$ rpki-client -vvf rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft File: tnwkXksr7q0jwfBd0w_5B32HuOY.mft (raw, json) Hash identifier: PVqMesgCzoZ34wwE0C5mHbvl9fu36Qg6lvfQFE9P6ZM= Subject key identifier: A9:EF:1C:25:55:8A:25:A8:D8:7A:1D:95:69:53:B6:DC:71:8E:D8:BA Authority key identifier: B6:7C:24:5E:4B:2B:EE:AD:23:C1:F0:5D:D3:0F:F9:07:7D:87:B8:E6 Certificate issuer: /CN=A91116C7/serialNumber=B67C245E4B2BEEAD23C1F05DD30FF9077D87B8E6 Certificate serial: 11D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft Manifest number: 11CA Signing time: Sat 04 May 2024 17:52:26 +0000 Manifest this update: Sat 04 May 2024 17:52:26 +0000 Manifest next update: Sat 11 May 2024 17:52:26 +0000 Files and hashes: 1: tnwkXksr7q0jwfBd0w_5B32HuOY.crl (hash: oKWqyzJZOp835aPF7BGP8SvOepSu57vQQIImbgoSZa0=) 2: 0CAF01A6C6C811E8AECD6165C4F9AE02.roa (hash: U5orWrmpKJgxXY35oZM7izfy/QA51Cr/03RTHm+0ZYA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.crl rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:52:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4560 (0x11d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91116C7/serialNumber=B67C245E4B2BEEAD23C1F05DD30FF9077D87B8E6 Validity Not Before: May 4 17:52:26 2024 GMT Not After : May 11 17:52:26 2024 GMT Subject: CN=663675da-8510 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:20:79:4e:a6:ee:ec:50:5c:71:d7:00:06:b0: 1b:d7:38:1a:a9:2c:b4:1e:d9:19:f1:64:a1:ea:61: a6:05:d0:44:dd:8a:31:81:c6:4e:4d:c5:d8:7f:91: 8d:40:43:ad:b3:bd:ec:83:57:5b:03:41:2e:74:34: f0:60:c3:bc:90:54:5b:26:30:56:49:fd:04:02:c8: 30:9f:55:2c:22:da:e0:5a:7d:32:41:5b:24:a8:88: b8:a1:fc:eb:c3:d9:5a:ff:01:8b:ca:1d:b7:29:2e: da:56:ed:d7:b6:45:db:56:00:fa:3f:c1:f7:6e:a8: a6:a3:35:25:57:f3:3d:0a:b0:95:ad:7e:2f:5a:16: 94:32:ec:fa:88:06:1a:15:ed:a9:58:ac:39:a9:08: 1f:c6:c9:a8:0c:b9:fc:9c:96:44:9d:27:40:03:89: c8:d2:a8:6e:52:6f:7c:f4:0e:6e:db:60:be:f7:6a: 3b:8a:5c:96:47:69:f7:ff:49:b0:b2:42:0a:86:87: 47:da:3d:9f:08:d2:ee:70:b2:c0:a2:63:0c:30:00: 92:ad:6d:d4:78:ef:8c:2d:64:53:e4:c7:1e:e8:79: 8f:4f:d3:92:e6:07:19:ef:7b:f4:0f:ee:9a:f2:e6: bd:78:58:9d:9c:b9:46:56:9d:49:87:89:80:5d:92: b6:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:EF:1C:25:55:8A:25:A8:D8:7A:1D:95:69:53:B6:DC:71:8E:D8:BA X509v3 Authority Key Identifier: keyid:B6:7C:24:5E:4B:2B:EE:AD:23:C1:F0:5D:D3:0F:F9:07:7D:87:B8:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:7c:83:94:18:a9:f2:9d:9e:4a:65:89:18:bd:3c:60:64:1b: 67:4a:d1:b1:1d:df:93:97:8e:65:a1:46:74:33:6c:20:fe:cb: 2a:ab:9a:6e:33:f2:4b:2f:be:75:ff:49:3c:67:c3:36:21:e3: 22:33:29:e4:76:cb:30:a5:f1:ba:88:c5:ae:c5:15:2a:4e:08: a6:1c:0b:b4:09:f5:ac:49:d7:ea:a9:c1:f1:d3:3c:26:f4:1a: d6:8e:ae:e3:55:08:bb:69:f6:c6:83:86:56:b5:9b:b4:b4:33: 40:ce:30:21:ec:27:02:fa:d5:d4:55:4c:8c:95:5d:62:e6:13: 7d:98:4b:12:d7:e4:0b:6e:dc:88:c6:d9:cc:8b:3b:bf:04:ce: bc:0e:ef:9d:4a:4d:03:ff:cd:cc:9f:3e:23:78:e2:cf:03:7f: 3c:6a:4f:cd:ba:52:c4:d0:ed:48:a4:e0:7c:cb:92:22:64:ef: 65:de:12:91:59:0d:4d:a9:6b:9f:c3:53:f7:b1:d5:b0:7c:c7: 8e:d6:59:c0:69:c5:98:fc:d2:ac:68:cd:9d:e9:9b:04:af:4a: 3c:10:0a:0f:64:3c:a4:73:51:dc:93:a8:30:0f:2b:75:91:fe: b5:9b:ab:da:b9:0c:0d:89:13:9a:2b:d1:90:de:1d:17:8c:9a: 17:d4:74:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE2QzcxMTAvBgNVBAUTKEI2N0MyNDVFNEIyQkVFQUQyM0MxRjA1REQzMEZGOTA3 N0Q4N0I4RTYwHhcNMjQwNTA0MTc1MjI2WhcNMjQwNTExMTc1MjI2WjAYMRYwFAYD VQQDEw02NjM2NzVkYS04NTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5iB5Tqbu7FBccdcABrAb1zgaqSy0HtkZ8WSh6mGmBdBE3YoxgcZOTcXYf5GN QEOts73sg1dbA0EudDTwYMO8kFRbJjBWSf0EAsgwn1UsItrgWn0yQVskqIi4ofzr w9la/wGLyh23KS7aVu3XtkXbVgD6P8H3bqimozUlV/M9CrCVrX4vWhaUMuz6iAYa Fe2pWKw5qQgfxsmoDLn8nJZEnSdAA4nI0qhuUm989A5u22C+92o7ilyWR2n3/0mw skIKhodH2j2fCNLucLLAomMMMACSrW3UeO+MLWRT5Mce6HmPT9OS5gcZ73v0D+6a 8ua9eFidnLlGVp1Jh4mAXZK2ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKnvHCVV iiWo2HodlWlTttxxjti6MB8GA1UdIwQYMBaAFLZ8JF5LK+6tI8HwXdMP+Qd9h7jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTZDNy9DODU2RDZDNEM2 QzYxMUU4ODJBNDEyNjBDNEY5QUUwMi90bndrWGtzcjdxMGp3ZkJkMHdfNUIzMkh1 T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rud2tYa3NyN3EwandmQmQwd181QjMySHVPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTZDNy9DODU2RDZDNEM2QzYxMUU4ODJBNDEyNjBDNEY5QUUwMi90bndrWGtzcjdx MGp3ZkJkMHdfNUIzMkh1T1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2fIOUGKnynZ5KZYkYvTxgZBtnStGxHd+Tl45loUZ0M2wg/ssqq5pu M/JLL751/0k8Z8M2IeMiMynkdsswpfG6iMWuxRUqTgimHAu0CfWsSdfqqcHx0zwm 9BrWjq7jVQi7afbGg4ZWtZu0tDNAzjAh7CcC+tXUVUyMlV1i5hN9mEsS1+QLbtyI xtnMizu/BM68Du+dSk0D/83Mnz4jeOLPA388ak/NulLE0O1IpOB8y5IiZO9l3hKR WQ1NqWufw1P3sdWwfMeO1lnAacWY/NKsaM2d6ZsEr0o8EAoPZDykc1Hck6gwDyt1 kf61m6vauQwNiROaK9GQ3h0XjJoX1HQs -----END CERTIFICATE-----Generated at Sat May 4 20:37:04 2024 by rpki-client on console-fra.rpki-client.org