$ rpki-client -vvf rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.mft File: tdRsD3W7vyQRKYrr0rVitaqV7Go.mft (raw, json) Hash identifier: 6gqleIpnTzfCtT59mtyw97W7R3XQqf9rrOeVQYPkbdI= Subject key identifier: 85:BF:34:EC:AD:BF:A6:CA:6F:B1:C9:D9:1D:8A:FD:2D:B5:01:6C:C3 Authority key identifier: B5:D4:6C:0F:75:BB:BF:24:11:29:8A:EB:D2:B5:62:B5:AA:95:EC:6A Certificate issuer: /CN=A919C230/serialNumber=B5D46C0F75BBBF2411298AEBD2B562B5AA95EC6A Certificate serial: 09AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdRsD3W7vyQRKYrr0rVitaqV7Go.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.mft Manifest number: 099B Signing time: Thu 02 May 2024 21:02:06 +0000 Manifest this update: Thu 02 May 2024 21:02:06 +0000 Manifest next update: Thu 09 May 2024 21:02:06 +0000 Files and hashes: 1: tdRsD3W7vyQRKYrr0rVitaqV7Go.crl (hash: 5HXASXhT5pAadeCq5KqSrcH8dJ0YT+c6tJRPmLafE88=) 2: 1429DACC099B11ED8A62781AC4F9AE02.roa (hash: 1QYfJcrWIKG5Bwap3NySG0VLE3R8KvxRUMERVeUCCIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.crl rsync://rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdRsD3W7vyQRKYrr0rVitaqV7Go.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 21:02:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2475 (0x9ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C230/serialNumber=B5D46C0F75BBBF2411298AEBD2B562B5AA95EC6A Validity Not Before: May 2 21:02:06 2024 GMT Not After : May 9 21:02:06 2024 GMT Subject: CN=6633ff4e-1e00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:20:5a:8f:3a:47:44:60:3d:a4:7f:6e:4b:10: 65:92:90:5b:f9:4d:84:31:bc:64:ee:49:c9:88:9b: 4d:73:b6:32:ed:e8:bf:52:84:cc:dc:69:40:50:b6: 64:95:77:38:b1:63:3c:70:73:b8:ee:e8:13:ac:cb: 8b:d6:84:6c:2c:3e:81:cb:93:07:af:ee:b3:38:da: 4c:ef:6b:c2:ca:8e:95:b2:66:a8:5f:c7:e1:c5:98: fe:75:87:df:26:66:64:8d:19:fb:ac:d8:b9:38:e5: c4:af:67:37:94:4d:7d:bb:75:e5:9e:6c:b7:7b:73: 3c:0f:0d:8d:67:67:99:4d:5d:0f:ae:88:74:df:1c: 11:5c:1e:99:0d:ef:0f:39:0a:18:b2:33:0b:de:08: 61:b7:d1:37:2e:25:c2:17:a8:d9:87:46:60:54:72: 06:06:79:06:9b:14:29:27:43:96:95:79:29:15:c8: e0:ba:8c:64:6b:d7:72:d6:43:25:d7:18:c0:50:34: 22:06:f9:dd:40:37:21:27:4c:84:ba:ae:98:29:c3: 3c:6e:ed:de:a4:ed:fb:48:cf:44:5a:99:33:60:85: 17:87:62:43:ad:44:4a:15:33:7c:ca:9c:09:1f:83: 3c:85:5f:3a:05:32:db:80:1e:5c:a3:8b:e8:67:4f: 63:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:BF:34:EC:AD:BF:A6:CA:6F:B1:C9:D9:1D:8A:FD:2D:B5:01:6C:C3 X509v3 Authority Key Identifier: keyid:B5:D4:6C:0F:75:BB:BF:24:11:29:8A:EB:D2:B5:62:B5:AA:95:EC:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdRsD3W7vyQRKYrr0rVitaqV7Go.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:00:25:34:43:c1:09:3f:2b:23:77:c6:7b:38:d8:8c:40:85: 29:1c:51:43:55:ce:8d:04:73:91:fc:e2:01:44:ad:f4:cb:1f: fe:e0:f1:ec:a5:5b:cf:7b:60:b7:99:7d:3e:ae:bf:b7:6b:7f: 71:bd:6a:22:aa:d0:69:c8:e0:20:d4:63:fc:5d:b3:74:69:4b: 9e:d2:79:18:a3:68:71:56:68:23:18:65:67:b7:ca:3e:99:52: 98:2b:1d:b0:e7:ea:72:1b:38:fe:f7:5d:b0:5a:7b:ac:8a:17: ee:e1:8c:df:ef:e8:95:1f:54:64:aa:4f:8e:3b:04:39:3b:e0: e9:5e:92:cb:04:4d:be:8f:db:02:9a:de:95:a4:8e:12:a7:2f: bc:d1:0e:80:7f:20:46:41:99:43:c1:da:03:c8:ab:77:3d:7f: 6d:5c:e8:fd:bd:24:e6:c7:d9:e9:3c:4c:6f:fd:82:7b:21:13: 5b:c2:8e:87:52:a7:89:9a:7c:4a:a3:e1:46:aa:80:73:73:72: 89:c2:9d:dd:b7:b7:e4:56:5c:66:11:45:a3:ce:eb:03:b7:8f: 4a:64:f1:66:2e:76:43:9f:9a:8f:e9:0c:9c:d6:91:2b:e7:9d: 24:4f:1d:a7:79:f3:c4:43:f5:98:17:5a:67:98:36:8b:c5:3b: 93:1f:3c:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUMyMzAxMTAvBgNVBAUTKEI1RDQ2QzBGNzVCQkJGMjQxMTI5OEFFQkQyQjU2MkI1 QUE5NUVDNkEwHhcNMjQwNTAyMjEwMjA2WhcNMjQwNTA5MjEwMjA2WjAYMRYwFAYD VQQDEw02NjMzZmY0ZS0xZTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAriBajzpHRGA9pH9uSxBlkpBb+U2EMbxk7knJiJtNc7Yy7ei/UoTM3GlAULZk lXc4sWM8cHO47ugTrMuL1oRsLD6By5MHr+6zONpM72vCyo6VsmaoX8fhxZj+dYff JmZkjRn7rNi5OOXEr2c3lE19u3Xlnmy3e3M8Dw2NZ2eZTV0Proh03xwRXB6ZDe8P OQoYsjML3ghht9E3LiXCF6jZh0ZgVHIGBnkGmxQpJ0OWlXkpFcjguoxka9dy1kMl 1xjAUDQiBvndQDchJ0yEuq6YKcM8bu3epO37SM9EWpkzYIUXh2JDrURKFTN8ypwJ H4M8hV86BTLbgB5co4voZ09jhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIW/NOyt v6bKb7HJ2R2K/S21AWzDMB8GA1UdIwQYMBaAFLXUbA91u78kESmK69K1YrWqlexq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzIzMC8yOTU0QUJEQzY1 NEUxMUVBOTBDNjM1ODBDNEY5QUUwMi90ZFJzRDNXN3Z5UVJLWXJyMHJWaXRhcVY3 R28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RkUnNEM1c3dnlRUktZcnIwclZpdGFxVjdHby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzIzMC8yOTU0QUJEQzY1NEUxMUVBOTBDNjM1ODBDNEY5QUUwMi90ZFJzRDNXN3Z5 UVJLWXJyMHJWaXRhcVY3R28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDACU0Q8EJPysjd8Z7ONiMQIUpHFFDVc6NBHOR/OIBRK30yx/+4PHs pVvPe2C3mX0+rr+3a39xvWoiqtBpyOAg1GP8XbN0aUue0nkYo2hxVmgjGGVnt8o+ mVKYKx2w5+pyGzj+912wWnusihfu4Yzf7+iVH1Rkqk+OOwQ5O+DpXpLLBE2+j9sC mt6VpI4Spy+80Q6AfyBGQZlDwdoDyKt3PX9tXOj9vSTmx9npPExv/YJ7IRNbwo6H UqeJmnxKo+FGqoBzc3KJwp3dt7fkVlxmEUWjzusDt49KZPFmLnZDn5qP6Qyc1pEr 550kTx2nefPEQ/WYF1pnmDaLxTuTHzwr -----END CERTIFICATE-----Generated at Thu May 2 22:28:53 2024 by rpki-client on console-ams.rpki-client.org