$ rpki-client -vvf rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft File: tWQnMiZdQL91ypSp7IEZIRwbmzI.mft (raw, json) Hash identifier: YU/UWfw1ig0TSFxjVT38tR6bcTsoxzbAWLrI3W1kftY= Subject key identifier: D7:12:E5:F7:00:A2:41:F6:4D:E9:98:C3:F0:51:A6:A7:72:EE:38:5E Authority key identifier: B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 Certificate issuer: /CN=A916C128/serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Certificate serial: 2B5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft Manifest number: 2ABD Signing time: Wed 08 May 2024 15:51:50 +0000 Manifest this update: Wed 08 May 2024 15:51:50 +0000 Manifest next update: Wed 15 May 2024 15:51:50 +0000 Files and hashes: 1: tWQnMiZdQL91ypSp7IEZIRwbmzI.crl (hash: 75/Pa0P90B3s34KolKwwM+2x54CTNBgEOrgWy2N3/cs=) 2: 13461F60ABDC11EDAE837666C4F9AE02.roa (hash: BlJ6MBas8GtvRENVuogwOQ3RBJs5yI6I/lDD4V0uMFo=) 3: E0CC928CABDE11ED954F5C84C4F9AE02.roa (hash: SyIbeO9y9xR6BjugtKwGkk/34Vk5rkNEUUeu9KzYFao=) 4: DF821D20ABDE11ED954F5C84C4F9AE02.roa (hash: JmQqndItC47KG/mSkNraiFP1lMlaX4e/4bdLjfvjswU=) 5: 4462F034F0EC11EB9D0B176AC4F9AE02.roa (hash: 47AwHzw//iGDXHwog/th17sS/E96PYYL+7g0P1sERHc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11102 (0x2b5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C128/serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Validity Not Before: May 8 15:51:50 2024 GMT Not After : May 15 15:51:50 2024 GMT Subject: CN=663b9f96-725c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:97:5a:0a:41:0b:85:b2:fd:8d:8b:64:81:f3: 78:8b:4d:74:00:e0:23:ad:d6:ba:66:16:7b:3d:a0: a6:5d:07:1c:df:37:07:39:ba:29:90:29:76:a3:28: 09:75:e1:c5:45:12:92:26:50:ce:a7:f7:35:28:1a: a5:61:d4:c5:5a:bd:e9:4f:b7:82:28:3d:76:2b:62: 7c:49:05:09:9a:73:bc:84:32:f5:4b:91:31:33:13: 4c:2f:3a:02:3b:af:05:d6:78:bd:d8:c7:8b:b7:b0: 6c:b9:f6:5d:f9:45:75:d4:c5:76:b7:a7:f0:6d:7f: ab:b7:c5:0a:37:cc:b1:8f:71:4d:c9:e7:69:e4:23: 1d:52:c6:8e:04:b9:c1:dd:33:38:7b:38:92:93:3d: eb:eb:07:09:b4:fc:ae:0c:2f:12:5e:bc:85:2a:03: e3:ae:db:e0:4d:46:84:78:7c:99:40:0d:5f:f0:b8: fa:ac:c7:ce:6d:49:33:b5:5f:f9:0d:f4:9f:ea:c7: 77:56:6d:f6:3b:b0:49:5e:b6:d5:32:ed:a4:72:ec: 83:50:31:a7:70:bf:20:b6:f9:95:a5:42:ae:10:5f: 4c:1d:56:e7:d0:cd:aa:db:ea:d3:72:a8:b1:c8:90: 91:24:41:09:63:8d:80:45:25:b7:6c:90:f3:11:85: fc:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:12:E5:F7:00:A2:41:F6:4D:E9:98:C3:F0:51:A6:A7:72:EE:38:5E X509v3 Authority Key Identifier: keyid:B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:68:d9:c1:b5:79:b4:3b:fc:c1:9f:43:e4:2a:1c:15:25:b7: 07:be:3b:31:35:02:af:0f:58:e9:a0:32:f3:1d:13:c1:e5:5c: f4:f3:65:b0:ad:f6:23:bf:96:af:74:4c:db:8c:d7:bc:cf:ae: a7:21:ea:27:a4:e1:0f:72:bd:70:9a:80:0e:67:4a:4c:f8:98: 4f:38:12:b6:64:18:8e:00:de:bc:fe:4a:35:dd:6e:5e:c6:5f: 5e:0a:d2:bf:e2:a0:c6:6b:83:ee:db:67:ef:21:64:05:4b:c8: 9a:f0:da:1b:28:91:aa:ba:cc:11:df:9c:8f:8b:4b:db:5f:7f: 36:19:f5:24:a1:4c:f1:53:c1:0b:fd:25:ab:ad:fb:ce:b7:82: 9c:09:45:71:96:e0:fd:de:a0:dc:4e:a9:2a:1a:69:b7:b5:d6: f3:66:8f:82:7d:34:72:a8:f8:2c:f2:1f:df:95:83:02:f3:d6: 85:a7:17:e1:63:0d:c9:54:83:0b:d3:36:72:36:e4:7e:5e:3e: f5:41:d4:8d:8f:41:ee:cd:77:7b:e8:c9:8b:e9:f3:b5:0a:d0: 86:4a:73:89:50:9b:a2:02:c1:e4:44:f0:38:5a:36:71:82:11: b6:38:87:0d:0a:f1:a9:e5:97:78:67:ab:91:79:3e:2b:fa:05: 94:e9:04:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICK14wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMxMjgxMTAvBgNVBAUTKEI1NjQyNzMyMjY1RDQwQkY3NUNBOTRBOUVDODExOTIx MUMxQjlCMzIwHhcNMjQwNTA4MTU1MTUwWhcNMjQwNTE1MTU1MTUwWjAYMRYwFAYD VQQDEw02NjNiOWY5Ni03MjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA15daCkELhbL9jYtkgfN4i010AOAjrda6ZhZ7PaCmXQcc3zcHObopkCl2oygJ deHFRRKSJlDOp/c1KBqlYdTFWr3pT7eCKD12K2J8SQUJmnO8hDL1S5ExMxNMLzoC O68F1ni92MeLt7BsufZd+UV11MV2t6fwbX+rt8UKN8yxj3FNyedp5CMdUsaOBLnB 3TM4eziSkz3r6wcJtPyuDC8SXryFKgPjrtvgTUaEeHyZQA1f8Lj6rMfObUkztV/5 DfSf6sd3Vm32O7BJXrbVMu2kcuyDUDGncL8gtvmVpUKuEF9MHVbn0M2q2+rTcqix yJCRJEEJY42ARSW3bJDzEYX8LwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNcS5fcA okH2TemYw/BRpqdy7jheMB8GA1UdIwQYMBaAFLVkJzImXUC/dcqUqeyBGSEcG5sy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzEyOC82NjRBOUJDQUZB NkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFMOTF5cFNwN0lFWklSd2Jt ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RXUW5NaVpkUUw5MXlwU3A3SUVaSVJ3Ym16SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzEyOC82NjRBOUJDQUZBNkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFM OTF5cFNwN0lFWklSd2JtekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuaNnBtXm0O/zBn0PkKhwVJbcHvjsxNQKvD1jpoDLzHRPB5Vz082Ww rfYjv5avdEzbjNe8z66nIeonpOEPcr1wmoAOZ0pM+JhPOBK2ZBiOAN68/ko13W5e xl9eCtK/4qDGa4Pu22fvIWQFS8ia8NobKJGquswR35yPi0vbX382GfUkoUzxU8EL /SWrrfvOt4KcCUVxluD93qDcTqkqGmm3tdbzZo+CfTRyqPgs8h/flYMC89aFpxfh Yw3JVIML0zZyNuR+Xj71QdSNj0HuzXd76MmL6fO1CtCGSnOJUJuiAsHkRPA4WjZx ghG2OIcNCvGp5Zd4Z6uReT4r+gWU6QTe -----END CERTIFICATE-----Generated at Wed May 8 17:47:02 2024 by rpki-client on console-ams.rpki-client.org