$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.mft File: 3COmnqHvwaN5SSwT6awUfEn1rQQ.mft (raw, json) Hash identifier: yyAlWYC4v9eJiajNjcgI9TRCNZnmR3+D+yFz0fhbolE= Subject key identifier: C9:29:D8:CA:4A:50:67:5C:E1:83:A3:17:CE:97:08:E4:85:BB:82:F2 Authority key identifier: DC:23:A6:9E:A1:EF:C1:A3:79:49:2C:13:E9:AC:14:7C:49:F5:AD:04 Certificate issuer: /CN=A91BB4C2/serialNumber=DC23A69EA1EFC1A379492C13E9AC147C49F5AD04 Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3COmnqHvwaN5SSwT6awUfEn1rQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.mft Manifest number: C7 Signing time: Tue 07 May 2024 06:32:51 +0000 Manifest this update: Tue 07 May 2024 06:32:50 +0000 Manifest next update: Tue 14 May 2024 06:32:50 +0000 Files and hashes: 1: 3COmnqHvwaN5SSwT6awUfEn1rQQ.crl (hash: 0XVVpnDgF29BWJe5vlSU/32Jvi78vwoU0I0eYaCsHuk=) 2: CBF7E2CE2D3611EEA81A490BC4F9AE02.roa (hash: GjQBLQ1QPq783AHBVS1MGjtSCxs3oCTF1KAHnsENe6M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.crl rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3COmnqHvwaN5SSwT6awUfEn1rQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 06:32:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB4C2/serialNumber=DC23A69EA1EFC1A379492C13E9AC147C49F5AD04 Validity Not Before: May 7 06:32:50 2024 GMT Not After : May 14 06:32:50 2024 GMT Subject: CN=6639cb13-3671 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c6:a8:e8:59:b7:e9:af:f8:06:0b:a1:eb:a2: 89:70:78:0a:0d:db:17:7d:9f:ab:0a:9b:c8:e6:14: 2e:cd:c2:ba:e3:d6:46:ed:b7:53:0f:65:29:bc:2a: 1e:b3:a9:8f:f2:ed:8f:9f:ae:e1:ef:6a:38:21:94: 50:6e:bb:0a:05:04:1a:b7:18:af:6b:85:29:57:6c: f9:12:a4:fa:94:d9:71:39:62:66:a8:b3:cd:90:b9: ee:a4:33:32:6b:c8:e2:72:8d:de:10:e6:0a:5f:f5: 7d:a5:5b:d5:85:22:ca:f2:93:46:bd:fa:dc:42:61: 92:ce:67:ae:0b:f1:0d:2e:4d:97:85:c6:e3:9b:3b: 4f:05:3a:bc:40:ff:4f:97:95:91:9f:7f:e0:fb:b8: f1:8e:e9:29:0e:87:7d:36:a0:69:c7:a4:45:5e:3a: af:27:6c:c9:89:de:fd:a1:70:56:8c:86:ac:2e:0e: e8:97:66:4d:70:68:3f:31:c3:9f:1c:88:84:28:71: d0:dc:c9:e2:4f:73:b1:9f:bf:bc:ce:36:33:4d:e8: 87:73:6d:55:eb:9c:1e:7d:68:31:a0:ac:22:b5:17: e8:af:fa:a8:82:04:c6:48:6e:f8:d1:3d:fa:e8:82: a4:e6:68:9b:33:9c:7b:12:bc:73:7a:71:e3:49:5d: 53:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:29:D8:CA:4A:50:67:5C:E1:83:A3:17:CE:97:08:E4:85:BB:82:F2 X509v3 Authority Key Identifier: keyid:DC:23:A6:9E:A1:EF:C1:A3:79:49:2C:13:E9:AC:14:7C:49:F5:AD:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3COmnqHvwaN5SSwT6awUfEn1rQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:49:79:fd:0b:d4:f5:c5:69:b5:7b:84:fa:f2:fd:a4:93:4d: f1:37:02:60:98:20:fe:25:91:79:bf:6c:fb:56:2c:99:70:92: e0:a4:9b:28:22:8a:bf:92:a7:60:71:fb:b5:38:d6:24:0b:27: 8d:f6:8b:5f:b2:fe:39:a6:ce:cc:28:b1:1b:38:89:42:f3:cb: b5:c8:0b:46:51:6a:aa:b1:1a:c2:29:3f:16:ad:f7:55:9c:be: 51:5a:47:89:2f:e9:e2:0a:10:9a:c6:87:e3:69:0f:e4:fe:cf: 4a:fb:ea:cc:e6:d4:97:ef:0f:2f:04:a7:56:c4:a2:32:71:2b: 98:08:66:21:e6:eb:98:86:26:71:65:c7:f9:24:2a:dd:9f:64: ed:fd:81:16:67:5c:8b:77:66:0c:b0:a6:35:64:64:1d:e4:4d: bd:21:a3:19:e6:1e:e4:93:73:f2:db:55:78:fa:6f:21:c4:fb: 23:1d:64:a9:9f:e0:e8:b2:ac:6c:25:97:cf:61:f3:f4:37:33: f0:ab:d3:58:be:ba:e5:cc:3b:d2:66:58:ec:6f:f2:af:91:bb: 15:0f:95:22:dc:ee:37:3e:d5:6a:c7:51:91:88:d6:60:3a:6c: 0d:ca:c3:48:3c:76:3c:dc:35:f8:c4:2a:51:05:18:ed:74:ff: de:ae:65:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0QzIxMTAvBgNVBAUTKERDMjNBNjlFQTFFRkMxQTM3OTQ5MkMxM0U5QUMxNDdD NDlGNUFEMDQwHhcNMjQwNTA3MDYzMjUwWhcNMjQwNTE0MDYzMjUwWjAYMRYwFAYD VQQDEw02NjM5Y2IxMy0zNjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzcao6Fm36a/4Bguh66KJcHgKDdsXfZ+rCpvI5hQuzcK649ZG7bdTD2UpvCoe s6mP8u2Pn67h72o4IZRQbrsKBQQatxiva4UpV2z5EqT6lNlxOWJmqLPNkLnupDMy a8jico3eEOYKX/V9pVvVhSLK8pNGvfrcQmGSzmeuC/ENLk2XhcbjmztPBTq8QP9P l5WRn3/g+7jxjukpDod9NqBpx6RFXjqvJ2zJid79oXBWjIasLg7ol2ZNcGg/McOf HIiEKHHQ3MniT3Oxn7+8zjYzTeiHc21V65wefWgxoKwitRfor/qoggTGSG740T36 6IKk5mibM5x7ErxzenHjSV1TKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMkp2MpK UGdc4YOjF86XCOSFu4LyMB8GA1UdIwQYMBaAFNwjpp6h78GjeUksE+msFHxJ9a0E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjRDMi9CMTdFOTVENjAz NzAxMUVFOUJCNjJDMkZDNEY5QUUwMi8zQ09tbnFIdndhTjVTU3dUNmF3VWZFbjFy UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNDT21ucUh2d2FONVNTd1Q2YXdVZkVuMXJRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjRDMi9CMTdFOTVENjAzNzAxMUVFOUJCNjJDMkZDNEY5QUUwMi8zQ09tbnFIdndh TjVTU3dUNmF3VWZFbjFyUVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBASXn9C9T1xWm1e4T68v2kk03xNwJgmCD+JZF5v2z7ViyZcJLgpJso Ioq/kqdgcfu1ONYkCyeN9otfsv45ps7MKLEbOIlC88u1yAtGUWqqsRrCKT8WrfdV nL5RWkeJL+niChCaxofjaQ/k/s9K++rM5tSX7w8vBKdWxKIycSuYCGYh5uuYhiZx Zcf5JCrdn2Tt/YEWZ1yLd2YMsKY1ZGQd5E29IaMZ5h7kk3Py21V4+m8hxPsjHWSp n+DosqxsJZfPYfP0NzPwq9NYvrrlzDvSZljsb/KvkbsVD5Ui3O43PtVqx1GRiNZg OmwNysNIPHY83DX4xCpRBRjtdP/ermX5 -----END CERTIFICATE-----Generated at Tue May 7 07:13:01 2024 by rpki-client on console-ams.rpki-client.org