$ rpki-client -vvf rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft File: tsh7tYco929vkKCd_WuqGtTnO8o.mft (raw, json) Hash identifier: HB5NOAeBCKIaIgz2yDtTXugnOgN5FMtwvLgKTu7erQU= Subject key identifier: 60:C7:A7:72:D6:78:C7:B3:D3:1B:7F:AD:66:F4:22:23:F5:27:A0:DA Authority key identifier: B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA Certificate issuer: /CN=A91B25F2/serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Certificate serial: 0B90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft Manifest number: 0B85 Signing time: Fri 26 Apr 2024 19:19:21 +0000 Manifest this update: Fri 26 Apr 2024 19:19:20 +0000 Manifest next update: Fri 03 May 2024 19:19:20 +0000 Files and hashes: 1: tsh7tYco929vkKCd_WuqGtTnO8o.crl (hash: /GAVR2btYTMo2vhgzUBWZYMeKeOuRUea0kD19Dj90sA=) 2: 132926D68A0B11EE84250E7BC4F9AE02.roa (hash: CNREoAjSrhLH+9lhx2Q8ti5rW1LW37er1wAnAgRYwEo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 19:19:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2960 (0xb90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B25F2/serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Validity Not Before: Apr 26 19:19:20 2024 GMT Not After : May 3 19:19:20 2024 GMT Subject: CN=662bfe39-f806 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ba:5e:a6:68:4f:43:d0:6c:65:ff:93:57:f5: 87:00:22:8f:7d:4d:6a:2a:91:b8:b4:37:97:2b:cd: 20:ee:a1:73:bd:eb:69:5f:f2:35:cf:a5:cc:66:8d: 32:c5:ed:b4:6e:3a:86:b2:6a:88:3f:ef:24:c9:bd: e7:a5:91:40:4d:4b:a2:67:66:d6:f9:b8:29:c0:da: ae:22:0f:bb:ed:61:d3:6d:7d:7b:16:1b:7e:d6:91: d8:c1:bb:3a:db:d3:23:cd:26:ac:05:ba:d4:2d:f4: c1:9d:4f:81:50:e1:38:7b:63:9c:67:7d:7c:f7:67: 76:87:80:3d:9c:b4:78:79:06:c9:ff:e7:b4:af:a5: 72:67:5e:7d:5a:2c:46:6d:65:f7:41:e2:3c:b9:15: db:96:54:0a:91:a4:d9:04:cb:69:f2:b3:42:22:91: 57:5b:30:82:2b:80:79:7c:1e:1b:4a:30:5f:a0:ca: dd:a9:95:a2:b6:6b:4e:2c:a6:72:45:f1:57:07:63: c1:a9:1d:23:18:c5:b3:18:45:98:7d:fb:fa:06:aa: 01:48:a1:4e:24:4e:b9:da:73:aa:07:f9:7c:1a:da: 0c:18:62:b2:20:a3:96:71:df:1c:41:3c:59:d4:85: 1f:06:1f:40:41:66:fe:36:1a:4f:b2:0c:2c:fb:b0: 3e:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:C7:A7:72:D6:78:C7:B3:D3:1B:7F:AD:66:F4:22:23:F5:27:A0:DA X509v3 Authority Key Identifier: keyid:B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:61:1b:65:6b:63:f9:c8:a1:5a:de:88:75:ee:ba:98:16:84: 21:8c:96:2d:1b:15:d5:ab:0b:24:6f:12:48:6b:8d:59:a1:81: 5a:b5:4d:52:65:2e:16:12:9c:b5:b1:55:a4:9c:2c:e7:57:1d: 52:99:88:fd:bc:54:22:b4:b3:1b:ed:65:19:20:04:d5:06:9c: ce:0a:4c:8e:92:68:c1:3b:79:21:41:3e:b2:68:d5:95:91:6f: f8:2f:5c:0a:d2:5b:e4:be:2e:88:60:73:36:d8:88:64:89:18: f4:f8:6d:ac:4d:ee:36:93:f1:19:0d:d2:50:3c:4c:3c:f8:3f: a4:02:f4:ed:9a:36:d6:f8:78:5a:e5:e3:4c:f3:e6:26:bf:1c: f7:9f:e3:46:11:d3:e0:5e:dd:7d:7a:2a:99:63:a2:9c:d9:28: 2c:d6:09:ea:2f:d4:d7:59:a2:97:af:ef:7e:d9:ec:73:d2:19: 9a:32:eb:05:26:bf:b6:db:ed:39:d3:f9:29:6a:6c:a9:2e:ef: 80:f8:2d:4e:76:cc:c9:48:df:15:29:e8:5e:e3:4f:cd:76:9d: ec:e4:61:d0:cb:16:1f:1d:79:46:f1:2b:cc:98:fe:e5:04:84: 96:82:44:b1:44:c5:15:85:5a:c9:49:27:05:8e:53:00:fe:70: a4:d8:b6:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI1RjIxMTAvBgNVBAUTKEI2Qzg3QkI1ODcyOEY3NkY2RjkwQTA5REZENkJBQTFB RDRFNzNCQ0EwHhcNMjQwNDI2MTkxOTIwWhcNMjQwNTAzMTkxOTIwWjAYMRYwFAYD VQQDEw02NjJiZmUzOS1mODA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtLpepmhPQ9BsZf+TV/WHACKPfU1qKpG4tDeXK80g7qFzvetpX/I1z6XMZo0y xe20bjqGsmqIP+8kyb3npZFATUuiZ2bW+bgpwNquIg+77WHTbX17Fht+1pHYwbs6 29MjzSasBbrULfTBnU+BUOE4e2OcZ31892d2h4A9nLR4eQbJ/+e0r6VyZ159WixG bWX3QeI8uRXbllQKkaTZBMtp8rNCIpFXWzCCK4B5fB4bSjBfoMrdqZWitmtOLKZy RfFXB2PBqR0jGMWzGEWYffv6BqoBSKFOJE652nOqB/l8GtoMGGKyIKOWcd8cQTxZ 1IUfBh9AQWb+NhpPsgws+7A+RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGDHp3LW eMez0xt/rWb0IiP1J6DaMB8GA1UdIwQYMBaAFLbIe7WHKPdvb5Cgnf1rqhrU5zvK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjVGMi9FRjkwQ0Q0RTAz QjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzkyOXZrS0NkX1d1cUd0VG5P OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RzaDd0WWNvOTI5dmtLQ2RfV3VxR3RUbk84by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjVGMi9FRjkwQ0Q0RTAzQjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzky OXZrS0NkX1d1cUd0VG5POG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQYRtla2P5yKFa3oh17rqYFoQhjJYtGxXVqwskbxJIa41ZoYFatU1S ZS4WEpy1sVWknCznVx1SmYj9vFQitLMb7WUZIATVBpzOCkyOkmjBO3khQT6yaNWV kW/4L1wK0lvkvi6IYHM22IhkiRj0+G2sTe42k/EZDdJQPEw8+D+kAvTtmjbW+Hha 5eNM8+Ymvxz3n+NGEdPgXt19eiqZY6Kc2Sgs1gnqL9TXWaKXr+9+2exz0hmaMusF Jr+22+050/kpamypLu+A+C1OdszJSN8VKehe40/Ndp3s5GHQyxYfHXlG8SvMmP7l BISWgkSxRMUVhVrJSScFjlMA/nCk2Lad -----END CERTIFICATE-----Generated at Sat Apr 27 10:20:15 2024 by rpki-client on console-ams.rpki-client.org