$ rpki-client -vvf rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft File: P7b20GZYOGwje40UDa0VsoOLtco.mft (raw, json) Hash identifier: jWQrG+C+OpsPssj5i0JHIPixrOAN6B7QSZJ4Mjh+iCM= Subject key identifier: 17:D8:46:1A:F8:31:81:78:49:2C:9D:AB:D1:E6:4E:DA:DB:5F:30:64 Authority key identifier: 3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA Certificate issuer: /CN=A91B171C/serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Certificate serial: 0A61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft Manifest number: 0A55 Signing time: Tue 30 Apr 2024 20:42:54 +0000 Manifest this update: Tue 30 Apr 2024 20:42:53 +0000 Manifest next update: Tue 07 May 2024 20:42:53 +0000 Files and hashes: 1: P7b20GZYOGwje40UDa0VsoOLtco.crl (hash: CazIQdu/N98aumsa2ybzTbYYS059vvAeNyj8kb2qHuU=) 2: 2F5ED8E43E1711EA9A272644C4F9AE02.roa (hash: 8TkP51bPQiYG0f/gk3ESB3Y/8JPz2qQFAu/a0sU3YmM=) 3: 9F9FD574758811EA93AADD3FC4F9AE02.roa (hash: 0/VlMuMP0p7VgSYZY3H9ZBX+TYmyeoapGB5SuVBiWI0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 20:42:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2657 (0xa61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B171C/serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Validity Not Before: Apr 30 20:42:53 2024 GMT Not After : May 7 20:42:53 2024 GMT Subject: CN=663157ce-21b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:0c:48:17:3e:aa:c6:e8:61:08:2c:6c:d9:ce: ac:22:fb:89:ec:a1:a5:0a:77:af:0d:63:64:18:5a: eb:59:cb:e9:5e:de:e2:70:86:f7:dd:c6:45:ce:d5: 4c:c6:89:c1:d6:13:4b:6b:43:04:9d:f2:3d:d1:3d: 00:50:ef:7a:c9:03:f7:20:ef:18:4c:27:b6:a8:fc: f3:0a:ae:69:5b:7b:d7:cb:55:2e:c7:7a:10:d6:71: 4f:d0:f4:fc:d6:61:78:1d:34:f1:9f:99:02:86:67: 06:30:1f:2b:57:99:b9:b9:bc:3a:19:c2:b7:72:cb: 6d:6e:e1:a8:37:7e:6b:40:91:8b:b4:c8:2e:6d:de: c1:71:53:d0:92:03:23:09:b1:dd:b6:68:02:69:61: dd:c3:e5:4f:04:51:ad:1d:08:29:c6:15:d6:20:cb: c3:e8:54:cb:6f:99:65:9f:7d:62:31:c8:54:07:23: bd:e9:02:0e:7d:8a:68:b6:b5:84:6a:1d:d2:99:52: 15:e9:d9:4e:21:e1:bb:7c:1f:b9:3f:37:90:d4:03: 15:51:a4:2b:50:e3:2b:e8:f2:9c:58:e0:e6:32:81: 21:32:1f:f1:0f:3c:bd:e6:8c:b5:85:f6:d6:05:49: 60:2b:49:91:1c:bf:86:e7:69:75:ad:b0:1b:59:5a: 56:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:D8:46:1A:F8:31:81:78:49:2C:9D:AB:D1:E6:4E:DA:DB:5F:30:64 X509v3 Authority Key Identifier: keyid:3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:60:67:22:78:bc:56:dd:9b:9a:cd:b3:ed:dd:e9:ba:ef:e4: f7:95:27:b8:43:02:70:2c:b9:73:b5:1a:22:f3:c4:3c:5f:f0: e4:40:e5:26:db:0f:a6:e4:f4:1d:09:4c:dd:9b:23:b9:37:39: 7b:90:5d:80:43:bd:7f:8b:4d:be:40:3c:af:19:22:1a:ef:db: 3b:39:b6:68:f7:b7:48:ea:24:b2:4a:d6:8d:3f:46:17:ab:15: cc:bf:1a:8e:b8:26:94:3d:17:d5:d8:5b:4d:fa:48:a2:0f:7e: 99:5c:b1:95:85:cd:d3:c9:ad:d1:3d:ff:d0:d6:ad:c6:b4:f5: 54:d7:92:54:af:73:6d:75:a8:c4:02:d7:da:9f:e6:0e:cc:f1: 10:30:76:17:6a:e6:f0:41:50:23:7e:7b:71:b3:08:38:76:39: 9b:0c:6c:9f:ea:cc:80:70:83:f8:9b:81:d9:fe:cb:b2:71:da: e5:c0:51:13:3f:c2:ea:fc:d9:6b:cb:df:b7:22:10:f6:fc:c6: 11:f3:b3:38:01:3e:db:b0:bb:75:73:98:73:fb:3d:06:70:29: e1:34:7a:57:ae:4a:29:bc:12:5b:8c:f4:74:84:2a:b1:4e:82: 9f:e3:78:08:49:89:8d:a2:6d:6e:a3:aa:67:80:3f:11:43:14: 1e:c3:53:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE3MUMxMTAvBgNVBAUTKDNGQjZGNkQwNjY1ODM4NkMyMzdCOEQxNDBEQUQxNUIy ODM4QkI1Q0EwHhcNMjQwNDMwMjA0MjUzWhcNMjQwNTA3MjA0MjUzWjAYMRYwFAYD VQQDEw02NjMxNTdjZS0yMWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5AxIFz6qxuhhCCxs2c6sIvuJ7KGlCnevDWNkGFrrWcvpXt7icIb33cZFztVM xonB1hNLa0MEnfI90T0AUO96yQP3IO8YTCe2qPzzCq5pW3vXy1Uux3oQ1nFP0PT8 1mF4HTTxn5kChmcGMB8rV5m5ubw6GcK3csttbuGoN35rQJGLtMgubd7BcVPQkgMj CbHdtmgCaWHdw+VPBFGtHQgpxhXWIMvD6FTLb5lln31iMchUByO96QIOfYpotrWE ah3SmVIV6dlOIeG7fB+5PzeQ1AMVUaQrUOMr6PKcWODmMoEhMh/xDzy95oy1hfbW BUlgK0mRHL+G52l1rbAbWVpWrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBfYRhr4 MYF4SSydq9HmTtrbXzBkMB8GA1UdIwQYMBaAFD+29tBmWDhsI3uNFA2tFbKDi7XK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTcxQy9FN0VGMDgzNjNF MTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9Hd2plNDBVRGEwVnNvT0x0 Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A3YjIwR1pZT0d3amU0MFVEYTBWc29PTHRjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTcxQy9FN0VGMDgzNjNFMTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9H d2plNDBVRGEwVnNvT0x0Y28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLYGcieLxW3ZuazbPt3em67+T3lSe4QwJwLLlztRoi88Q8X/DkQOUm 2w+m5PQdCUzdmyO5Nzl7kF2AQ71/i02+QDyvGSIa79s7ObZo97dI6iSyStaNP0YX qxXMvxqOuCaUPRfV2FtN+kiiD36ZXLGVhc3Tya3RPf/Q1q3GtPVU15JUr3NtdajE Atfan+YOzPEQMHYXaubwQVAjfntxswg4djmbDGyf6syAcIP4m4HZ/suycdrlwFET P8Lq/Nlry9+3IhD2/MYR87M4AT7bsLt1c5hz+z0GcCnhNHpXrkopvBJbjPR0hCqx ToKf43gISYmNom1uo6pngD8RQxQew1NR -----END CERTIFICATE-----Generated at Tue Apr 30 21:59:04 2024 by rpki-client on console-ams.rpki-client.org