$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft File: B7Y7XcFse0rper0AhqMVbV10Rlk.mft (raw, json) Hash identifier: vRC61EhKNP+o9BxyrEy3LqYYPqq/OPTS42QgerKfkgc= Subject key identifier: 19:A1:FE:D4:AE:4E:F6:31:F5:AE:0F:BA:72:B3:EA:4F:51:36:13:62 Authority key identifier: 07:B6:3B:5D:C1:6C:7B:4A:E9:7A:BD:00:86:A3:15:6D:5D:74:46:59 Certificate issuer: /CN=A91C6E49/serialNumber=07B63B5DC16C7B4AE97ABD0086A3156D5D744659 Certificate serial: 0126 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft Manifest number: 0123 Signing time: Tue 07 May 2024 05:07:09 +0000 Manifest this update: Tue 07 May 2024 05:07:08 +0000 Manifest next update: Tue 14 May 2024 05:07:08 +0000 Files and hashes: 1: B7Y7XcFse0rper0AhqMVbV10Rlk.crl (hash: GJhH8BVffp8moFzQLnmmM8NyIzD8dnmlPD7NJcmu/gQ=) 2: 98FD8A0E538411ED8D781C7CC4F9AE02.roa (hash: Lztt6/ReAThPmIVkFkfcmUr03ADDOwVW/Xo8xPY51D0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.crl rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 05:07:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 294 (0x126) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6E49/serialNumber=07B63B5DC16C7B4AE97ABD0086A3156D5D744659 Validity Not Before: May 7 05:07:08 2024 GMT Not After : May 14 05:07:08 2024 GMT Subject: CN=6639b6fc-9896 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:41:28:8c:c2:a5:46:53:6c:07:51:b5:75:8d: 5f:13:74:d7:fe:17:a1:be:56:bb:27:56:e7:71:b4: fe:6b:15:9b:4a:5f:54:23:60:21:9a:55:ae:15:2d: ca:89:39:8b:80:cd:69:ad:52:f4:a3:c4:95:6b:0d: 36:88:94:ee:55:59:75:3c:ca:75:3f:0c:0c:7f:7d: 9d:f4:bd:24:75:f3:13:fa:aa:54:41:81:ad:d8:49: 82:1d:b1:d5:80:ce:ea:04:dc:16:3a:b6:7c:68:29: 69:ab:21:93:1f:23:0b:65:5e:c1:12:e6:fe:78:6f: 14:74:56:2a:92:4a:ef:f5:5d:52:cd:51:70:53:e5: 41:77:2b:01:cc:4b:53:94:7a:f8:31:a2:f9:e1:c9: 86:dd:eb:44:79:15:1c:e0:58:1f:43:f4:df:81:12: 44:cf:4c:4b:8b:39:b0:3a:0a:86:e1:59:08:1e:26: 81:62:44:49:c2:7d:78:e8:eb:b6:2b:38:af:73:5f: f6:00:b9:ef:f8:7a:06:d9:2d:ff:6a:75:ff:19:ad: 20:2e:09:d4:ee:5b:3e:fc:83:3f:e1:08:a9:b2:9a: fd:0a:a5:07:85:25:ee:90:26:77:84:f3:89:ed:39: 1f:24:87:c7:b6:48:16:e6:12:ec:1a:42:da:93:49: 49:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:A1:FE:D4:AE:4E:F6:31:F5:AE:0F:BA:72:B3:EA:4F:51:36:13:62 X509v3 Authority Key Identifier: keyid:07:B6:3B:5D:C1:6C:7B:4A:E9:7A:BD:00:86:A3:15:6D:5D:74:46:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:ff:63:10:f3:17:92:ea:f8:a0:c2:24:2f:c6:a6:54:a8:33: 51:3d:df:8e:ce:68:ca:8e:b7:34:00:c2:14:d0:de:73:25:6e: 9a:f6:c2:86:7b:9b:43:c0:de:af:6c:06:eb:6d:cc:8e:a6:6e: 55:68:ef:95:1b:d4:74:11:59:3a:70:59:57:ad:a9:e7:7e:0e: 6d:10:78:7e:80:4f:81:18:bd:0b:55:fc:d0:e2:70:27:c7:44: 81:f7:b2:9e:a5:5e:fb:fe:59:fe:cb:2f:86:91:7e:42:f3:fc: b8:3c:cb:43:0e:9f:82:16:60:42:0d:27:5d:90:ce:21:bd:8a: 32:ad:53:e3:6b:93:2e:e1:0b:dd:1c:a6:96:47:82:dc:75:ac: c6:66:56:ce:ca:ba:85:14:91:93:22:5f:52:ba:3d:80:8f:84: af:56:87:06:e8:e1:e7:7e:67:ce:a7:e9:91:bd:fb:e8:96:63: 05:e9:d6:c6:b6:64:14:1d:7b:9f:f3:57:3e:9d:10:d2:35:86: e2:f8:2e:75:d4:9d:f0:06:63:51:da:f4:a7:56:d7:01:1b:85: b8:db:80:28:5f:b2:3f:c5:31:c4:18:31:0b:07:2f:9a:7a:4d: 10:f6:41:0b:b2:9d:b7:27:d9:c6:c2:4c:ad:73:c6:45:52:d1: 68:8c:46:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZFNDkxMTAvBgNVBAUTKDA3QjYzQjVEQzE2QzdCNEFFOTdBQkQwMDg2QTMxNTZE NUQ3NDQ2NTkwHhcNMjQwNTA3MDUwNzA4WhcNMjQwNTE0MDUwNzA4WjAYMRYwFAYD VQQDEw02NjM5YjZmYy05ODk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyUEojMKlRlNsB1G1dY1fE3TX/hehvla7J1bncbT+axWbSl9UI2AhmlWuFS3K iTmLgM1prVL0o8SVaw02iJTuVVl1PMp1PwwMf32d9L0kdfMT+qpUQYGt2EmCHbHV gM7qBNwWOrZ8aClpqyGTHyMLZV7BEub+eG8UdFYqkkrv9V1SzVFwU+VBdysBzEtT lHr4MaL54cmG3etEeRUc4FgfQ/TfgRJEz0xLizmwOgqG4VkIHiaBYkRJwn146Ou2 Kzivc1/2ALnv+HoG2S3/anX/Ga0gLgnU7ls+/IM/4Qipspr9CqUHhSXukCZ3hPOJ 7TkfJIfHtkgW5hLsGkLak0lJPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBmh/tSu TvYx9a4PunKz6k9RNhNiMB8GA1UdIwQYMBaAFAe2O13BbHtK6Xq9AIajFW1ddEZZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkU0OS9CMzNBQTdBNjUz ODExMUVEOEFBOThGNzdDNEY5QUUwMi9CN1k3WGNGc2UwcnBlcjBBaHFNVmJWMTBS bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I3WTdYY0ZzZTBycGVyMEFocU1WYlYxMFJsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkU0OS9CMzNBQTdBNjUzODExMUVEOEFBOThGNzdDNEY5QUUwMi9CN1k3WGNGc2Uw cnBlcjBBaHFNVmJWMTBSbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCx/2MQ8xeS6vigwiQvxqZUqDNRPd+OzmjKjrc0AMIU0N5zJW6a9sKG e5tDwN6vbAbrbcyOpm5VaO+VG9R0EVk6cFlXrannfg5tEHh+gE+BGL0LVfzQ4nAn x0SB97KepV77/ln+yy+GkX5C8/y4PMtDDp+CFmBCDSddkM4hvYoyrVPja5Mu4Qvd HKaWR4LcdazGZlbOyrqFFJGTIl9Suj2Aj4SvVocG6OHnfmfOp+mRvfvolmMF6dbG tmQUHXuf81c+nRDSNYbi+C511J3wBmNR2vSnVtcBG4W424AoX7I/xTHEGDELBy+a ek0Q9kELsp23J9nGwkytc8ZFUtFojEYB -----END CERTIFICATE-----Generated at Tue May 7 06:30:14 2024 by rpki-client on console-ams.rpki-client.org