$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft File: TH2sISA9rkFsH87q_FVlcgIiCKE.mft (raw, json) Hash identifier: bYASB1/KlpC6H+hBt7Tn5iAwMiZkYf3bjopwk+n/BqE= Subject key identifier: 40:4C:B5:77:D6:05:56:9A:DB:FD:5B:6B:07:AC:6C:C6:20:D7:86:B3 Authority key identifier: 4C:7D:AC:21:20:3D:AE:41:6C:1F:CE:EA:FC:55:65:72:02:22:08:A1 Certificate issuer: /CN=A91C0CD5/serialNumber=4C7DAC21203DAE416C1FCEEAFC556572022208A1 Certificate serial: A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TH2sISA9rkFsH87q_FVlcgIiCKE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft Manifest number: A1 Signing time: Wed 15 May 2024 06:50:51 +0000 Manifest this update: Wed 15 May 2024 06:50:50 +0000 Manifest next update: Wed 22 May 2024 06:50:50 +0000 Files and hashes: 1: TH2sISA9rkFsH87q_FVlcgIiCKE.crl (hash: 4x/vMEUseD7IQtZFxP1qps0Wyt1FVKy89fnUW0o9gp8=) 2: 6EB972341D6011EEB28A4323C4F9AE02.roa (hash: YeYa0/PD2jit8PEhiy1pVUYW2PSxv9zv/KFb6J3dkU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.crl rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TH2sISA9rkFsH87q_FVlcgIiCKE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 06:50:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0CD5/serialNumber=4C7DAC21203DAE416C1FCEEAFC556572022208A1 Validity Not Before: May 15 06:50:50 2024 GMT Not After : May 22 06:50:50 2024 GMT Subject: CN=66445b4a-fdbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ef:06:9a:58:02:de:83:32:b1:91:59:21:7d: 96:4b:ed:da:40:60:c4:61:51:b7:6f:25:78:1f:2a: 72:32:c2:c2:2f:42:ca:af:a1:a8:91:1e:46:9f:90: 83:33:46:67:08:bb:46:31:25:c0:3b:3b:f1:5c:a0: d2:2b:22:80:ad:a3:3c:c1:85:af:78:dd:ac:64:03: 01:23:ca:35:30:86:f9:8a:44:1c:63:fb:d4:b6:52: fd:d0:09:30:97:5b:61:ef:c0:dc:91:d6:12:16:d0: 23:ca:2f:d6:67:aa:6d:c4:e2:b6:73:a2:08:be:22: d3:57:9a:d4:90:50:7f:d4:63:25:21:44:c6:99:cf: 21:88:97:7f:74:93:d7:a6:8b:f6:8b:2e:35:b4:c9: 19:be:e2:7e:f3:28:fb:de:d4:30:80:02:d6:31:c9: 0a:1d:a3:ce:6a:b9:d9:e7:f1:f2:b8:ee:86:f6:78: d9:d6:e3:6a:67:77:2c:52:18:d4:3f:57:39:d5:3a: b5:3f:c3:6b:ef:af:b4:0b:70:02:d2:6f:09:ee:6d: 6d:26:08:d6:11:20:16:b8:ec:37:49:8c:e7:54:38: 61:7f:23:1d:e1:89:ab:65:ad:b6:d0:ec:e7:4e:c3: 2b:4a:83:15:ab:6d:25:0a:c8:0e:97:2e:0b:0f:83: ee:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:4C:B5:77:D6:05:56:9A:DB:FD:5B:6B:07:AC:6C:C6:20:D7:86:B3 X509v3 Authority Key Identifier: keyid:4C:7D:AC:21:20:3D:AE:41:6C:1F:CE:EA:FC:55:65:72:02:22:08:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TH2sISA9rkFsH87q_FVlcgIiCKE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:e4:dc:95:15:18:2e:e5:f4:d8:36:35:1c:fe:f5:a7:d3:2e: 5f:46:2b:26:65:0b:4c:64:69:7b:f3:b8:9e:16:dc:7c:b5:52: 6e:e6:d9:9a:7d:3a:52:15:1c:8a:38:97:17:ef:40:75:12:19: 6b:49:53:0b:37:ab:43:4a:b6:32:0d:b3:9d:1b:c7:63:1f:7e: e1:0a:9c:4b:61:94:ee:4e:63:ca:6a:60:58:2c:a5:b3:3f:a7: 5f:1a:40:8e:3f:4e:73:12:c2:00:45:0c:37:26:5f:c9:b2:5a: 0b:55:5a:cd:63:15:cc:64:54:3d:36:59:bf:5a:0e:08:28:b9: d3:f5:5c:5b:4b:64:12:de:91:6f:79:ea:82:6f:e3:f8:1c:48: 37:8b:b2:03:b6:30:c0:18:55:33:e1:ca:99:a8:a0:0a:63:1a: f8:ec:e6:b3:6a:48:60:c1:f8:65:10:85:87:ba:63:6b:a7:d4: 78:42:0f:3b:1b:31:1b:f2:c3:8c:55:4f:36:45:c8:29:97:c0: 67:21:56:87:9d:f2:10:64:91:46:da:2b:da:ec:d3:0d:b2:98: 62:68:79:31:2e:da:57:c5:5e:47:e6:a8:26:9c:fb:0a:ac:89: 51:e5:bf:13:8b:4f:ea:af:98:14:d5:9a:f8:08:be:77:ef:c4: 52:34:9f:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDRDUxMTAvBgNVBAUTKDRDN0RBQzIxMjAzREFFNDE2QzFGQ0VFQUZDNTU2NTcy MDIyMjA4QTEwHhcNMjQwNTE1MDY1MDUwWhcNMjQwNTIyMDY1MDUwWjAYMRYwFAYD VQQDEw02NjQ0NWI0YS1mZGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAue8GmlgC3oMysZFZIX2WS+3aQGDEYVG3byV4HypyMsLCL0LKr6GokR5Gn5CD M0ZnCLtGMSXAOzvxXKDSKyKAraM8wYWveN2sZAMBI8o1MIb5ikQcY/vUtlL90Akw l1th78DckdYSFtAjyi/WZ6ptxOK2c6IIviLTV5rUkFB/1GMlIUTGmc8hiJd/dJPX pov2iy41tMkZvuJ+8yj73tQwgALWMckKHaPOarnZ5/HyuO6G9njZ1uNqZ3csUhjU P1c51Tq1P8Nr76+0C3AC0m8J7m1tJgjWESAWuOw3SYznVDhhfyMd4YmrZa220Ozn TsMrSoMVq20lCsgOly4LD4Pu8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEBMtXfW BVaa2/1bawesbMYg14azMB8GA1UdIwQYMBaAFEx9rCEgPa5BbB/O6vxVZXICIgih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMENENS9DRDJCNEI0NDFE MEIxMUVFODcwNDhBNENDNEY5QUUwMi9USDJzSVNBOXJrRnNIODdxX0ZWbGNnSWlD S0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RIMnNJU0E5cmtGc0g4N3FfRlZsY2dJaUNLRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MENENS9DRDJCNEI0NDFEMEIxMUVFODcwNDhBNENDNEY5QUUwMi9USDJzSVNBOXJr RnNIODdxX0ZWbGNnSWlDS0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB65NyVFRgu5fTYNjUc/vWn0y5fRismZQtMZGl787ieFtx8tVJu5tma fTpSFRyKOJcX70B1EhlrSVMLN6tDSrYyDbOdG8djH37hCpxLYZTuTmPKamBYLKWz P6dfGkCOP05zEsIARQw3Jl/JsloLVVrNYxXMZFQ9Nlm/Wg4IKLnT9VxbS2QS3pFv eeqCb+P4HEg3i7IDtjDAGFUz4cqZqKAKYxr47OazakhgwfhlEIWHumNrp9R4Qg87 GzEb8sOMVU82Rcgpl8BnIVaHnfIQZJFG2iva7NMNsphiaHkxLtpXxV5H5qgmnPsK rIlR5b8Ti0/qr5gU1Zr4CL5378RSNJ/3 -----END CERTIFICATE-----Generated at Wed May 15 09:04:44 2024 by rpki-client on console-ams.rpki-client.org