$ rpki-client -vvf rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.mft File: TzFe71rLLtp6NynnnhNZkMAecHQ.mft (raw, json) Hash identifier: xhlGGamEx5OmJBnAJ+0uaKox4gxnlVRjEWwW8eT9o4o= Subject key identifier: 8B:8D:C1:4B:60:49:8A:66:E3:E3:B1:3D:91:83:C2:55:E1:29:EC:43 Authority key identifier: 4F:31:5E:EF:5A:CB:2E:DA:7A:37:29:E7:9E:13:59:90:C0:1E:70:74 Certificate issuer: /CN=A91957C9/serialNumber=4F315EEF5ACB2EDA7A3729E79E135990C01E7074 Certificate serial: 0D47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.mft Manifest number: 0D3E Signing time: Sat 04 May 2024 18:48:49 +0000 Manifest this update: Sat 04 May 2024 18:48:48 +0000 Manifest next update: Sat 11 May 2024 18:48:48 +0000 Files and hashes: 1: TzFe71rLLtp6NynnnhNZkMAecHQ.crl (hash: lI1d6Q1EvJ8fry5ST8EEwp/yoxJid+zQR+d1lk80Yls=) 2: B55EC19EAC2B11E996F6E511C4F9AE02.roa (hash: hIX5A49EWtJSA5M1pXdXvwzS1FvjsEhtrb+D+enUUX4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.crl rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:48:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3399 (0xd47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91957C9/serialNumber=4F315EEF5ACB2EDA7A3729E79E135990C01E7074 Validity Not Before: May 4 18:48:48 2024 GMT Not After : May 11 18:48:48 2024 GMT Subject: CN=66368310-af6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:8c:48:b6:29:94:2a:a0:79:4f:75:c0:a3:a8: cd:94:77:1a:6d:c6:8d:70:30:b3:ec:51:ac:1b:a1: 2d:39:6e:1a:c1:e2:20:ed:d1:ff:cd:db:8e:c4:54: bd:e4:5f:fb:4b:26:36:b1:a1:b7:54:42:23:9c:28: e2:ae:6f:c5:c6:89:cd:63:a7:b9:48:4f:22:8d:66: 00:75:8e:40:16:e4:39:41:20:23:6a:80:a3:eb:55: 4d:b2:f5:3f:96:43:91:b2:b1:c1:ab:9a:c4:b6:a0: 36:49:77:d6:b7:64:a8:c8:41:76:f2:e5:4f:04:b4: 90:62:64:df:84:74:dd:7e:a0:a5:03:c2:9a:f1:e5: 7f:d1:98:55:d1:67:08:75:a0:5f:0f:13:a7:2f:9d: 41:5b:a3:79:3b:8e:17:63:47:3b:50:de:6a:74:d3: a8:c1:b6:a1:9a:65:93:03:05:78:20:7d:1c:df:ea: 8f:33:4b:d4:91:78:a7:c1:cc:70:7b:83:94:37:80: 3a:39:af:9c:50:aa:3f:27:22:06:d3:bf:55:73:e3: a4:2d:e7:23:d4:e7:3f:90:7a:6f:a2:06:7e:9c:f3: 72:70:97:bb:47:63:75:35:5b:21:b4:d9:c3:e0:3d: 1d:d2:0e:3c:74:26:fe:0e:c6:e1:35:9f:89:71:f2: 63:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:8D:C1:4B:60:49:8A:66:E3:E3:B1:3D:91:83:C2:55:E1:29:EC:43 X509v3 Authority Key Identifier: keyid:4F:31:5E:EF:5A:CB:2E:DA:7A:37:29:E7:9E:13:59:90:C0:1E:70:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption db:5f:8c:8c:8c:78:3a:f8:33:e2:8f:87:fb:14:1a:e5:6c:10: c9:03:14:76:c2:7a:41:ad:b5:fe:91:38:5d:56:5a:80:c7:cf: 9e:6b:aa:2e:e3:7d:01:85:e0:ec:c5:2b:16:86:dc:be:8a:83: 8a:aa:ff:ae:08:ed:50:dc:13:e7:5c:8d:85:92:14:00:90:fa: d4:39:84:80:3d:25:54:64:67:c5:dd:21:0f:39:ab:c9:95:19: 71:db:ed:79:cd:33:a3:5c:d2:46:0f:c4:2c:d9:96:1c:fe:79: d6:0c:f5:fb:fd:33:37:e4:8d:53:ac:cf:52:58:d4:b3:fe:84: 85:25:17:13:a7:c5:5d:bd:99:e8:f6:9a:c4:f1:98:f9:6a:62: 05:25:09:5a:98:39:ea:58:9a:36:d1:f8:30:30:ee:f6:1c:af: 45:f4:89:f4:b5:01:8e:43:03:1b:15:7e:87:bb:06:dd:be:40: ca:6d:61:2c:8e:0c:53:a4:69:80:d2:b5:e3:b9:24:e1:ef:08: 8a:12:52:63:08:6f:4a:99:70:e4:55:89:6a:24:72:aa:a7:36: fb:0f:9f:c5:44:d2:bf:53:df:4e:12:ab:1c:76:e3:da:08:16: ca:92:21:7c:bc:6f:f3:4d:f0:d7:1a:ac:75:33:b7:0a:8f:be: 11:a6:22:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU3QzkxMTAvBgNVBAUTKDRGMzE1RUVGNUFDQjJFREE3QTM3MjlFNzlFMTM1OTkw QzAxRTcwNzQwHhcNMjQwNTA0MTg0ODQ4WhcNMjQwNTExMTg0ODQ4WjAYMRYwFAYD VQQDEw02NjM2ODMxMC1hZjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA64xItimUKqB5T3XAo6jNlHcabcaNcDCz7FGsG6EtOW4aweIg7dH/zduOxFS9 5F/7SyY2saG3VEIjnCjirm/FxonNY6e5SE8ijWYAdY5AFuQ5QSAjaoCj61VNsvU/ lkORsrHBq5rEtqA2SXfWt2SoyEF28uVPBLSQYmTfhHTdfqClA8Ka8eV/0ZhV0WcI daBfDxOnL51BW6N5O44XY0c7UN5qdNOowbahmmWTAwV4IH0c3+qPM0vUkXinwcxw e4OUN4A6Oa+cUKo/JyIG079Vc+OkLecj1Oc/kHpvogZ+nPNycJe7R2N1NVshtNnD 4D0d0g48dCb+DsbhNZ+JcfJjeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIuNwUtg SYpm4+OxPZGDwlXhKexDMB8GA1UdIwQYMBaAFE8xXu9ayy7aejcp554TWZDAHnB0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTdDOS9DMzU5RTc1RUFD MTkxMUU5ODNGMkZDNjJDNEY5QUUwMi9UekZlNzFyTEx0cDZOeW5ubmhOWmtNQWVj SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1R6RmU3MXJMTHRwNk55bm5uaE5aa01BZWNIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTdDOS9DMzU5RTc1RUFDMTkxMUU5ODNGMkZDNjJDNEY5QUUwMi9UekZlNzFyTEx0 cDZOeW5ubmhOWmtNQWVjSFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDbX4yMjHg6+DPij4f7FBrlbBDJAxR2wnpBrbX+kThdVlqAx8+ea6ou 430BheDsxSsWhty+ioOKqv+uCO1Q3BPnXI2FkhQAkPrUOYSAPSVUZGfF3SEPOavJ lRlx2+15zTOjXNJGD8Qs2ZYc/nnWDPX7/TM35I1TrM9SWNSz/oSFJRcTp8VdvZno 9prE8Zj5amIFJQlamDnqWJo20fgwMO72HK9F9In0tQGOQwMbFX6HuwbdvkDKbWEs jgxTpGmA0rXjuSTh7wiKElJjCG9KmXDkVYlqJHKqpzb7D5/FRNK/U99OEqscduPa CBbKkiF8vG/zTfDXGqx1M7cKj74RpiJz -----END CERTIFICATE-----Generated at Sat May 4 19:58:41 2024 by rpki-client on console-ams.rpki-client.org