$ rpki-client -vvf rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft File: aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft (raw, json) Hash identifier: Glj2KpyEP9Hyna8g5BtcUB4HL8CWLQE8Jb6eUjVppu0= Subject key identifier: E4:23:6B:DA:47:B4:89:31:D0:E6:09:38:BD:74:81:E2:DE:4E:21:1F Authority key identifier: 68:FA:F9:DA:CE:19:76:8C:AC:3D:4E:D7:BB:24:37:2B:FF:A6:D0:18 Certificate issuer: /CN=A91872ED/serialNumber=68FAF9DACE19768CAC3D4ED7BB24372BFFA6D018 Certificate serial: 343D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft Manifest number: 33F2 Signing time: Fri 26 Apr 2024 14:17:51 +0000 Manifest this update: Fri 26 Apr 2024 14:17:51 +0000 Manifest next update: Fri 03 May 2024 14:17:51 +0000 Files and hashes: 1: aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl (hash: XLDzsQ86UiVBHPi+BYybh4GrpD0K8EEHoIc5gRXt1x4=) 2: 797B4DEC293B11E8B187196DC4F9AE02.roa (hash: m0T5p+j/9s+rm9D6YdSh//2Alx2Eae+Du8lbaB1hR7Y=) 3: 1921C8926CDF11EAB92A3A24C4F9AE02.roa (hash: IkqW+PwyXlQ+AUTKEJ4fHo5q5mHtKj5Ve8Q8p0ADu48=) 4: 707EE02E54EC11E791C3F825C4F9AE02.roa (hash: yT6VnRLmIX4JBA9GtJaKAexfPeVPPL2P99luRa7FJpM=) 5: 19ACBFF66CDF11EAB92A3A24C4F9AE02.roa (hash: rb6m6NgtqMNqMVoEYBcUFewdPh6xLzsagwAw8cSDCbE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 14:17:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13373 (0x343d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED/serialNumber=68FAF9DACE19768CAC3D4ED7BB24372BFFA6D018 Validity Not Before: Apr 26 14:17:51 2024 GMT Not After : May 3 14:17:51 2024 GMT Subject: CN=662bb78f-0933 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:07:68:31:17:6e:c1:ce:b2:2d:7f:69:fd:7b: 9c:96:49:b3:6f:ad:c8:e4:59:04:db:84:fc:7f:c9: 16:da:80:25:02:90:5e:ac:12:d0:f7:b9:f9:45:e5: 8a:e3:91:c8:28:e1:21:ae:bb:f0:e9:0d:cc:28:9a: c2:0b:8b:40:06:9b:69:55:27:93:59:ed:0b:f1:ec: e5:66:db:54:6f:80:2a:97:df:83:18:eb:6a:54:18: f9:3c:39:a4:9a:26:95:6b:6c:44:b1:9e:47:49:b0: 56:6a:21:ec:d8:36:08:1c:d5:96:5d:98:79:bc:19: 98:e0:97:00:26:0d:34:27:9d:67:d0:7c:50:55:fb: a9:c7:10:53:9d:f5:59:43:50:4b:7a:aa:fc:a3:43: fe:7b:63:d7:b9:b0:6c:a7:8e:52:a2:db:2c:e2:70: 38:c3:7f:9e:63:89:47:1f:6b:a2:45:28:16:d3:5c: 92:b5:9d:5f:be:9e:86:ac:83:ee:3b:ce:e5:e6:1b: 1d:07:8f:f6:e0:65:eb:4c:12:46:75:61:71:a8:55: c4:c2:4d:26:5c:f7:ec:ae:d9:de:82:e3:a4:fe:1d: d6:c6:cf:f5:0c:95:32:b3:63:34:ee:7d:3b:53:ec: 22:5c:b0:75:f0:76:15:4c:43:75:08:c2:e9:d9:1e: f0:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:23:6B:DA:47:B4:89:31:D0:E6:09:38:BD:74:81:E2:DE:4E:21:1F X509v3 Authority Key Identifier: keyid:68:FA:F9:DA:CE:19:76:8C:AC:3D:4E:D7:BB:24:37:2B:FF:A6:D0:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:ef:d0:2f:e7:7b:96:7b:c5:ad:7d:7b:71:e7:2d:6c:b0:30: 10:92:55:4f:0e:a5:09:a4:f8:7f:25:87:29:11:72:ff:04:01: f2:c6:0c:42:b4:83:85:b7:52:09:d9:bf:ec:19:c7:86:44:08: 12:d8:32:eb:da:49:29:a9:a8:af:73:39:1b:8b:89:c1:2f:7b: 5b:5d:be:4d:82:7f:4b:52:cf:e2:f2:8d:1d:86:bd:4f:11:0e: 03:c8:66:64:67:d8:38:4a:44:f5:90:83:c6:1b:22:40:0c:97: bc:35:6d:2a:c8:01:a6:94:89:c9:7c:81:13:73:f5:96:5e:7f: b3:ca:ec:37:3f:c8:5c:53:1d:e3:ee:68:c7:ca:be:1b:ea:61: 0e:f6:82:99:c7:04:c9:d8:c5:2c:46:08:1f:f2:76:ce:52:c0: ad:d1:6f:12:a4:1a:2c:9b:67:49:cf:7d:a3:8c:7d:85:dd:0e: fc:98:20:72:ab:c7:01:5e:df:9f:5f:80:8c:b5:5f:aa:2f:f2: fe:1b:62:51:4f:20:d2:31:f6:b7:ab:e1:77:3a:34:04:c4:37: aa:ef:28:23:90:36:63:1c:96:f2:82:cb:de:52:79:aa:20:37: f5:f8:ba:9c:bb:68:9d:91:7d:8f:5a:c2:ed:e3:94:ea:a1:4a: 17:b2:b6:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICND0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcyRUQxMTAvBgNVBAUTKDY4RkFGOURBQ0UxOTc2OENBQzNENEVEN0JCMjQzNzJC RkZBNkQwMTgwHhcNMjQwNDI2MTQxNzUxWhcNMjQwNTAzMTQxNzUxWjAYMRYwFAYD VQQDEw02NjJiYjc4Zi0wOTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1AdoMRduwc6yLX9p/Xuclkmzb63I5FkE24T8f8kW2oAlApBerBLQ97n5ReWK 45HIKOEhrrvw6Q3MKJrCC4tABptpVSeTWe0L8ezlZttUb4Aql9+DGOtqVBj5PDmk miaVa2xEsZ5HSbBWaiHs2DYIHNWWXZh5vBmY4JcAJg00J51n0HxQVfupxxBTnfVZ Q1BLeqr8o0P+e2PXubBsp45Sotss4nA4w3+eY4lHH2uiRSgW01yStZ1fvp6GrIPu O87l5hsdB4/24GXrTBJGdWFxqFXEwk0mXPfsrtneguOk/h3Wxs/1DJUys2M07n07 U+wiXLB18HYVTEN1CMLp2R7wiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOQja9pH tIkx0OYJOL10geLeTiEfMB8GA1UdIwQYMBaAFGj6+drOGXaMrD1O17skNyv/ptAY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzJFRC9FRDhDOTY5MDFE NkMxMUUyOEEzOEEzQUQwOEIwMkNEMi9hUHI1MnM0WmRveXNQVTdYdXlRM0tfLW0w QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FQcjUyczRaZG95c1BVN1h1eVEzS18tbTBCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzJFRC9FRDhDOTY5MDFENkMxMUUyOEEzOEEzQUQwOEIwMkNEMi9hUHI1MnM0WmRv eXNQVTdYdXlRM0tfLW0wQmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAh79Av53uWe8WtfXtx5y1ssDAQklVPDqUJpPh/JYcpEXL/BAHyxgxC tIOFt1IJ2b/sGceGRAgS2DLr2kkpqaivczkbi4nBL3tbXb5Ngn9LUs/i8o0dhr1P EQ4DyGZkZ9g4SkT1kIPGGyJADJe8NW0qyAGmlInJfIETc/WWXn+zyuw3P8hcUx3j 7mjHyr4b6mEO9oKZxwTJ2MUsRggf8nbOUsCt0W8SpBosm2dJz32jjH2F3Q78mCBy q8cBXt+fX4CMtV+qL/L+G2JRTyDSMfa3q+F3OjQExDeq7ygjkDZjHJbygsveUnmq IDf1+Lqcu2idkX2PWsLt45TqoUoXsrZs -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:19 2024 by rpki-client on console-ams.rpki-client.org