$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft File: rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft (raw, json) Hash identifier: ZwqKdI9x2AU394VFYZdti4VV3LN6+7sM5SJXPtK6YZg= Subject key identifier: 4B:21:07:22:7C:00:78:2D:7B:E3:C8:53:ED:38:DD:78:74:ED:18:3E Authority key identifier: AD:41:FB:82:7F:93:10:4B:89:FA:6F:A7:85:F2:11:50:BE:6F:97:9A Certificate issuer: /CN=A91B5BD4/serialNumber=AD41FB827F93104B89FA6FA785F21150BE6F979A Certificate serial: 0111 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft Manifest number: 010D Signing time: Sat 27 Apr 2024 05:17:28 +0000 Manifest this update: Sat 27 Apr 2024 05:17:28 +0000 Manifest next update: Sat 04 May 2024 05:17:28 +0000 Files and hashes: 1: rUH7gn-TEEuJ-m-nhfIRUL5vl5o.crl (hash: hHZdaXVD5krn8QLkKB2dp6CTPn17L8cB8vd4cETVO2g=) 2: C248DFA26DBB11EDB3635D28C4F9AE02.roa (hash: a52+Pk1FkwC/G3hPUY7oyb3u48mgwz6grHdpG9+HrUI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.crl rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 03:36:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5BD4/serialNumber=AD41FB827F93104B89FA6FA785F21150BE6F979A Validity Not Before: Apr 27 05:17:28 2024 GMT Not After : May 4 05:17:28 2024 GMT Subject: CN=662c8a68-824a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f7:bb:70:8f:19:03:d1:ad:da:eb:73:57:e8: c9:a8:3b:9d:c5:55:c8:44:22:d3:e3:c4:90:b5:8b: 7c:c6:ae:d3:8a:52:39:1c:12:af:57:2a:23:da:9b: 07:f0:0d:e2:6e:cf:65:25:30:f6:b3:bc:5e:c0:7d: 63:cd:f0:57:b1:59:23:45:f5:cb:d2:a6:57:68:c6: 88:d3:4f:6a:b9:69:86:e9:9e:cd:73:bd:9b:ec:a6: 55:0b:96:38:49:07:35:c8:9d:38:0e:b3:6c:0a:6f: 4c:62:3b:e6:e6:6b:fa:a9:8a:0d:14:51:ba:e4:ab: 18:54:39:44:df:d0:c9:bd:32:91:7c:22:86:55:50: 67:fe:09:aa:25:7b:64:74:e2:56:b1:9d:1f:bd:62: e9:a1:42:74:c7:f8:26:c8:02:d9:3a:de:11:53:70: b4:f6:8f:d6:e9:c2:6f:a4:dd:d8:86:d3:7e:7e:e8: 99:c9:d8:d9:03:51:b8:89:53:40:db:de:1e:e4:7b: e3:c3:0e:6b:42:9d:d5:b1:0e:4c:3e:b6:e4:98:c1: 67:29:54:b0:ec:4e:f1:d4:cd:40:89:18:0d:3f:8d: e2:4c:6c:a6:6b:1e:ab:ce:99:35:ed:4c:0d:6f:1f: 6b:dc:6e:82:aa:42:93:9e:44:12:0b:9f:60:78:ed: 64:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:21:07:22:7C:00:78:2D:7B:E3:C8:53:ED:38:DD:78:74:ED:18:3E X509v3 Authority Key Identifier: keyid:AD:41:FB:82:7F:93:10:4B:89:FA:6F:A7:85:F2:11:50:BE:6F:97:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:e9:d3:a7:67:b9:de:29:12:11:17:5e:d4:66:ab:89:34:6a: 30:dc:6d:d1:d8:cd:10:7a:7d:91:26:39:f9:d3:c5:4a:ee:4a: 9f:90:f6:49:84:5d:b9:35:f9:14:d5:02:a9:d2:66:f3:ed:29: a0:8e:df:fa:e7:e5:69:19:4c:94:e9:e8:30:f1:96:6a:76:72: de:e8:bb:be:75:b7:5b:c6:0d:05:56:68:ef:b7:50:5a:11:2d: 4c:2b:56:59:7d:da:8f:35:ca:f6:ca:6a:35:3e:62:98:21:72: 08:39:9d:b0:a7:e3:27:73:8b:0f:e6:77:7a:a0:ae:bc:0e:be: 19:79:e1:e0:59:f4:9e:e2:52:d3:28:66:f2:d2:a0:cf:91:47: 1b:35:b9:47:47:25:16:eb:93:e9:30:b9:53:de:19:17:07:8d: 02:57:b8:4d:64:80:f5:7e:22:92:63:f7:28:9b:d9:a5:ac:fa: fd:ab:0f:9f:8f:43:1b:13:25:48:ac:36:8f:28:ef:6a:bd:3d: ad:8e:69:17:5d:89:d0:7b:89:0f:e8:31:49:00:06:ee:a6:23: 46:ab:42:bf:83:e5:fe:cc:7e:dd:96:7f:c6:ed:5d:b6:30:08: f1:e1:01:4e:45:59:b9:44:0e:45:dd:5a:34:2a:80:8a:95:3b: 11:15:c6:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVCRDQxMTAvBgNVBAUTKEFENDFGQjgyN0Y5MzEwNEI4OUZBNkZBNzg1RjIxMTUw QkU2Rjk3OUEwHhcNMjQwNDI3MDUxNzI4WhcNMjQwNTA0MDUxNzI4WjAYMRYwFAYD VQQDEw02NjJjOGE2OC04MjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Pe7cI8ZA9Gt2utzV+jJqDudxVXIRCLT48SQtYt8xq7TilI5HBKvVyoj2psH 8A3ibs9lJTD2s7xewH1jzfBXsVkjRfXL0qZXaMaI009quWmG6Z7Nc72b7KZVC5Y4 SQc1yJ04DrNsCm9MYjvm5mv6qYoNFFG65KsYVDlE39DJvTKRfCKGVVBn/gmqJXtk dOJWsZ0fvWLpoUJ0x/gmyALZOt4RU3C09o/W6cJvpN3YhtN+fuiZydjZA1G4iVNA 294e5Hvjww5rQp3VsQ5MPrbkmMFnKVSw7E7x1M1AiRgNP43iTGymax6rzpk17UwN bx9r3G6CqkKTnkQSC59geO1knQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEshByJ8 AHgte+PIU+043Xh07Rg+MB8GA1UdIwQYMBaAFK1B+4J/kxBLifpvp4XyEVC+b5ea MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUJENC8wOEFENkQyMjZE QjgxMUVEODgzM0ZBMERDNEY5QUUwMi9yVUg3Z24tVEVFdUotbS1uaGZJUlVMNXZs NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JVSDdnbi1URUV1Si1tLW5oZklSVUw1dmw1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUJENC8wOEFENkQyMjZEQjgxMUVEODgzM0ZBMERDNEY5QUUwMi9yVUg3Z24tVEVF dUotbS1uaGZJUlVMNXZsNW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA76dOnZ7neKRIRF17UZquJNGow3G3R2M0Qen2RJjn508VK7kqfkPZJ hF25NfkU1QKp0mbz7Smgjt/65+VpGUyU6egw8ZZqdnLe6Lu+dbdbxg0FVmjvt1Ba ES1MK1ZZfdqPNcr2ymo1PmKYIXIIOZ2wp+Mnc4sP5nd6oK68Dr4ZeeHgWfSe4lLT KGby0qDPkUcbNblHRyUW65PpMLlT3hkXB40CV7hNZID1fiKSY/com9mlrPr9qw+f j0MbEyVIrDaPKO9qvT2tjmkXXYnQe4kP6DFJAAbupiNGq0K/g+X+zH7dln/G7V22 MAjx4QFORVm5RA5F3Vo0KoCKlTsRFcYc -----END CERTIFICATE-----Generated at Sat Apr 27 10:20:19 2024 by rpki-client on console-ams.rpki-client.org