33:42:e6:e0:05:d0:f5:b6:79:43:33:b1:c0:0b:31:b3:0e: 29:15:73:54:37:e1:de:81:13:8d:c1:13:75:23:a1:ed:5c:72: a3:e7:29:02:d3:76:df:07:5a:d0:84:0b:ee:29:94:b5:b4:a4: fe:df:d6:6f:95:79:f4:69:7d:d2:54:b9:09:4e:7e:14:f8:7d: 63:c4:19:a0:6c:5e:45:e6:92:bf:0d:22:cc:a3:07:02:22:75: f7:51:0d:e6:e4:72:af:08:fc:82:b7:42:1e:67:a9:99:00:52: 48:fe:9c:a7:0a:48:a8:95:6f:23:55:d5:1b:41:3f:ca:25:d1: 5e:91:c7:0c:4e:7f:f8:b9:e0:29:92:54:ec:ab:39:49:9f:94: 69:5c:3f:b7:25:d7:31:3b:19:ad:d6:7a:72:44:a1:c6:c8:b6: 89:0e:78:d9:5e:5d:1e:bf:a2:09:e2:2b:3c:94:cc:f3:88:07: 7e:9b:ee:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ4NDUxMTAvBgNVBAUTKDAxQTQxMkVGNDE2Qzg4NEY2RjYzN0YxQkRBODAwRUI2 RUY2N0I2RDYwHhcNMjQwNTE4MTYxNTAxWhcNMjQwNTI1MTYxNTAxWjAYMRYwFAYD VQQDEw02NjQ4ZDQwNS0yZmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs7hOd8nw9TFXr5Erem58bcDmX+EPQl+5TJs3tfe4MVugFS6pQuY2P/81UUCj vYxI8RTeWsvJin5dXX6Q6Kn6H+i96pP5EmZDWwxBSIiJHiykwylAzJQpl5QwJMAF t5cHpt0JzNFx3BmQx6al39ycOPoLtgPQ8vRHIRbIGFVdTSR1OgvXllMnr0vHZL5x w3bHVR+Z77BOcO21lZwplP2bShOvkoi2pQA6PzWEx/4hgsqkl8fDSsPBUBnDnB8K PlLNzPh4RmQBha4hCyXuv4H+yCekF6lEDip56FA/FLt0cVvkwouxaxPfxShc7tcW s8G5aRKjo2735cD9Ce1M8gLRrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNhdj3EK W8JEOicmPZsDkmWWa4X/MB8GA1UdIwQYMBaAFAGkEu9BbIhPb2N/G9qADrbvZ7bW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDg0NS80MDAxNTNCNkQy RUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lFOXZZMzhiMm9BT3R1OW50 dFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FhUVM3MEZzaUU5dlkzOGIyb0FPdHU5bnR0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDg0NS80MDAxNTNCNkQyRUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lF OXZZMzhiMm9BT3R1OW50dFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1baqn9y7pkEWdGzSTSDi8434KzGblMtZbNRX/CbdhVHToQjNCUVdY VvDFVwYCs9EAnrer5RCTi1JwD7zrCxJljY80NN0evdAOM0Lm4AXQ9bZ5QzOxwAsx sw4pFXNUN+HegRONwRN1I6HtXHKj5ykC03bfB1rQhAvuKZS1tKT+39ZvlXn0aX3S VLkJTn4U+H1jxBmgbF5F5pK/DSLMowcCInX3UQ3m5HKvCPyCt0IeZ6mZAFJI/pyn CkiolW8jVdUbQT/KJdFekccMTn/4ueApklTsqzlJn5RpXD+3JdcxOxmt1npyRKHG yLaJDnjZXl0ev6IJ4is8lMzziAd+m+59 -----END CERTIFICATE-----Generated at Sat May 18 17:20:36 2024 by rpki-client on console-ams.rpki-client.org