$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft File: VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft (raw, json) Hash identifier: Wzdc7Uy5v2ihMAWCjWqAlh4V8cacoX8tcWyWe0UH7Mo= Subject key identifier: 10:F6:D8:15:CF:53:EE:CB:E2:D5:F3:27:B7:33:84:29:33:95:9C:94 Authority key identifier: 55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 Certificate issuer: /CN=A91C23DC/serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Certificate serial: 0B70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft Manifest number: 0B64 Signing time: Sat 04 May 2024 19:45:48 +0000 Manifest this update: Sat 04 May 2024 19:45:47 +0000 Manifest next update: Sat 11 May 2024 19:45:47 +0000 Files and hashes: 1: VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl (hash: SxtG5Htasx/TJ1PC5RCIfIRUI5iQDGFt0LrUQ8Iha+w=) 2: 598BD2E268D111ED99477B87C4F9AE02.roa (hash: nPDk8YAfhRRq46+EDI0qFO9e6NnF2ZFMp9GX0bgJrzw=) 3: 5AA3FD0868D111ED99477B87C4F9AE02.roa (hash: prhLP/O9Ky2vnNVwpgSz8d7bddtFDRsPdpE/zatUGlM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 19:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2928 (0xb70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23DC/serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Validity Not Before: May 4 19:45:47 2024 GMT Not After : May 11 19:45:47 2024 GMT Subject: CN=6636906c-ecdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:3a:9e:0b:c4:71:fc:ca:ff:1e:90:1e:d3:8f: 4f:d4:23:88:b2:07:df:9f:4e:5e:8b:44:a9:d4:92: 9c:00:88:5e:4a:14:7a:83:f6:3a:67:c7:6c:a6:5a: d7:7a:56:6f:14:77:8f:3c:ff:b4:b7:47:8b:5d:03: b3:ea:ef:68:8a:84:58:26:95:7b:7e:2f:4f:f5:b1: a8:5e:a0:62:a2:eb:d2:51:a9:c5:aa:e2:2c:ab:6e: 9c:06:68:ca:16:6a:32:e2:c2:0c:ca:d1:b7:7f:d0: a8:6b:b5:1e:7d:2b:03:da:21:db:85:5b:80:b8:d4: 6b:12:d2:1f:8d:ee:ea:5f:30:78:0d:60:91:32:69: 87:da:c8:f9:71:17:2c:8f:76:b1:92:75:8b:42:d5: 0f:b5:bb:3d:ac:8f:cd:41:3e:ce:d0:a5:f9:71:3e: 8c:1a:fc:c2:02:a4:41:c0:07:a5:4e:43:d9:54:a0: 9b:6d:95:da:83:fa:f5:c4:f2:45:07:e8:4d:a0:7a: b5:90:5d:5b:8b:89:c9:34:68:2f:b0:f5:83:c0:47: 3d:48:91:c0:f9:9b:a1:d7:0a:39:76:3b:3f:21:37: ce:77:d0:db:bc:f3:f7:ac:13:b9:7e:43:ce:c6:0f: fc:6a:27:4b:96:19:4b:2b:d4:dd:c1:bf:17:17:41: dc:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:F6:D8:15:CF:53:EE:CB:E2:D5:F3:27:B7:33:84:29:33:95:9C:94 X509v3 Authority Key Identifier: keyid:55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:9e:c5:a9:39:dc:fe:91:1e:00:b7:37:07:e7:d9:dd:a4:a3: c2:88:5a:8a:94:c1:45:33:d7:3f:a1:d3:f3:ec:66:04:e9:18: ed:96:27:68:32:61:b5:be:49:e9:6a:63:2f:fe:10:2e:2b:64: 92:df:a6:4e:db:8d:4d:60:58:a0:4d:d2:5e:08:eb:30:d0:ff: ea:44:5a:d9:96:bf:f7:0b:c7:0a:0e:56:65:43:10:a4:13:24: bd:7a:ef:07:7e:dc:41:e2:c0:6e:85:76:a9:e2:0c:fa:7a:c5: a0:87:43:75:89:71:de:c0:a1:e6:27:2c:c5:c5:db:85:4f:0d: b8:a2:e4:6a:76:94:c8:f1:eb:66:71:25:2d:5a:02:c5:49:d1: 65:21:d1:76:4f:84:4a:18:a1:d5:a5:5f:40:e0:91:cb:d0:df: 95:37:5d:2b:92:2c:c7:9d:2a:81:c6:aa:27:e2:03:28:3d:b9: 8b:4e:60:f8:85:24:ec:1a:3f:27:54:fa:4f:07:07:f8:c4:cb: 96:04:2e:22:ff:4c:c8:e9:9f:c1:b0:31:89:ca:06:82:9e:b8: 26:91:c4:48:5d:1b:8a:9f:50:c1:e4:10:86:14:cb:ff:ae:0e: 7a:82:33:32:dc:41:67:a2:2b:0c:70:08:3c:19:d9:78:63:df: 30:00:54:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzREMxMTAvBgNVBAUTKDU1RjJFNDg3NDAwNThFOEZDQzRGOTAxQTRBMzNFMUY0 MTc2MjAwRjgwHhcNMjQwNTA0MTk0NTQ3WhcNMjQwNTExMTk0NTQ3WjAYMRYwFAYD VQQDEw02NjM2OTA2Yy1lY2RkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxDqeC8Rx/Mr/HpAe049P1COIsgffn05ei0Sp1JKcAIheShR6g/Y6Z8dsplrX elZvFHePPP+0t0eLXQOz6u9oioRYJpV7fi9P9bGoXqBiouvSUanFquIsq26cBmjK Fmoy4sIMytG3f9Coa7UefSsD2iHbhVuAuNRrEtIfje7qXzB4DWCRMmmH2sj5cRcs j3axknWLQtUPtbs9rI/NQT7O0KX5cT6MGvzCAqRBwAelTkPZVKCbbZXag/r1xPJF B+hNoHq1kF1bi4nJNGgvsPWDwEc9SJHA+Zuh1wo5djs/ITfOd9DbvPP3rBO5fkPO xg/8aidLlhlLK9Tdwb8XF0HcIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBD22BXP U+7L4tXzJ7czhCkzlZyUMB8GA1UdIwQYMBaAFFXy5IdABY6PzE+QGkoz4fQXYgD4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNEQy8wNjYzOUY4NjBB OTMxMUVBODVBRDg4NkFDNEY5QUUwMi9WZkxraDBBRmpvX01UNUFhU2pQaDlCZGlB UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZmTGtoMEFGam9fTVQ1QWFTalBoOUJkaUFQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNEQy8wNjYzOUY4NjBBOTMxMUVBODVBRDg4NkFDNEY5QUUwMi9WZkxraDBBRmpv X01UNUFhU2pQaDlCZGlBUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVnsWpOdz+kR4AtzcH59ndpKPCiFqKlMFFM9c/odPz7GYE6Rjtlido MmG1vknpamMv/hAuK2SS36ZO241NYFigTdJeCOsw0P/qRFrZlr/3C8cKDlZlQxCk EyS9eu8HftxB4sBuhXap4gz6esWgh0N1iXHewKHmJyzFxduFTw24ouRqdpTI8etm cSUtWgLFSdFlIdF2T4RKGKHVpV9A4JHL0N+VN10rkizHnSqBxqon4gMoPbmLTmD4 hSTsGj8nVPpPBwf4xMuWBC4i/0zI6Z/BsDGJygaCnrgmkcRIXRuKn1DB5BCGFMv/ rg56gjMy3EFnoisMcAg8Gdl4Y98wAFQj -----END CERTIFICATE-----Generated at Sat May 4 21:19:31 2024 by rpki-client on console-ams.rpki-client.org