$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.mft File: EWTaYENN7l6xS7U9S1lOZl3yb_Y.mft (raw, json) Hash identifier: 95ESpwnNVzI4pv+c+HPpaQaH0Yw72QoHLKaYcO6AI7g= Subject key identifier: F8:14:FB:2F:E1:02:CA:4A:1A:11:6C:14:5A:6C:A7:F4:5C:6D:52:47 Authority key identifier: 11:64:DA:60:43:4D:EE:5E:B1:4B:B5:3D:4B:59:4E:66:5D:F2:6F:F6 Certificate issuer: /CN=A91BD844/serialNumber=1164DA60434DEE5EB14BB53D4B594E665DF26FF6 Certificate serial: B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EWTaYENN7l6xS7U9S1lOZl3yb_Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.mft Manifest number: AC Signing time: Wed 15 May 2024 06:47:35 +0000 Manifest this update: Wed 15 May 2024 06:47:34 +0000 Manifest next update: Wed 22 May 2024 06:47:34 +0000 Files and hashes: 1: EWTaYENN7l6xS7U9S1lOZl3yb_Y.crl (hash: Jel6Bf07yGFp+CIpGptN7gysHP3Muaqm9YVt4dhw+Bs=) 2: E96CDD7A614611EE9C2B1380C4F9AE02.roa (hash: XdXCF2Xi5uxog6z5KJooofR84p3s7vuCyigfGvk5wSA=) 3: 32D39C06224511EE81776175C4F9AE02.roa (hash: 1b01HrQ984mzb/02NyzWUFZzcTsdrWy3Ymvx1U4TcOM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.crl rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EWTaYENN7l6xS7U9S1lOZl3yb_Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 06:47:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 179 (0xb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD844/serialNumber=1164DA60434DEE5EB14BB53D4B594E665DF26FF6 Validity Not Before: May 15 06:47:34 2024 GMT Not After : May 22 06:47:34 2024 GMT Subject: CN=66445a86-05d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:0d:d2:6a:1f:87:28:23:6a:30:75:55:c1:6d: 28:d5:4c:ee:17:fd:cb:20:eb:8e:20:b9:bf:fa:a7: d3:61:d5:ae:c8:91:96:08:21:79:81:7b:98:ed:1c: 58:f5:fa:51:6b:4d:f1:ae:af:09:d5:5b:12:9d:2e: 6e:d1:4a:1e:4f:91:94:09:75:c2:79:e7:cc:be:99: ad:06:8b:46:13:0a:a2:60:77:dc:7c:15:c7:99:82: ea:4b:f9:2a:c3:57:ae:52:cf:82:0e:18:be:94:52: 5b:e9:c3:3f:f9:cf:a4:d8:ff:ce:70:e5:95:3a:dd: 9f:50:37:f7:79:de:05:9e:33:48:f3:16:44:33:b1: f7:a9:c1:dd:29:8c:33:ca:0d:67:e9:d8:91:6e:c9: c1:6b:96:5b:f1:b0:fd:f7:27:20:74:d4:74:bc:70: ea:18:98:a0:2e:8d:96:9c:21:38:c7:2a:c7:35:81: ab:b0:12:c8:24:77:e5:f7:7b:71:8a:a4:66:61:34: ad:45:cf:77:2d:60:9e:37:1c:a6:aa:19:70:37:c0: 7f:fd:0d:d0:00:58:c2:5f:8b:90:d9:3a:fc:08:6c: 20:da:a7:cd:95:7d:7d:ce:e2:06:31:8f:e3:a1:60: 40:44:65:ab:98:5e:58:7b:7d:4e:cc:81:22:b4:46: 5e:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:14:FB:2F:E1:02:CA:4A:1A:11:6C:14:5A:6C:A7:F4:5C:6D:52:47 X509v3 Authority Key Identifier: keyid:11:64:DA:60:43:4D:EE:5E:B1:4B:B5:3D:4B:59:4E:66:5D:F2:6F:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EWTaYENN7l6xS7U9S1lOZl3yb_Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:c8:35:b4:bb:3c:20:c6:54:9b:9f:0d:81:32:4a:32:25:30: e3:d6:01:b8:d0:af:60:10:cc:4e:46:85:8b:89:c0:ba:bc:62: 37:1b:e6:61:00:53:90:aa:3f:b4:50:a0:99:ed:5c:1b:68:fc: e7:c1:7a:58:1f:30:41:f3:e2:8e:be:d9:db:a4:bd:65:a3:61: 97:b9:ce:a7:78:bc:46:c1:bd:44:54:d0:c1:d3:8c:34:69:7c: ff:e0:ae:ae:46:85:ad:03:17:5d:c0:fd:0a:ad:6f:d6:ff:1e: 51:dd:9e:6e:07:bd:5d:25:52:9b:13:b0:0a:cb:e5:db:4c:25: f7:74:63:1a:e8:d0:a6:5c:d2:74:30:76:3c:a7:db:f6:63:22: f3:bd:04:25:b3:ba:da:98:0b:d1:50:62:fb:7e:93:cc:85:7e: 08:94:df:08:63:1d:9f:2d:f8:06:6d:6c:d8:d3:e6:50:ff:f9: b6:9c:23:a1:d5:e6:47:fc:0b:30:f3:5c:ee:46:2e:1e:bc:92: cf:96:36:86:c9:c4:30:53:32:69:37:47:69:28:ee:d6:5c:e7: 25:60:d2:de:90:64:e4:c8:5f:f8:99:26:07:ef:09:7e:aa:4c: 7b:c9:4b:ed:ba:59:c0:93:5e:d8:18:ac:c4:92:7a:c4:4b:ba: 44:25:b9:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ4NDQxMTAvBgNVBAUTKDExNjREQTYwNDM0REVFNUVCMTRCQjUzRDRCNTk0RTY2 NURGMjZGRjYwHhcNMjQwNTE1MDY0NzM0WhcNMjQwNTIyMDY0NzM0WjAYMRYwFAYD VQQDEw02NjQ0NWE4Ni0wNWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAog3Sah+HKCNqMHVVwW0o1UzuF/3LIOuOILm/+qfTYdWuyJGWCCF5gXuY7RxY 9fpRa03xrq8J1VsSnS5u0UoeT5GUCXXCeefMvpmtBotGEwqiYHfcfBXHmYLqS/kq w1euUs+CDhi+lFJb6cM/+c+k2P/OcOWVOt2fUDf3ed4FnjNI8xZEM7H3qcHdKYwz yg1n6diRbsnBa5Zb8bD99ycgdNR0vHDqGJigLo2WnCE4xyrHNYGrsBLIJHfl93tx iqRmYTStRc93LWCeNxymqhlwN8B//Q3QAFjCX4uQ2Tr8CGwg2qfNlX19zuIGMY/j oWBARGWrmF5Ye31OzIEitEZeLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPgU+y/h AspKGhFsFFpsp/RcbVJHMB8GA1UdIwQYMBaAFBFk2mBDTe5esUu1PUtZTmZd8m/2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDg0NC83ODc2OTQ3NDE2 NTIxMUVFOTE0QjdCNTZDNEY5QUUwMi9FV1RhWUVOTjdsNnhTN1U5UzFsT1psM3li X1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VXVGFZRU5ON2w2eFM3VTlTMWxPWmwzeWJfWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDg0NC83ODc2OTQ3NDE2NTIxMUVFOTE0QjdCNTZDNEY5QUUwMi9FV1RhWUVOTjds NnhTN1U5UzFsT1psM3liX1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWyDW0uzwgxlSbnw2BMkoyJTDj1gG40K9gEMxORoWLicC6vGI3G+Zh AFOQqj+0UKCZ7VwbaPznwXpYHzBB8+KOvtnbpL1lo2GXuc6neLxGwb1EVNDB04w0 aXz/4K6uRoWtAxddwP0KrW/W/x5R3Z5uB71dJVKbE7AKy+XbTCX3dGMa6NCmXNJ0 MHY8p9v2YyLzvQQls7ramAvRUGL7fpPMhX4IlN8IYx2fLfgGbWzY0+ZQ//m2nCOh 1eZH/Asw81zuRi4evJLPljaGycQwUzJpN0dpKO7WXOclYNLekGTkyF/4mSYH7wl+ qkx7yUvtulnAk17YGKzEknrES7pEJbmn -----END CERTIFICATE-----Generated at Wed May 15 09:04:44 2024 by rpki-client on console-ams.rpki-client.org