$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft File: C-AoY1W14laYjORU35P8D8p_YEA.mft (raw, json) Hash identifier: 01B4hNJ0KyuGczbs2Iq8JRb3A32NiSqsu7me8mWRhD8= Subject key identifier: 5D:3C:1F:B1:84:95:44:8B:D7:C7:B4:ED:AF:4E:46:13:2C:AD:50:F7 Authority key identifier: 0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40 Certificate issuer: /CN=A91A1D43/serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040 Certificate serial: C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft Manifest number: BD Signing time: Fri 03 May 2024 06:30:17 +0000 Manifest this update: Fri 03 May 2024 06:30:16 +0000 Manifest next update: Fri 10 May 2024 06:30:16 +0000 Files and hashes: 1: C-AoY1W14laYjORU35P8D8p_YEA.crl (hash: yqOfLbd/h5N1oeNUCxCUAxQZRi5OvfMoUiowf9k0uoE=) 2: 8BCB2CFAEA3911EDB91E190BC4F9AE02.roa (hash: NwcAmb3qtzieVF3nFtWxzqVHGCVeqZBrpDbY94p+NYk=) 3: 8B1BDC14EA3911EDB91E190BC4F9AE02.roa (hash: Fb+sAlO981Q8IszvJ9e3FZrhvTZMZ9fTATHnLpoxBL8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 06:30:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1D43/serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040 Validity Not Before: May 3 06:30:16 2024 GMT Not After : May 10 06:30:16 2024 GMT Subject: CN=66348479-3569 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:cf:6b:02:8e:49:58:98:ea:7f:70:21:de:39: 3e:cf:83:bd:5f:e5:03:6c:ef:4c:8b:8b:07:41:67: 3f:05:99:fb:76:cb:9b:9e:76:8b:88:50:db:15:ec: 53:a5:4d:55:cb:ef:b9:dd:03:e9:3d:1b:50:c7:29: 7e:4e:c4:e1:73:97:e3:c3:3a:05:e2:e8:2f:08:02: 9b:a6:d0:c0:c9:12:c1:bc:84:75:46:ce:7f:f5:9f: ae:76:62:72:3e:b0:ac:c5:dd:41:3c:b1:ea:85:68: 60:aa:e1:62:f1:75:d8:e9:8f:cc:65:ab:78:a1:c7: 1d:6e:f5:86:65:aa:f8:33:52:47:90:64:76:6f:5f: 7e:78:5b:5e:cc:d6:95:a8:06:a6:a2:52:d9:56:f5: 52:26:17:9d:6d:45:25:12:83:c7:d9:2c:f4:54:00: 94:2c:c3:43:80:d1:8b:1a:2a:6c:a4:ca:7c:98:62: 74:04:7b:6f:a3:3a:a4:44:2f:1f:76:92:f5:4e:91: 5b:10:ec:f6:0b:66:24:57:88:e8:1c:9e:72:98:d6: 72:d2:1c:82:56:68:77:7d:16:b8:86:54:bf:0b:c0: 6c:65:c2:5f:41:4e:8b:93:cb:06:55:3b:61:aa:35: f7:66:14:b5:e7:ae:a5:4f:ac:eb:12:78:13:ee:af: ce:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:3C:1F:B1:84:95:44:8B:D7:C7:B4:ED:AF:4E:46:13:2C:AD:50:F7 X509v3 Authority Key Identifier: keyid:0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:37:9a:1c:fe:22:d5:40:bc:41:c1:7b:8c:9c:34:ef:05:77: c4:86:07:61:55:9a:f1:4b:08:f7:f0:8b:f4:6f:af:fd:2a:ad: f1:a3:d9:e9:19:0b:9d:9d:67:a9:fc:e6:85:12:2a:c5:7c:a2: 9e:ed:d3:b0:71:32:bc:2a:fc:13:c7:82:ab:32:54:eb:20:f9: ae:58:37:3a:52:d6:83:72:25:55:77:69:d3:f7:97:88:2a:ec: e8:07:d8:14:88:34:53:c2:19:d7:1a:e8:d1:db:ae:19:5d:58: b0:bb:ec:dc:54:7e:b7:46:5d:3a:fe:6e:5b:4c:09:7d:a0:85: 15:18:30:22:d6:a0:d6:53:01:d8:3d:84:09:57:f6:76:6a:d5: c2:d8:c3:98:db:ad:f7:56:f8:ef:62:24:e1:e5:25:cd:08:56: 81:3d:df:44:1a:81:ba:a2:ce:2f:4e:67:28:ea:a7:57:ad:8e: 98:40:d4:33:44:97:e2:b6:fe:5b:d7:81:c4:4c:d3:4f:e4:ba: cc:76:6b:e2:e8:4f:b7:f8:6a:37:0b:43:ab:bd:0e:12:dd:8f: 50:63:d3:3d:19:03:a8:16:45:be:d8:17:4a:ce:9a:dc:82:f4: 25:13:c8:cb:3a:1c:bb:65:09:84:a1:ad:0e:50:83:55:d9:dc: e8:80:72:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFENDMxMTAvBgNVBAUTKDBCRTAyODYzNTVCNUUyNTY5ODhDRTQ1NERGOTNGQzBG Q0E3RjYwNDAwHhcNMjQwNTAzMDYzMDE2WhcNMjQwNTEwMDYzMDE2WjAYMRYwFAYD VQQDEw02NjM0ODQ3OS0zNTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3s9rAo5JWJjqf3Ah3jk+z4O9X+UDbO9Mi4sHQWc/BZn7dsubnnaLiFDbFexT pU1Vy++53QPpPRtQxyl+TsThc5fjwzoF4ugvCAKbptDAyRLBvIR1Rs5/9Z+udmJy PrCsxd1BPLHqhWhgquFi8XXY6Y/MZat4occdbvWGZar4M1JHkGR2b19+eFtezNaV qAamolLZVvVSJhedbUUlEoPH2Sz0VACULMNDgNGLGipspMp8mGJ0BHtvozqkRC8f dpL1TpFbEOz2C2YkV4joHJ5ymNZy0hyCVmh3fRa4hlS/C8BsZcJfQU6Lk8sGVTth qjX3ZhS1566lT6zrEngT7q/O1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF08H7GE lUSL18e07a9ORhMsrVD3MB8GA1UdIwQYMBaAFAvgKGNVteJWmIzkVN+T/A/Kf2BA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUQ0My84OTI5REZERUVB MjgxMUVEQjdERDAxMThDNEY5QUUwMi9DLUFvWTFXMTRsYVlqT1JVMzVQOEQ4cF9Z RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MtQW9ZMVcxNGxhWWpPUlUzNVA4RDhwX1lFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUQ0My84OTI5REZERUVBMjgxMUVEQjdERDAxMThDNEY5QUUwMi9DLUFvWTFXMTRs YVlqT1JVMzVQOEQ4cF9ZRUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBN5oc/iLVQLxBwXuMnDTvBXfEhgdhVZrxSwj38Iv0b6/9Kq3xo9np GQudnWep/OaFEirFfKKe7dOwcTK8KvwTx4KrMlTrIPmuWDc6UtaDciVVd2nT95eI KuzoB9gUiDRTwhnXGujR264ZXViwu+zcVH63Rl06/m5bTAl9oIUVGDAi1qDWUwHY PYQJV/Z2atXC2MOY2633VvjvYiTh5SXNCFaBPd9EGoG6os4vTmco6qdXrY6YQNQz RJfitv5b14HETNNP5LrMdmvi6E+3+Go3C0OrvQ4S3Y9QY9M9GQOoFkW+2BdKzprc gvQlE8jLOhy7ZQmEoa0OUINV2dzogHJu -----END CERTIFICATE-----Generated at Fri May 3 08:21:37 2024 by rpki-client on console-ams.rpki-client.org