$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5CE4/3EFF1A9A863611EAAE6B1142C4F9AE02/myAvlYUe_EtkzjtAnGxgSzW0mNg.mft File: myAvlYUe_EtkzjtAnGxgSzW0mNg.mft (raw, json) Hash identifier: jBy19Qs3OGV4FGwb/VC8Jb9igJRlqh/gnp/97rrZHUU= Subject key identifier: 5F:ED:D3:BE:EC:3B:3C:81:24:80:B3:11:FA:2E:2F:C9:22:1D:C2:A6 Authority key identifier: 9B:20:2F:95:85:1E:FC:4B:64:CE:3B:40:9C:6C:60:4B:35:B4:98:D8 Certificate issuer: /CN=A91F5CE4/serialNumber=9B202F95851EFC4B64CE3B409C6C604B35B498D8 Certificate serial: 08F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/myAvlYUe_EtkzjtAnGxgSzW0mNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5CE4/3EFF1A9A863611EAAE6B1142C4F9AE02/myAvlYUe_EtkzjtAnGxgSzW0mNg.mft Manifest number: 08ED Signing time: Sat 18 May 2024 21:21:07 +0000 Manifest this update: Sat 18 May 2024 21:21:07 +0000 Manifest next update: Sat 25 May 2024 21:21:07 +0000 Files and hashes: 1: myAvlYUe_EtkzjtAnGxgSzW0mNg.crl (hash: wTXMyDiU4vIJcHzlUb1SyShFzc5PHTiN9LNxUE1zxnE=) 2: 1EEB10267CFB11EBA8C7B009C4F9AE02.roa (hash: a/MoRoBo0aOxnaGvmYiSBL3O+4s2Cj39IafwaUYXkUc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5CE4/3EFF1A9A863611EAAE6B1142C4F9AE02/myAvlYUe_EtkzjtAnGxgSzW0mNg.crl rsync://rpki.apnic.net/member_repository/A91F5CE4/3EFF1A9A863611EAAE6B1142C4F9AE02/myAvlYUe_EtkzjtAnGxgSzW0mNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/myAvlYUe_EtkzjtAnGxgSzW0mNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2296 (0x8f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5CE4/serialNumber=9B202F95851EFC4B64CE3B409C6C604B35B498D8 Validity Not Before: May 18 21:21:07 2024 GMT Not After : May 25 21:21:07 2024 GMT Subject: CN=66491bc3-5f86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:00:93:7b:4f:27:a1:32:c1:af:96:3f:38:62: 6e:18:59:3b:1a:2c:37:7f:32:e9:07:71:58:23:d5: 97:6c:fc:74:9c:57:c8:f0:0b:c5:50:3b:e4:31:b3: 29:3f:17:28:d7:c5:b1:3b:dd:d3:63:30:c9:4d:46: 55:df:ac:5f:bd:d0:f1:da:ac:2c:6f:4c:43:98:d3: 6d:2c:a4:23:06:45:74:b9:3e:f8:73:4c:18:78:9b: b4:92:a7:b2:58:0d:7b:33:33:a8:f8:5b:85:da:5b: 30:54:c1:60:69:8d:9a:d1:da:99:1a:c3:90:d8:aa: 07:0f:08:6f:7b:f9:15:e2:cd:58:43:37:ef:03:72: 71:19:17:4a:7d:ab:d6:77:5d:75:a3:3b:b0:60:79: 7e:c9:6b:b9:fc:a7:b7:c1:fb:40:77:87:af:80:c8: 71:17:52:6f:3b:7f:3b:6b:83:54:6c:a9:92:54:f5: 41:3f:94:be:89:e5:0b:42:22:93:96:55:cf:2c:f0: 77:a7:e2:a4:4c:60:ab:39:f5:79:53:e9:cd:31:8d: 05:d0:ec:c1:80:41:3d:43:93:ef:2a:0b:55:a6:8c: 74:32:f0:c4:86:02:a9:81:c3:14:cb:da:8c:23:44: f2:a8:b6:81:22:bd:2b:59:5a:8b:a3:67:a9:ae:0a: 79:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:ED:D3:BE:EC:3B:3C:81:24:80:B3:11:FA:2E:2F:C9:22:1D:C2:A6 X509v3 Authority Key Identifier: keyid:9B:20:2F:95:85:1E:FC:4B:64:CE:3B:40:9C:6C:60:4B:35:B4:98:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5CE4/3EFF1A9A863611EAAE6B1142C4F9AE02/myAvlYUe_EtkzjtAnGxgSzW0mNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/myAvlYUe_EtkzjtAnGxgSzW0mNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5CE4/3EFF1A9A863611EAAE6B1142C4F9AE02/myAvlYUe_EtkzjtAnGxgSzW0mNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:47:19:d4:d8:43:bf:5e:bb:c1:fe:f7:cb:d2:2c:0f:86:92: c6:a8:64:20:ac:33:a7:b3:ef:c2:b7:81:7b:af:e9:b2:95:69: 62:74:c6:33:0e:f7:2a:63:3c:e2:ec:f6:3d:55:d3:f6:3e:94: cc:3c:6e:a7:81:ad:2d:ca:10:d6:2f:ca:92:30:e9:14:ea:61: d5:e4:d7:77:ac:74:9c:cc:41:ae:c8:12:cf:87:3f:6e:f4:1a: dc:18:b2:90:f1:45:ad:49:ab:9c:f3:61:8e:b4:6f:f0:bf:39: 96:82:84:75:8a:1b:15:4f:9c:65:ce:4d:61:4d:50:43:8d:c2: e9:a2:fe:6b:fa:a7:47:cf:a3:61:93:de:e3:99:09:44:45:cc: 43:0a:b3:70:c6:85:12:4a:b3:f3:57:8f:e4:09:84:92:6a:46: e2:2b:ff:f6:20:2d:43:87:40:41:31:ce:eb:ee:5c:8d:e6:ea: 8f:5d:2a:09:c4:85:41:8d:c6:e6:c6:0f:5c:31:f3:d6:94:cb: 65:c8:8e:1b:de:76:ff:b2:61:1f:c5:c4:41:3b:5f:4e:1f:cb: 43:1d:4b:9e:38:f8:cc:44:ab:42:1a:21:b4:7b:06:e6:29:1a: ef:ec:92:f6:a1:45:7b:e8:41:5e:99:15:58:a6:d8:b9:1c:15: b1:38:cc:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVDRTQxMTAvBgNVBAUTKDlCMjAyRjk1ODUxRUZDNEI2NENFM0I0MDlDNkM2MDRC MzVCNDk4RDgwHhcNMjQwNTE4MjEyMTA3WhcNMjQwNTI1MjEyMTA3WjAYMRYwFAYD VQQDEw02NjQ5MWJjMy01Zjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAogCTe08noTLBr5Y/OGJuGFk7Giw3fzLpB3FYI9WXbPx0nFfI8AvFUDvkMbMp Pxco18WxO93TYzDJTUZV36xfvdDx2qwsb0xDmNNtLKQjBkV0uT74c0wYeJu0kqey WA17MzOo+FuF2lswVMFgaY2a0dqZGsOQ2KoHDwhve/kV4s1YQzfvA3JxGRdKfavW d111ozuwYHl+yWu5/Ke3wftAd4evgMhxF1JvO387a4NUbKmSVPVBP5S+ieULQiKT llXPLPB3p+KkTGCrOfV5U+nNMY0F0OzBgEE9Q5PvKgtVpox0MvDEhgKpgcMUy9qM I0TyqLaBIr0rWVqLo2eprgp5bQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF/t077s OzyBJICzEfouL8kiHcKmMB8GA1UdIwQYMBaAFJsgL5WFHvxLZM47QJxsYEs1tJjY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUNFNC8zRUZGMUE5QTg2 MzYxMUVBQUU2QjExNDJDNEY5QUUwMi9teUF2bFlVZV9FdGt6anRBbkd4Z1N6VzBt TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL215QXZsWVVlX0V0a3pqdEFuR3hnU3pXMG1OZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUNFNC8zRUZGMUE5QTg2MzYxMUVBQUU2QjExNDJDNEY5QUUwMi9teUF2bFlVZV9F dGt6anRBbkd4Z1N6VzBtTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATRxnU2EO/XrvB/vfL0iwPhpLGqGQgrDOns+/Ct4F7r+mylWlidMYz DvcqYzzi7PY9VdP2PpTMPG6nga0tyhDWL8qSMOkU6mHV5Nd3rHSczEGuyBLPhz9u 9BrcGLKQ8UWtSauc82GOtG/wvzmWgoR1ihsVT5xlzk1hTVBDjcLpov5r+qdHz6Nh k97jmQlERcxDCrNwxoUSSrPzV4/kCYSSakbiK//2IC1Dh0BBMc7r7lyN5uqPXSoJ xIVBjcbmxg9cMfPWlMtlyI4b3nb/smEfxcRBO19OH8tDHUueOPjMRKtCGiG0ewbm KRrv7JL2oUV76EFemRVYpti5HBWxOMwy -----END CERTIFICATE-----Generated at Sat May 18 22:28:01 2024 by rpki-client on console-ams.rpki-client.org