$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft File: 4CEd1HfFtNoX56IChgOs2OcWZrU.mft (raw, json) Hash identifier: 5ejtLNEwg7i2TxZ4RnCi8VsR3v7Dgk/Y/7S+pEBqejs= Subject key identifier: B7:A0:06:AB:AF:3B:93:F3:CD:0A:E2:A5:2C:EC:6D:FC:53:0E:9B:D9 Authority key identifier: E0:21:1D:D4:77:C5:B4:DA:17:E7:A2:02:86:03:AC:D8:E7:16:66:B5 Certificate issuer: /CN=A91EB1BE/serialNumber=E0211DD477C5B4DA17E7A2028603ACD8E71666B5 Certificate serial: 121A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft Manifest number: 120A Signing time: Fri 31 May 2024 18:02:56 +0000 Manifest this update: Fri 31 May 2024 18:02:55 +0000 Manifest next update: Fri 07 Jun 2024 18:02:55 +0000 Files and hashes: 1: 4CEd1HfFtNoX56IChgOs2OcWZrU.crl (hash: 26eRZzdlS3DF0Zhf5BRauKuA+SCBTRVlDsFbt04fs6c=) 2: 31E1DE72B04B11EE9F3B384BC4F9AE02.roa (hash: 4FTXEbd36TLSBVL60riUrPtGwhGXpjrmhxc/EZngzE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.crl rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:02:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4634 (0x121a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB1BE/serialNumber=E0211DD477C5B4DA17E7A2028603ACD8E71666B5 Validity Not Before: May 31 18:02:55 2024 GMT Not After : Jun 7 18:02:55 2024 GMT Subject: CN=665a10cf-5d93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:54:e0:01:bd:e7:98:b6:d6:8f:21:fe:8a:3c: da:d2:12:eb:3d:9e:f8:d5:99:de:2a:1e:4f:0f:a5: c3:29:88:f8:07:df:9d:5d:cf:6c:45:b5:ac:e6:60: d8:1f:ac:9e:24:e9:b4:84:4d:1c:ef:c3:3d:d3:8e: cd:17:8e:71:4f:df:e1:1f:93:f0:f5:10:26:52:4c: 1c:98:8b:f9:c2:41:c7:a7:9e:1f:66:e1:db:0f:92: 7b:71:4c:b5:c1:6a:7f:57:3b:14:fc:03:3e:d2:6e: 07:1f:4b:06:27:6b:1d:0c:ee:a9:2a:d1:54:b2:75: d9:25:1b:19:23:a7:26:b1:1e:a2:2f:bf:91:7a:20: 1c:aa:65:4e:64:44:e2:e0:e9:f3:b9:8b:c3:12:cd: 17:b8:98:95:d6:e2:94:7a:86:67:dc:81:ac:11:57: 62:cb:6a:b1:ac:2f:6a:7e:cb:fd:f3:50:df:a3:f0: 2a:2c:62:cb:ec:6e:17:16:74:dd:db:35:82:c5:48: 01:ce:59:84:94:bd:20:fc:c8:96:59:cc:dd:e2:bf: 71:79:e0:a2:b7:eb:50:1f:2f:51:9f:5e:58:b3:91: e9:11:be:c5:e8:a0:53:27:8f:90:06:cd:d7:ff:2e: ed:b6:73:47:39:92:1e:84:14:08:f7:4a:3f:ca:94: 9a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:A0:06:AB:AF:3B:93:F3:CD:0A:E2:A5:2C:EC:6D:FC:53:0E:9B:D9 X509v3 Authority Key Identifier: keyid:E0:21:1D:D4:77:C5:B4:DA:17:E7:A2:02:86:03:AC:D8:E7:16:66:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:3d:82:f8:4f:6f:0d:8f:b5:61:dd:c9:20:a4:98:32:cb:e5: 2d:2d:78:e6:a7:07:54:38:b1:1f:67:09:7f:08:63:79:d2:06: 91:52:00:da:33:d1:aa:d2:8b:76:49:b1:5f:b5:91:80:fa:9d: 58:c6:45:82:59:bb:db:12:fa:60:ea:63:08:63:e0:c2:bb:a2: 70:1a:d1:ce:0f:ad:a6:4c:5f:95:c0:7c:9e:77:7a:ae:8f:e1: ba:9d:04:4f:7e:63:7e:11:4b:81:4b:e0:7a:14:1c:f4:e8:74: 71:9c:c5:48:7a:76:28:86:60:5d:ab:fd:c7:9c:6e:90:6e:b7: 99:3c:e8:af:b2:24:08:d3:3d:57:64:5c:f0:55:01:2f:b2:6f: 8c:c1:5c:63:51:5c:d7:f9:b2:f2:27:e1:8f:ec:21:0d:c8:86: ae:cf:80:a3:29:17:09:fc:09:30:fa:b8:16:7c:a7:67:76:da: f5:1f:20:90:b4:e9:fc:c9:6e:f1:07:94:af:d6:ce:b8:da:96: b0:28:8d:30:74:e8:61:98:6c:ab:29:9b:cd:93:d7:08:fa:32: 8b:38:64:ca:e2:ce:0e:3a:67:52:80:92:9f:d5:ef:0a:0e:4c: 61:f8:e2:22:2e:07:42:04:ea:6d:17:83:aa:2c:90:de:28:01: 37:5e:18:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIxQkUxMTAvBgNVBAUTKEUwMjExREQ0NzdDNUI0REExN0U3QTIwMjg2MDNBQ0Q4 RTcxNjY2QjUwHhcNMjQwNTMxMTgwMjU1WhcNMjQwNjA3MTgwMjU1WjAYMRYwFAYD VQQDEw02NjVhMTBjZi01ZDkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9FTgAb3nmLbWjyH+ijza0hLrPZ741ZneKh5PD6XDKYj4B9+dXc9sRbWs5mDY H6yeJOm0hE0c78M9047NF45xT9/hH5Pw9RAmUkwcmIv5wkHHp54fZuHbD5J7cUy1 wWp/VzsU/AM+0m4HH0sGJ2sdDO6pKtFUsnXZJRsZI6cmsR6iL7+ReiAcqmVOZETi 4OnzuYvDEs0XuJiV1uKUeoZn3IGsEVdiy2qxrC9qfsv981Dfo/AqLGLL7G4XFnTd 2zWCxUgBzlmElL0g/MiWWczd4r9xeeCit+tQHy9Rn15Ys5HpEb7F6KBTJ4+QBs3X /y7ttnNHOZIehBQI90o/ypSaFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLegBquv O5PzzQripSzsbfxTDpvZMB8GA1UdIwQYMBaAFOAhHdR3xbTaF+eiAoYDrNjnFma1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjFCRS81QTU3Nzg2Q0Mw QzgxMUU4QUU4MDUzMzRDNEY5QUUwMi80Q0VkMUhmRnROb1g1NklDaGdPczJPY1da clUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRDRWQxSGZGdE5vWDU2SUNoZ09zMk9jV1pyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjFCRS81QTU3Nzg2Q0MwQzgxMUU4QUU4MDUzMzRDNEY5QUUwMi80Q0VkMUhmRnRO b1g1NklDaGdPczJPY1daclUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfPYL4T28Nj7Vh3ckgpJgyy+UtLXjmpwdUOLEfZwl/CGN50gaRUgDa M9Gq0ot2SbFftZGA+p1YxkWCWbvbEvpg6mMIY+DCu6JwGtHOD62mTF+VwHyed3qu j+G6nQRPfmN+EUuBS+B6FBz06HRxnMVIenYohmBdq/3HnG6QbreZPOivsiQI0z1X ZFzwVQEvsm+MwVxjUVzX+bLyJ+GP7CENyIauz4CjKRcJ/Akw+rgWfKdndtr1HyCQ tOn8yW7xB5Sv1s642pawKI0wdOhhmGyrKZvNk9cI+jKLOGTK4s4OOmdSgJKf1e8K Dkxh+OIiLgdCBOptF4OqLJDeKAE3XhgR -----END CERTIFICATE-----Generated at Fri May 31 20:34:19 2024 by rpki-client on console-ams.rpki-client.org