$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft File: D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft (raw, json) Hash identifier: 8pwldwLmrhZC/lkpV2qulFygfD7SKNYFSxXveKxNZSs= Subject key identifier: 7A:06:5C:E2:71:F6:AF:2D:2C:98:49:CE:03:00:F7:6A:FD:4B:9F:32 Authority key identifier: 0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 Certificate issuer: /CN=A91A7C68/serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Certificate serial: 0103 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft Manifest number: FB Signing time: Tue 07 May 2024 05:43:04 +0000 Manifest this update: Tue 07 May 2024 05:43:04 +0000 Manifest next update: Tue 14 May 2024 05:43:04 +0000 Files and hashes: 1: D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl (hash: zppoQG7QW3M3PTkHeyDmv0MGSxQMbcFAIhpJdpWi4ng=) 2: 932F37BEA7B511EDA1D33553C4F9AE02.roa (hash: cKFBjhlVKbD9l42whmWqY74iJiioI2c2wVaBqFFzCe0=) 3: BC72661A972911ED8CBCA476C4F9AE02.roa (hash: Dr0I9A08RG9JNfxlGe8FwtDZpWzU9IjLciNlV0di85c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 05:43:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 259 (0x103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C68/serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Validity Not Before: May 7 05:43:04 2024 GMT Not After : May 14 05:43:04 2024 GMT Subject: CN=6639bf68-1570 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:6f:4a:a5:e0:17:07:51:98:4c:19:d3:ac:e4: 3b:81:e6:36:5e:7d:c5:f3:f6:9b:e2:f1:61:c1:f6: 1b:a1:b7:c2:0d:af:05:cb:1a:00:ba:f0:89:70:8d: 4d:96:7c:c9:af:1f:7a:db:c6:b4:05:9d:17:ac:e9: 9a:68:d9:60:10:67:b3:8f:04:f0:68:fc:70:63:e2: 3a:ea:b3:54:64:71:b7:04:93:d0:73:1e:10:50:f4: e2:a0:22:ad:eb:5d:86:b9:79:ab:c0:ca:72:5b:31: d0:69:4b:e0:49:68:0d:26:48:73:d7:c1:9f:83:73: 1d:3c:6d:6d:15:a6:0d:2c:6b:9b:25:c7:a9:bd:58: 49:ba:92:54:e6:f6:40:bf:bb:41:75:2c:bb:9c:92: ef:33:52:e5:cd:f6:08:3c:ad:05:0a:a2:a3:0f:61: f1:94:98:de:8f:d0:63:b0:35:9c:b9:bb:9a:9f:ca: b8:18:c9:37:33:16:ef:1e:bb:16:21:ec:d1:96:6c: 2e:62:58:68:c2:59:6d:74:ba:b3:8e:41:7b:54:8b: 3e:8a:e5:a5:78:39:45:36:c0:80:d9:49:0d:8c:f1: 84:a4:a1:1f:b0:b3:a1:1d:62:cd:fe:f7:18:c2:9e: a8:cb:73:6b:99:17:95:46:fa:3a:13:3d:7f:3c:2d: f9:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:06:5C:E2:71:F6:AF:2D:2C:98:49:CE:03:00:F7:6A:FD:4B:9F:32 X509v3 Authority Key Identifier: keyid:0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:ad:0c:93:c3:37:df:cd:79:99:26:04:dd:9c:26:5a:6d:b9: b4:0d:55:d8:77:dd:38:86:5b:3f:78:73:9d:b9:a1:4a:ce:b6: eb:ed:02:8f:e5:38:f9:d9:fc:1d:fa:42:61:67:a7:f7:ae:8a: 9d:7a:6e:73:86:2d:32:86:2e:f4:84:81:d4:57:de:59:95:38: e9:3b:52:32:c2:5a:a6:f8:d5:97:04:78:15:78:27:03:ab:c8: d9:1a:dc:36:8f:ea:c1:47:13:2e:91:f3:ed:31:34:f5:22:7d: 6a:07:3f:b6:35:bc:e4:29:f8:60:af:5c:f4:ab:0d:cf:32:dc: 2e:57:6e:43:0a:32:79:f2:43:fa:c4:36:fd:4e:9a:d3:71:61: b3:3b:b8:b2:d0:46:f4:dc:bf:d0:1b:0f:d3:5b:02:a5:9f:db: 62:81:29:28:71:6f:bd:09:4d:60:5c:0e:c3:a0:06:3c:8f:12: b4:f4:5c:ad:cc:57:78:c6:77:77:3d:7b:d9:8a:91:f6:30:6e: 38:82:d3:ea:3e:ff:15:72:78:5c:2c:95:eb:f8:02:b9:b6:8f: 0c:f0:1c:48:57:85:04:13:c9:bb:3c:f3:af:71:18:28:27:43: f5:e6:7c:08:18:fc:2f:f8:9a:74:1b:b6:31:f3:f8:63:de:ac: 4c:5b:76:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNjgxMTAvBgNVBAUTKDBGNjI2QTMyNjRENkZFQ0NDQkZFQjJEOTlCMURCRjhB RkZFQzNCMzQwHhcNMjQwNTA3MDU0MzA0WhcNMjQwNTE0MDU0MzA0WjAYMRYwFAYD VQQDEw02NjM5YmY2OC0xNTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6m9KpeAXB1GYTBnTrOQ7geY2Xn3F8/ab4vFhwfYbobfCDa8FyxoAuvCJcI1N lnzJrx9628a0BZ0XrOmaaNlgEGezjwTwaPxwY+I66rNUZHG3BJPQcx4QUPTioCKt 612GuXmrwMpyWzHQaUvgSWgNJkhz18Gfg3MdPG1tFaYNLGubJcepvVhJupJU5vZA v7tBdSy7nJLvM1LlzfYIPK0FCqKjD2HxlJjej9BjsDWcubuan8q4GMk3MxbvHrsW IezRlmwuYlhowlltdLqzjkF7VIs+iuWleDlFNsCA2UkNjPGEpKEfsLOhHWLN/vcY wp6oy3NrmReVRvo6Ez1/PC35LwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHoGXOJx 9q8tLJhJzgMA92r9S58yMB8GA1UdIwQYMBaAFA9iajJk1v7My/6y2Zsdv4r/7Ds0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M2OC80MjM5ODZGNjk3 MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19zekxfckxabXgyX2l2X3NP elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QySnFNbVRXX3N6TF9yTFpteDJfaXZfc096US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M2OC80MjM5ODZGNjk3MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19z ekxfckxabXgyX2l2X3NPelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1rQyTwzffzXmZJgTdnCZabbm0DVXYd904hls/eHOduaFKzrbr7QKP 5Tj52fwd+kJhZ6f3roqdem5zhi0yhi70hIHUV95ZlTjpO1Iywlqm+NWXBHgVeCcD q8jZGtw2j+rBRxMukfPtMTT1In1qBz+2NbzkKfhgr1z0qw3PMtwuV25DCjJ58kP6 xDb9TprTcWGzO7iy0Eb03L/QGw/TWwKln9tigSkocW+9CU1gXA7DoAY8jxK09Fyt zFd4xnd3PXvZipH2MG44gtPqPv8VcnhcLJXr+AK5to8M8BxIV4UEE8m7PPOvcRgo J0P15nwIGPwv+Jp0G7Yx8/hj3qxMW3Zy -----END CERTIFICATE-----Generated at Tue May 7 06:30:13 2024 by rpki-client on console-ams.rpki-client.org