$ rpki-client -vvf rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.mft File: 0efCSnRBTL3c_NiORsXVzTs-rtc.mft (raw, json) Hash identifier: Ff0QE4RT1GjWcH67REFWr42VEuoZx9Qi3nOgXowrBwc= Subject key identifier: 56:8A:AF:71:86:5D:C6:EB:DD:0E:23:AA:C8:1A:ED:64:2B:16:47:59 Authority key identifier: D1:E7:C2:4A:74:41:4C:BD:DC:FC:D8:8E:46:C5:D5:CD:3B:3E:AE:D7 Certificate issuer: /CN=A91606AF/serialNumber=D1E7C24A74414CBDDCFCD88E46C5D5CD3B3EAED7 Certificate serial: 0628 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0efCSnRBTL3c_NiORsXVzTs-rtc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.mft Manifest number: 0610 Signing time: Fri 26 Apr 2024 23:55:59 +0000 Manifest this update: Fri 26 Apr 2024 23:55:58 +0000 Manifest next update: Fri 03 May 2024 23:55:58 +0000 Files and hashes: 1: 0efCSnRBTL3c_NiORsXVzTs-rtc.crl (hash: 6Py9D+UaIgFARqB0o3qqXxHafDk8Sg2Iis+d478ehwg=) 2: 8C2D64121CB011EDA4740D7EC4F9AE02.roa (hash: 5mYVRvOqzGHOPhY+Myn+QOogy83XRkkg69Sb3OKrohc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.crl rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0efCSnRBTL3c_NiORsXVzTs-rtc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 23:55:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1576 (0x628) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91606AF/serialNumber=D1E7C24A74414CBDDCFCD88E46C5D5CD3B3EAED7 Validity Not Before: Apr 26 23:55:58 2024 GMT Not After : May 3 23:55:58 2024 GMT Subject: CN=662c3f0e-6196 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:6d:ba:8d:a5:44:bc:bd:a9:aa:a8:ca:63:50: 4b:54:9d:e9:b7:ee:78:bc:1a:1c:fc:34:af:95:45: ed:15:de:50:a3:ca:a9:22:c9:15:d2:b6:0d:f2:d1: cf:96:06:53:b8:47:db:9b:d3:2f:83:e4:24:2a:f4: dd:f0:28:05:fd:a9:b7:2f:69:36:cd:e8:72:07:fd: bd:f1:47:cc:1b:7b:b9:e7:a4:db:14:a9:35:fa:73: 68:14:d2:b1:d1:ba:5d:cf:0d:7a:35:af:df:ac:af: e5:60:f8:58:eb:5e:ce:be:9f:0d:34:38:73:cd:00: a6:e0:3f:f4:61:b1:e2:fe:e8:cf:48:51:45:40:66: f8:82:f2:4c:0f:06:66:a1:08:62:02:92:11:e6:76: a6:fe:bc:46:65:65:bf:4b:c7:9b:ff:07:eb:2c:c6: ff:41:8c:49:98:98:76:7b:f8:81:93:d9:ad:3b:ec: 7a:48:92:50:ee:c1:45:df:01:55:ef:38:46:c6:a6: c1:ee:b4:e2:85:70:f5:d4:d7:11:76:81:6a:e4:e9: fb:85:ee:05:af:9e:ad:5e:3e:39:eb:1a:04:0e:0e: 98:90:f6:6f:f3:7e:cc:5a:f5:4b:74:ea:91:5b:a5: 64:f6:71:b1:ea:63:86:37:f9:b0:40:06:a3:05:b2: 72:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:8A:AF:71:86:5D:C6:EB:DD:0E:23:AA:C8:1A:ED:64:2B:16:47:59 X509v3 Authority Key Identifier: keyid:D1:E7:C2:4A:74:41:4C:BD:DC:FC:D8:8E:46:C5:D5:CD:3B:3E:AE:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0efCSnRBTL3c_NiORsXVzTs-rtc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:30:df:a2:a1:3b:f1:8d:0e:83:3c:19:f5:94:ad:16:13:6f: 06:aa:4c:25:8c:cf:e1:ab:46:91:d5:a9:b1:0f:32:7d:7e:bc: c5:4f:1a:66:b9:1a:17:52:2a:6e:50:40:79:52:65:80:e2:f4: f1:8e:3f:8f:76:60:93:86:64:01:94:7d:ef:c2:98:73:d9:e7: 7b:d0:28:1e:c8:3d:73:45:a7:14:54:25:e5:2d:0f:44:48:dc: 4a:82:1a:1e:b6:9c:6b:bc:5f:d5:db:12:b9:96:a0:dc:2a:4b: 1d:d0:f4:41:54:9c:06:65:cd:1d:ac:a2:bd:af:b5:b7:78:c7: 3f:03:98:67:1c:ee:dc:c5:75:ed:ce:b4:aa:8d:08:e9:f7:ac: 28:e3:b0:48:07:4c:c2:e0:75:a7:ce:2a:aa:df:0c:af:aa:a3: 3a:0b:3f:ec:6f:0c:aa:96:e8:3b:32:bd:94:b7:cc:59:eb:53: 4c:c1:6b:b1:cc:d2:9f:cb:af:71:51:68:cc:58:60:70:d5:66: 3b:25:5d:4a:c6:c3:da:70:56:9e:53:35:6c:e2:23:12:7f:c2: 8a:3e:c2:96:d3:f9:2d:57:1d:56:c9:4e:c1:15:0d:8c:7b:7d: 69:aa:6d:3d:b4:45:35:4b:f9:27:7f:95:63:dc:a0:82:7c:12: 7a:28:9c:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA2QUYxMTAvBgNVBAUTKEQxRTdDMjRBNzQ0MTRDQkREQ0ZDRDg4RTQ2QzVENUNE M0IzRUFFRDcwHhcNMjQwNDI2MjM1NTU4WhcNMjQwNTAzMjM1NTU4WjAYMRYwFAYD VQQDEw02NjJjM2YwZS02MTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqm26jaVEvL2pqqjKY1BLVJ3pt+54vBoc/DSvlUXtFd5Qo8qpIskV0rYN8tHP lgZTuEfbm9Mvg+QkKvTd8CgF/am3L2k2zehyB/298UfMG3u556TbFKk1+nNoFNKx 0bpdzw16Na/frK/lYPhY617Ovp8NNDhzzQCm4D/0YbHi/ujPSFFFQGb4gvJMDwZm oQhiApIR5nam/rxGZWW/S8eb/wfrLMb/QYxJmJh2e/iBk9mtO+x6SJJQ7sFF3wFV 7zhGxqbB7rTihXD11NcRdoFq5On7he4Fr56tXj456xoEDg6YkPZv837MWvVLdOqR W6Vk9nGx6mOGN/mwQAajBbJy5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFaKr3GG Xcbr3Q4jqsga7WQrFkdZMB8GA1UdIwQYMBaAFNHnwkp0QUy93PzYjkbF1c07Pq7X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDZBRi9BMDk1OEYzMDVF Q0QxMUVCOTA4NzYzNzJDNEY5QUUwMi8wZWZDU25SQlRMM2NfTmlPUnNYVnpUcy1y dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBlZkNTblJCVEwzY19OaU9Sc1hWelRzLXJ0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDZBRi9BMDk1OEYzMDVFQ0QxMUVCOTA4NzYzNzJDNEY5QUUwMi8wZWZDU25SQlRM M2NfTmlPUnNYVnpUcy1ydGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHMN+ioTvxjQ6DPBn1lK0WE28GqkwljM/hq0aR1amxDzJ9frzFTxpm uRoXUipuUEB5UmWA4vTxjj+PdmCThmQBlH3vwphz2ed70CgeyD1zRacUVCXlLQ9E SNxKghoetpxrvF/V2xK5lqDcKksd0PRBVJwGZc0drKK9r7W3eMc/A5hnHO7cxXXt zrSqjQjp96wo47BIB0zC4HWnziqq3wyvqqM6Cz/sbwyqlug7Mr2Ut8xZ61NMwWux zNKfy69xUWjMWGBw1WY7JV1KxsPacFaeUzVs4iMSf8KKPsKW0/ktVx1WyU7BFQ2M e31pqm09tEU1S/knf5Vj3KCCfBJ6KJwx -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:01 2024 by rpki-client on console-ams.rpki-client.org