$ rpki-client -vvf rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/cazs8aGtlwhWVdvTRMPru9Vv5HQ.mft File: cazs8aGtlwhWVdvTRMPru9Vv5HQ.mft (raw, json) Hash identifier: 4W4MbVvKqLvGrI6LfR3FnnQXuR0n4SKVo+FsXlZfRsw= Subject key identifier: 0B:73:28:D5:C6:0A:98:38:6D:F6:0F:EB:93:37:29:3B:9C:8C:D8:72 Authority key identifier: 71:AC:EC:F1:A1:AD:97:08:56:55:DB:D3:44:C3:EB:BB:D5:6F:E4:74 Certificate issuer: /CN=A91A759F/serialNumber=71ACECF1A1AD97085655DBD344C3EBBBD56FE474 Certificate serial: 0837 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cazs8aGtlwhWVdvTRMPru9Vv5HQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/cazs8aGtlwhWVdvTRMPru9Vv5HQ.mft Manifest number: 3A73 Signing time: Mon 06 May 2024 15:38:27 +0000 Manifest this update: Mon 06 May 2024 15:38:26 +0000 Manifest next update: Mon 13 May 2024 15:38:26 +0000 Files and hashes: 1: cazs8aGtlwhWVdvTRMPru9Vv5HQ.crl (hash: X+m4ZKpRhd+YUr00nvwc/gBKW5VJlOoLoKZT/khmOHU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/cazs8aGtlwhWVdvTRMPru9Vv5HQ.crl rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/cazs8aGtlwhWVdvTRMPru9Vv5HQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cazs8aGtlwhWVdvTRMPru9Vv5HQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 15:38:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2103 (0x837) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A759F/serialNumber=71ACECF1A1AD97085655DBD344C3EBBBD56FE474 Validity Not Before: May 6 15:38:26 2024 GMT Not After : May 13 15:38:26 2024 GMT Subject: CN=6638f972-efd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:cb:be:e0:ee:9e:b2:00:fb:21:28:2e:14:96: df:4b:81:63:64:af:25:16:12:35:7d:29:c9:1b:b2: a1:ff:97:92:11:c8:f6:10:76:18:6b:2a:09:4b:a6: 53:44:df:aa:15:41:1e:90:09:c7:48:40:db:27:f7: de:0d:f0:15:f7:91:24:e5:16:e3:fe:15:be:08:23: 39:2e:ab:a6:df:44:2a:82:0a:31:31:d2:aa:a4:00: 8a:fd:8d:12:89:47:a8:42:92:8b:3d:c4:9e:61:31: 01:fc:57:78:46:af:90:fa:0b:70:b5:1b:f5:16:68: c7:60:7f:f8:38:3f:27:ca:73:d9:7c:79:6e:be:cd: 91:f6:f8:ab:2e:6a:79:37:3c:64:46:7e:57:4c:84: d2:1f:3d:e5:f6:f1:72:76:f5:d0:a9:9c:aa:e6:de: 9d:88:40:95:a7:0f:14:2d:ef:b9:f1:2f:d3:aa:3b: 02:c7:94:fe:00:b8:83:d4:90:0c:33:f3:20:c4:1d: b6:5a:78:9e:f9:6a:cd:c8:a5:f5:3d:0e:c0:43:07: 7f:cd:c6:c6:b4:c0:05:20:e8:e6:1d:a2:af:03:27: 50:36:37:42:10:c4:6b:ef:ca:2c:4a:e2:2d:14:3a: f3:d3:ae:1c:56:4d:67:12:19:e6:fb:aa:74:7f:71: d9:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:73:28:D5:C6:0A:98:38:6D:F6:0F:EB:93:37:29:3B:9C:8C:D8:72 X509v3 Authority Key Identifier: keyid:71:AC:EC:F1:A1:AD:97:08:56:55:DB:D3:44:C3:EB:BB:D5:6F:E4:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/cazs8aGtlwhWVdvTRMPru9Vv5HQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cazs8aGtlwhWVdvTRMPru9Vv5HQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/cazs8aGtlwhWVdvTRMPru9Vv5HQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:a5:f0:c5:b9:ba:4a:fd:ed:a6:ab:7f:f2:90:88:7e:58:1d: 86:e5:06:7f:35:32:47:5e:c3:5d:00:fd:47:2f:81:91:d9:df: 60:9a:64:4e:96:2b:bd:9d:44:af:25:ef:e7:2e:cc:33:a6:3e: 7f:b0:33:ce:f8:37:f9:49:80:81:d4:20:ee:1d:92:9a:2e:7f: ee:e8:0f:43:7c:a0:a2:f4:8b:3d:63:d8:ab:5a:9e:76:3f:71: 4b:e6:be:4d:fb:48:21:74:64:81:e3:f7:41:f2:6a:d9:82:4d: 85:7d:98:b2:bb:0d:f8:7e:f1:80:da:0b:ea:ae:00:fe:81:03: 8a:00:f4:42:63:ef:44:21:6d:60:a7:a0:14:b7:60:cc:23:15: 63:92:97:70:39:b7:a3:03:b6:f4:1a:d1:f8:91:38:01:d3:46: 73:d7:92:54:7a:7f:2c:95:ec:13:0b:08:e1:84:11:d1:e7:53: a4:4e:5e:46:e0:e7:e5:74:52:a5:4d:c5:45:89:df:09:97:27: 61:3c:45:b9:b9:13:f7:c7:0f:6c:51:2f:f3:24:55:37:b5:cd: 16:d1:af:9e:1e:29:c2:f1:22:8a:e3:3c:86:ef:63:e7:d8:c8: 8e:06:3c:68:e3:3c:76:19:e2:a6:bc:5c:2e:d5:01:fd:6c:b7: ad:37:e1:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc1OUYxMTAvBgNVBAUTKDcxQUNFQ0YxQTFBRDk3MDg1NjU1REJEMzQ0QzNFQkJC RDU2RkU0NzQwHhcNMjQwNTA2MTUzODI2WhcNMjQwNTEzMTUzODI2WjAYMRYwFAYD VQQDEw02NjM4Zjk3Mi1lZmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsMu+4O6esgD7ISguFJbfS4FjZK8lFhI1fSnJG7Kh/5eSEcj2EHYYayoJS6ZT RN+qFUEekAnHSEDbJ/feDfAV95Ek5Rbj/hW+CCM5Lqum30QqggoxMdKqpACK/Y0S iUeoQpKLPcSeYTEB/Fd4Rq+Q+gtwtRv1FmjHYH/4OD8nynPZfHluvs2R9virLmp5 NzxkRn5XTITSHz3l9vFydvXQqZyq5t6diECVpw8ULe+58S/TqjsCx5T+ALiD1JAM M/MgxB22Wnie+WrNyKX1PQ7AQwd/zcbGtMAFIOjmHaKvAydQNjdCEMRr78osSuIt FDrz064cVk1nEhnm+6p0f3HZiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAtzKNXG Cpg4bfYP65M3KTucjNhyMB8GA1UdIwQYMBaAFHGs7PGhrZcIVlXb00TD67vVb+R0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzU5Ri8wQTZGMjYzNDY5 QzUxMUUyODU5MDAyNDUyOTc5QkIyMC9jYXpzOGFHdGx3aFdWZHZUUk1QcnU5VnY1 SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NhenM4YUd0bHdoV1ZkdlRSTVBydTlWdjVIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzU5Ri8wQTZGMjYzNDY5QzUxMUUyODU5MDAyNDUyOTc5QkIyMC9jYXpzOGFHdGx3 aFdWZHZUUk1QcnU5VnY1SFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAapfDFubpK/e2mq3/ykIh+WB2G5QZ/NTJHXsNdAP1HL4GR2d9gmmRO liu9nUSvJe/nLswzpj5/sDPO+Df5SYCB1CDuHZKaLn/u6A9DfKCi9Is9Y9irWp52 P3FL5r5N+0ghdGSB4/dB8mrZgk2FfZiyuw34fvGA2gvqrgD+gQOKAPRCY+9EIW1g p6AUt2DMIxVjkpdwObejA7b0GtH4kTgB00Zz15JUen8slewTCwjhhBHR51OkTl5G 4OfldFKlTcVFid8JlydhPEW5uRP3xw9sUS/zJFU3tc0W0a+eHinC8SKK4zyG72Pn 2MiOBjxo4zx2GeKmvFwu1QH9bLetN+H4 -----END CERTIFICATE-----Generated at Mon May 6 17:43:25 2024 by rpki-client on console-ams.rpki-client.org