$ rpki-client -vvf rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft File: tRdNgmVknN0nQmySfRaHddeD1Tg.mft (raw, json) Hash identifier: ZdDRMdcedONUWjwV4SX7HVAwcZHYyufcNvzagrVCELU= Subject key identifier: 90:DF:58:2A:D5:1E:3C:D4:DC:4E:4B:92:64:67:F2:8B:6F:D3:18:6D Authority key identifier: B5:17:4D:82:65:64:9C:DD:27:42:6C:92:7D:16:87:75:D7:83:D5:38 Certificate issuer: /CN=A916D459/serialNumber=B5174D8265649CDD27426C927D168775D783D538 Certificate serial: 0A4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft Manifest number: 0A45 Signing time: Sat 04 May 2024 20:38:06 +0000 Manifest this update: Sat 04 May 2024 20:38:05 +0000 Manifest next update: Sat 11 May 2024 20:38:05 +0000 Files and hashes: 1: tRdNgmVknN0nQmySfRaHddeD1Tg.crl (hash: yw41gISTLPTvrnSAwfq4rZC/iVOe525xWlGtG/s0Xxc=) 2: 61E12BD0CA0611EEB05EB92CC4F9AE02.roa (hash: ygmpbmZ4muZogKx3U/M+2PlK1lYAvQY9J31IhnlELfs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.crl rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 19:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2635 (0xa4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D459/serialNumber=B5174D8265649CDD27426C927D168775D783D538 Validity Not Before: May 4 20:38:05 2024 GMT Not After : May 11 20:38:05 2024 GMT Subject: CN=66369cad-47eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:51:bc:35:47:8d:12:34:bd:8f:0e:5d:b0:4b: 58:aa:2c:b6:5f:1f:56:28:63:02:b1:d3:91:ea:ab: 35:05:29:dc:9e:b8:10:55:33:48:6d:c6:de:96:33: dd:33:53:33:bb:2f:c9:44:6c:b3:f8:80:7f:b1:d6: fa:dd:a2:c5:5b:8c:84:1f:b2:97:6e:48:05:40:77: 9c:a8:62:d5:7a:ca:82:d5:82:e6:c8:3a:88:93:9a: 4b:97:71:dd:d0:d3:f1:38:64:87:5e:4d:5e:dd:fa: 14:bb:a0:07:2b:0e:dc:20:ab:4d:b0:65:e6:57:3b: cc:0c:40:63:7c:8e:cc:7b:c8:f7:52:10:10:e8:a7: 37:4c:73:84:39:29:39:4b:6e:d8:2f:10:ed:13:44: b6:96:3b:a4:0b:41:f9:9f:48:6d:94:c7:b5:ac:49: da:e2:25:19:37:d7:03:9b:dc:c9:bb:98:d7:52:03: 7e:92:44:2b:c3:8e:7f:90:19:75:32:da:79:c7:23: 0c:0f:4a:2b:de:78:82:c4:21:a1:87:1a:41:be:ab: a2:00:08:b3:d3:3b:b0:a8:08:f0:78:44:be:2d:a8: 55:0a:e7:b8:15:c0:e1:20:12:f6:35:a9:a5:38:b8: c1:96:09:b0:a4:17:b8:31:17:f3:9f:fb:9d:88:bf: 38:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:DF:58:2A:D5:1E:3C:D4:DC:4E:4B:92:64:67:F2:8B:6F:D3:18:6D X509v3 Authority Key Identifier: keyid:B5:17:4D:82:65:64:9C:DD:27:42:6C:92:7D:16:87:75:D7:83:D5:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:99:cf:29:35:77:46:a8:7c:3f:39:76:62:db:4c:89:73:42: a0:35:29:3a:11:34:d9:d7:28:7a:de:9d:cc:1e:c7:08:f8:3c: 1e:a0:bc:d3:e5:28:36:4f:83:d1:6c:90:13:e2:c3:4c:9b:92: 0f:b7:d4:81:67:f3:f4:bd:2b:2d:d1:24:0e:dd:4b:9a:38:e5: f6:2c:92:24:67:c2:23:f5:22:26:54:8d:3a:90:dc:bb:33:9a: 95:b2:da:c7:f6:80:7f:00:55:d1:ea:de:c8:bd:6a:b9:ff:39: 14:2c:9c:2d:6e:f3:e0:a5:bc:f1:70:9c:0f:03:30:23:a3:d1: 68:34:fe:49:dd:68:40:02:54:ef:17:7f:3c:15:53:b0:03:5d: 34:80:8b:fe:cd:05:49:4a:63:77:db:52:dc:52:c4:46:18:53: ff:20:b0:1f:9a:fd:65:21:d5:da:84:72:5c:32:7d:2d:17:c3: de:15:11:8a:3a:b7:09:64:99:e7:d4:6d:ef:94:5c:9e:c5:ed: ea:52:b1:2a:26:f8:17:a2:ef:4e:4e:00:dc:55:7d:1e:a7:fe: 01:bc:e0:f0:61:ea:6e:f5:26:bf:bb:ca:8e:ac:05:57:03:56: be:13:1d:d0:81:25:f9:50:ef:97:ff:96:57:a4:19:85:3c:87: 13:cf:e2:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ0NTkxMTAvBgNVBAUTKEI1MTc0RDgyNjU2NDlDREQyNzQyNkM5MjdEMTY4Nzc1 RDc4M0Q1MzgwHhcNMjQwNTA0MjAzODA1WhcNMjQwNTExMjAzODA1WjAYMRYwFAYD VQQDEw02NjM2OWNhZC00N2ViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt1G8NUeNEjS9jw5dsEtYqiy2Xx9WKGMCsdOR6qs1BSncnrgQVTNIbcbeljPd M1Mzuy/JRGyz+IB/sdb63aLFW4yEH7KXbkgFQHecqGLVesqC1YLmyDqIk5pLl3Hd 0NPxOGSHXk1e3foUu6AHKw7cIKtNsGXmVzvMDEBjfI7Me8j3UhAQ6Kc3THOEOSk5 S27YLxDtE0S2ljukC0H5n0htlMe1rEna4iUZN9cDm9zJu5jXUgN+kkQrw45/kBl1 Mtp5xyMMD0or3niCxCGhhxpBvquiAAiz0zuwqAjweES+LahVCue4FcDhIBL2Naml OLjBlgmwpBe4MRfzn/udiL84MQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJDfWCrV HjzU3E5LkmRn8otv0xhtMB8GA1UdIwQYMBaAFLUXTYJlZJzdJ0Jskn0Wh3XXg9U4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDQ1OS85OUVDODlFQzQy MjAxMUVBQjUzMDIwMTZDNEY5QUUwMi90UmROZ21Wa25OMG5RbXlTZlJhSGRkZUQx VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RSZE5nbVZrbk4wblFteVNmUmFIZGRlRDFUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDQ1OS85OUVDODlFQzQyMjAxMUVBQjUzMDIwMTZDNEY5QUUwMi90UmROZ21Wa25O MG5RbXlTZlJhSGRkZUQxVGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDmc8pNXdGqHw/OXZi20yJc0KgNSk6ETTZ1yh63p3MHscI+DweoLzT 5Sg2T4PRbJAT4sNMm5IPt9SBZ/P0vSst0SQO3UuaOOX2LJIkZ8Ij9SImVI06kNy7 M5qVstrH9oB/AFXR6t7IvWq5/zkULJwtbvPgpbzxcJwPAzAjo9FoNP5J3WhAAlTv F388FVOwA100gIv+zQVJSmN321LcUsRGGFP/ILAfmv1lIdXahHJcMn0tF8PeFRGK OrcJZJnn1G3vlFyexe3qUrEqJvgXou9OTgDcVX0ep/4BvODwYepu9Sa/u8qOrAVX A1a+Ex3QgSX5UO+X/5ZXpBmFPIcTz+Ja -----END CERTIFICATE-----Generated at Sat May 4 21:19:29 2024 by rpki-client on console-ams.rpki-client.org