$ rpki-client -vvf rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft File: TSkgNoEWBfjziJgBUhslcnoc12U.mft (raw, json) Hash identifier: uyzcTSAE7WpmwXsVdvY4CXNy81C1AG07/g90pKwPy68= Subject key identifier: 49:56:62:81:2B:05:D3:49:E2:1C:B8:96:62:BD:6A:FF:A3:6A:78:FD Authority key identifier: 4D:29:20:36:81:16:05:F8:F3:88:98:01:52:1B:25:72:7A:1C:D7:65 Certificate issuer: /CN=A9154DE2/serialNumber=4D292036811605F8F3889801521B25727A1CD765 Certificate serial: 023D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft Manifest number: 023B Signing time: Wed 01 May 2024 04:18:17 +0000 Manifest this update: Wed 01 May 2024 04:18:16 +0000 Manifest next update: Wed 08 May 2024 04:18:16 +0000 Files and hashes: 1: TSkgNoEWBfjziJgBUhslcnoc12U.crl (hash: Zy6F3FkiWLDL7T+YY3Bpm4aRM9sVIqnau8Ind3xC/SA=) 2: EB4F77B8D5E411ECB31AC843C4F9AE02.roa (hash: ohr7V7Y8e5KAcWoKiy8Fvk4ZDUJEjhEtlQUdHa+ddqg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.crl rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 573 (0x23d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154DE2/serialNumber=4D292036811605F8F3889801521B25727A1CD765 Validity Not Before: May 1 04:18:16 2024 GMT Not After : May 8 04:18:16 2024 GMT Subject: CN=6631c288-bf66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:2f:8b:4f:5c:86:53:03:b8:82:3f:02:50:c9: 56:5d:2a:74:4c:9e:d3:65:31:51:42:92:22:cb:65: d3:c4:c0:b5:c9:98:23:e2:bc:21:08:4f:f7:b0:27: 55:0b:16:ca:dc:aa:ab:b4:9b:c7:29:e8:3a:da:34: c0:2e:37:87:62:7b:c2:b2:31:b4:15:66:b1:ff:3f: 91:51:29:04:86:8b:07:ba:c6:cf:c8:fc:5f:be:93: ec:d3:2b:a6:bd:32:b8:d7:ea:4e:87:e1:e6:9d:72: 10:31:88:f2:21:cf:49:6c:52:47:06:d2:ee:7f:8f: 4f:c4:64:c5:93:c9:a2:93:b2:c4:c4:c7:9b:cb:6d: c7:a4:27:fa:0d:d1:20:1e:89:4f:6a:69:36:34:29: eb:b2:1d:55:74:81:3d:13:6e:a9:0c:1f:79:35:04: 30:7f:4e:bc:d2:1f:0d:c7:6c:e6:b0:33:94:f5:73: e4:02:07:e8:29:44:10:da:52:ca:47:3d:df:5f:60: f3:25:bd:4d:05:b8:07:48:b1:9b:ab:d5:65:dd:3a: 59:41:6b:3f:db:03:92:e1:68:ea:f4:15:58:2b:73: e8:3a:e1:f7:4f:a0:88:07:93:98:5c:e6:6b:57:75: 61:14:b2:16:7f:70:92:b9:04:e3:fb:a1:98:61:8d: 67:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:56:62:81:2B:05:D3:49:E2:1C:B8:96:62:BD:6A:FF:A3:6A:78:FD X509v3 Authority Key Identifier: keyid:4D:29:20:36:81:16:05:F8:F3:88:98:01:52:1B:25:72:7A:1C:D7:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:29:ad:0a:8f:7b:3c:52:5b:b4:ce:d8:8a:ee:92:05:7f:06: a4:9b:e4:24:3a:1a:6b:67:ab:d2:a0:af:71:e6:42:62:bd:f3: f1:93:96:34:f3:cf:63:b8:0f:37:73:c2:26:73:cf:5d:7a:7c: ab:8e:0a:71:5a:82:35:e6:65:2a:17:be:da:6a:9d:7a:22:25: 16:05:a6:37:6a:1b:e5:47:f7:ef:87:4f:7c:c2:70:93:4f:2b: 97:a5:21:3b:6f:b7:5d:32:6d:da:c3:47:ec:f9:af:23:09:a2: 20:69:a7:f5:2b:6f:a8:1a:4d:68:d4:93:bd:1e:3b:0b:b4:94: a7:8d:36:7e:95:49:e3:fe:e8:ab:34:04:1d:7b:94:3f:57:71: 06:33:e5:27:f8:f3:df:e1:a3:e5:1a:7b:4b:14:6f:2f:17:4d: b2:d0:6b:f1:a6:d8:10:ed:ee:78:c7:56:f2:52:b7:db:23:30: 68:67:4e:6b:86:69:fe:2d:e6:01:fd:c9:69:0f:c8:c8:00:77: c8:e2:0a:f0:14:00:d9:cf:83:e6:21:4f:29:60:46:38:b6:f3: 0a:a1:14:d7:1c:3e:f8:7a:3d:92:96:4f:fe:5b:d7:84:2c:3c: 7a:cb:c6:ac:27:a1:d9:f6:e7:8a:03:55:26:72:46:48:cf:00: 55:02:69:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRERTIxMTAvBgNVBAUTKDREMjkyMDM2ODExNjA1RjhGMzg4OTgwMTUyMUIyNTcy N0ExQ0Q3NjUwHhcNMjQwNTAxMDQxODE2WhcNMjQwNTA4MDQxODE2WjAYMRYwFAYD VQQDEw02NjMxYzI4OC1iZjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1y+LT1yGUwO4gj8CUMlWXSp0TJ7TZTFRQpIiy2XTxMC1yZgj4rwhCE/3sCdV CxbK3KqrtJvHKeg62jTALjeHYnvCsjG0FWax/z+RUSkEhosHusbPyPxfvpPs0yum vTK41+pOh+HmnXIQMYjyIc9JbFJHBtLuf49PxGTFk8mik7LExMeby23HpCf6DdEg HolPamk2NCnrsh1VdIE9E26pDB95NQQwf0680h8Nx2zmsDOU9XPkAgfoKUQQ2lLK Rz3fX2DzJb1NBbgHSLGbq9Vl3TpZQWs/2wOS4Wjq9BVYK3PoOuH3T6CIB5OYXOZr V3VhFLIWf3CSuQTj+6GYYY1nXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFElWYoEr BdNJ4hy4lmK9av+janj9MB8GA1UdIwQYMBaAFE0pIDaBFgX484iYAVIbJXJ6HNdl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NERFMi8xQzU0MjJEMEQ1 REQxMUVDQTE0Q0M2MjNDNEY5QUUwMi9UU2tnTm9FV0JmanppSmdCVWhzbGNub2Mx MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RTa2dOb0VXQmZqemlKZ0JVaHNsY25vYzEyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NERFMi8xQzU0MjJEMEQ1REQxMUVDQTE0Q0M2MjNDNEY5QUUwMi9UU2tnTm9FV0Jm anppSmdCVWhzbGNub2MxMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwKa0Kj3s8Ulu0ztiK7pIFfwakm+QkOhprZ6vSoK9x5kJivfPxk5Y0 889juA83c8Imc89denyrjgpxWoI15mUqF77aap16IiUWBaY3ahvlR/fvh098wnCT TyuXpSE7b7ddMm3aw0fs+a8jCaIgaaf1K2+oGk1o1JO9HjsLtJSnjTZ+lUnj/uir NAQde5Q/V3EGM+Un+PPf4aPlGntLFG8vF02y0GvxptgQ7e54x1byUrfbIzBoZ05r hmn+LeYB/clpD8jIAHfI4grwFADZz4PmIU8pYEY4tvMKoRTXHD74ej2Slk/+W9eE LDx6y8asJ6HZ9ueKA1UmckZIzwBVAmmc -----END CERTIFICATE-----Generated at Wed May 1 05:59:03 2024 by rpki-client on console-fra.rpki-client.org