$ rpki-client -vvf rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft File: cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft (raw, json) Hash identifier: 5arRaChhY3q12ZGkNAcl6giLEkW/hDwjOD28/OLbRAg= Subject key identifier: 3F:4F:B5:1B:B1:C7:0A:AE:1E:39:98:F2:5D:44:B5:A6:CB:5F:16:D4 Authority key identifier: 71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0 Certificate issuer: /CN=A91238D6/serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0 Certificate serial: 219E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft Manifest number: 216E Signing time: Sat 04 May 2024 16:16:45 +0000 Manifest this update: Sat 04 May 2024 16:16:45 +0000 Manifest next update: Sat 11 May 2024 16:16:45 +0000 Files and hashes: 1: cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl (hash: MRcHiJkSP7MUVNy9JRz+4M638BWOHy9sqLfljDWZwzQ=) 2: BB62FBD82AEC11EA972CB627C4F9AE02.roa (hash: LsnjeTUuxOLKtM5budZzebjO2SOXU+50cZfWesTYy6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 16:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8606 (0x219e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91238D6/serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0 Validity Not Before: May 4 16:16:45 2024 GMT Not After : May 11 16:16:45 2024 GMT Subject: CN=66365f6d-a23a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:88:08:f7:be:62:68:4c:d0:0e:7b:ee:66:98: 14:14:8d:73:91:d4:1e:f0:0f:ec:75:31:ea:1c:db: 91:47:58:60:90:df:13:69:f5:77:07:97:e0:f3:13: 9a:b9:0b:03:74:e4:df:54:11:64:d5:1d:57:b8:09: 37:1e:b1:94:72:f9:28:fc:c5:1a:ad:4f:e6:e4:41: 3d:9b:42:5f:ac:6c:43:49:43:98:cb:0e:bb:7b:e9: 2f:bf:d2:29:09:96:ef:10:d5:5c:e1:b4:cf:fd:fe: 57:67:a2:05:e2:49:f1:72:0f:4e:6c:4d:e6:13:c0: f3:f4:e7:02:84:cf:2c:88:22:82:f2:1a:36:54:d5: 8b:a8:b3:52:8f:fc:de:4d:99:89:16:5e:9b:90:0a: cf:3d:83:6c:7f:8f:fc:d7:28:56:82:a6:e0:b0:67: 43:af:ee:a0:c9:7e:6c:b3:c2:1f:da:ed:5c:1f:cc: 29:a5:bc:7b:cf:63:36:28:1d:b1:11:ba:00:c2:4d: 43:7f:7f:27:1e:08:a9:ee:a1:f3:4b:70:c9:88:88: f8:8a:ec:14:62:92:1b:44:0f:17:af:57:01:0b:f1: 68:c3:b5:40:b6:42:37:e8:da:cc:47:12:84:59:d8: 36:45:fa:8b:5a:69:7a:cb:56:55:dd:c5:6e:a6:b1: 95:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:4F:B5:1B:B1:C7:0A:AE:1E:39:98:F2:5D:44:B5:A6:CB:5F:16:D4 X509v3 Authority Key Identifier: keyid:71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:2e:b7:e6:03:1e:5c:30:17:26:3d:ef:53:82:52:82:88:d0: e3:bc:bc:a2:0d:95:f6:be:c2:34:3d:5a:c1:f2:bd:66:98:7b: 43:e5:7f:3b:8e:99:17:cb:f8:2b:8d:51:04:66:d9:f2:54:6a: cf:00:b5:4b:99:2a:8f:15:34:cc:94:c3:1e:a8:2f:6f:e1:ca: 59:81:b7:a7:ba:27:86:ba:a9:77:2a:3b:37:9c:21:77:2b:00: 61:48:b1:ab:10:fc:b5:2b:c7:2d:ea:87:ba:eb:51:db:6b:91: db:70:32:d9:8e:07:50:13:17:4e:3c:dd:b5:d4:92:54:95:91: fc:c3:7d:17:1a:72:70:ce:90:c6:81:37:61:56:34:4a:18:81: d7:8c:ad:07:4c:b8:7a:d8:ab:88:f5:c9:f2:83:2a:f2:a5:09: f7:50:77:12:02:e5:c8:ac:24:84:2d:7f:8c:8d:ae:a1:0c:20: 41:76:9d:73:56:d5:d6:43:f6:6f:b7:e3:09:89:ff:0d:d3:f6: 83:75:e6:73:8f:74:6f:ff:c2:8c:35:25:17:04:60:87:d1:6e: 86:f2:06:d7:47:70:86:cd:ea:ba:11:09:48:03:1c:39:2a:07: 2f:ee:b1:d5:c2:a1:d1:ef:79:ee:3a:e2:8c:7a:96:ea:0b:ce: fd:9a:a0:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4RDYxMTAvBgNVBAUTKDcxNEJBMjhERDgzNUE3RDQxOTcwMUZBRDM3MkEzNEI3 QzY2Q0ZBQTAwHhcNMjQwNTA0MTYxNjQ1WhcNMjQwNTExMTYxNjQ1WjAYMRYwFAYD VQQDEw02NjM2NWY2ZC1hMjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuYgI975iaEzQDnvuZpgUFI1zkdQe8A/sdTHqHNuRR1hgkN8TafV3B5fg8xOa uQsDdOTfVBFk1R1XuAk3HrGUcvko/MUarU/m5EE9m0JfrGxDSUOYyw67e+kvv9Ip CZbvENVc4bTP/f5XZ6IF4knxcg9ObE3mE8Dz9OcChM8siCKC8ho2VNWLqLNSj/ze TZmJFl6bkArPPYNsf4/81yhWgqbgsGdDr+6gyX5ss8If2u1cH8wppbx7z2M2KB2x EboAwk1Df38nHgip7qHzS3DJiIj4iuwUYpIbRA8Xr1cBC/Fow7VAtkI36NrMRxKE Wdg2RfqLWml6y1ZV3cVuprGVxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD9PtRux xwquHjmY8l1EtabLXxbUMB8GA1UdIwQYMBaAFHFLoo3YNafUGXAfrTcqNLfGbPqg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzhENi8yODk5MDUzMEJF NTQxMUU1OERDQzQzNTdDNEY5QUUwMi9jVXVpamRnMXA5UVpjQi10TnlvMHQ4WnMt cUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NVdWlqZGcxcDlRWmNCLXROeW8wdDhacy1xQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzhENi8yODk5MDUzMEJFNTQxMUU1OERDQzQzNTdDNEY5QUUwMi9jVXVpamRnMXA5 UVpjQi10TnlvMHQ4WnMtcUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFLrfmAx5cMBcmPe9TglKCiNDjvLyiDZX2vsI0PVrB8r1mmHtD5X87 jpkXy/grjVEEZtnyVGrPALVLmSqPFTTMlMMeqC9v4cpZgbenuieGuql3Kjs3nCF3 KwBhSLGrEPy1K8ct6oe661Hba5HbcDLZjgdQExdOPN211JJUlZH8w30XGnJwzpDG gTdhVjRKGIHXjK0HTLh62KuI9cnygyrypQn3UHcSAuXIrCSELX+Mja6hDCBBdp1z VtXWQ/Zvt+MJif8N0/aDdeZzj3Rv/8KMNSUXBGCH0W6G8gbXR3CGzeq6EQlIAxw5 Kgcv7rHVwqHR73nuOuKMepbqC879mqCy -----END CERTIFICATE-----Generated at Sat May 4 17:44:37 2024 by rpki-client on console-ams.rpki-client.org