$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft File: Alr-kZVIIEnyUJPriYEVxr03FEg.mft (raw, json) Hash identifier: KFblS1bJHwkJTNTONlN5leZpzUBoJzRnK3zmPi1Vu5I= Subject key identifier: CA:8C:19:97:D4:68:F3:DD:4A:84:3C:32:9F:CF:06:33:98:1F:E3:04 Authority key identifier: 02:5A:FE:91:95:48:20:49:F2:50:93:EB:89:81:15:C6:BD:37:14:48 Certificate issuer: /CN=A91BA044/serialNumber=025AFE9195482049F25093EB898115C6BD371448 Certificate serial: 01C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft Manifest number: 01C1 Signing time: Sun 05 May 2024 04:34:35 +0000 Manifest this update: Sun 05 May 2024 04:34:34 +0000 Manifest next update: Sun 12 May 2024 04:34:34 +0000 Files and hashes: 1: Alr-kZVIIEnyUJPriYEVxr03FEg.crl (hash: JvXRZtISZgeT0WxZgzk4rWfzEdf1pSE4PFUhHvrMI4M=) 2: 5CE70ACC074E11ED99CF6642C4F9AE02.roa (hash: UTQVGqvsK0R3aZDkbbMaKSrC+YuJAA4uR9/VuZFfj7E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.crl rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 452 (0x1c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA044/serialNumber=025AFE9195482049F25093EB898115C6BD371448 Validity Not Before: May 5 04:34:34 2024 GMT Not After : May 12 04:34:34 2024 GMT Subject: CN=66370c5a-a484 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:cf:38:c2:14:6c:69:ac:15:0b:b5:5d:fc:e0: 33:fa:c3:2b:12:80:dc:cf:e9:fc:b5:23:3a:7a:fa: fc:4f:24:56:e4:c4:4d:07:19:5b:d9:86:5e:2d:b2: 49:ef:c2:f1:85:57:fb:a3:a4:b3:02:0b:74:6b:dc: 41:e9:83:9f:00:7f:21:62:0d:83:c8:b0:ff:f4:af: 27:bf:f1:fe:c0:6b:1c:8d:9e:c4:16:a5:5e:5d:29: af:37:84:e5:d4:38:ee:6f:72:f5:32:a1:ab:4c:ab: 7d:03:3a:56:f6:89:18:ea:6e:72:39:a7:bb:52:a3: b9:12:1f:79:ce:c8:97:99:bc:58:92:9f:10:1f:81: d2:65:61:f4:d0:01:0e:9e:1c:2b:ac:25:69:d0:9c: d7:40:bc:25:41:9d:38:05:a2:b2:50:07:15:17:df: ef:03:16:34:57:9f:a7:b3:7c:f6:55:d8:9e:90:11: 12:10:de:12:ac:c4:28:2c:4a:85:30:a2:fc:8f:7f: 06:ee:3a:b4:fc:b0:d8:a1:b9:d0:91:50:2a:76:e7: 89:49:82:49:94:20:51:e0:a5:1f:17:b4:dd:83:fd: 78:ee:b5:40:8c:6b:d8:c6:79:c7:18:7a:df:f5:60: 4e:9d:28:c7:ed:56:ed:62:c0:9e:b9:2c:f2:b2:98: 0d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:8C:19:97:D4:68:F3:DD:4A:84:3C:32:9F:CF:06:33:98:1F:E3:04 X509v3 Authority Key Identifier: keyid:02:5A:FE:91:95:48:20:49:F2:50:93:EB:89:81:15:C6:BD:37:14:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:8b:c2:c5:1e:99:31:4d:26:cf:d5:1d:a8:5e:e1:b8:66:34: 97:ee:ec:91:0a:e5:c7:83:85:13:25:c8:78:1d:34:87:f4:52: 0b:6c:38:98:c7:66:40:92:6d:32:20:1c:15:2b:4d:ce:ca:40: 0c:be:a2:7a:fc:9d:e6:a7:7f:51:76:0a:cc:d1:f4:27:b5:35: 3a:15:f0:5e:c1:b2:ab:44:b9:cc:64:11:da:ed:d4:3e:ff:11: 0b:8e:fc:4f:d7:a2:ec:e0:67:ed:3f:66:53:0c:09:82:f3:65: 9c:49:a4:c9:9c:06:5d:f2:6d:90:bb:af:e6:0a:3c:83:23:9b: 69:1e:f3:b4:4f:6d:c6:68:0d:72:98:0a:ef:53:81:80:72:11: bc:95:3f:22:b4:1a:ec:25:d1:25:31:15:43:85:14:62:41:fe: 32:3d:dd:53:77:1a:5d:62:b2:f5:a8:70:64:1a:e1:02:c0:98: b2:79:9c:57:00:fe:2e:10:7d:52:ee:f7:96:49:da:ec:09:ac: 74:9f:36:64:15:d0:3f:2d:9f:f9:c4:52:ea:de:50:8b:37:e4: 0f:ce:5d:26:f5:7f:f5:cd:19:4d:49:29:b4:90:29:97:24:a6: 76:20:b2:88:e7:44:8d:4e:60:5f:48:66:49:62:a4:5d:33:50: 8b:27:3e:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEwNDQxMTAvBgNVBAUTKDAyNUFGRTkxOTU0ODIwNDlGMjUwOTNFQjg5ODExNUM2 QkQzNzE0NDgwHhcNMjQwNTA1MDQzNDM0WhcNMjQwNTEyMDQzNDM0WjAYMRYwFAYD VQQDEw02NjM3MGM1YS1hNDg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzs84whRsaawVC7Vd/OAz+sMrEoDcz+n8tSM6evr8TyRW5MRNBxlb2YZeLbJJ 78LxhVf7o6SzAgt0a9xB6YOfAH8hYg2DyLD/9K8nv/H+wGscjZ7EFqVeXSmvN4Tl 1Djub3L1MqGrTKt9AzpW9okY6m5yOae7UqO5Eh95zsiXmbxYkp8QH4HSZWH00AEO nhwrrCVp0JzXQLwlQZ04BaKyUAcVF9/vAxY0V5+ns3z2VdiekBESEN4SrMQoLEqF MKL8j38G7jq0/LDYobnQkVAqdueJSYJJlCBR4KUfF7Tdg/147rVAjGvYxnnHGHrf 9WBOnSjH7VbtYsCeuSzyspgNqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMqMGZfU aPPdSoQ8Mp/PBjOYH+MEMB8GA1UdIwQYMBaAFAJa/pGVSCBJ8lCT64mBFca9NxRI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTA0NC9BN0M3RTY1QTA3 NEExMUVEOTBBMzU0MTRDNEY5QUUwMi9BbHIta1pWSUlFbnlVSlByaVlFVnhyMDNG RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Fsci1rWlZJSUVueVVKUHJpWUVWeHIwM0ZFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTA0NC9BN0M3RTY1QTA3NEExMUVEOTBBMzU0MTRDNEY5QUUwMi9BbHIta1pWSUlF bnlVSlByaVlFVnhyMDNGRWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBti8LFHpkxTSbP1R2oXuG4ZjSX7uyRCuXHg4UTJch4HTSH9FILbDiY x2ZAkm0yIBwVK03OykAMvqJ6/J3mp39RdgrM0fQntTU6FfBewbKrRLnMZBHa7dQ+ /xELjvxP16Ls4GftP2ZTDAmC82WcSaTJnAZd8m2Qu6/mCjyDI5tpHvO0T23GaA1y mArvU4GAchG8lT8itBrsJdElMRVDhRRiQf4yPd1TdxpdYrL1qHBkGuECwJiyeZxX AP4uEH1S7veWSdrsCax0nzZkFdA/LZ/5xFLq3lCLN+QPzl0m9X/1zRlNSSm0kCmX JKZ2ILKI50SNTmBfSGZJYqRdM1CLJz6H -----END CERTIFICATE-----Generated at Sun May 5 05:30:51 2024 by rpki-client on console-ams.rpki-client.org