$ rpki-client -vvf rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft File: kDfAsp43CSqDhSzkuIW3dqfB47Y.mft (raw, json) Hash identifier: 0wBVUMKLdKGm/ygyMu0zXLSYV4+DQQC5i1v2/5mvFlM= Subject key identifier: 0C:82:02:0A:52:A6:CE:F4:EC:03:88:97:FF:F4:05:6D:AD:EF:AA:54 Authority key identifier: 90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 Certificate issuer: /CN=A91957D1/serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Certificate serial: 57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft Manifest number: 55 Signing time: Wed 15 May 2024 07:58:18 +0000 Manifest this update: Wed 15 May 2024 07:58:18 +0000 Manifest next update: Wed 22 May 2024 07:58:18 +0000 Files and hashes: 1: kDfAsp43CSqDhSzkuIW3dqfB47Y.crl (hash: AyeQEwv2vB6W17Xe8ZugXXtyxJ/Eh7SCVLwNvkQRrvM=) 2: 72CE4D80958411EEB3748B58C4F9AE02.roa (hash: YAnxHaIeKZEumyXB5ZH6jAWRmeNdE6YCfGy+a33vJQk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:58:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 87 (0x57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91957D1/serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Validity Not Before: May 15 07:58:18 2024 GMT Not After : May 22 07:58:18 2024 GMT Subject: CN=66446b1a-c095 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:37:6d:71:2e:e0:a0:ce:63:9c:e4:ff:c4:d5: cf:fd:95:5a:ed:2d:e8:2b:65:e3:66:7e:86:84:38: e2:bb:6d:4e:fb:0c:67:da:4f:b7:c9:0d:21:d5:aa: 04:52:09:e3:3d:e1:e2:f5:6d:86:c7:37:06:5b:05: 02:46:3a:da:5f:ef:68:14:0a:67:90:bc:9b:16:16: 1b:d0:19:8e:c3:8a:34:6c:b6:61:05:34:94:49:7d: 3c:ff:50:b8:79:b7:df:8a:e2:89:c1:51:bf:40:d0: d8:18:23:75:97:27:8a:93:87:49:5a:62:de:0c:ef: 2e:2d:c6:72:45:34:62:2a:8e:0d:18:1a:3a:17:d7: ea:5a:8b:aa:a0:f6:bd:d3:e2:79:71:70:02:07:f6: 24:09:35:78:ea:db:c4:58:b9:69:d7:d0:09:be:b2: 00:b9:14:26:26:e0:46:d8:14:da:ff:e6:39:b7:ba: 3f:b9:bb:ce:42:41:03:69:21:53:f6:d9:a2:6e:5d: f6:2a:8b:64:35:aa:fc:f0:74:3f:2d:9b:a9:84:41: 08:3b:8a:af:89:20:8b:29:5d:ee:7c:75:d7:79:5d: a9:9d:c0:8b:57:ec:e1:71:b7:01:21:93:c7:a3:67: ec:18:5c:17:2d:52:a1:3d:b1:00:92:d6:11:a7:c1: 3f:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:82:02:0A:52:A6:CE:F4:EC:03:88:97:FF:F4:05:6D:AD:EF:AA:54 X509v3 Authority Key Identifier: keyid:90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:71:16:58:3e:6e:3f:02:92:f1:ad:9a:cb:61:37:3f:41:1b: b4:48:7a:ff:f4:95:2d:bc:1a:e0:12:7f:65:36:7b:f3:e1:15: f8:f9:9e:42:72:c6:30:71:28:81:88:f4:6a:b3:ac:28:c6:00: 3e:d0:6a:a9:86:5a:92:27:9e:8f:e5:b3:8f:0e:02:93:72:25: c6:7e:3b:8e:c1:99:3f:6f:e0:7a:71:0a:c0:49:51:37:aa:ba: e4:a7:23:26:74:1a:d2:fe:68:a8:b2:e7:8c:0a:74:ee:04:e4: e8:38:72:ff:11:43:aa:80:f5:67:56:be:e0:5b:2c:6e:b4:a3: 8a:65:27:3f:56:64:09:8b:1c:e1:0d:49:1e:81:78:6f:3a:a1: 41:18:6e:23:bb:9e:37:f0:22:5a:26:1c:98:77:e1:5f:e6:40: fa:c2:11:0d:fa:dd:e4:1a:24:65:2b:d7:5b:c5:79:8a:0f:e2: d6:02:ba:9c:29:95:da:76:7f:61:76:80:89:c8:7c:84:d7:68: a4:93:83:17:83:51:6e:6d:c0:09:63:1d:c8:55:76:41:33:e5: 4b:07:ce:7a:72:84:3c:6f:d8:3c:3f:ba:15:70:97:98:d3:9d: e5:8f:bc:31:8a:46:d2:e9:25:54:a9:3e:31:e9:6f:80:b3:be: 13:ff:c4:f8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NTdEMTExMC8GA1UEBRMoOTAzN0MwQjI5RTM3MDkyQTgzODUyQ0U0Qjg4NUI3NzZB N0MxRTNCNjAeFw0yNDA1MTUwNzU4MThaFw0yNDA1MjIwNzU4MThaMBgxFjAUBgNV BAMTDTY2NDQ2YjFhLWMwOTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD2N21xLuCgzmOc5P/E1c/9lVrtLegrZeNmfoaEOOK7bU77DGfaT7fJDSHVqgRS CeM94eL1bYbHNwZbBQJGOtpf72gUCmeQvJsWFhvQGY7DijRstmEFNJRJfTz/ULh5 t9+K4onBUb9A0NgYI3WXJ4qTh0laYt4M7y4txnJFNGIqjg0YGjoX1+pai6qg9r3T 4nlxcAIH9iQJNXjq28RYuWnX0Am+sgC5FCYm4EbYFNr/5jm3uj+5u85CQQNpIVP2 2aJuXfYqi2Q1qvzwdD8tm6mEQQg7iq+JIIspXe58ddd5XamdwItX7OFxtwEhk8ej Z+wYXBctUqE9sQCS1hGnwT83AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDIICClKm zvTsA4iX//QFba3vqlQwHwYDVR0jBBgwFoAUkDfAsp43CSqDhSzkuIW3dqfB47Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1N0QxL0YwNTM3Nzk0OTNC RDExRUU4MUY4MEE1MkM0RjlBRTAyL2tEZkFzcDQzQ1NxRGhTemt1SVczZHFmQjQ3 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva0RmQXNwNDNDU3FEaFN6a3VJVzNkcWZCNDdZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1 N0QxL0YwNTM3Nzk0OTNCRDExRUU4MUY4MEE1MkM0RjlBRTAyL2tEZkFzcDQzQ1Nx RGhTemt1SVczZHFmQjQ3WS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFFxFlg+bj8CkvGtmsthNz9BG7RIev/0lS28GuASf2U2e/PhFfj5nkJy xjBxKIGI9GqzrCjGAD7QaqmGWpInno/ls48OApNyJcZ+O47BmT9v4HpxCsBJUTeq uuSnIyZ0GtL+aKiy54wKdO4E5Og4cv8RQ6qA9WdWvuBbLG60o4plJz9WZAmLHOEN SR6BeG86oUEYbiO7njfwIlomHJh34V/mQPrCEQ363eQaJGUr11vFeYoP4tYCupwp ldp2f2F2gInIfITXaKSTgxeDUW5twAljHchVdkEz5UsHznpyhDxv2Dw/uhVwl5jT neWPvDGKRtLpJVSpPjHpb4CzvhP/xPg= -----END CERTIFICATE-----Generated at Wed May 15 09:04:41 2024 by rpki-client on console-ams.rpki-client.org