$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft File: tY0p97gQfxWFtf_nDFAsbI9dMwI.mft (raw, json) Hash identifier: OXgpko/wW3oYxz9bnoI63V2bWNC3AUb2wyrKMK813oM= Subject key identifier: 26:4D:DC:7E:9F:55:07:23:68:5D:19:B2:63:B4:F2:AE:BC:C4:3B:C7 Authority key identifier: B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 Certificate issuer: /CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Certificate serial: 078D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft Manifest number: 077A Signing time: Mon 06 May 2024 22:20:42 +0000 Manifest this update: Mon 06 May 2024 22:20:42 +0000 Manifest next update: Mon 13 May 2024 22:20:42 +0000 Files and hashes: 1: tY0p97gQfxWFtf_nDFAsbI9dMwI.crl (hash: BfZWQTnWPnd8Aj06/CkD2lpgaPVz8aQAF0dZFe80vF8=) 2: C33EB0EC7C4211EB933D233EC4F9AE02.roa (hash: 4mlUCm6z+VqaDXjwEylUNK9n6L+H5lJRhli74lt4jxg=) 3: 3C3F21BAD6F011EE9B38B67DC4F9AE02.roa (hash: u322EHujrVRo9OC7ZpT3sQ6YS+unmZdbppt6TaJ+XJ4=) 4: 8F44F16A4BCC11EDA2E6375FC4F9AE02.roa (hash: x231ib6LtQn2ZaTzj0rBtnLFFmdREFizySX9QKoBgMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 22:20:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1933 (0x78d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Validity Not Before: May 6 22:20:42 2024 GMT Not After : May 13 22:20:42 2024 GMT Subject: CN=663957ba-6e1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:25:94:ae:3d:11:dc:fb:85:ea:d4:ca:f4:76: 05:cb:02:0a:2b:c6:ca:db:ec:bb:6e:7e:79:ff:0e: 16:c6:e9:88:e1:93:04:ba:a2:a1:9b:9c:75:a2:88: 2f:b3:4d:4f:a7:ce:5b:b2:71:13:4b:d1:4d:4b:63: 91:d5:46:df:ce:11:50:92:8e:76:6b:c1:6d:19:96: 9e:70:d3:cb:48:1e:46:05:d1:e1:ab:c0:4a:11:18: f7:fa:96:c8:1e:29:fa:bd:23:8b:83:e1:3a:86:4b: e1:5d:63:22:95:ff:61:8d:ff:1a:18:1c:86:cd:eb: f3:b6:4a:c5:25:5a:e8:c3:85:32:65:50:ca:31:98: 81:33:c3:20:c8:16:01:13:83:64:48:59:83:b4:21: d4:92:51:e3:c1:e4:09:ca:a9:62:e0:01:0f:09:4d: 13:55:82:18:c4:70:a3:ef:01:1e:cb:57:24:af:81: ea:5b:73:5e:54:44:9c:ca:7d:cd:d4:1d:3e:b4:49: 59:27:61:6c:d3:0d:51:a5:41:bc:01:99:70:fd:e3: ad:1a:cb:ca:4f:b1:ad:62:d1:2a:b2:57:de:5b:84: 96:ab:5f:da:c0:f1:96:67:b9:53:28:d2:10:85:40: 04:21:a0:01:a3:8f:4c:b4:95:5f:e6:b6:cb:fa:2b: 65:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:4D:DC:7E:9F:55:07:23:68:5D:19:B2:63:B4:F2:AE:BC:C4:3B:C7 X509v3 Authority Key Identifier: keyid:B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:14:2e:0d:8c:b4:37:4f:a3:9f:f3:ba:1f:08:de:91:ee:9e: b8:c3:77:57:3c:19:8e:3e:39:e2:ae:05:95:7b:ec:aa:01:fe: 7b:05:31:df:0e:13:1d:c8:c5:05:f3:b8:99:38:58:cb:a4:8a: b8:d1:64:76:cc:6c:39:9a:4f:d7:2a:61:62:8f:89:fd:06:b7: d5:01:2c:84:46:55:ad:88:26:d5:e6:eb:bc:ec:20:d0:38:08: 2d:a9:09:8d:2a:15:fa:67:1e:a8:0c:fe:4a:2d:dd:04:b0:a8: 43:81:31:d3:f9:72:d2:2c:d5:8e:47:d2:b6:83:3e:e7:c0:9a: b6:db:82:51:16:0c:e7:4f:6f:2a:6c:fc:1a:d7:b9:ae:20:2f: d3:50:28:ba:ca:be:ef:64:ea:23:70:85:5e:79:16:77:fc:99: 85:5e:eb:2a:b5:89:8d:b5:42:7e:79:66:74:ab:88:cb:58:43: 6c:19:dc:af:96:f3:d7:ef:88:97:32:2b:74:05:6a:cf:73:35: 75:17:6a:ac:77:c7:4a:ed:a8:8b:18:8c:7a:7c:8d:1b:d1:c1: a5:cf:97:02:7c:1a:6b:ce:74:51:ea:ad:91:01:49:c5:6e:d1: 7b:73:37:d1:57:d5:da:b7:21:30:7a:f6:0a:88:67:e9:ed:f2: da:0d:13:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB40wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQTQxMTAvBgNVBAUTKEI1OEQyOUY3QjgxMDdGMTU4NUI1RkZFNzBDNTAyQzZD OEY1RDMzMDIwHhcNMjQwNTA2MjIyMDQyWhcNMjQwNTEzMjIyMDQyWjAYMRYwFAYD VQQDEw02NjM5NTdiYS02ZTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuyWUrj0R3PuF6tTK9HYFywIKK8bK2+y7bn55/w4WxumI4ZMEuqKhm5x1oogv s01Pp85bsnETS9FNS2OR1UbfzhFQko52a8FtGZaecNPLSB5GBdHhq8BKERj3+pbI Hin6vSOLg+E6hkvhXWMilf9hjf8aGByGzevztkrFJVrow4UyZVDKMZiBM8MgyBYB E4NkSFmDtCHUklHjweQJyqli4AEPCU0TVYIYxHCj7wEey1ckr4HqW3NeVEScyn3N 1B0+tElZJ2Fs0w1RpUG8AZlw/eOtGsvKT7GtYtEqslfeW4SWq1/awPGWZ7lTKNIQ hUAEIaABo49MtJVf5rbL+itlLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCZN3H6f VQcjaF0ZsmO08q68xDvHMB8GA1UdIwQYMBaAFLWNKfe4EH8VhbX/5wxQLGyPXTMC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NBNC8xNUY2OEI1Q0NG MTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4V0Z0Zl9uREZBc2JJOWRN d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZMHA5N2dRZnhXRnRmX25ERkFzYkk5ZE13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0NBNC8xNUY2OEI1Q0NGMTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4 V0Z0Zl9uREZBc2JJOWRNd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqFC4NjLQ3T6Of87ofCN6R7p64w3dXPBmOPjnirgWVe+yqAf57BTHf DhMdyMUF87iZOFjLpIq40WR2zGw5mk/XKmFij4n9BrfVASyERlWtiCbV5uu87CDQ OAgtqQmNKhX6Zx6oDP5KLd0EsKhDgTHT+XLSLNWOR9K2gz7nwJq224JRFgznT28q bPwa17muIC/TUCi6yr7vZOojcIVeeRZ3/JmFXusqtYmNtUJ+eWZ0q4jLWENsGdyv lvPX74iXMit0BWrPczV1F2qsd8dK7aiLGIx6fI0b0cGlz5cCfBprznRR6q2RAUnF btF7czfRV9XatyEwevYKiGfp7fLaDRP0 -----END CERTIFICATE-----Generated at Tue May 7 00:53:23 2024 by rpki-client on console-ams.rpki-client.org