$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft File: rroZtvzB0hrnExdw57HaPhR17JA.mft (raw, json) Hash identifier: hWdNAu6XS3WA9G2EXf1M7eyaJ078IY63x41+mjIB5aQ= Subject key identifier: 48:CF:52:E7:95:7C:7F:4A:55:D3:89:FC:39:11:FA:39:9B:54:43:F6 Authority key identifier: AE:BA:19:B6:FC:C1:D2:1A:E7:13:17:70:E7:B1:DA:3E:14:75:EC:90 Certificate issuer: /CN=A91FE7DB/serialNumber=AEBA19B6FCC1D21AE7131770E7B1DA3E1475EC90 Certificate serial: 0A62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft Manifest number: 0A5C Signing time: Sat 18 May 2024 20:21:19 +0000 Manifest this update: Sat 18 May 2024 20:21:19 +0000 Manifest next update: Sat 25 May 2024 20:21:19 +0000 Files and hashes: 1: rroZtvzB0hrnExdw57HaPhR17JA.crl (hash: FPpe7LbFDrZR7uDujchCdRXUYNYmjOMiLabcYDyD8z8=) 2: 078AE946642A11EAA019224CC4F9AE02.roa (hash: zuPgCF1JRKRsNBDnVgon3sTbonHhVFuQJcOm55m3PwI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.crl rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2658 (0xa62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE7DB/serialNumber=AEBA19B6FCC1D21AE7131770E7B1DA3E1475EC90 Validity Not Before: May 18 20:21:19 2024 GMT Not After : May 25 20:21:19 2024 GMT Subject: CN=66490dbf-299f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b8:68:58:1d:c8:6d:60:8e:d3:70:ac:1f:c3: 53:95:8f:a7:0c:f4:ec:b7:45:db:21:22:59:ff:d7: 22:b4:be:59:2a:69:1f:ca:77:d7:7f:de:3a:e3:32: ef:05:69:47:c7:66:e9:e6:67:8b:96:9e:3a:84:e6: 5d:c6:e4:39:d3:17:d9:88:43:15:b3:01:b4:0c:ca: 55:26:84:d1:b1:76:ca:54:5d:09:bf:ce:e3:50:d4: 59:c9:24:24:af:4c:61:7a:dc:2d:9e:8e:f2:f5:ec: 0c:1b:7e:a8:fd:36:3a:e6:10:c1:07:3b:fc:49:a7: 89:14:6b:dd:1a:2c:26:28:6e:f9:73:1e:f3:03:3c: 09:e9:48:23:d4:50:39:c3:7d:fb:b8:01:bd:10:07: 21:ec:e1:45:c2:a3:fe:4f:94:8d:57:57:a6:fc:a2: cd:c9:11:28:a3:ad:1b:d1:51:23:e3:3e:ed:10:3f: 1e:55:e1:0e:9b:51:98:7c:ef:d1:bf:4b:3b:75:ee: 20:d9:d0:eb:b8:89:60:7d:3b:07:7f:5e:e9:d1:69: 61:0d:7c:07:18:b9:d1:de:1f:bf:dd:5f:6c:39:a7: 8e:86:97:eb:10:c8:44:cc:ad:ca:c9:4e:28:23:f7: 9d:a6:04:e7:fa:5c:64:b6:4f:8e:5b:64:54:cd:09: e7:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:CF:52:E7:95:7C:7F:4A:55:D3:89:FC:39:11:FA:39:9B:54:43:F6 X509v3 Authority Key Identifier: keyid:AE:BA:19:B6:FC:C1:D2:1A:E7:13:17:70:E7:B1:DA:3E:14:75:EC:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:0b:a6:1a:db:1c:35:ff:75:d7:e1:73:8b:46:21:a9:4a:8f: 9f:82:d1:a8:92:bf:9b:c5:62:d7:1b:f5:c6:15:ea:d3:34:42: de:16:a5:e1:be:41:f6:d2:eb:95:80:1c:85:11:c5:78:9b:c2: 2b:60:20:48:9b:94:93:9e:5e:f1:d5:5e:93:58:99:5a:f1:08: 57:a9:46:34:b5:e5:76:df:de:4a:97:30:62:a7:12:2d:cc:67: 2d:fe:24:c8:6e:40:22:e0:12:f3:9b:32:e4:9a:0c:3f:52:d8: e1:12:3f:28:e3:09:1d:bb:70:4e:ba:cc:64:26:51:fb:d0:68: b7:6b:5a:b9:7c:00:28:a7:23:42:ab:5c:0f:e8:10:60:4a:2e: c9:9f:e0:4b:bc:e2:f9:b8:37:bb:b8:97:f3:76:0d:d9:3f:fc: 84:9c:59:8b:59:fa:bf:7d:c7:4f:48:8e:48:91:05:b2:7c:29: b1:f7:67:3d:59:5a:64:86:e3:5b:9e:b8:05:76:6b:af:fa:c5: 39:57:6b:ad:5d:c3:e7:17:17:14:27:bd:15:bc:24:cb:c0:40: 03:1a:c3:ab:69:14:d1:da:f5:0e:b6:33:52:65:d6:0f:3d:8f: a4:ca:2b:bf:df:3d:32:b1:66:05:1c:be:e2:7d:70:72:ea:ff: a6:80:d6:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU3REIxMTAvBgNVBAUTKEFFQkExOUI2RkNDMUQyMUFFNzEzMTc3MEU3QjFEQTNF MTQ3NUVDOTAwHhcNMjQwNTE4MjAyMTE5WhcNMjQwNTI1MjAyMTE5WjAYMRYwFAYD VQQDEw02NjQ5MGRiZi0yOTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbhoWB3IbWCO03CsH8NTlY+nDPTst0XbISJZ/9citL5ZKmkfynfXf9464zLv BWlHx2bp5meLlp46hOZdxuQ50xfZiEMVswG0DMpVJoTRsXbKVF0Jv87jUNRZySQk r0xhetwtno7y9ewMG36o/TY65hDBBzv8SaeJFGvdGiwmKG75cx7zAzwJ6Ugj1FA5 w337uAG9EAch7OFFwqP+T5SNV1em/KLNyREoo60b0VEj4z7tED8eVeEOm1GYfO/R v0s7de4g2dDruIlgfTsHf17p0WlhDXwHGLnR3h+/3V9sOaeOhpfrEMhEzK3KyU4o I/edpgTn+lxktk+OW2RUzQnnKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEjPUueV fH9KVdOJ/DkR+jmbVEP2MB8GA1UdIwQYMBaAFK66Gbb8wdIa5xMXcOex2j4UdeyQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTdEQi9COTUxRTI4QzNE Q0ExMUVBODFCOUQzNTJDNEY5QUUwMi9ycm9adHZ6QjBocm5FeGR3NTdIYVBoUjE3 SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jyb1p0dnpCMGhybkV4ZHc1N0hhUGhSMTdKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTdEQi9COTUxRTI4QzNEQ0ExMUVBODFCOUQzNTJDNEY5QUUwMi9ycm9adHZ6QjBo cm5FeGR3NTdIYVBoUjE3SkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+C6Ya2xw1/3XX4XOLRiGpSo+fgtGokr+bxWLXG/XGFerTNELeFqXh vkH20uuVgByFEcV4m8IrYCBIm5STnl7x1V6TWJla8QhXqUY0teV2395KlzBipxIt zGct/iTIbkAi4BLzmzLkmgw/UtjhEj8o4wkdu3BOusxkJlH70Gi3a1q5fAAopyNC q1wP6BBgSi7Jn+BLvOL5uDe7uJfzdg3ZP/yEnFmLWfq/fcdPSI5IkQWyfCmx92c9 WVpkhuNbnrgFdmuv+sU5V2utXcPnFxcUJ70VvCTLwEADGsOraRTR2vUOtjNSZdYP PY+kyiu/3z0ysWYFHL7ifXBy6v+mgNb7 -----END CERTIFICATE-----Generated at Sat May 18 21:31:32 2024 by rpki-client on console-ams.rpki-client.org