$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft File: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft (raw, json) Hash identifier: 3ZF5ued9oyhjJqIGg+OJ5BIaYFHAije9rZXjlu0dQbo= Subject key identifier: 3C:3B:E4:48:EA:13:3A:7E:60:03:CC:00:41:03:68:12:DC:CE:66:35 Authority key identifier: DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED Certificate issuer: /CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Certificate serial: 1313 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft Manifest number: 12F9 Signing time: Sat 18 May 2024 15:41:18 +0000 Manifest this update: Sat 18 May 2024 15:41:17 +0000 Manifest next update: Sat 25 May 2024 15:41:17 +0000 Files and hashes: 1: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl (hash: OcqrLOiu+qMTf+75y/Gu7sry/c3mz3YLF6nQw9mTQ/0=) 2: 76C6BCF6B72811ECAEFC180DC4F9AE02.roa (hash: UdF7g1ZZlNrdrIFaYji9C/S2GIbheY2sGXF8Z4BwvuY=) 3: B969D2D0BA4A11EC90B53115C4F9AE02.roa (hash: ifwPWeDGkfRaTgzorLs2TjxP9qOhrc8+ETtMc3U/oLY=) 4: 49678FBCB72B11EC8C8E3017C4F9AE02.roa (hash: PWN8OADdXsFH8SqIr4epF2+j2//RugTAUQN7gJuxg+E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4883 (0x1313) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Validity Not Before: May 18 15:41:17 2024 GMT Not After : May 25 15:41:17 2024 GMT Subject: CN=6648cc1e-49c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b8:a5:c9:41:22:8c:e0:29:28:2e:6f:9d:ab: 0c:96:98:02:4a:11:31:e0:dd:93:65:37:e0:bd:f3: ce:87:18:fe:8b:66:80:38:bb:e1:ce:ca:bf:3e:cf: 7e:53:9d:62:09:6d:c9:75:93:36:73:fb:ea:13:6c: f5:c4:a1:45:49:85:11:43:0d:79:88:15:e1:77:67: a9:19:2d:13:2b:38:f5:39:3d:55:dd:98:6b:35:b2: 37:19:38:b4:81:b6:64:c4:53:db:c5:c4:f2:57:d0: 38:8e:fc:72:01:78:c4:70:95:c9:ef:da:32:df:c6: 46:83:0b:dc:ec:d6:c9:ca:bf:bf:fc:a3:76:ea:ec: 01:1f:3a:f5:ba:4e:a5:46:c3:5f:37:66:ee:47:c7: 88:df:48:99:5f:f8:a6:d2:79:e1:ac:4a:82:4b:1b: 2c:ab:ed:71:8b:a9:36:49:43:3b:41:62:7b:6b:10: e7:ee:32:14:04:23:41:c6:eb:37:15:2e:fc:60:10: f5:6d:31:bc:4a:bb:e8:4c:db:b9:97:4a:92:d9:96: 40:f4:3c:aa:d1:3f:3f:cf:61:69:d1:79:f3:0c:30: 6f:3e:cc:fb:75:28:a2:43:e8:3f:73:e8:91:4d:76: ae:dc:7b:a4:1c:1e:ec:a1:4d:a6:0f:ee:86:1f:26: 0b:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:3B:E4:48:EA:13:3A:7E:60:03:CC:00:41:03:68:12:DC:CE:66:35 X509v3 Authority Key Identifier: keyid:DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:b7:d8:d5:ed:3a:68:cc:d1:1c:31:a2:fc:21:df:cb:70:e2: 75:24:d8:95:b3:b8:f1:31:e8:6a:88:d3:79:df:f5:e5:a8:8c: db:7e:cd:09:89:8e:c0:97:87:b9:85:88:73:c1:70:13:57:dc: 07:88:de:9f:0e:f0:e5:44:a8:25:6e:ed:01:8e:ac:c7:c9:71: 86:03:1e:bc:8f:72:b9:cf:63:46:1a:0f:0d:a0:6c:38:a2:11: 4e:0d:4c:d2:02:c0:be:76:c5:7e:e0:a8:64:cc:81:ca:b7:94: 1f:9e:8d:90:e0:08:fa:af:eb:d6:43:7f:53:60:c0:03:85:7c: 3c:84:7f:47:63:8d:a6:53:38:9d:ae:be:7d:4b:9b:05:b4:eb: 16:cc:25:0a:71:16:67:29:9e:a3:50:cf:3b:76:ca:ac:2e:f6: 84:db:a6:90:80:1f:d7:ef:83:08:7f:09:02:45:8c:37:c9:d7: 11:e1:f7:e8:a4:c9:1e:bf:21:87:8d:84:db:85:85:64:8b:c4: de:40:d3:60:7a:78:6e:55:c3:9f:c9:f2:9f:bf:e4:5d:60:87: 00:c6:ea:b7:80:0c:a1:1f:57:26:fc:0e:99:56:51:48:e7:46: 53:07:ac:92:eb:ba:47:55:61:72:7d:89:e2:50:6b:c7:4d:c6: 01:92:9e:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICExMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKERBNEI1QzIxMjNCQTlEMEY4MDIzNzhEQURERDQ4MDFC NTY3MEEzRUQwHhcNMjQwNTE4MTU0MTE3WhcNMjQwNTI1MTU0MTE3WjAYMRYwFAYD VQQDEw02NjQ4Y2MxZS00OWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr7ilyUEijOApKC5vnasMlpgCShEx4N2TZTfgvfPOhxj+i2aAOLvhzsq/Ps9+ U51iCW3JdZM2c/vqE2z1xKFFSYURQw15iBXhd2epGS0TKzj1OT1V3ZhrNbI3GTi0 gbZkxFPbxcTyV9A4jvxyAXjEcJXJ79oy38ZGgwvc7NbJyr+//KN26uwBHzr1uk6l RsNfN2buR8eI30iZX/im0nnhrEqCSxssq+1xi6k2SUM7QWJ7axDn7jIUBCNBxus3 FS78YBD1bTG8SrvoTNu5l0qS2ZZA9Dyq0T8/z2Fp0XnzDDBvPsz7dSiiQ+g/c+iR TXau3HukHB7soU2mD+6GHyYLxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDw75Ejq Ezp+YAPMAEEDaBLczmY1MB8GA1UdIwQYMBaAFNpLXCEjup0PgCN42t3UgBtWcKPt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wNzQ5NTg5MDkx ODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5RLUFJM2phM2RTQUcxWndv LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJrdGNJU082blEtQUkzamEzZFNBRzFad28tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wNzQ5NTg5MDkxODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5R LUFJM2phM2RTQUcxWndvLTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSt9jV7TpozNEcMaL8Id/LcOJ1JNiVs7jxMehqiNN53/XlqIzbfs0J iY7Al4e5hYhzwXATV9wHiN6fDvDlRKglbu0BjqzHyXGGAx68j3K5z2NGGg8NoGw4 ohFODUzSAsC+dsV+4KhkzIHKt5Qfno2Q4Aj6r+vWQ39TYMADhXw8hH9HY42mUzid rr59S5sFtOsWzCUKcRZnKZ6jUM87dsqsLvaE26aQgB/X74MIfwkCRYw3ydcR4ffo pMkevyGHjYTbhYVki8TeQNNgenhuVcOfyfKfv+RdYIcAxuq3gAyhH1cm/A6ZVlFI 50ZTB6yS67pHVWFyfYniUGvHTcYBkp6n -----END CERTIFICATE-----Generated at Sat May 18 17:20:36 2024 by rpki-client on console-ams.rpki-client.org