$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAC82/CBD893A04ED311EAAD7BA211C4F9AE02/CptpgbEtWk0t827p0oCmWVwyUTY.mft File: CptpgbEtWk0t827p0oCmWVwyUTY.mft (raw, json) Hash identifier: 4qN4PAYLDbPgk4UrO5+2q0myoqCNKd2qzfMwXF/328Y= Subject key identifier: C1:DE:66:51:E6:5C:23:49:61:BF:01:85:C9:BC:F5:D7:4C:47:E8:18 Authority key identifier: 0A:9B:69:81:B1:2D:5A:4D:2D:F3:6E:E9:D2:80:A6:59:5C:32:51:36 Certificate issuer: /CN=A91EAC82/serialNumber=0A9B6981B12D5A4D2DF36EE9D280A6595C325136 Certificate serial: 0A1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CptpgbEtWk0t827p0oCmWVwyUTY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAC82/CBD893A04ED311EAAD7BA211C4F9AE02/CptpgbEtWk0t827p0oCmWVwyUTY.mft Manifest number: 0A0F Signing time: Sat 18 May 2024 20:37:56 +0000 Manifest this update: Sat 18 May 2024 20:37:55 +0000 Manifest next update: Sat 25 May 2024 20:37:55 +0000 Files and hashes: 1: CptpgbEtWk0t827p0oCmWVwyUTY.crl (hash: heflbAQ7ppnV0o5Q2PIV7X+pEitD2kO8LE7nqjiYv0s=) 2: 2FC13F564ED511EA945E3314C4F9AE02.roa (hash: sCxBbTPaAxo4ky7RFi9ioL8DjtsOBCB5CQvN1aJZ7Qc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAC82/CBD893A04ED311EAAD7BA211C4F9AE02/CptpgbEtWk0t827p0oCmWVwyUTY.crl rsync://rpki.apnic.net/member_repository/A91EAC82/CBD893A04ED311EAAD7BA211C4F9AE02/CptpgbEtWk0t827p0oCmWVwyUTY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CptpgbEtWk0t827p0oCmWVwyUTY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2587 (0xa1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAC82/serialNumber=0A9B6981B12D5A4D2DF36EE9D280A6595C325136 Validity Not Before: May 18 20:37:55 2024 GMT Not After : May 25 20:37:55 2024 GMT Subject: CN=664911a4-1aae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:85:6c:f7:c0:c6:c9:ae:78:e1:f6:a9:b1:6d: ed:1f:62:0b:90:76:79:27:aa:cc:35:00:86:01:f9: 1d:23:8e:3e:0d:a4:fe:69:7d:7f:ba:93:6f:a3:be: 42:6d:0e:1b:dc:36:e7:f6:94:62:55:fd:93:16:9c: 8d:a0:71:94:c9:2f:10:0d:2d:4b:c5:fb:8f:66:cf: 58:7d:a7:ea:be:eb:11:51:3d:a0:21:02:40:9f:db: 6c:41:4c:89:c9:47:dd:ae:9f:32:35:89:95:df:ff: ff:b2:98:fa:c6:59:4b:f6:9c:da:11:ad:af:c8:d1: 5b:32:c2:06:6b:35:3d:72:11:6e:f6:46:ab:88:a9: a6:4f:af:10:f6:5f:e1:d4:6f:21:37:2a:95:77:e9: 85:e1:df:fb:32:6a:16:c4:9b:24:03:c8:04:ca:67: ee:13:63:5e:bf:c5:0f:f7:3c:f2:7e:79:3a:5c:89: dc:7e:8a:71:55:8e:eb:1a:c2:df:f0:f3:bd:72:16: f8:01:38:ff:e4:c8:39:c8:00:a7:d3:40:4e:82:0a: d3:1f:ac:74:83:8f:d2:4e:20:44:fb:71:30:af:e8: 23:ac:bf:13:47:fe:d4:69:bb:7e:cd:4d:37:5e:2a: 4e:08:b3:dd:3d:e3:c3:e3:81:97:98:15:94:1e:c9: 2e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:DE:66:51:E6:5C:23:49:61:BF:01:85:C9:BC:F5:D7:4C:47:E8:18 X509v3 Authority Key Identifier: keyid:0A:9B:69:81:B1:2D:5A:4D:2D:F3:6E:E9:D2:80:A6:59:5C:32:51:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAC82/CBD893A04ED311EAAD7BA211C4F9AE02/CptpgbEtWk0t827p0oCmWVwyUTY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CptpgbEtWk0t827p0oCmWVwyUTY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAC82/CBD893A04ED311EAAD7BA211C4F9AE02/CptpgbEtWk0t827p0oCmWVwyUTY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:69:88:8e:3e:8e:bd:73:3b:91:f3:3b:99:da:d1:c7:6f:9e: de:bc:fa:d8:29:60:45:bb:9c:fa:5a:85:33:d6:40:a9:a8:1f: 44:c8:c6:56:0c:02:46:23:9f:51:92:c0:92:e1:22:9b:4b:08: c1:f3:95:b6:b7:ce:c5:1d:45:2c:a8:97:76:f3:8f:1f:fc:46: 24:a2:99:35:ce:42:5d:ab:8c:d9:36:b4:09:42:91:f4:44:11: 3f:ea:fa:c7:08:37:54:f6:e8:8d:de:b7:b4:e9:c5:5f:13:48: 52:5d:d5:5f:04:2a:3e:bf:69:82:85:bc:9c:51:c1:7f:d7:6d: bf:e5:c4:98:7b:33:b6:ff:a5:40:c4:ed:ca:95:a9:d4:4e:9f: 1f:4c:d5:1b:05:d8:f3:de:0b:eb:ef:03:3b:2c:01:79:66:bf: cc:9e:c7:18:3c:2d:8d:ed:db:ba:e7:2c:49:22:20:01:35:68: 15:00:2a:6d:44:3a:4c:00:2c:d9:6d:30:1c:ae:d1:fe:58:1e: 61:dd:57:be:9c:d1:23:0c:a6:ca:cb:75:fa:33:be:e9:06:97: 6d:4d:71:1a:5c:a1:59:2d:11:fe:cc:24:4f:ee:46:04:75:f7: 27:6d:ea:b7:bb:f4:ef:2c:7c:1e:3e:47:bd:ff:a0:f0:68:5a: 20:d3:b6:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFDODIxMTAvBgNVBAUTKDBBOUI2OTgxQjEyRDVBNEQyREYzNkVFOUQyODBBNjU5 NUMzMjUxMzYwHhcNMjQwNTE4MjAzNzU1WhcNMjQwNTI1MjAzNzU1WjAYMRYwFAYD VQQDEw02NjQ5MTFhNC0xYWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnIVs98DGya544fapsW3tH2ILkHZ5J6rMNQCGAfkdI44+DaT+aX1/upNvo75C bQ4b3Dbn9pRiVf2TFpyNoHGUyS8QDS1LxfuPZs9YfafqvusRUT2gIQJAn9tsQUyJ yUfdrp8yNYmV3///spj6xllL9pzaEa2vyNFbMsIGazU9chFu9kariKmmT68Q9l/h 1G8hNyqVd+mF4d/7MmoWxJskA8gEymfuE2Nev8UP9zzyfnk6XIncfopxVY7rGsLf 8PO9chb4ATj/5Mg5yACn00BOggrTH6x0g4/STiBE+3Ewr+gjrL8TR/7Uabt+zU03 XipOCLPdPePD44GXmBWUHskuuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMHeZlHm XCNJYb8Bhcm89ddMR+gYMB8GA1UdIwQYMBaAFAqbaYGxLVpNLfNu6dKApllcMlE2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUM4Mi9DQkQ4OTNBMDRF RDMxMUVBQUQ3QkEyMTFDNEY5QUUwMi9DcHRwZ2JFdFdrMHQ4MjdwMG9DbVdWd3lV VFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NwdHBnYkV0V2swdDgyN3Awb0NtV1Z3eVVUWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUM4Mi9DQkQ4OTNBMDRFRDMxMUVBQUQ3QkEyMTFDNEY5QUUwMi9DcHRwZ2JFdFdr MHQ4MjdwMG9DbVdWd3lVVFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYaYiOPo69czuR8zuZ2tHHb57evPrYKWBFu5z6WoUz1kCpqB9EyMZW DAJGI59RksCS4SKbSwjB85W2t87FHUUsqJd2848f/EYkopk1zkJdq4zZNrQJQpH0 RBE/6vrHCDdU9uiN3re06cVfE0hSXdVfBCo+v2mChbycUcF/122/5cSYezO2/6VA xO3KlanUTp8fTNUbBdjz3gvr7wM7LAF5Zr/MnscYPC2N7du65yxJIiABNWgVACpt RDpMACzZbTAcrtH+WB5h3Ve+nNEjDKbKy3X6M77pBpdtTXEaXKFZLRH+zCRP7kYE dfcnbeq3u/TvLHwePke9/6DwaFog07aG -----END CERTIFICATE-----Generated at Sat May 18 21:31:32 2024 by rpki-client on console-ams.rpki-client.org