$ rpki-client -vvf rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft File: U5TlfShXd_11FCjRXLD7L8WSx6Y.mft (raw, json) Hash identifier: 9WoQs2NXXuny3uFFaaRKqQ/Gnt/PSe8M088m354LSlw= Subject key identifier: C8:56:9C:B6:60:85:80:B5:D1:12:1C:21:91:2E:23:18:DD:6E:40:B4 Authority key identifier: 53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 Certificate issuer: /CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Certificate serial: 047C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft Manifest number: 046C Signing time: Wed 01 May 2024 02:05:09 +0000 Manifest this update: Wed 01 May 2024 02:05:08 +0000 Manifest next update: Wed 08 May 2024 02:05:08 +0000 Files and hashes: 1: U5TlfShXd_11FCjRXLD7L8WSx6Y.crl (hash: t4bx9Qj2ZKsm3vxhLbX8SVlowaXKel8doqVSkAq7v9s=) 2: E19B6AD6D5BE11ECA8BE4666C4F9AE02.roa (hash: JVg0n/QA2pwPGrHW+UoSFccSj+Bfdsmj4n+1kb9VR6g=) 3: C25659465C9D11EC99F7D10BC4F9AE02.roa (hash: FWtbir5dWtmh58OaBJl6qlND27r3ZorFzNNzcDwvLxw=) 4: C2CAC16E5C9D11EC99F7D10BC4F9AE02.roa (hash: BhY5N3MgVaw0QMBj+DSRNy1Aln3Tg/7PwODU1TXoO+o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 01:48:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1148 (0x47c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Validity Not Before: May 1 02:05:08 2024 GMT Not After : May 8 02:05:08 2024 GMT Subject: CN=6631a355-430d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b8:9b:9c:c0:70:e2:01:5b:72:e2:5a:0f:d8: 3f:d6:6c:22:ba:99:74:ed:ba:f7:62:92:95:42:a6: 32:49:62:74:c8:7b:8e:ad:fd:00:e5:a7:d7:8a:5d: ae:39:7b:61:75:ee:25:d6:49:78:f0:ac:39:43:6c: 5f:91:2a:9f:ae:ac:50:6f:8d:d3:75:25:2d:29:9c: f4:78:ce:b9:51:e1:66:b9:ff:3c:a8:cb:f9:56:1a: 89:e3:39:5f:97:72:a4:95:84:5b:b1:76:00:c8:e0: a0:26:59:75:fc:d9:b1:92:85:5d:90:5c:4a:96:38: 3c:32:40:0a:6d:ef:f0:8e:5b:ff:62:57:69:09:e4: 8b:40:56:c9:71:af:98:b7:38:50:6d:41:95:8b:8b: 82:18:09:7f:cd:9c:c6:3b:2a:a8:ae:06:42:d0:0a: 2f:c1:e0:ad:fa:85:49:7a:d3:5d:a0:1f:9f:4e:be: 83:56:90:13:6d:50:fb:71:20:53:90:75:cd:7f:89: 72:a1:29:d4:70:9a:6d:40:93:e1:7b:1b:ba:34:6e: 18:6e:7a:9d:60:46:ca:20:f7:67:0f:66:ca:50:e0: 11:e1:25:aa:a2:2d:e4:4d:c9:83:2e:bf:94:86:a3: 70:e7:f9:12:d8:42:ac:1c:a6:18:62:56:99:a4:6a: 7a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:56:9C:B6:60:85:80:B5:D1:12:1C:21:91:2E:23:18:DD:6E:40:B4 X509v3 Authority Key Identifier: keyid:53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:50:e6:d2:00:80:f1:83:fa:5f:ec:e6:06:cb:26:9e:3d:71: e1:21:89:42:c1:54:c8:6d:9b:03:37:a2:a4:05:c1:84:d6:ff: b9:5d:a0:c3:0b:b7:3a:e6:ac:2e:a3:f3:c9:aa:05:62:2f:ed: 12:68:53:fb:30:43:f7:ce:3d:90:50:dc:ea:d5:9a:7a:34:ad: 0a:65:97:29:2e:6b:46:e0:f2:36:3f:b0:a8:6e:e9:03:48:d7: 10:8b:aa:33:1c:a5:82:8c:5c:fd:82:a2:4e:78:df:5b:44:72: 16:29:4b:30:16:d2:aa:10:af:65:0c:a8:bd:5f:13:a5:75:6b: 91:ec:7c:78:d3:22:6b:18:57:6e:f4:13:86:cd:c3:86:e2:c6: 75:f0:6c:15:40:c1:9a:f4:06:c8:00:1f:12:45:41:ae:bb:7b: 30:0d:87:92:4f:49:09:ca:75:94:29:92:ed:79:97:2b:9e:5e: f2:c1:ac:b0:cb:be:b4:98:3f:34:be:fe:99:2f:91:ba:53:4c: 53:bb:bf:15:dd:ae:0b:fb:60:70:7a:f8:eb:f8:4c:da:22:73: 07:9b:6f:b1:b5:27:57:09:88:df:38:88:51:42:ab:26:48:c1: 5d:15:1d:39:cb:f6:b2:b3:09:db:e2:ab:49:23:af:9b:3d:f4: af:4b:6c:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE3QTkxMTAvBgNVBAUTKDUzOTRFNTdEMjg1Nzc3RkQ3NTE0MjhEMTVDQjBGQjJG QzU5MkM3QTYwHhcNMjQwNTAxMDIwNTA4WhcNMjQwNTA4MDIwNTA4WjAYMRYwFAYD VQQDEw02NjMxYTM1NS00MzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA07ibnMBw4gFbcuJaD9g/1mwiupl07br3YpKVQqYySWJ0yHuOrf0A5afXil2u OXthde4l1kl48Kw5Q2xfkSqfrqxQb43TdSUtKZz0eM65UeFmuf88qMv5VhqJ4zlf l3KklYRbsXYAyOCgJll1/NmxkoVdkFxKljg8MkAKbe/wjlv/YldpCeSLQFbJca+Y tzhQbUGVi4uCGAl/zZzGOyqorgZC0AovweCt+oVJetNdoB+fTr6DVpATbVD7cSBT kHXNf4lyoSnUcJptQJPhexu6NG4YbnqdYEbKIPdnD2bKUOAR4SWqoi3kTcmDLr+U hqNw5/kS2EKsHKYYYlaZpGp6KQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMhWnLZg hYC10RIcIZEuIxjdbkC0MB8GA1UdIwQYMBaAFFOU5X0oV3f9dRQo0Vyw+y/Fksem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTdBOS81Rjg5RjZFQ0ZC MzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRfMTFGQ2pSWExEN0w4V1N4 NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1VGxmU2hYZF8xMUZDalJYTEQ3TDhXU3g2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTdBOS81Rjg5RjZFQ0ZCMzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRf MTFGQ2pSWExEN0w4V1N4NlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSUObSAIDxg/pf7OYGyyaePXHhIYlCwVTIbZsDN6KkBcGE1v+5XaDD C7c65qwuo/PJqgViL+0SaFP7MEP3zj2QUNzq1Zp6NK0KZZcpLmtG4PI2P7CobukD SNcQi6ozHKWCjFz9gqJOeN9bRHIWKUswFtKqEK9lDKi9XxOldWuR7Hx40yJrGFdu 9BOGzcOG4sZ18GwVQMGa9AbIAB8SRUGuu3swDYeST0kJynWUKZLteZcrnl7ywayw y760mD80vv6ZL5G6U0xTu78V3a4L+2Bwevjr+EzaInMHm2+xtSdXCYjfOIhRQqsm SMFdFR05y/ayswnb4qtJI6+bPfSvS2wW -----END CERTIFICATE-----Generated at Wed May 1 02:46:22 2024 by rpki-client on console-ams.rpki-client.org