$ rpki-client -vvf rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft File: TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft (raw, json) Hash identifier: 3lK69TH32t81E2F2PlEgYH4RYj3bE2PlaILZCoMsMt0= Subject key identifier: E4:3B:BF:E6:72:8A:56:CB:68:3A:EE:1B:B6:66:71:4C:CE:99:CB:7F Authority key identifier: 4E:44:60:CF:63:B2:4B:7C:35:B9:ED:AE:C9:7E:63:A7:2C:4B:DE:23 Certificate issuer: /CN=A915203C/serialNumber=4E4460CF63B24B7C35B9EDAEC97E63A72C4BDE23 Certificate serial: 0944 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TkRgz2OyS3w1ue2uyX5jpyxL3iM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft Manifest number: 093F Signing time: Sat 04 May 2024 21:17:17 +0000 Manifest this update: Sat 04 May 2024 21:17:16 +0000 Manifest next update: Sat 11 May 2024 21:17:16 +0000 Files and hashes: 1: TkRgz2OyS3w1ue2uyX5jpyxL3iM.crl (hash: v/NR62zu6bjHUqwQwWZKWe95Q5GTINKW1tYpqULeVuI=) 2: 4A7F0102747811EAB3C2634EC4F9AE02.roa (hash: RDZQoO0g1KufQOKM23R2MOYU6m8TY+CmgC88bimi1q4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.crl rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TkRgz2OyS3w1ue2uyX5jpyxL3iM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:17:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2372 (0x944) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915203C/serialNumber=4E4460CF63B24B7C35B9EDAEC97E63A72C4BDE23 Validity Not Before: May 4 21:17:16 2024 GMT Not After : May 11 21:17:16 2024 GMT Subject: CN=6636a5dc-4090 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f9:73:ad:d6:8f:72:e2:a9:02:58:e6:c3:b9: 84:fe:dc:e6:64:b7:e5:1e:39:bb:e5:2c:9b:ff:09: c5:f9:bc:a7:a7:9c:7e:ef:1e:7d:e4:91:62:16:64: d0:9e:9f:c9:66:77:e2:f1:bb:fa:c3:47:ea:ec:ff: 22:29:fc:12:d0:6c:d8:89:7b:e8:81:13:ae:26:d4: 94:a1:42:b4:35:47:f4:19:48:57:ba:9b:99:e3:ed: 3f:d9:ce:f3:dd:5a:5a:59:35:08:96:2b:60:60:73: 8c:7a:da:f9:ce:eb:9c:a6:6d:00:14:13:b8:36:54: 8d:f7:9b:52:40:c1:20:7c:a3:4f:79:22:e0:39:45: e5:3d:33:64:c0:52:a4:e1:45:2c:2f:aa:66:ec:49: 46:d5:57:3b:12:45:e8:c5:e0:39:50:e7:bb:a8:9c: 10:46:f9:91:e3:c2:0a:95:3f:ed:38:68:ed:17:f4: c4:bc:4f:60:c6:a5:9a:e9:ab:0b:0d:19:5f:5f:c7: 51:7e:73:23:ff:81:f9:75:9d:24:e9:43:78:fe:0a: 32:dc:94:50:35:1b:25:c4:99:45:89:57:04:d3:21: 90:46:cd:94:09:8a:ac:d6:b3:ad:f3:06:8d:ab:6d: 04:72:3e:5f:77:54:2a:96:03:6d:85:e5:85:23:f0: 3e:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:3B:BF:E6:72:8A:56:CB:68:3A:EE:1B:B6:66:71:4C:CE:99:CB:7F X509v3 Authority Key Identifier: keyid:4E:44:60:CF:63:B2:4B:7C:35:B9:ED:AE:C9:7E:63:A7:2C:4B:DE:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TkRgz2OyS3w1ue2uyX5jpyxL3iM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:58:4c:22:18:ef:a2:71:48:b1:a8:20:18:bc:1a:7c:97:12: 6d:ae:f9:e8:a5:3e:e5:db:76:9b:95:d4:18:cb:13:71:5d:67: 84:fb:1d:1f:1c:d7:a2:a0:8e:ab:45:6c:a3:a0:f5:8b:f1:dc: 13:e4:2b:1f:e0:9a:c6:af:a9:63:81:c2:af:c2:aa:a1:13:d2: be:6b:0c:80:7a:64:d4:f0:30:ac:f0:f5:6e:d2:eb:c7:eb:d5: 97:e6:d9:97:eb:99:17:fc:80:2d:e7:55:cb:5c:67:68:29:c9: 8b:9e:5d:7d:14:61:59:14:fa:19:a5:97:8c:11:c5:57:2e:97: 8d:53:ab:38:df:b0:ce:96:17:53:08:4c:2e:db:f4:28:c7:25: 59:f2:ee:29:b0:f8:74:e4:da:5a:0e:21:3b:84:c2:38:d6:b4: cd:b9:b6:1a:52:8d:4d:20:e9:26:01:d3:e8:87:3b:0c:0f:4f: 6f:4c:b9:14:9a:2d:be:66:7e:c3:e5:34:94:e1:a4:9f:77:dc: 7e:6d:5b:3a:c3:07:1e:67:34:34:81:ef:c5:64:e2:e6:3e:93: 2c:df:91:56:af:d0:d7:bc:e8:85:6f:6c:8e:c1:f3:1a:46:7b: 24:3c:25:b6:b4:1a:94:87:25:84:79:70:05:51:c8:40:c3:55: bb:96:fd:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTIwM0MxMTAvBgNVBAUTKDRFNDQ2MENGNjNCMjRCN0MzNUI5RURBRUM5N0U2M0E3 MkM0QkRFMjMwHhcNMjQwNTA0MjExNzE2WhcNMjQwNTExMjExNzE2WjAYMRYwFAYD VQQDEw02NjM2YTVkYy00MDkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzPlzrdaPcuKpAljmw7mE/tzmZLflHjm75Syb/wnF+bynp5x+7x595JFiFmTQ np/JZnfi8bv6w0fq7P8iKfwS0GzYiXvogROuJtSUoUK0NUf0GUhXupuZ4+0/2c7z 3VpaWTUIlitgYHOMetr5zuucpm0AFBO4NlSN95tSQMEgfKNPeSLgOUXlPTNkwFKk 4UUsL6pm7ElG1Vc7EkXoxeA5UOe7qJwQRvmR48IKlT/tOGjtF/TEvE9gxqWa6asL DRlfX8dRfnMj/4H5dZ0k6UN4/goy3JRQNRslxJlFiVcE0yGQRs2UCYqs1rOt8waN q20Ecj5fd1QqlgNtheWFI/A+hQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOQ7v+Zy ilbLaDruG7ZmcUzOmct/MB8GA1UdIwQYMBaAFE5EYM9jskt8Nbntrsl+Y6csS94j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjAzQy80NkM4OEM4Mjc0 NzcxMUVBODM2NTRGNERDNEY5QUUwMi9Ua1JnejJPeVMzdzF1ZTJ1eVg1anB5eEwz aU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RrUmd6Mk95UzN3MXVlMnV5WDVqcHl4TDNpTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjAzQy80NkM4OEM4Mjc0NzcxMUVBODM2NTRGNERDNEY5QUUwMi9Ua1JnejJPeVMz dzF1ZTJ1eVg1anB5eEwzaU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5WEwiGO+icUixqCAYvBp8lxJtrvnopT7l23abldQYyxNxXWeE+x0f HNeioI6rRWyjoPWL8dwT5Csf4JrGr6ljgcKvwqqhE9K+awyAemTU8DCs8PVu0uvH 69WX5tmX65kX/IAt51XLXGdoKcmLnl19FGFZFPoZpZeMEcVXLpeNU6s437DOlhdT CEwu2/QoxyVZ8u4psPh05NpaDiE7hMI41rTNubYaUo1NIOkmAdPohzsMD09vTLkU mi2+Zn7D5TSU4aSfd9x+bVs6wwceZzQ0ge/FZOLmPpMs35FWr9DXvOiFb2yOwfMa RnskPCW2tBqUhyWEeXAFUchAw1W7lv3L -----END CERTIFICATE-----Generated at Sun May 5 00:12:22 2024 by rpki-client on console-fra.rpki-client.org