$ rpki-client -vvf rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft File: TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft (raw, json) Hash identifier: ezeQDDKGHLzSq0UH95QDk9b7neeHVG3XyPXqsFFtJtA= Subject key identifier: F0:E2:4D:D4:89:B2:A1:99:C9:1B:BF:FC:BB:1A:BA:6E:F8:02:2F:6B Authority key identifier: 4C:EE:EE:6D:36:63:C1:3F:D8:2E:93:1D:AC:69:F1:70:46:FC:99:B3 Certificate issuer: /CN=A914D271/serialNumber=4CEEEE6D3663C13FD82E931DAC69F17046FC99B3 Certificate serial: AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft Manifest number: AC Signing time: Fri 17 May 2024 06:45:26 +0000 Manifest this update: Fri 17 May 2024 06:45:26 +0000 Manifest next update: Fri 24 May 2024 06:45:26 +0000 Files and hashes: 1: TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl (hash: TXQvDsNo6kCAfQf8jF50yQPaDwvOcH5N5fcErdxxAZ8=) 2: 5EAB725014A211EEA889E832C4F9AE02.roa (hash: N9v1fXpAWQUpJZbuaCy/aYTK4l+eZ+kCyMuepJ8AyXI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 06:45:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 175 (0xaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D271/serialNumber=4CEEEE6D3663C13FD82E931DAC69F17046FC99B3 Validity Not Before: May 17 06:45:26 2024 GMT Not After : May 24 06:45:26 2024 GMT Subject: CN=6646fd06-54c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e4:04:a6:0f:86:2f:45:04:cd:4e:1f:8a:87: 8b:82:54:ce:16:45:47:09:5b:8d:56:27:23:0d:e0: 19:fa:2d:83:7a:1b:a2:26:6e:4c:39:4b:80:aa:94: 71:b1:f6:2c:55:fe:ca:88:ce:ea:32:35:20:f4:ce: 7f:98:60:96:02:be:db:ee:84:b1:03:5a:15:45:99: 83:c3:c6:21:d9:bd:5f:c2:27:a6:95:21:63:7f:74: aa:4f:ee:ee:ff:c6:84:75:12:01:68:e4:ce:cb:85: 54:2e:20:f2:d8:b2:06:c7:f6:e1:0a:f3:1d:6c:c5: f8:39:1a:cd:54:af:7b:e7:c8:e4:5a:c8:8a:4f:64: 3b:89:b6:ee:c6:0d:31:1d:e3:ec:d1:19:fa:dc:d0: 69:38:8f:c5:f4:a7:ec:3d:89:e6:00:7f:39:e6:35: 5f:c8:eb:4c:dc:4c:6e:08:89:4b:5e:92:16:aa:10: 53:83:0f:3f:0c:f6:7d:42:ce:01:74:d4:a7:13:ae: 6f:54:c2:4c:dc:f7:40:fc:2f:6a:eb:47:3d:a7:96: 75:1f:21:3f:62:18:f8:5c:bd:73:b7:71:7c:34:a3: 12:8d:97:a9:81:ff:fb:08:a0:58:06:34:20:db:41: f8:ca:fa:9b:3a:b0:93:3f:62:fd:7d:5e:9f:b6:4c: 36:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:E2:4D:D4:89:B2:A1:99:C9:1B:BF:FC:BB:1A:BA:6E:F8:02:2F:6B X509v3 Authority Key Identifier: keyid:4C:EE:EE:6D:36:63:C1:3F:D8:2E:93:1D:AC:69:F1:70:46:FC:99:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:fc:63:01:c9:07:7c:5b:1a:74:8d:38:c3:4a:f5:3e:77:24: 63:6a:be:69:11:9a:ff:b2:95:ee:a9:f6:57:23:87:70:6d:fc: 84:e5:6e:3f:8c:7f:30:3a:32:99:cd:80:7a:d2:cd:a0:6e:46: 9f:57:89:05:44:19:0b:9f:14:56:99:0e:3d:fd:ad:8d:84:81: 6c:8b:8c:c5:de:5c:74:ad:6c:72:1a:fa:3e:fc:d1:b9:eb:21: 9f:c4:59:8c:3f:02:3b:89:7f:d8:b4:65:4b:0f:b2:ed:d3:9a: fc:95:84:30:71:89:4e:d8:66:cf:77:ab:6d:e0:77:6b:3a:52: 43:8a:8a:17:97:a2:71:81:b2:dc:59:3c:da:3f:ae:de:8b:bc: ec:f0:ce:b2:0d:19:c2:8b:0d:c1:91:a2:0e:cc:08:3d:ee:83: f4:fe:fb:1f:04:eb:fb:90:0e:2b:6d:41:e1:83:e5:df:ba:50: b2:6b:7d:5a:71:42:a9:f6:b9:89:d1:49:24:26:cf:fd:d1:d0: 38:e4:1c:68:d5:4a:26:cd:31:af:e5:35:d7:be:66:1b:d6:05: bd:64:27:fd:a9:93:84:09:1d:c1:5b:ef:29:25:0a:b6:61:d2: 5f:1c:4b:eb:49:8e:36:0c:ea:a9:01:5c:22:c9:c9:c0:85:b7: 2a:e1:62:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQyNzExMTAvBgNVBAUTKDRDRUVFRTZEMzY2M0MxM0ZEODJFOTMxREFDNjlGMTcw NDZGQzk5QjMwHhcNMjQwNTE3MDY0NTI2WhcNMjQwNTI0MDY0NTI2WjAYMRYwFAYD VQQDEw02NjQ2ZmQwNi01NGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOQEpg+GL0UEzU4fioeLglTOFkVHCVuNVicjDeAZ+i2DehuiJm5MOUuAqpRx sfYsVf7KiM7qMjUg9M5/mGCWAr7b7oSxA1oVRZmDw8Yh2b1fwiemlSFjf3SqT+7u /8aEdRIBaOTOy4VULiDy2LIGx/bhCvMdbMX4ORrNVK9758jkWsiKT2Q7ibbuxg0x HePs0Rn63NBpOI/F9KfsPYnmAH855jVfyOtM3ExuCIlLXpIWqhBTgw8/DPZ9Qs4B dNSnE65vVMJM3PdA/C9q60c9p5Z1HyE/Yhj4XL1zt3F8NKMSjZepgf/7CKBYBjQg 20H4yvqbOrCTP2L9fV6ftkw2mwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPDiTdSJ sqGZyRu//Lsaum74Ai9rMB8GA1UdIwQYMBaAFEzu7m02Y8E/2C6THaxp8XBG/Jmz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDI3MS8yODE0RjBERTEx QjExMUVFOTA0N0JGMThDNEY5QUUwMi9UTzd1YlRaandUX1lMcE1kckdueGNFYjht Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RPN3ViVFpqd1RfWUxwTWRyR254Y0ViOG1iTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDI3MS8yODE0RjBERTExQjExMUVFOTA0N0JGMThDNEY5QUUwMi9UTzd1YlRaandU X1lMcE1kckdueGNFYjhtYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAx/GMByQd8Wxp0jTjDSvU+dyRjar5pEZr/spXuqfZXI4dwbfyE5W4/ jH8wOjKZzYB60s2gbkafV4kFRBkLnxRWmQ49/a2NhIFsi4zF3lx0rWxyGvo+/NG5 6yGfxFmMPwI7iX/YtGVLD7Lt05r8lYQwcYlO2GbPd6tt4HdrOlJDiooXl6JxgbLc WTzaP67ei7zs8M6yDRnCiw3BkaIOzAg97oP0/vsfBOv7kA4rbUHhg+XfulCya31a cUKp9rmJ0UkkJs/90dA45Bxo1UomzTGv5TXXvmYb1gW9ZCf9qZOECR3BW+8pJQq2 YdJfHEvrSY42DOqpAVwiycnAhbcq4WKW -----END CERTIFICATE-----Generated at Fri May 17 08:52:47 2024 by rpki-client on console-ams.rpki-client.org