$ rpki-client -vvf rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.mft File: FTtjqTdzsliYghhmVd7zBEbdhg0.mft (raw, json) Hash identifier: izHJAyY+WdiOW7pCWR4GHSolvqY4k7od6svZPoV535I= Subject key identifier: CB:03:AF:59:F5:6B:8F:2A:22:3C:F6:00:F9:5C:38:25:9B:43:68:62 Authority key identifier: 15:3B:63:A9:37:73:B2:58:98:82:18:66:55:DE:F3:04:46:DD:86:0D Certificate issuer: /CN=A91810B4/serialNumber=153B63A93773B2589882186655DEF30446DD860D Certificate serial: 019B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTtjqTdzsliYghhmVd7zBEbdhg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.mft Manifest number: 0198 Signing time: Wed 01 May 2024 04:59:31 +0000 Manifest this update: Wed 01 May 2024 04:59:30 +0000 Manifest next update: Wed 08 May 2024 04:59:30 +0000 Files and hashes: 1: FTtjqTdzsliYghhmVd7zBEbdhg0.crl (hash: YSpW1q4d40+AwkgPgd6gV08Zh+JSTvb+/wNXHKceV34=) 2: 27A32D7A16BA11EDB0E9E464C4F9AE02.roa (hash: 9+/uK3UhO6sPq3a6D0tmdFb5UgMPGW/QyQl9kJEknrI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.crl rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTtjqTdzsliYghhmVd7zBEbdhg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 411 (0x19b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91810B4/serialNumber=153B63A93773B2589882186655DEF30446DD860D Validity Not Before: May 1 04:59:30 2024 GMT Not After : May 8 04:59:30 2024 GMT Subject: CN=6631cc32-1a24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:63:6f:93:7b:c9:5e:a9:e5:26:cd:97:1b:56: 75:f9:ea:2c:a5:c7:49:45:22:f7:62:52:14:04:7d: b3:45:18:d2:53:3f:55:e4:a6:02:1c:f6:d6:e0:9d: 21:00:52:a3:2a:4f:c7:28:af:cf:5f:f7:00:1f:eb: 34:df:9d:7c:f3:8e:b6:15:f8:70:04:86:6f:b2:97: 65:a7:d6:27:48:24:f2:27:c0:c6:99:72:0d:91:10: 29:69:49:7b:46:1e:a2:65:35:aa:6e:55:86:c1:a9: ac:8a:76:ce:8a:99:1f:5c:2d:41:27:b9:5e:4b:d3: 64:42:38:f7:e5:8a:99:5d:43:10:25:9b:9e:cb:e3: c3:84:ed:29:76:ce:3a:07:01:5a:61:43:dc:6d:c2: 20:21:eb:db:63:59:0b:c1:f6:ad:87:63:2d:df:f4: 7f:84:3d:81:1b:24:db:09:17:72:c4:e4:01:b0:fd: 9a:4e:22:a7:8f:a9:e5:a6:af:e2:a9:c9:1c:14:91: e8:f2:ea:04:db:d1:69:58:b1:30:af:a8:27:40:b1: d2:97:5f:e4:38:12:9b:db:02:6b:a3:80:aa:98:0e: d7:6d:0b:a9:61:59:42:b3:58:1f:21:28:28:73:66: 52:84:63:85:68:23:b1:fa:9d:84:02:b9:7d:58:33: 54:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:03:AF:59:F5:6B:8F:2A:22:3C:F6:00:F9:5C:38:25:9B:43:68:62 X509v3 Authority Key Identifier: keyid:15:3B:63:A9:37:73:B2:58:98:82:18:66:55:DE:F3:04:46:DD:86:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTtjqTdzsliYghhmVd7zBEbdhg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:3a:dc:cb:a6:20:46:a7:ca:c7:68:44:b7:96:90:41:55:c0: f8:c2:2e:a0:86:33:46:ac:92:78:93:03:60:b5:02:66:f7:8a: 24:5c:fb:46:63:2c:e2:ef:55:91:fc:33:e9:ae:d4:66:3d:3a: ea:7b:3b:44:25:13:d1:eb:9f:38:5c:8b:cc:c7:02:d1:13:31: b0:61:7f:dc:3c:b9:93:a2:81:90:fd:d5:95:34:37:60:a0:ff: b5:5e:96:11:5f:48:f3:31:f7:59:d2:5c:df:b5:3f:7d:fb:30: a0:5f:a4:8d:89:44:91:52:d6:a3:23:3d:52:fd:20:2d:48:04: 09:72:e7:97:2a:93:14:54:a1:39:3d:9f:12:46:bd:dd:04:eb: f4:5b:3e:43:3a:16:d7:af:be:a0:c4:37:7b:34:0b:e8:4b:f8: 48:36:45:04:05:26:ee:b5:3c:22:70:d5:01:ad:81:95:e5:ff: 90:ba:fe:71:e2:e1:43:40:d6:fe:c0:12:b9:b9:34:44:4c:d1: 4a:a6:f7:77:3c:b7:75:06:58:af:43:cd:14:c2:a2:15:b0:fb: fb:06:34:52:47:bf:5c:72:7c:34:6e:c4:34:d7:b2:78:6b:4f: 10:09:35:94:e0:c7:e5:3b:f6:27:9b:8f:81:de:9a:75:74:6a: 58:03:1b:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODEwQjQxMTAvBgNVBAUTKDE1M0I2M0E5Mzc3M0IyNTg5ODgyMTg2NjU1REVGMzA0 NDZERDg2MEQwHhcNMjQwNTAxMDQ1OTMwWhcNMjQwNTA4MDQ1OTMwWjAYMRYwFAYD VQQDEw02NjMxY2MzMi0xYTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnGNvk3vJXqnlJs2XG1Z1+eospcdJRSL3YlIUBH2zRRjSUz9V5KYCHPbW4J0h AFKjKk/HKK/PX/cAH+s035188462FfhwBIZvspdlp9YnSCTyJ8DGmXINkRApaUl7 Rh6iZTWqblWGwamsinbOipkfXC1BJ7leS9NkQjj35YqZXUMQJZuey+PDhO0pds46 BwFaYUPcbcIgIevbY1kLwfath2Mt3/R/hD2BGyTbCRdyxOQBsP2aTiKnj6nlpq/i qckcFJHo8uoE29FpWLEwr6gnQLHSl1/kOBKb2wJro4CqmA7XbQupYVlCs1gfISgo c2ZShGOFaCOx+p2EArl9WDNUIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMsDr1n1 a48qIjz2APlcOCWbQ2hiMB8GA1UdIwQYMBaAFBU7Y6k3c7JYmIIYZlXe8wRG3YYN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTBCNC83N0Q1MkFBMDE2 QjUxMUVEOTgwM0EyNzJDNEY5QUUwMi9GVHRqcVRkenNsaVlnaGhtVmQ3ekJFYmRo ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZUdGpxVGR6c2xpWWdoaG1WZDd6QkViZGhnMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTBCNC83N0Q1MkFBMDE2QjUxMUVEOTgwM0EyNzJDNEY5QUUwMi9GVHRqcVRkenNs aVlnaGhtVmQ3ekJFYmRoZzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeOtzLpiBGp8rHaES3lpBBVcD4wi6ghjNGrJJ4kwNgtQJm94okXPtG Yyzi71WR/DPprtRmPTrqeztEJRPR6584XIvMxwLREzGwYX/cPLmTooGQ/dWVNDdg oP+1XpYRX0jzMfdZ0lzftT99+zCgX6SNiUSRUtajIz1S/SAtSAQJcueXKpMUVKE5 PZ8SRr3dBOv0Wz5DOhbXr76gxDd7NAvoS/hINkUEBSbutTwicNUBrYGV5f+Quv5x 4uFDQNb+wBK5uTRETNFKpvd3PLd1BlivQ80UwqIVsPv7BjRSR79ccnw0bsQ017J4 a08QCTWU4MflO/Ynm4+B3pp1dGpYAxsz -----END CERTIFICATE-----Generated at Wed May 1 05:55:43 2024 by rpki-client on console-ams.rpki-client.org