$ rpki-client -vvf rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft File: 7f0U22_TsCp5NdqtR_wCnzpwTEA.mft (raw, json) Hash identifier: DBEDLsItGT4oATc4+xd0qC+m8msJnxH7ozd8GdE026I= Subject key identifier: FC:55:1A:0C:4D:53:45:2A:96:91:A2:48:8B:BA:37:DD:BC:60:DE:32 Authority key identifier: ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 Certificate issuer: /CN=A91A93B6/serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Certificate serial: 0111 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft Manifest number: 010C Signing time: Tue 07 May 2024 05:30:18 +0000 Manifest this update: Tue 07 May 2024 05:30:18 +0000 Manifest next update: Tue 14 May 2024 05:30:18 +0000 Files and hashes: 1: 7f0U22_TsCp5NdqtR_wCnzpwTEA.crl (hash: Z5SZZQl/AkWjZguvysgOcOIjcJWphmoJoZZrtNrQNdA=) 2: 780A3032CB3211EE953DEF37C4F9AE02.roa (hash: 8fiulkMzmoz7dwE1F+YA2x7XYbzmFEAme4dQMleRYl8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 05:30:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A93B6/serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Validity Not Before: May 7 05:30:18 2024 GMT Not After : May 14 05:30:18 2024 GMT Subject: CN=6639bc6a-8a47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:1c:02:47:61:bd:ca:89:3e:e3:25:19:36:a3: 40:f2:71:4c:81:05:36:44:29:61:72:ac:bb:13:bc: cc:2f:2e:d5:a5:d1:94:d3:6f:9d:62:61:e4:c6:cb: 98:c4:1a:24:9d:49:1d:41:67:a9:cc:81:ee:b1:7d: f1:c4:9f:02:ac:2b:4d:22:79:e6:0c:54:2c:f3:99: f6:3f:17:49:a0:3f:37:d1:50:6f:be:04:7e:26:67: e4:9a:57:b7:73:17:a6:ab:15:b7:d0:86:e9:27:ed: 2e:19:6d:9b:38:08:84:2d:85:a7:a5:83:12:8a:08: 90:57:1d:8b:a9:9a:90:2e:e4:8c:be:1a:2e:63:52: a1:57:77:ac:14:b3:04:1e:81:6d:49:b5:b0:fe:c7: af:5c:e7:94:5f:2a:fe:46:56:c3:85:a4:35:87:ae: b2:74:d2:5d:32:55:4b:36:37:6e:6a:df:ec:3c:fa: 63:9e:b1:1a:93:78:7d:dc:96:a9:e9:11:c5:56:8f: 1a:c9:dd:c3:42:1a:98:bf:d4:33:5f:35:db:14:24: 24:29:9c:9b:07:be:95:2a:09:1c:01:92:51:e6:d1: 05:f3:ec:b9:46:0d:30:d8:1f:94:cd:92:4b:dc:e9: 8f:15:56:3b:b6:d2:c0:78:fe:2c:b2:48:35:69:a9: 19:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:55:1A:0C:4D:53:45:2A:96:91:A2:48:8B:BA:37:DD:BC:60:DE:32 X509v3 Authority Key Identifier: keyid:ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:b6:e2:bb:46:f5:7d:ee:25:c8:69:bc:14:05:ef:33:23:cc: 41:cb:fb:c9:93:2c:db:5e:4d:2f:58:b3:76:ec:65:05:43:12: a5:93:b3:c4:ca:b4:de:7c:e4:30:40:da:54:2e:28:b9:ea:12: c7:91:8e:70:86:3e:d2:fc:f5:2e:9a:ce:05:4a:ed:c7:ca:85: b8:e3:49:c2:f6:4e:2b:7c:01:dd:67:73:af:eb:05:ce:cd:7d: 77:ad:44:70:a2:32:7d:eb:0c:f4:d1:59:b0:37:aa:18:73:3c: 90:02:aa:ba:be:48:aa:1d:6f:4c:a1:16:da:23:66:30:2f:33: e1:b1:d8:ed:27:69:54:ab:f1:91:c3:03:c7:c9:88:88:ee:e2: 64:ca:ce:1c:9b:9b:96:0d:2a:91:60:41:c3:00:46:77:cf:30: 45:19:51:50:e5:ce:6a:da:58:77:d1:1c:4e:0d:be:7c:b5:ca: b0:ef:16:3a:00:f5:d0:02:b3:b6:31:30:fc:f4:ee:72:c3:2c: 70:67:39:82:dc:88:a1:9c:24:63:26:ba:d2:7e:f9:0f:83:5c: 31:3d:2a:cb:ec:d2:28:18:4a:92:74:34:33:e4:5b:5a:26:2b: fc:78:9a:5b:e2:3c:0e:e4:8d:23:d1:0f:bd:25:9b:73:00:73: 72:71:e2:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkzQjYxMTAvBgNVBAUTKEVERkQxNERCNkZEM0IwMkE3OTM1REFBRDQ3RkMwMjlG M0E3MDRDNDAwHhcNMjQwNTA3MDUzMDE4WhcNMjQwNTE0MDUzMDE4WjAYMRYwFAYD VQQDEw02NjM5YmM2YS04YTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7BwCR2G9yok+4yUZNqNA8nFMgQU2RClhcqy7E7zMLy7VpdGU02+dYmHkxsuY xBoknUkdQWepzIHusX3xxJ8CrCtNInnmDFQs85n2PxdJoD830VBvvgR+Jmfkmle3 cxemqxW30IbpJ+0uGW2bOAiELYWnpYMSigiQVx2LqZqQLuSMvhouY1KhV3esFLME HoFtSbWw/sevXOeUXyr+RlbDhaQ1h66ydNJdMlVLNjduat/sPPpjnrEak3h93Jap 6RHFVo8ayd3DQhqYv9QzXzXbFCQkKZybB76VKgkcAZJR5tEF8+y5Rg0w2B+UzZJL 3OmPFVY7ttLAeP4sskg1aakZmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPxVGgxN U0UqlpGiSIu6N928YN4yMB8GA1UdIwQYMBaAFO39FNtv07AqeTXarUf8Ap86cExA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTNCNi83MEJDRkNFMDdD NTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHNDcDVOZHF0Ul93Q256cHdU RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdmMFUyMl9Uc0NwNU5kcXRSX3dDbnpwd1RFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTNCNi83MEJDRkNFMDdDNTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHND cDVOZHF0Ul93Q256cHdURUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0tuK7RvV97iXIabwUBe8zI8xBy/vJkyzbXk0vWLN27GUFQxKlk7PE yrTefOQwQNpULii56hLHkY5whj7S/PUums4FSu3HyoW440nC9k4rfAHdZ3Ov6wXO zX13rURwojJ96wz00VmwN6oYczyQAqq6vkiqHW9MoRbaI2YwLzPhsdjtJ2lUq/GR wwPHyYiI7uJkys4cm5uWDSqRYEHDAEZ3zzBFGVFQ5c5q2lh30RxODb58tcqw7xY6 APXQArO2MTD89O5ywyxwZzmC3IihnCRjJrrSfvkPg1wxPSrL7NIoGEqSdDQz5Fta Jiv8eJpb4jwO5I0j0Q+9JZtzAHNyceJR -----END CERTIFICATE-----Generated at Tue May 7 06:30:13 2024 by rpki-client on console-ams.rpki-client.org