$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft File: tii4qSXEXjrDpxvkEUZimYv0s-A.mft (raw, json) Hash identifier: On8tXBv5O925JcuOC5TAJVMKyXK/I7jy/TMlrJ7R+xE= Subject key identifier: DB:A2:2B:0B:2D:98:59:7D:21:DE:E2:4F:28:0D:38:59:D0:4C:10:F3 Authority key identifier: B6:28:B8:A9:25:C4:5E:3A:C3:A7:1B:E4:11:46:62:99:8B:F4:B3:E0 Certificate issuer: /CN=A91CA8EA/serialNumber=B628B8A925C45E3AC3A71BE4114662998BF4B3E0 Certificate serial: 03CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft Manifest number: 03C4 Signing time: Fri 03 May 2024 02:32:24 +0000 Manifest this update: Fri 03 May 2024 02:32:23 +0000 Manifest next update: Fri 10 May 2024 02:32:23 +0000 Files and hashes: 1: tii4qSXEXjrDpxvkEUZimYv0s-A.crl (hash: x3QhtCL5jpfIC2OFIQln5lTpQnX8ylClCnqIyD6Xpl8=) 2: 14A07422D45E11EEB37CB639C4F9AE02.roa (hash: nG4YRGpTri2EvHlJTJHeJXOnJo+V1CyAuzEb1Zxwv9k=) 3: 207388F2D45E11EE8D29793EC4F9AE02.roa (hash: 0MLHTxdXjJr4xQjhr2hOHvYGlL6GShqhdXBiCt0rZcY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.crl rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 00:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 974 (0x3ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA8EA/serialNumber=B628B8A925C45E3AC3A71BE4114662998BF4B3E0 Validity Not Before: May 3 02:32:23 2024 GMT Not After : May 10 02:32:23 2024 GMT Subject: CN=66344cb7-94ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:f5:66:8c:ee:a9:18:66:8b:cc:0d:dd:c0:d1: 7b:34:b9:61:a2:7d:87:ac:83:3b:22:08:f8:31:16: 07:45:32:5b:38:29:e2:65:32:e8:de:31:b6:17:0e: f5:5d:15:7f:88:c6:da:c7:31:c6:0b:8e:91:c0:ca: fa:f2:26:80:30:ea:24:7e:55:b0:64:5b:0e:be:3e: 26:de:35:ef:de:3f:04:a0:eb:88:ef:4d:44:55:35: c0:3f:b4:04:48:d8:8c:09:85:83:16:db:e9:dd:4c: b4:9f:e1:a7:24:f7:f2:57:46:07:77:88:ee:d9:d0: 29:e9:df:bd:eb:b4:97:3a:42:51:e7:e9:25:14:45: 99:7f:01:5c:25:6e:44:62:d3:e2:8a:ad:b6:8f:56: 79:ec:a5:35:3b:23:66:f5:d3:9b:67:6c:1c:5e:38: 90:7b:fc:db:cb:51:c0:05:c9:22:f3:b3:16:16:ee: e5:bd:b4:48:25:33:ab:e5:f9:3b:8a:93:b6:20:42: 98:b5:4f:f3:37:00:e3:0c:b5:81:75:ba:bd:5a:36: a9:94:dd:ea:9b:ba:cf:79:30:81:d3:24:a1:08:14: a3:6d:a8:5d:81:ab:58:66:fd:f2:33:17:a5:85:90: fc:8e:2d:b0:ed:c4:0e:19:f9:ea:ba:5f:67:30:26: 45:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:A2:2B:0B:2D:98:59:7D:21:DE:E2:4F:28:0D:38:59:D0:4C:10:F3 X509v3 Authority Key Identifier: keyid:B6:28:B8:A9:25:C4:5E:3A:C3:A7:1B:E4:11:46:62:99:8B:F4:B3:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:54:d0:37:a2:46:cb:98:d9:ab:33:71:c0:4e:ee:9c:66:a4: 96:f4:81:3e:48:4e:16:b1:d6:f5:35:67:ad:b6:bb:2e:78:7f: 7c:2b:55:f4:18:bf:e7:0f:e7:b7:32:2a:cc:c8:fb:3b:9c:4d: f5:93:5b:b9:74:20:a2:78:bb:11:2a:74:85:75:63:d5:b2:3b: 90:74:49:55:71:f2:4d:84:e6:7a:76:af:df:1d:d6:92:bc:0a: 21:9e:df:d9:7f:ba:82:98:66:01:90:0c:b6:ff:6d:3a:f1:8d: 6e:d0:14:d2:06:cc:8f:06:d5:d7:32:83:ca:30:51:98:72:bb: 1b:68:e5:3c:81:4a:f8:99:75:f8:47:40:ce:a5:6b:44:53:f0: 4e:56:ca:57:b2:37:1d:71:ce:96:f2:b1:07:85:0a:04:3d:e6: 0b:f6:d0:cc:ef:f3:b6:47:9c:22:c5:2d:43:fd:2e:ae:57:26: 52:bb:61:c5:64:dd:c7:62:2d:a6:9f:b4:bb:e3:ea:fe:f3:d2: fc:da:13:2b:66:d3:b1:bb:76:3d:c1:40:30:56:a5:c4:d4:40: e4:2d:96:49:29:aa:70:30:3d:93:70:36:4e:ad:67:2b:ef:40: d8:f4:a1:bb:e4:fa:30:9d:33:fe:18:4e:ad:71:d3:63:ce:17: 0a:4f:a4:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA84wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E4RUExMTAvBgNVBAUTKEI2MjhCOEE5MjVDNDVFM0FDM0E3MUJFNDExNDY2Mjk5 OEJGNEIzRTAwHhcNMjQwNTAzMDIzMjIzWhcNMjQwNTEwMDIzMjIzWjAYMRYwFAYD VQQDEw02NjM0NGNiNy05NGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8vVmjO6pGGaLzA3dwNF7NLlhon2HrIM7Igj4MRYHRTJbOCniZTLo3jG2Fw71 XRV/iMbaxzHGC46RwMr68iaAMOokflWwZFsOvj4m3jXv3j8EoOuI701EVTXAP7QE SNiMCYWDFtvp3Uy0n+GnJPfyV0YHd4ju2dAp6d+967SXOkJR5+klFEWZfwFcJW5E YtPiiq22j1Z57KU1OyNm9dObZ2wcXjiQe/zby1HABcki87MWFu7lvbRIJTOr5fk7 ipO2IEKYtU/zNwDjDLWBdbq9WjaplN3qm7rPeTCB0yShCBSjbahdgatYZv3yMxel hZD8ji2w7cQOGfnqul9nMCZFjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNuiKwst mFl9Id7iTygNOFnQTBDzMB8GA1UdIwQYMBaAFLYouKklxF46w6cb5BFGYpmL9LPg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQThFQS9EOENBMTNDMjQw NDkxMUVDOUI2RUZFN0JDNEY5QUUwMi90aWk0cVNYRVhqckRweHZrRVVaaW1ZdjBz LUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RpaTRxU1hFWGpyRHB4dmtFVVppbVl2MHMtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QThFQS9EOENBMTNDMjQwNDkxMUVDOUI2RUZFN0JDNEY5QUUwMi90aWk0cVNYRVhq ckRweHZrRVVaaW1ZdjBzLUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4VNA3okbLmNmrM3HATu6cZqSW9IE+SE4Wsdb1NWettrsueH98K1X0 GL/nD+e3MirMyPs7nE31k1u5dCCieLsRKnSFdWPVsjuQdElVcfJNhOZ6dq/fHdaS vAohnt/Zf7qCmGYBkAy2/2068Y1u0BTSBsyPBtXXMoPKMFGYcrsbaOU8gUr4mXX4 R0DOpWtEU/BOVspXsjcdcc6W8rEHhQoEPeYL9tDM7/O2R5wixS1D/S6uVyZSu2HF ZN3HYi2mn7S74+r+89L82hMrZtOxu3Y9wUAwVqXE1EDkLZZJKapwMD2TcDZOrWcr 70DY9KG75PownTP+GE6tcdNjzhcKT6QX -----END CERTIFICATE-----Generated at Fri May 3 03:10:56 2024 by rpki-client on console-ams.rpki-client.org