$ rpki-client -vvf rpki.apnic.net/member_repository/A91178F4/BF0A1E9AF0B611EDA882E628C4F9AE02/tIPaBfgQj61WuWetrdJRxslpwlI.mft File: tIPaBfgQj61WuWetrdJRxslpwlI.mft (raw, json) Hash identifier: V7ps+cwzbe3ES1zRDXsIRaxIP9wb8yF6yqot+/dauqg= Subject key identifier: 5E:8D:5E:33:40:57:5F:B4:6D:9F:E1:53:F8:DD:53:73:DA:3D:98:92 Authority key identifier: B4:83:DA:05:F8:10:8F:AD:56:B9:67:AD:AD:D2:51:C6:C9:69:C2:52 Certificate issuer: /CN=A91178F4/serialNumber=B483DA05F8108FAD56B967ADADD251C6C969C252 Certificate serial: BD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIPaBfgQj61WuWetrdJRxslpwlI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91178F4/BF0A1E9AF0B611EDA882E628C4F9AE02/tIPaBfgQj61WuWetrdJRxslpwlI.mft Manifest number: BD Signing time: Sat 04 May 2024 20:11:53 +0000 Manifest this update: Sat 04 May 2024 20:11:53 +0000 Manifest next update: Sat 11 May 2024 20:11:53 +0000 Files and hashes: 1: tIPaBfgQj61WuWetrdJRxslpwlI.crl (hash: HR0bVx8i9sII761BwO2YzfXyJQp3VCciSg+Dt1mdZKA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91178F4/BF0A1E9AF0B611EDA882E628C4F9AE02/tIPaBfgQj61WuWetrdJRxslpwlI.crl rsync://rpki.apnic.net/member_repository/A91178F4/BF0A1E9AF0B611EDA882E628C4F9AE02/tIPaBfgQj61WuWetrdJRxslpwlI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIPaBfgQj61WuWetrdJRxslpwlI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91178F4/serialNumber=B483DA05F8108FAD56B967ADADD251C6C969C252 Validity Not Before: May 4 20:11:53 2024 GMT Not After : May 11 20:11:53 2024 GMT Subject: CN=66369689-a20a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a2:34:0d:56:f2:c7:fd:36:2d:23:fa:26:e6: 9d:00:fc:9b:9a:cb:32:cb:92:cc:7b:ce:0d:90:71: bd:4e:67:6b:1e:e2:ac:87:58:05:78:6e:32:e1:94: 69:aa:ff:9c:37:d4:eb:74:8d:9d:a6:99:c1:f4:3b: 04:c7:28:3f:48:9f:b7:0e:11:b4:9d:72:da:75:24: 89:1e:e1:65:33:86:0f:7d:c1:0f:cc:52:24:a9:ec: b6:56:e5:7d:84:68:90:64:32:a5:12:84:1c:33:95: 8b:ec:c7:f3:7c:3f:ad:75:c4:44:1a:7b:15:0e:22: ef:6b:48:37:42:b5:cc:3b:9b:1d:17:72:45:b3:85: f3:c6:50:df:e8:25:8c:b4:aa:bf:cf:98:b6:10:93: b1:83:81:16:60:83:6e:cc:03:70:50:2f:0e:4f:2c: 80:3e:ee:7e:f6:5c:c3:e6:4d:f4:ca:29:47:10:87: 78:fd:6e:e8:ce:e0:07:23:96:73:51:f3:60:b8:4a: 23:e3:64:0f:d3:5a:6e:e7:45:9c:cd:6d:48:f9:72: be:fe:4b:ad:43:ce:7f:d1:9f:f9:e2:f4:0f:34:7b: 25:c9:bf:67:15:2f:83:57:7c:0c:e4:a8:94:c9:62: 5e:15:b8:88:19:97:86:12:e4:85:4c:3c:c9:c1:7e: 9f:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:8D:5E:33:40:57:5F:B4:6D:9F:E1:53:F8:DD:53:73:DA:3D:98:92 X509v3 Authority Key Identifier: keyid:B4:83:DA:05:F8:10:8F:AD:56:B9:67:AD:AD:D2:51:C6:C9:69:C2:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91178F4/BF0A1E9AF0B611EDA882E628C4F9AE02/tIPaBfgQj61WuWetrdJRxslpwlI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIPaBfgQj61WuWetrdJRxslpwlI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91178F4/BF0A1E9AF0B611EDA882E628C4F9AE02/tIPaBfgQj61WuWetrdJRxslpwlI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:94:3d:75:38:76:9b:8e:11:7a:ef:f4:9b:8f:2c:2e:6f:7d: aa:b7:a5:8a:55:16:c8:e5:8d:c5:e0:0b:e7:74:17:54:b9:05: b2:ed:5f:bb:3c:6e:60:76:68:9b:b9:5c:bf:71:ef:72:2a:bb: 15:91:4d:3c:20:65:e1:3d:90:b6:8d:66:dc:9e:61:6e:ec:90: 90:d0:82:d8:30:fa:cc:0a:ca:01:e1:8a:09:95:eb:45:c7:c6: 28:c2:2e:78:38:d9:e6:4a:02:ad:79:31:e0:eb:92:9e:3e:a3: 52:f6:d5:4f:6b:5d:e7:d7:cb:db:46:ae:ae:a8:52:33:71:2b: 1b:1a:43:a8:f2:ff:ae:de:11:7e:55:1a:de:32:f1:36:a1:fd: 4b:07:64:47:bd:6e:09:0c:c4:7c:a8:12:ce:f9:2f:e4:f2:1d: c7:2f:77:42:3a:ac:a1:05:02:6f:db:68:9f:d4:40:b3:64:0f: e9:fc:1f:32:1d:a2:70:bd:8c:3e:bb:1a:9c:ff:dc:e6:5d:86: c8:ff:0c:1b:f0:42:63:a3:4a:1a:a8:7f:f8:16:49:d5:78:30: ca:55:9e:96:bd:98:90:fe:e9:72:51:da:1a:6e:01:1d:4e:ba: 1a:81:38:b0:b0:d0:0e:e1:13:50:4c:c8:dd:11:7a:bd:a8:77: dc:50:1e:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc4RjQxMTAvBgNVBAUTKEI0ODNEQTA1RjgxMDhGQUQ1NkI5NjdBREFERDI1MUM2 Qzk2OUMyNTIwHhcNMjQwNTA0MjAxMTUzWhcNMjQwNTExMjAxMTUzWjAYMRYwFAYD VQQDEw02NjM2OTY4OS1hMjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw6I0DVbyx/02LSP6JuadAPybmssyy5LMe84NkHG9TmdrHuKsh1gFeG4y4ZRp qv+cN9TrdI2dppnB9DsExyg/SJ+3DhG0nXLadSSJHuFlM4YPfcEPzFIkqey2VuV9 hGiQZDKlEoQcM5WL7MfzfD+tdcREGnsVDiLva0g3QrXMO5sdF3JFs4XzxlDf6CWM tKq/z5i2EJOxg4EWYINuzANwUC8OTyyAPu5+9lzD5k30yilHEId4/W7ozuAHI5Zz UfNguEoj42QP01pu50WczW1I+XK+/kutQ85/0Z/54vQPNHslyb9nFS+DV3wM5KiU yWJeFbiIGZeGEuSFTDzJwX6fkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF6NXjNA V1+0bZ/hU/jdU3PaPZiSMB8GA1UdIwQYMBaAFLSD2gX4EI+tVrlnra3SUcbJacJS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzhGNC9CRjBBMUU5QUYw QjYxMUVEQTg4MkU2MjhDNEY5QUUwMi90SVBhQmZnUWo2MVd1V2V0cmRKUnhzbHB3 bEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RJUGFCZmdRajYxV3VXZXRyZEpSeHNscHdsSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzhGNC9CRjBBMUU5QUYwQjYxMUVEQTg4MkU2MjhDNEY5QUUwMi90SVBhQmZnUWo2 MVd1V2V0cmRKUnhzbHB3bEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7lD11OHabjhF67/Sbjywub32qt6WKVRbI5Y3F4AvndBdUuQWy7V+7 PG5gdmibuVy/ce9yKrsVkU08IGXhPZC2jWbcnmFu7JCQ0ILYMPrMCsoB4YoJletF x8Yowi54ONnmSgKteTHg65KePqNS9tVPa13n18vbRq6uqFIzcSsbGkOo8v+u3hF+ VRreMvE2of1LB2RHvW4JDMR8qBLO+S/k8h3HL3dCOqyhBQJv22if1ECzZA/p/B8y HaJwvYw+uxqc/9zmXYbI/wwb8EJjo0oaqH/4FknVeDDKVZ6WvZiQ/ulyUdoabgEd TroagTiwsNAO4RNQTMjdEXq9qHfcUB6I -----END CERTIFICATE-----Generated at Sat May 4 21:19:27 2024 by rpki-client on console-ams.rpki-client.org