$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft File: tADiGrPTJXQtuHeDDrxEB233CUg.mft (raw, json) Hash identifier: zZEwNjtlBOdvjXiP4wYiHUdrB+TieGKZ5oaqB7zi4EU= Subject key identifier: 86:CA:E4:4D:20:90:0E:2B:66:C0:1B:4E:9D:CF:8E:95:AC:ED:C2:F9 Authority key identifier: B4:00:E2:1A:B3:D3:25:74:2D:B8:77:83:0E:BC:44:07:6D:F7:09:48 Certificate issuer: /CN=A91658EF/serialNumber=B400E21AB3D325742DB877830EBC44076DF70948 Certificate serial: 0E37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft Manifest number: 291D Signing time: Fri 26 Apr 2024 17:24:24 +0000 Manifest this update: Fri 26 Apr 2024 17:24:23 +0000 Manifest next update: Fri 03 May 2024 17:24:23 +0000 Files and hashes: 1: tADiGrPTJXQtuHeDDrxEB233CUg.crl (hash: sjgPzfDPoYzoXeve2+aF56YxUStRArehODB5G91VVUc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.crl rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 17:24:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3639 (0xe37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91658EF/serialNumber=B400E21AB3D325742DB877830EBC44076DF70948 Validity Not Before: Apr 26 17:24:23 2024 GMT Not After : May 3 17:24:23 2024 GMT Subject: CN=662be348-7ce7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:40:11:69:68:34:67:6d:6c:f3:5a:f3:25:d1: 14:5f:30:e1:19:bb:db:a5:44:4c:55:48:50:5d:0e: 63:09:07:c7:62:ea:e1:c5:68:86:4b:2c:34:7a:54: 0e:97:16:c3:97:27:95:18:94:aa:dc:43:28:12:2d: 5e:a8:2f:62:fc:e0:f4:2f:73:9c:83:0c:56:f4:ef: fc:87:72:9c:f1:ca:2f:e9:12:7c:4a:11:8e:5e:48: 81:9d:3e:d6:c9:c1:04:be:45:13:9c:81:f6:5f:59: 99:b3:de:3c:93:30:e2:05:99:cc:23:29:fd:e0:a6: 7a:04:7c:f6:67:7f:68:93:8d:3d:dc:2c:79:ab:91: f7:1a:aa:62:8e:71:aa:d7:7c:94:6f:30:85:3e:66: f9:4a:7f:89:40:99:e6:44:8e:98:d9:57:1a:58:e5: 60:21:a7:b5:3e:06:3b:44:48:49:24:8f:d0:49:d5: e7:51:98:95:23:7b:92:74:7b:6e:56:26:b9:4e:63: e4:17:02:80:9b:db:58:44:47:c8:32:76:68:71:02: d1:e7:15:c2:9b:1f:a8:a8:0a:06:e8:9a:a2:28:a2: 57:8f:4c:2a:4f:3c:88:93:4c:87:48:d7:35:c8:81: 8f:95:89:d2:93:32:f8:41:2b:eb:bf:78:59:38:6d: a1:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:CA:E4:4D:20:90:0E:2B:66:C0:1B:4E:9D:CF:8E:95:AC:ED:C2:F9 X509v3 Authority Key Identifier: keyid:B4:00:E2:1A:B3:D3:25:74:2D:B8:77:83:0E:BC:44:07:6D:F7:09:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption da:3c:98:c5:79:a4:34:4b:4a:7f:90:1d:b4:02:da:a6:f2:3a: fd:89:be:bc:72:40:75:25:80:be:be:18:9c:94:4f:e9:91:37: d5:27:d7:34:2c:cf:4d:40:6a:11:94:e7:5a:97:2a:68:36:2f: 42:be:08:05:cc:4f:d0:dc:48:64:f8:e4:61:dd:be:66:eb:b8: 1d:14:fe:5d:6d:2a:a2:c6:e5:c0:87:6a:e5:a2:d1:e3:d8:17: 23:56:bd:22:3b:72:35:a0:01:eb:64:78:73:05:26:01:ca:be: a6:89:b5:7b:90:01:ff:69:3f:b6:7e:0c:81:9f:c2:77:92:77: 42:05:57:01:24:3c:d1:f6:7e:43:71:fd:94:05:0f:df:28:2c: 3d:25:85:e8:c2:ff:e4:33:df:05:72:b8:40:b8:d0:d4:b3:e0: 86:ed:2e:5a:ad:5c:39:ff:de:89:b0:40:4d:17:4d:41:4a:e5: 8f:d3:8e:82:04:12:96:d4:07:79:6b:0d:65:de:9c:bc:2f:20: d0:1f:88:69:ef:92:8e:13:78:34:f0:aa:d7:4a:d7:af:8b:04: c4:d2:3f:ba:66:d0:6a:6c:ef:37:99:9f:f1:51:a0:9e:d1:aa: 07:ae:13:d7:c0:d9:73:5c:a7:ba:88:d7:44:f0:5f:e9:69:49: 51:fd:95:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU4RUYxMTAvBgNVBAUTKEI0MDBFMjFBQjNEMzI1NzQyREI4Nzc4MzBFQkM0NDA3 NkRGNzA5NDgwHhcNMjQwNDI2MTcyNDIzWhcNMjQwNTAzMTcyNDIzWjAYMRYwFAYD VQQDEw02NjJiZTM0OC03Y2U3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwEARaWg0Z21s81rzJdEUXzDhGbvbpURMVUhQXQ5jCQfHYurhxWiGSyw0elQO lxbDlyeVGJSq3EMoEi1eqC9i/OD0L3OcgwxW9O/8h3Kc8cov6RJ8ShGOXkiBnT7W ycEEvkUTnIH2X1mZs948kzDiBZnMIyn94KZ6BHz2Z39ok4093Cx5q5H3GqpijnGq 13yUbzCFPmb5Sn+JQJnmRI6Y2VcaWOVgIae1PgY7REhJJI/QSdXnUZiVI3uSdHtu Via5TmPkFwKAm9tYREfIMnZocQLR5xXCmx+oqAoG6JqiKKJXj0wqTzyIk0yHSNc1 yIGPlYnSkzL4QSvrv3hZOG2h2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIbK5E0g kA4rZsAbTp3PjpWs7cL5MB8GA1UdIwQYMBaAFLQA4hqz0yV0Lbh3gw68RAdt9wlI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi90QURpR3JQVEpYUXR1SGVERHJ4RUIyMzND VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RBRGlHclBUSlhRdHVIZUREcnhFQjIzM0NVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NThFRi9EMjQzMzc5NjRBRUMxMUU4ODQxN0YzNEFDNEY5QUUwMi90QURpR3JQVEpY UXR1SGVERHJ4RUIyMzNDVWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDaPJjFeaQ0S0p/kB20Atqm8jr9ib68ckB1JYC+vhiclE/pkTfVJ9c0 LM9NQGoRlOdalypoNi9CvggFzE/Q3Ehk+ORh3b5m67gdFP5dbSqixuXAh2rlotHj 2BcjVr0iO3I1oAHrZHhzBSYByr6mibV7kAH/aT+2fgyBn8J3kndCBVcBJDzR9n5D cf2UBQ/fKCw9JYXowv/kM98FcrhAuNDUs+CG7S5arVw5/96JsEBNF01BSuWP046C BBKW1Ad5aw1l3py8LyDQH4hp75KOE3g08KrXSteviwTE0j+6ZtBqbO83mZ/xUaCe 0aoHrhPXwNlzXKe6iNdE8F/paUlR/ZWz -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:04 2024 by rpki-client on console-ams.rpki-client.org