$ rpki-client -vvf rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft File: t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft (raw, json) Hash identifier: gFr8a/1Es8/6oiWGzoZxGPLRbsgjjD+x6rAi8XvFpxk= Subject key identifier: 04:8A:59:39:8A:FF:08:89:57:1C:1B:2B:3F:2D:82:BB:79:40:7F:34 Authority key identifier: B7:DC:E1:41:12:A0:29:82:F5:75:7C:AB:8D:34:91:03:2C:8E:18:FA Certificate issuer: /CN=A91F91EB/serialNumber=B7DCE14112A02982F5757CAB8D3491032C8E18FA Certificate serial: 0BD0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft Manifest number: 0BCB Signing time: Sun 26 May 2024 19:11:26 +0000 Manifest this update: Sun 26 May 2024 19:11:26 +0000 Manifest next update: Sun 02 Jun 2024 19:11:26 +0000 Files and hashes: 1: t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl (hash: KqQC3QzRTBDQoEydEN1dAenrSiLOhd1mcppIF5Aalpw=) 2: 8D243F849A6D11EA8674310DC4F9AE02.roa (hash: l2tSQDCSf2XRgRWJUI18n4GUTvN3dXNn8MNTFuFtKko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 19:11:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3024 (0xbd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F91EB/serialNumber=B7DCE14112A02982F5757CAB8D3491032C8E18FA Validity Not Before: May 26 19:11:26 2024 GMT Not After : Jun 2 19:11:26 2024 GMT Subject: CN=6653895e-e953 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d8:8d:91:ce:c7:3c:76:5a:67:b0:b2:04:72: 96:de:c2:10:54:67:2f:6d:0c:ad:60:55:bb:da:0e: 2c:ea:42:6e:7b:2b:9b:ae:d5:c7:b9:6d:82:86:2d: 0f:0e:cc:f9:f3:85:1a:3b:08:39:52:58:c9:59:14: 27:f3:f2:ae:a8:d1:6a:7f:8f:43:4f:a5:f8:bf:8f: 61:13:88:8f:0b:2e:b1:10:a5:eb:d7:14:42:85:65: 98:b3:a4:63:29:40:95:50:48:0f:4c:47:2d:87:d2: ac:39:8b:43:0b:18:8e:47:a3:a1:c1:97:e5:d4:ef: b0:b5:26:e5:11:ca:98:d2:67:1d:31:8d:19:be:c5: 2c:37:67:5d:41:88:73:4c:f4:ec:38:65:c1:9b:d2: 79:af:b5:49:4f:ce:16:49:ee:37:8d:57:14:6e:92: ef:21:a0:4a:32:a2:5e:51:0e:d8:c3:af:77:63:9d: 02:e6:4c:a9:69:62:ba:90:1a:fb:59:74:e9:9a:39: 03:d2:42:01:89:7e:a6:cf:7c:6f:a7:2e:88:a7:e5: bc:7a:b6:e5:04:5c:97:a8:3c:ff:e2:a9:9a:0e:8a: 44:6c:31:1a:bc:8c:3c:b4:d1:39:0d:32:2f:6a:0d: 5e:ad:f4:77:17:53:b5:83:77:07:92:7d:75:dd:27: 06:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:8A:59:39:8A:FF:08:89:57:1C:1B:2B:3F:2D:82:BB:79:40:7F:34 X509v3 Authority Key Identifier: keyid:B7:DC:E1:41:12:A0:29:82:F5:75:7C:AB:8D:34:91:03:2C:8E:18:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:c5:c8:4c:d8:17:6d:78:93:6c:2d:35:46:73:1a:44:e5:0a: b2:d9:59:46:68:89:31:26:d8:a3:19:f6:7c:9f:ff:71:74:d3: 7c:93:4e:9b:fd:cb:ea:8e:cc:c9:42:36:df:2a:c1:0d:59:77: 8c:8b:5c:1a:f5:d0:56:30:8c:07:1b:1c:27:4e:6f:17:b5:14: 17:46:06:03:5a:37:85:2c:7d:75:d7:9f:e6:e6:02:26:33:13: f8:26:01:82:5e:48:d7:44:37:69:d8:07:ec:f9:75:fc:fe:2e: 00:a0:b0:21:7b:67:ba:8e:2a:5e:6c:23:24:22:9f:c5:b8:08: f5:aa:9b:c3:79:30:28:82:3b:0e:a5:d0:dd:c0:66:c2:cf:8d: 9c:bb:48:9f:d5:71:e8:1b:c3:92:a4:f3:39:1b:8a:34:98:e1: 97:2e:b2:90:47:01:3b:ce:e1:c8:32:aa:3d:07:18:f3:58:2b: c7:a4:03:c1:21:5e:18:f0:9a:12:65:9a:56:e4:97:d2:62:35: d0:73:2c:7b:94:0b:17:a8:48:3c:ff:d2:19:a9:8b:2e:b5:88: ed:73:63:7c:c3:8b:5d:4e:f2:4d:ff:34:3c:f2:0d:d7:f4:a1: 73:90:d3:ee:8d:75:e5:0f:1a:fd:dd:15:e5:68:a4:43:ab:5e: ab:0e:9f:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjkxRUIxMTAvBgNVBAUTKEI3RENFMTQxMTJBMDI5ODJGNTc1N0NBQjhEMzQ5MTAz MkM4RTE4RkEwHhcNMjQwNTI2MTkxMTI2WhcNMjQwNjAyMTkxMTI2WjAYMRYwFAYD VQQDEw02NjUzODk1ZS1lOTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0tiNkc7HPHZaZ7CyBHKW3sIQVGcvbQytYFW72g4s6kJueyubrtXHuW2Chi0P Dsz584UaOwg5UljJWRQn8/KuqNFqf49DT6X4v49hE4iPCy6xEKXr1xRChWWYs6Rj KUCVUEgPTEcth9KsOYtDCxiOR6OhwZfl1O+wtSblEcqY0mcdMY0ZvsUsN2ddQYhz TPTsOGXBm9J5r7VJT84WSe43jVcUbpLvIaBKMqJeUQ7Yw693Y50C5kypaWK6kBr7 WXTpmjkD0kIBiX6mz3xvpy6Ip+W8erblBFyXqDz/4qmaDopEbDEavIw8tNE5DTIv ag1erfR3F1O1g3cHkn113ScGGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFASKWTmK /wiJVxwbKz8tgrt5QH80MB8GA1UdIwQYMBaAFLfc4UESoCmC9XV8q400kQMsjhj6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTFFQi80OTdGMkJEOEY3 MDUxMUU5QURCQTQ1MUZDNEY5QUUwMi90OXpoUVJLZ0tZTDFkWHlyalRTUkF5eU9H UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3Q5emhRUktnS1lMMWRYeXJqVFNSQXl5T0dQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OTFFQi80OTdGMkJEOEY3MDUxMUU5QURCQTQ1MUZDNEY5QUUwMi90OXpoUVJLZ0tZ TDFkWHlyalRTUkF5eU9HUG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaxchM2BdteJNsLTVGcxpE5Qqy2VlGaIkxJtijGfZ8n/9xdNN8k06b /cvqjszJQjbfKsENWXeMi1wa9dBWMIwHGxwnTm8XtRQXRgYDWjeFLH1115/m5gIm MxP4JgGCXkjXRDdp2Afs+XX8/i4AoLAhe2e6jipebCMkIp/FuAj1qpvDeTAogjsO pdDdwGbCz42cu0if1XHoG8OSpPM5G4o0mOGXLrKQRwE7zuHIMqo9BxjzWCvHpAPB IV4Y8JoSZZpW5JfSYjXQcyx7lAsXqEg8/9IZqYsutYjtc2N8w4tdTvJN/zQ88g3X 9KFzkNPujXXlDxr93RXlaKRDq16rDp/6 -----END CERTIFICATE-----Generated at Sun May 26 23:05:46 2024 by rpki-client on console-ams.rpki-client.org