$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft File: 2cZrDkILkTQXPVU9FqoLFGt3R3M.mft (raw, json) Hash identifier: wY7Ida3GTaZ5hewJ4wra67m0tQSKp+F3F7tlf86ycDw= Subject key identifier: 80:B3:04:F5:B8:FA:97:D1:96:1B:29:4A:08:BD:79:21:AC:3D:BA:8C Authority key identifier: D9:C6:6B:0E:42:0B:91:34:17:3D:55:3D:16:AA:0B:14:6B:77:47:73 Certificate issuer: /CN=A91B9B0D/serialNumber=D9C66B0E420B9134173D553D16AA0B146B774773 Certificate serial: 0588 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cZrDkILkTQXPVU9FqoLFGt3R3M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft Manifest number: 0584 Signing time: Fri 03 May 2024 00:39:29 +0000 Manifest this update: Fri 03 May 2024 00:39:29 +0000 Manifest next update: Fri 10 May 2024 00:39:29 +0000 Files and hashes: 1: 2cZrDkILkTQXPVU9FqoLFGt3R3M.crl (hash: kiI7WWsMyJ0MFG/kPey0RifkqrSgvBeL0g7XuauWtUE=) 2: E0147FC48AB811EB92252D18C4F9AE02.roa (hash: gA+NfOWbDBv8IXwjf8ktmuZIleh2hqE2x08cTtO6IXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.crl rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cZrDkILkTQXPVU9FqoLFGt3R3M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 00:26:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1416 (0x588) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9B0D/serialNumber=D9C66B0E420B9134173D553D16AA0B146B774773 Validity Not Before: May 3 00:39:29 2024 GMT Not After : May 10 00:39:29 2024 GMT Subject: CN=66343241-4eac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:30:7c:7e:0d:86:4f:05:9d:05:67:2d:a3:bf: 94:92:9e:e1:41:60:e1:d9:f0:74:ce:ed:2b:c7:0b: 8e:8d:52:03:a3:66:16:94:a3:e8:fb:88:70:5f:55: ac:2f:ef:23:a1:cc:e8:d5:2a:ae:95:6b:78:dd:83: 1f:37:00:87:ef:cc:f5:05:df:52:c8:43:e6:51:92: 31:b9:81:e4:a3:76:f6:5f:f8:4b:b9:21:5a:bf:34: 9d:49:a3:21:d1:9a:06:e1:e0:02:99:9d:2a:da:13: 61:e8:b7:ae:22:21:ec:90:7d:ab:99:5a:c7:85:95: 37:ea:df:25:0e:9f:6b:bf:74:28:88:ff:80:6d:b0: 22:9d:76:94:ea:fb:84:4c:ad:bd:4b:e4:5b:01:86: 86:c1:b4:1f:5e:9b:3d:92:09:1e:a0:75:d0:11:4c: cb:62:2c:14:fc:2e:04:a9:83:83:a2:86:61:c8:5d: 4d:e2:66:e7:86:7f:dc:b6:9f:6c:ad:89:f5:63:2e: 36:54:2d:e6:f5:7b:4a:03:95:b3:d3:fa:20:e4:2f: d4:68:81:41:7f:e0:73:35:fa:63:1c:08:6d:7f:2b: ce:7c:96:24:85:d3:f6:f2:74:09:30:27:ba:43:37: 46:b9:7f:68:1c:7b:77:9f:dc:a4:09:5f:59:dd:da: 98:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:B3:04:F5:B8:FA:97:D1:96:1B:29:4A:08:BD:79:21:AC:3D:BA:8C X509v3 Authority Key Identifier: keyid:D9:C6:6B:0E:42:0B:91:34:17:3D:55:3D:16:AA:0B:14:6B:77:47:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cZrDkILkTQXPVU9FqoLFGt3R3M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:aa:86:b4:4b:fe:d0:00:2c:a0:33:8b:67:c1:99:69:ca:01: 0f:3d:4f:13:00:06:e8:de:76:52:88:c5:15:0f:70:13:39:99: 8b:37:32:a5:ca:73:64:6d:d0:b9:54:cc:06:1b:07:9e:02:3d: 8a:09:22:94:8f:be:83:05:da:9b:08:10:c7:f5:b6:7b:dc:46: db:51:8f:48:88:d2:09:65:74:ff:22:0c:7f:c3:90:36:15:05: 9e:09:13:7a:66:90:fc:b9:1a:34:07:3a:97:3d:00:f3:72:ae: ac:ef:df:50:ce:48:9e:46:e9:81:4a:25:64:c2:fe:4f:bf:5b: 6c:66:d8:ef:09:6b:21:75:03:25:43:ad:d7:0e:b1:ad:ad:ff: 2b:45:c9:40:6c:d4:bc:cc:30:93:8f:3a:f6:ba:ae:07:fe:8c: 39:83:e3:77:96:e0:c4:06:1d:63:57:12:f8:c6:11:04:50:66: 64:5b:22:fb:f1:e0:1a:b9:82:e3:39:a3:58:6e:47:f3:1c:83: fc:d6:52:8f:a8:61:d2:93:0f:43:c3:ae:70:70:83:63:55:d4: 87:8e:2e:bd:b1:73:54:d8:a5:3b:ed:42:19:73:e4:9e:05:47: 2b:cb:46:cc:bf:1e:ef:a0:be:d1:79:15:42:b9:07:e8:09:b4: 75:3f:4b:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlCMEQxMTAvBgNVBAUTKEQ5QzY2QjBFNDIwQjkxMzQxNzNENTUzRDE2QUEwQjE0 NkI3NzQ3NzMwHhcNMjQwNTAzMDAzOTI5WhcNMjQwNTEwMDAzOTI5WjAYMRYwFAYD VQQDEw02NjM0MzI0MS00ZWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAujB8fg2GTwWdBWcto7+Ukp7hQWDh2fB0zu0rxwuOjVIDo2YWlKPo+4hwX1Ws L+8joczo1SqulWt43YMfNwCH78z1Bd9SyEPmUZIxuYHko3b2X/hLuSFavzSdSaMh 0ZoG4eACmZ0q2hNh6LeuIiHskH2rmVrHhZU36t8lDp9rv3QoiP+AbbAinXaU6vuE TK29S+RbAYaGwbQfXps9kgkeoHXQEUzLYiwU/C4EqYODooZhyF1N4mbnhn/ctp9s rYn1Yy42VC3m9XtKA5Wz0/og5C/UaIFBf+BzNfpjHAhtfyvOfJYkhdP28nQJMCe6 QzdGuX9oHHt3n9ykCV9Z3dqYIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFICzBPW4 +pfRlhspSgi9eSGsPbqMMB8GA1UdIwQYMBaAFNnGaw5CC5E0Fz1VPRaqCxRrd0dz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUIwRC85OEI3MjgwRThB QjYxMUVCODIzN0Q0MTRDNEY5QUUwMi8yY1pyRGtJTGtUUVhQVlU5RnFvTEZHdDNS M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJjWnJEa0lMa1RRWFBWVTlGcW9MRkd0M1IzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUIwRC85OEI3MjgwRThBQjYxMUVCODIzN0Q0MTRDNEY5QUUwMi8yY1pyRGtJTGtU UVhQVlU5RnFvTEZHdDNSM00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjqoa0S/7QACygM4tnwZlpygEPPU8TAAbo3nZSiMUVD3ATOZmLNzKl ynNkbdC5VMwGGweeAj2KCSKUj76DBdqbCBDH9bZ73EbbUY9IiNIJZXT/Igx/w5A2 FQWeCRN6ZpD8uRo0BzqXPQDzcq6s799QzkieRumBSiVkwv5Pv1tsZtjvCWshdQMl Q63XDrGtrf8rRclAbNS8zDCTjzr2uq4H/ow5g+N3luDEBh1jVxL4xhEEUGZkWyL7 8eAauYLjOaNYbkfzHIP81lKPqGHSkw9Dw65wcINjVdSHji69sXNU2KU77UIZc+Se BUcry0bMvx7voL7ReRVCuQfoCbR1P0uj -----END CERTIFICATE-----Generated at Fri May 3 03:10:55 2024 by rpki-client on console-ams.rpki-client.org