$ rpki-client -vvf rpki.apnic.net/member_repository/A91515BC/164D92B2C47111EDA9C5CB60C4F9AE02/TKiQNnsepJ68-UAshiANzXRGtsA.mft File: TKiQNnsepJ68-UAshiANzXRGtsA.mft (raw, json) Hash identifier: 2r3Bhba4RdMoI0CtY0og/hJ4BLRjshX0gWs0/B5NmHE= Subject key identifier: F9:97:C9:C6:5F:02:65:5D:75:35:49:11:D6:2C:C4:C5:2D:1F:66:DE Authority key identifier: 4C:A8:90:36:7B:1E:A4:9E:BC:F9:40:2C:86:20:0D:CD:74:46:B6:C0 Certificate issuer: /CN=A91515BC/serialNumber=4CA890367B1EA49EBCF9402C86200DCD7446B6C0 Certificate serial: D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TKiQNnsepJ68-UAshiANzXRGtsA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91515BC/164D92B2C47111EDA9C5CB60C4F9AE02/TKiQNnsepJ68-UAshiANzXRGtsA.mft Manifest number: D4 Signing time: Wed 01 May 2024 06:24:01 +0000 Manifest this update: Wed 01 May 2024 06:24:00 +0000 Manifest next update: Wed 08 May 2024 06:24:00 +0000 Files and hashes: 1: TKiQNnsepJ68-UAshiANzXRGtsA.crl (hash: yO8SWAxzc1EosGL+4I8JHv5wtHaoLPq8sXxYu5q9J9I=) 2: A87AAC50C47711EDA3EF8884C4F9AE02.roa (hash: 3lZSxx68sa9F3NpHYLHcrr8xURg2K87eDqLstUvqgio=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91515BC/164D92B2C47111EDA9C5CB60C4F9AE02/TKiQNnsepJ68-UAshiANzXRGtsA.crl rsync://rpki.apnic.net/member_repository/A91515BC/164D92B2C47111EDA9C5CB60C4F9AE02/TKiQNnsepJ68-UAshiANzXRGtsA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TKiQNnsepJ68-UAshiANzXRGtsA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 06:24:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91515BC/serialNumber=4CA890367B1EA49EBCF9402C86200DCD7446B6C0 Validity Not Before: May 1 06:24:00 2024 GMT Not After : May 8 06:24:00 2024 GMT Subject: CN=6631e001-0923 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:ff:73:57:b4:0b:13:ea:c0:6b:fc:d4:3c:1d: b6:e2:f5:34:28:a5:f6:5b:08:b8:b0:65:3f:83:90: d7:c2:76:d1:1a:08:7c:6c:0b:cc:3e:f4:7e:d7:9d: 95:c1:eb:e7:1f:12:a5:73:ca:4d:4f:5e:2e:c9:fa: 95:a0:36:6f:fd:fc:51:f2:e8:f5:1b:a6:c1:df:56: c0:08:f5:de:37:b3:df:e5:32:24:9d:72:4e:fa:04: bc:56:86:82:5d:4f:1d:ad:4b:fc:19:95:75:42:f5: a3:21:a0:03:ef:ba:fc:96:b5:6d:1a:d3:45:a9:63: 41:ae:99:6a:98:f3:c7:d1:cb:25:17:6a:ef:5f:45: 0b:88:b9:db:72:d5:a0:28:4e:79:23:91:fa:af:4d: 53:e8:5c:34:22:cd:92:c2:ff:9b:17:3d:3d:a1:1f: 0d:2a:16:73:00:5b:73:d7:f3:9a:ce:da:e6:0d:6a: e3:d4:34:dc:ce:d4:e2:28:71:bb:75:54:c8:8e:e2: 76:ff:61:ff:4d:b4:06:8c:60:93:67:cf:fe:48:7f: b1:68:1c:4c:15:ff:b2:e6:82:63:b6:64:59:10:22: 48:94:14:c4:49:ed:b4:bb:ab:e5:df:da:b6:9c:ad: 5d:0d:3c:47:d0:58:04:4d:d6:bc:50:1e:b7:c6:70: 86:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:97:C9:C6:5F:02:65:5D:75:35:49:11:D6:2C:C4:C5:2D:1F:66:DE X509v3 Authority Key Identifier: keyid:4C:A8:90:36:7B:1E:A4:9E:BC:F9:40:2C:86:20:0D:CD:74:46:B6:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91515BC/164D92B2C47111EDA9C5CB60C4F9AE02/TKiQNnsepJ68-UAshiANzXRGtsA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TKiQNnsepJ68-UAshiANzXRGtsA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91515BC/164D92B2C47111EDA9C5CB60C4F9AE02/TKiQNnsepJ68-UAshiANzXRGtsA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:24:61:c3:f2:2d:54:34:62:9a:9a:ee:e7:71:87:2e:26:64: 1a:a6:a0:33:e2:82:f6:b3:0c:dc:24:0e:4c:fc:a9:5b:a7:95: 99:9b:bd:44:b7:2f:e7:9a:34:86:89:ae:6d:c5:b5:7e:33:4d: 6b:4d:be:e5:45:77:65:6d:9a:84:8a:0b:97:ea:84:a9:e3:fe: 2d:0e:86:b7:29:38:7c:04:80:d7:14:86:23:13:4b:5a:00:f7: 40:9d:24:a0:1e:07:21:96:6b:9b:d7:1d:56:cc:ca:c8:7e:85: 2f:cb:5e:eb:fe:67:83:e6:b8:ab:ab:b9:48:9d:e4:ac:19:f0: c7:18:4d:28:a4:34:ed:c9:80:4b:de:2b:49:04:dd:bd:ea:15: ba:ce:5b:0f:8d:d2:74:62:b5:50:a6:c3:e7:cf:5b:3d:71:75: e7:a1:1f:d7:79:9e:94:05:11:47:79:ce:74:18:a0:e0:99:6d: fb:65:b6:21:ef:cd:51:95:da:1c:08:e6:e4:07:2f:51:84:8c: e5:2d:58:5e:48:11:51:b6:8b:5c:93:9c:30:8f:9a:a6:54:a4: 48:b2:13:df:31:a9:fd:a6:b2:58:aa:39:50:7d:d5:7a:51:3f: 35:4b:ec:d0:29:b1:67:ae:67:df:bc:e2:b5:d6:a2:06:c4:9e: 41:7a:0d:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE1QkMxMTAvBgNVBAUTKDRDQTg5MDM2N0IxRUE0OUVCQ0Y5NDAyQzg2MjAwRENE NzQ0NkI2QzAwHhcNMjQwNTAxMDYyNDAwWhcNMjQwNTA4MDYyNDAwWjAYMRYwFAYD VQQDEw02NjMxZTAwMS0wOTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5v9zV7QLE+rAa/zUPB224vU0KKX2Wwi4sGU/g5DXwnbRGgh8bAvMPvR+152V wevnHxKlc8pNT14uyfqVoDZv/fxR8uj1G6bB31bACPXeN7Pf5TIknXJO+gS8VoaC XU8drUv8GZV1QvWjIaAD77r8lrVtGtNFqWNBrplqmPPH0cslF2rvX0ULiLnbctWg KE55I5H6r01T6Fw0Is2Swv+bFz09oR8NKhZzAFtz1/OaztrmDWrj1DTcztTiKHG7 dVTIjuJ2/2H/TbQGjGCTZ8/+SH+xaBxMFf+y5oJjtmRZECJIlBTESe20u6vl39q2 nK1dDTxH0FgETda8UB63xnCGowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPmXycZf AmVddTVJEdYsxMUtH2beMB8GA1UdIwQYMBaAFEyokDZ7HqSevPlALIYgDc10RrbA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTVCQy8xNjREOTJCMkM0 NzExMUVEQTlDNUNCNjBDNEY5QUUwMi9US2lRTm5zZXBKNjgtVUFzaGlBTnpYUkd0 c0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLaVFObnNlcEo2OC1VQXNoaUFOelhSR3RzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTVCQy8xNjREOTJCMkM0NzExMUVEQTlDNUNCNjBDNEY5QUUwMi9US2lRTm5zZXBK NjgtVUFzaGlBTnpYUkd0c0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxJGHD8i1UNGKamu7ncYcuJmQapqAz4oL2swzcJA5M/Klbp5WZm71E ty/nmjSGia5txbV+M01rTb7lRXdlbZqEiguX6oSp4/4tDoa3KTh8BIDXFIYjE0ta APdAnSSgHgchlmub1x1WzMrIfoUvy17r/meD5rirq7lIneSsGfDHGE0opDTtyYBL 3itJBN296hW6zlsPjdJ0YrVQpsPnz1s9cXXnoR/XeZ6UBRFHec50GKDgmW37ZbYh 781RldocCObkBy9RhIzlLVheSBFRtotck5wwj5qmVKRIshPfMan9prJYqjlQfdV6 UT81S+zQKbFnrmffvOK11qIGxJ5Beg0v -----END CERTIFICATE-----Generated at Wed May 1 07:23:55 2024 by rpki-client on console-ams.rpki-client.org