$ rpki-client -vvf rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.mft File: 72cCp9CuyDTe-49BaLL-j01YQ-g.mft (raw, json) Hash identifier: 780yUmpGOfT5N7ffNgGAx/Z9kMBtKSY5e4WzoWXxIPM= Subject key identifier: 32:EE:6B:C0:90:2F:46:F1:D8:56:EB:E4:6A:9D:6E:7E:71:1F:BE:DD Authority key identifier: EF:67:02:A7:D0:AE:C8:34:DE:FB:8F:41:68:B2:FE:8F:4D:58:43:E8 Certificate issuer: /CN=A91A352E/serialNumber=EF6702A7D0AEC834DEFB8F4168B2FE8F4D5843E8 Certificate serial: B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72cCp9CuyDTe-49BaLL-j01YQ-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.mft Manifest number: B0 Signing time: Fri 17 May 2024 06:43:05 +0000 Manifest this update: Fri 17 May 2024 06:43:04 +0000 Manifest next update: Fri 24 May 2024 06:43:04 +0000 Files and hashes: 1: 72cCp9CuyDTe-49BaLL-j01YQ-g.crl (hash: XH+vHwJMgPZMIQeaPatb4Vw6SSALXsquSwy0gGgCQ+o=) 2: 3E734F70B9A311EE85D60B49C4F9AE02.roa (hash: KETtLjC6TzC1ChTU5VhPa2GsuKgnmsvYAWcO3cW4jgA=) 3: C3835BF6B9A311EEB293524AC4F9AE02.roa (hash: BxUovaVl0Jw7kdro+dX+O8w7d9Fi2xKh9Vj0lpxV8sk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.crl rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72cCp9CuyDTe-49BaLL-j01YQ-g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 06:43:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A352E/serialNumber=EF6702A7D0AEC834DEFB8F4168B2FE8F4D5843E8 Validity Not Before: May 17 06:43:04 2024 GMT Not After : May 24 06:43:04 2024 GMT Subject: CN=6646fc79-da62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:20:bf:ff:f6:67:70:3f:0b:84:66:ad:bd:0c: b5:8a:8a:17:d2:1a:78:9d:b7:db:60:f9:83:c8:2f: 12:6c:13:a3:c2:15:16:7a:7f:8f:e7:e2:5e:db:74: 1f:d8:50:e5:87:99:99:cc:54:8e:71:a1:e9:88:cb: b3:d0:9b:7a:2f:ed:01:c7:84:93:1f:c0:9c:55:56: ff:6c:84:07:12:0b:59:fc:29:3f:32:e8:a0:3c:3c: df:53:b8:8a:0c:03:23:23:c1:e0:a1:2f:50:a6:2d: bf:2e:3e:0f:24:21:f3:2d:32:09:87:2b:b6:39:a6: 81:50:c2:71:61:8a:8c:f6:4b:51:ba:77:b0:53:45: 7f:68:b7:31:07:40:56:5d:35:31:27:d8:cc:89:12: 69:a0:78:f1:3c:4c:d6:57:08:fa:92:7a:35:07:88: a3:4f:c1:95:80:a1:0d:c2:95:db:82:09:1b:f8:7d: 56:ae:b4:13:5d:b2:82:6a:bd:d9:d3:f9:0b:b3:fd: d5:13:db:8d:fc:16:d4:0a:6c:c5:7b:b2:d6:38:56: 4f:40:3d:bd:fd:ae:2a:34:e5:96:93:26:4f:67:44: 59:2a:87:9c:6d:ec:a8:48:05:6a:41:06:3b:65:ad: d6:8a:32:b6:3c:25:cc:ae:94:b4:94:87:0a:d9:c2: 98:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:EE:6B:C0:90:2F:46:F1:D8:56:EB:E4:6A:9D:6E:7E:71:1F:BE:DD X509v3 Authority Key Identifier: keyid:EF:67:02:A7:D0:AE:C8:34:DE:FB:8F:41:68:B2:FE:8F:4D:58:43:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72cCp9CuyDTe-49BaLL-j01YQ-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:95:63:df:47:24:9b:31:10:1c:24:80:70:73:ae:b2:c2:10: 51:32:f5:64:3f:9d:1f:7f:ce:db:5b:6d:26:10:85:5c:9a:f4: 65:29:af:b7:92:6a:ce:5c:8c:ac:81:32:61:ba:22:21:d1:70: 8b:f7:da:33:73:eb:d5:91:28:7b:3f:55:d6:f0:15:d5:b7:8f: 42:3a:cd:00:ea:72:69:e9:9a:a0:46:8c:43:27:c8:82:93:bb: 06:22:a8:00:50:00:88:98:1e:10:d5:6a:61:1e:2b:e1:8f:42: 59:44:34:d1:75:27:a7:62:ac:f3:45:aa:a4:e9:1e:70:8e:95: 7b:79:9c:93:36:d1:49:c6:5d:2c:ed:26:0e:2e:84:c9:21:d1: 8a:00:ef:6e:91:c6:08:5b:01:40:0c:ec:d0:d5:98:47:0e:17: ea:7d:44:4b:c6:8b:f0:3a:85:ce:fc:9e:15:1c:1c:b3:25:79: c8:32:ba:b0:d8:b1:24:f5:4f:7b:ca:e7:87:98:54:36:d5:1b: 45:39:42:41:58:4f:16:e9:f5:46:04:60:0e:de:0d:a1:61:ba: 54:f3:86:53:16:2c:dd:c3:ab:e8:8e:b1:4a:51:59:93:b0:42: 92:55:6e:b3:cf:82:f2:bc:af:d0:df:9a:a2:4a:36:7c:9b:cd: bc:91:b5:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM1MkUxMTAvBgNVBAUTKEVGNjcwMkE3RDBBRUM4MzRERUZCOEY0MTY4QjJGRThG NEQ1ODQzRTgwHhcNMjQwNTE3MDY0MzA0WhcNMjQwNTI0MDY0MzA0WjAYMRYwFAYD VQQDEw02NjQ2ZmM3OS1kYTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtyC///ZncD8LhGatvQy1iooX0hp4nbfbYPmDyC8SbBOjwhUWen+P5+Je23Qf 2FDlh5mZzFSOcaHpiMuz0Jt6L+0Bx4STH8CcVVb/bIQHEgtZ/Ck/MuigPDzfU7iK DAMjI8HgoS9Qpi2/Lj4PJCHzLTIJhyu2OaaBUMJxYYqM9ktRunewU0V/aLcxB0BW XTUxJ9jMiRJpoHjxPEzWVwj6kno1B4ijT8GVgKENwpXbggkb+H1WrrQTXbKCar3Z 0/kLs/3VE9uN/BbUCmzFe7LWOFZPQD29/a4qNOWWkyZPZ0RZKoecbeyoSAVqQQY7 Za3WijK2PCXMrpS0lIcK2cKYjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDLua8CQ L0bx2Fbr5Gqdbn5xH77dMB8GA1UdIwQYMBaAFO9nAqfQrsg03vuPQWiy/o9NWEPo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzUyRS9EQzMzNTk3QzBC NjAxMUVFQjMyMjA0MUFDNEY5QUUwMi83MmNDcDlDdXlEVGUtNDlCYUxMLWowMVlR LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyY0NwOUN1eURUZS00OUJhTEwtajAxWVEtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzUyRS9EQzMzNTk3QzBCNjAxMUVFQjMyMjA0MUFDNEY5QUUwMi83MmNDcDlDdXlE VGUtNDlCYUxMLWowMVlRLWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8lWPfRySbMRAcJIBwc66ywhBRMvVkP50ff87bW20mEIVcmvRlKa+3 kmrOXIysgTJhuiIh0XCL99ozc+vVkSh7P1XW8BXVt49COs0A6nJp6ZqgRoxDJ8iC k7sGIqgAUACImB4Q1WphHivhj0JZRDTRdSenYqzzRaqk6R5wjpV7eZyTNtFJxl0s 7SYOLoTJIdGKAO9ukcYIWwFADOzQ1ZhHDhfqfURLxovwOoXO/J4VHByzJXnIMrqw 2LEk9U97yueHmFQ21RtFOUJBWE8W6fVGBGAO3g2hYbpU84ZTFizdw6vojrFKUVmT sEKSVW6zz4LyvK/Q35qiSjZ8m828kbXN -----END CERTIFICATE-----Generated at Fri May 17 08:52:52 2024 by rpki-client on console-ams.rpki-client.org