$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft File: 07TuvD2fWh6iApZpmumSiBsdjf0.mft (raw, json) Hash identifier: s8SXbMsACBPjvkPo5l69ZJRxdUVvbapIoULnPpeUfvk= Subject key identifier: D8:8E:D3:36:E6:83:E9:D0:86:84:43:C6:43:3B:FC:51:F8:07:5A:EC Authority key identifier: D3:B4:EE:BC:3D:9F:5A:1E:A2:02:96:69:9A:E9:92:88:1B:1D:8D:FD Certificate issuer: /CN=A91CD4E0/serialNumber=D3B4EEBC3D9F5A1EA20296699AE992881B1D8DFD Certificate serial: 0586 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07TuvD2fWh6iApZpmumSiBsdjf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft Manifest number: 0585 Signing time: Thu 02 May 2024 14:55:09 +0000 Manifest this update: Thu 02 May 2024 14:55:08 +0000 Manifest next update: Thu 09 May 2024 14:55:08 +0000 Files and hashes: 1: 07TuvD2fWh6iApZpmumSiBsdjf0.crl (hash: 8nm81q0uosptQGuFF+1nzkFafahn3wf1HOQfLsjw6vc=) 2: E969742CB33B11EEB4D87842C4F9AE02.roa (hash: hE1Rvl1hQJuygrdMg8cetwT7bDZALAkoPZZ+l8wJp9o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.crl rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07TuvD2fWh6iApZpmumSiBsdjf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 14:55:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1414 (0x586) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD4E0/serialNumber=D3B4EEBC3D9F5A1EA20296699AE992881B1D8DFD Validity Not Before: May 2 14:55:08 2024 GMT Not After : May 9 14:55:08 2024 GMT Subject: CN=6633a94c-9518 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:22:f5:e8:de:d9:70:f3:31:cf:3b:74:6e:39: 0b:41:03:28:8b:49:3a:b3:9e:a1:5d:5d:6b:bc:3b: 94:69:9b:a6:3d:f1:e5:7c:2f:6c:68:ef:5c:01:e7: d9:c0:1c:e4:9c:38:e9:17:31:0b:06:13:08:0d:03: e5:3f:2d:06:19:2f:64:cd:7f:61:9f:2c:52:6f:e5: c8:96:52:f0:60:c1:3f:79:bc:54:b6:e3:ec:70:64: c0:61:f4:22:d6:7a:6e:6c:49:b6:2c:2d:a4:7b:a3: 42:df:ab:4d:30:ae:19:e2:79:76:db:ea:90:c3:8b: 08:50:8d:d3:c6:81:86:fe:fa:f8:9f:f5:c6:e4:9a: 4c:1c:51:35:e6:1f:bf:13:d1:a5:87:8d:dc:b2:d2: 82:25:35:5f:18:df:8f:ea:cc:94:bd:d1:34:8a:ec: b9:fe:9b:26:ed:86:f3:23:10:f2:3f:f8:0f:9b:5c: 7a:76:5a:77:c8:f0:04:f4:18:1c:88:74:4d:87:9c: 20:88:98:ac:62:94:5e:a3:3b:33:f5:0f:3f:9d:7e: b5:b3:74:79:b9:f7:35:7b:5c:76:4e:eb:11:6c:8c: ab:87:51:b6:7b:66:d9:ed:41:c8:bd:c7:dc:b1:02: 4a:02:18:05:46:c5:68:6a:a7:c4:b1:ab:a6:2b:e2: 52:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:8E:D3:36:E6:83:E9:D0:86:84:43:C6:43:3B:FC:51:F8:07:5A:EC X509v3 Authority Key Identifier: keyid:D3:B4:EE:BC:3D:9F:5A:1E:A2:02:96:69:9A:E9:92:88:1B:1D:8D:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07TuvD2fWh6iApZpmumSiBsdjf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:0f:5b:3e:4d:c5:45:ee:b2:52:af:39:4e:aa:82:99:c0:01: 4b:2f:4b:08:9a:de:19:ce:ad:b6:df:39:26:21:a3:e7:d0:f2: 3e:b7:ae:42:ef:ff:60:22:0b:b4:6c:4d:04:ad:05:a1:76:7d: 46:1f:05:f9:7b:fe:c1:02:15:e0:c2:33:25:29:d3:c2:37:da: 5b:ca:7a:46:17:bb:35:cd:9a:95:b1:ad:83:03:2e:e3:b2:7f: 0e:0e:aa:fd:7f:b2:a6:61:6a:8f:c8:d7:ef:68:32:e2:37:7c: a1:1c:e8:ee:bb:d6:b0:91:4e:2a:a1:ce:58:02:2f:b1:11:ef: 29:3d:62:d0:93:8f:6a:ef:99:88:24:c1:fe:36:bc:fb:b2:75: dd:fd:52:77:c0:6d:93:9f:d4:83:57:f2:66:26:89:c7:37:9d: 98:c8:d2:7c:95:38:ab:f0:26:0f:b2:f5:c3:cb:dc:02:41:1f: bd:0a:ef:e0:fa:95:67:20:d4:2c:dc:27:11:8f:0e:b8:91:9d: 06:d1:17:52:c2:fa:aa:20:a4:85:f1:16:62:ee:0b:57:55:cc: 15:7b:58:b6:bc:35:f5:b7:a6:09:e4:95:a2:29:1f:f0:90:5a: 72:55:f5:5d:7b:fc:c7:93:28:36:e2:8f:84:d5:87:88:90:2f: 16:49:87:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q0RTAxMTAvBgNVBAUTKEQzQjRFRUJDM0Q5RjVBMUVBMjAyOTY2OTlBRTk5Mjg4 MUIxRDhERkQwHhcNMjQwNTAyMTQ1NTA4WhcNMjQwNTA5MTQ1NTA4WjAYMRYwFAYD VQQDEw02NjMzYTk0Yy05NTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAryL16N7ZcPMxzzt0bjkLQQMoi0k6s56hXV1rvDuUaZumPfHlfC9saO9cAefZ wBzknDjpFzELBhMIDQPlPy0GGS9kzX9hnyxSb+XIllLwYME/ebxUtuPscGTAYfQi 1npubEm2LC2ke6NC36tNMK4Z4nl22+qQw4sIUI3TxoGG/vr4n/XG5JpMHFE15h+/ E9Glh43cstKCJTVfGN+P6syUvdE0iuy5/psm7YbzIxDyP/gPm1x6dlp3yPAE9Bgc iHRNh5wgiJisYpReozsz9Q8/nX61s3R5ufc1e1x2TusRbIyrh1G2e2bZ7UHIvcfc sQJKAhgFRsVoaqfEsaumK+JSYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNiO0zbm g+nQhoRDxkM7/FH4B1rsMB8GA1UdIwQYMBaAFNO07rw9n1oeogKWaZrpkogbHY39 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDRFMC84MzQ1NzExNjhE N0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi8wN1R1dkQyZldoNmlBcFpwbXVtU2lCc2Rq ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA3VHV2RDJmV2g2aUFwWnBtdW1TaUJzZGpmMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDRFMC84MzQ1NzExNjhEN0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi8wN1R1dkQyZldo NmlBcFpwbXVtU2lCc2RqZjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWD1s+TcVF7rJSrzlOqoKZwAFLL0sImt4Zzq223zkmIaPn0PI+t65C 7/9gIgu0bE0ErQWhdn1GHwX5e/7BAhXgwjMlKdPCN9pbynpGF7s1zZqVsa2DAy7j sn8ODqr9f7KmYWqPyNfvaDLiN3yhHOjuu9awkU4qoc5YAi+xEe8pPWLQk49q75mI JMH+Nrz7snXd/VJ3wG2Tn9SDV/JmJonHN52YyNJ8lTir8CYPsvXDy9wCQR+9Cu/g +pVnINQs3CcRjw64kZ0G0RdSwvqqIKSF8RZi7gtXVcwVe1i2vDX1t6YJ5JWiKR/w kFpyVfVde/zHkyg24o+E1YeIkC8WSYdH -----END CERTIFICATE-----Generated at Thu May 2 17:18:57 2024 by rpki-client on console-ams.rpki-client.org