$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft File: aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft (raw, json) Hash identifier: OZHhXHbkIaHiUx3JF1tEJ9l+N70Hwhrgs2mqkTJe/ME= Subject key identifier: 1C:56:A6:05:F9:03:F9:C6:DD:FC:D9:4C:48:BE:87:C7:2B:4A:2F:5C Authority key identifier: 68:6A:00:57:16:4D:14:38:EC:59:58:6D:A8:BA:A5:46:5F:D8:29:C7 Certificate issuer: /CN=A91EA9BD/serialNumber=686A0057164D1438EC59586DA8BAA5465FD829C7 Certificate serial: 2FF5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft Manifest number: 2FF2 Signing time: Fri 31 May 2024 15:46:36 +0000 Manifest this update: Fri 31 May 2024 15:46:35 +0000 Manifest next update: Fri 07 Jun 2024 15:46:35 +0000 Files and hashes: 1: aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl (hash: mJzmT5pMxGFK2GgjWBlXeCt86D1lv8rQiBkAyPzVrSc=) 2: 93C0837AA52911EC9D2DAE83C4F9AE02.roa (hash: JfGwNVnzrNOIafxBENqEbRK+Usbwud6KX0g8nBIB4vQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 15:39:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12277 (0x2ff5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD/serialNumber=686A0057164D1438EC59586DA8BAA5465FD829C7 Validity Not Before: May 31 15:46:35 2024 GMT Not After : Jun 7 15:46:35 2024 GMT Subject: CN=6659f0dc-11e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:ab:b6:0f:ba:51:22:03:59:89:b8:51:d3:69: 7d:72:27:99:80:b0:a8:d3:d3:fb:1a:a9:7c:15:0d: 55:49:49:35:0c:e1:23:06:6b:35:78:32:a7:dc:dc: 07:93:4e:fb:4c:6e:90:19:30:bf:29:a6:1d:b3:6e: 21:89:8b:e7:63:2e:af:47:da:d8:0b:a6:7f:f9:5a: b0:49:37:4e:a8:31:18:d9:89:e8:10:61:d3:03:1b: c8:05:de:59:43:55:4b:15:3e:cf:7c:66:33:36:05: 13:b0:e0:4e:c7:7e:87:a2:70:32:e7:f9:97:4b:73: df:a1:ce:2d:d6:74:47:97:73:0c:27:6a:f6:8a:1d: 7a:c1:b5:67:5e:19:56:76:03:ff:65:b8:f5:a9:6f: e4:ef:d9:6e:0f:87:61:47:a9:b1:fb:9a:58:32:e7: 00:64:e1:ea:61:fd:98:22:bc:28:ae:8a:08:10:f6: 2e:36:c4:9a:b0:37:3a:61:bb:8b:b1:4b:e9:19:97: 9e:10:cc:a5:46:95:66:05:ca:e7:12:f4:22:b3:7b: 0b:66:35:68:fd:92:c3:5e:b0:97:51:3c:da:e9:d5: 84:de:ca:51:89:9a:eb:21:98:5f:06:05:b7:f6:17: 98:ba:b4:b9:2a:ce:70:e5:9e:ba:73:72:ea:d5:3e: 43:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:56:A6:05:F9:03:F9:C6:DD:FC:D9:4C:48:BE:87:C7:2B:4A:2F:5C X509v3 Authority Key Identifier: keyid:68:6A:00:57:16:4D:14:38:EC:59:58:6D:A8:BA:A5:46:5F:D8:29:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:a2:cd:ef:69:98:5a:1e:0a:ff:b1:b5:8b:5f:3c:0d:92:cd: eb:92:fd:8a:81:83:1d:a0:51:0c:20:e1:26:04:37:6c:fe:3c: b0:76:4c:d7:61:43:e0:4a:36:b7:c6:55:5e:0e:8f:57:73:35: 3c:ed:8b:8b:cf:02:05:fa:22:2f:ba:43:a3:c8:4d:e2:84:60: a2:4f:86:4a:41:ae:23:7a:87:81:4c:7e:2d:8d:6b:3b:f4:75: 4c:33:de:78:9a:cc:ac:4f:0f:42:c8:38:11:ef:c8:74:7a:b0: 73:85:97:70:1c:79:28:c8:4d:68:d9:e9:e9:2d:2b:c5:0a:9e: 0a:94:b3:ca:89:7f:a4:c2:dc:ec:46:e2:52:0d:0e:5a:d1:05: 43:cb:13:ca:c8:68:dc:4e:9e:cd:7b:2b:b7:82:1a:a7:ab:26: 72:a9:65:85:c6:40:0b:07:1d:69:df:2c:fa:7f:d4:51:20:ad: bc:e9:47:f4:a3:7a:a7:ba:67:aa:aa:d7:0e:bf:6e:41:6b:c7: 30:65:3f:32:9a:14:92:23:a6:3d:85:ab:ed:ed:67:85:55:cc: 74:0d:34:43:59:4a:36:c2:5c:51:7c:c9:2d:63:c2:6b:75:7e: d7:5c:d7:81:b6:15:a6:c5:e2:54:ce:0c:da:1f:dc:95:6d:1a: df:31:ca:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICL/UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKDY4NkEwMDU3MTY0RDE0MzhFQzU5NTg2REE4QkFBNTQ2 NUZEODI5QzcwHhcNMjQwNTMxMTU0NjM1WhcNMjQwNjA3MTU0NjM1WjAYMRYwFAYD VQQDEw02NjU5ZjBkYy0xMWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8au2D7pRIgNZibhR02l9cieZgLCo09P7Gql8FQ1VSUk1DOEjBms1eDKn3NwH k077TG6QGTC/KaYds24hiYvnYy6vR9rYC6Z/+VqwSTdOqDEY2YnoEGHTAxvIBd5Z Q1VLFT7PfGYzNgUTsOBOx36HonAy5/mXS3Pfoc4t1nRHl3MMJ2r2ih16wbVnXhlW dgP/Zbj1qW/k79luD4dhR6mx+5pYMucAZOHqYf2YIrworooIEPYuNsSasDc6YbuL sUvpGZeeEMylRpVmBcrnEvQis3sLZjVo/ZLDXrCXUTza6dWE3spRiZrrIZhfBgW3 9heYurS5Ks5w5Z66c3Lq1T5D7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBxWpgX5 A/nG3fzZTEi+h8crSi9cMB8GA1UdIwQYMBaAFGhqAFcWTRQ47FlYbai6pUZf2CnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wM0I4MEYzOERG NUMxMUUyOTcyQTk0Mjc1OTExRUEzMi9hR29BVnhaTkZEanNXVmh0cUxxbFJsX1lL Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FHb0FWeFpORkRqc1dWaHRxTHFsUmxfWUtjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wM0I4MEYzOERGNUMxMUUyOTcyQTk0Mjc1OTExRUEzMi9hR29BVnhaTkZE anNXVmh0cUxxbFJsX1lLY2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANos3vaZhaHgr/sbWLXzwNks3rkv2KgYMdoFEMIOEmBDds/jywdkzX YUPgSja3xlVeDo9XczU87YuLzwIF+iIvukOjyE3ihGCiT4ZKQa4jeoeBTH4tjWs7 9HVMM954msysTw9CyDgR78h0erBzhZdwHHkoyE1o2enpLSvFCp4KlLPKiX+kwtzs RuJSDQ5a0QVDyxPKyGjcTp7Neyu3ghqnqyZyqWWFxkALBx1p3yz6f9RRIK286Uf0 o3qnumeqqtcOv25Ba8cwZT8ymhSSI6Y9havt7WeFVcx0DTRDWUo2wlxRfMktY8Jr dX7XXNeBthWmxeJUzgzaH9yVbRrfMcpq -----END CERTIFICATE-----Generated at Fri May 31 16:41:45 2024 by rpki-client on console-ams.rpki-client.org