$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.mft File: tSlwZVVtKyKTSTXnUgcivVMz2k8.mft (raw, json) Hash identifier: B1++C4Jq4QpGjXUXV4Mfowys1USVVc5YPQ0BRVRIsYY= Subject key identifier: F8:88:0C:02:F8:77:3E:27:42:F7:30:84:0D:73:29:1F:A1:E0:AE:86 Authority key identifier: B5:29:70:65:55:6D:2B:22:93:49:35:E7:52:07:22:BD:53:33:DA:4F Certificate issuer: /CN=A91CD7A4/serialNumber=B5297065556D2B22934935E7520722BD5333DA4F Certificate serial: AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSlwZVVtKyKTSTXnUgcivVMz2k8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.mft Manifest number: AA Signing time: Wed 15 May 2024 06:45:21 +0000 Manifest this update: Wed 15 May 2024 06:45:21 +0000 Manifest next update: Wed 22 May 2024 06:45:21 +0000 Files and hashes: 1: tSlwZVVtKyKTSTXnUgcivVMz2k8.crl (hash: fQ3s9lTkatHVBtZCEymkEbRFr/47S04W4CpEapCKIAs=) 2: AD47BEC4320611EE845F4A5AC4F9AE02.roa (hash: 4bHJddjDshspH/1XIJ/4VQJxh31gIJKernZ8Tce+/MI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.crl rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSlwZVVtKyKTSTXnUgcivVMz2k8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 06:45:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD7A4/serialNumber=B5297065556D2B22934935E7520722BD5333DA4F Validity Not Before: May 15 06:45:21 2024 GMT Not After : May 22 06:45:21 2024 GMT Subject: CN=66445a01-a1d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:88:b9:bb:b3:62:66:88:2c:79:58:36:de:be: 5f:8f:ef:68:31:47:fd:c8:5f:d3:14:64:84:ca:e7: 1c:88:9c:23:47:35:c8:9f:c1:d5:ac:70:66:29:1e: 8f:11:23:3b:90:84:23:14:ce:e8:6a:73:fb:be:b2: 4b:c4:bc:59:50:55:4b:65:86:08:1f:cc:0c:57:9d: 5e:a2:60:4b:68:3a:01:e0:28:6b:f1:a8:d4:05:2c: 6b:dc:81:88:b1:2e:c1:e1:8d:4d:9f:1f:9e:9e:09: 5f:8f:e1:b1:61:d3:2c:b5:56:dd:66:ab:21:30:1e: c8:30:22:56:75:f8:9f:f0:2a:d2:5e:cb:e1:bf:1a: 66:a6:75:56:67:10:7b:17:7f:2b:b7:90:38:13:74: ec:52:c1:18:fb:22:6f:50:a7:a7:37:ea:74:54:e5: b7:fe:73:81:c5:25:2e:16:77:f6:a2:c8:43:c8:d0: 04:01:2a:d2:70:5d:fa:d7:48:54:be:8e:2d:da:73: 98:5a:41:84:f0:4e:0c:7f:98:13:df:2b:cb:fa:e1: 5e:ac:ea:a3:93:4b:dd:22:cc:ac:74:4d:ab:f8:a0: 09:dc:e4:74:46:34:33:85:a0:25:5f:ed:29:a4:fe: bb:1b:58:3f:fb:e4:a7:65:eb:3e:a1:f0:e1:de:0c: 34:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:88:0C:02:F8:77:3E:27:42:F7:30:84:0D:73:29:1F:A1:E0:AE:86 X509v3 Authority Key Identifier: keyid:B5:29:70:65:55:6D:2B:22:93:49:35:E7:52:07:22:BD:53:33:DA:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSlwZVVtKyKTSTXnUgcivVMz2k8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:0a:77:3d:df:98:ec:d1:10:a1:35:27:26:7e:a6:d0:fe:53: 64:b6:5f:bf:a4:4b:0f:61:aa:17:6f:3c:c0:cd:1e:44:54:4e: 94:fb:67:aa:bc:6c:cf:1c:30:8b:8d:6a:a6:f0:c8:83:d3:cf: a1:f3:d9:00:33:fd:af:a7:4d:97:01:bc:be:c9:ea:55:b5:65: 70:74:bb:95:2b:8c:00:2a:ee:18:62:75:f6:f9:1e:a7:ea:3d: dd:e2:e8:e9:1f:ea:c3:e4:77:6b:dd:8b:a3:dd:2f:58:d9:b5: 25:46:ea:21:dc:d8:d9:69:e4:a5:2a:97:d7:ed:52:e0:3c:9a: 50:56:25:64:02:b5:58:1e:a1:ca:f4:0d:c5:39:35:4a:70:72: a1:34:58:23:99:34:ea:07:e3:ce:6e:c6:8e:f1:21:c5:1f:04: 90:a5:45:9e:a3:65:66:b8:61:e5:93:d9:d3:5c:fc:89:dc:4f: 6e:43:30:4e:08:bb:aa:78:20:f5:93:e4:68:08:f5:44:56:24: 0b:be:d0:ff:eb:49:27:b3:3f:32:4f:cf:55:c5:53:5d:d4:7a: 27:5a:cf:98:13:11:09:60:28:17:86:85:17:6d:5b:6e:d6:d4: 8f:ed:7e:4b:77:13:e6:74:46:cc:f6:b2:07:38:86:6c:1b:e1: 98:88:b7:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q3QTQxMTAvBgNVBAUTKEI1Mjk3MDY1NTU2RDJCMjI5MzQ5MzVFNzUyMDcyMkJE NTMzM0RBNEYwHhcNMjQwNTE1MDY0NTIxWhcNMjQwNTIyMDY0NTIxWjAYMRYwFAYD VQQDEw02NjQ0NWEwMS1hMWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArIi5u7NiZogseVg23r5fj+9oMUf9yF/TFGSEyucciJwjRzXIn8HVrHBmKR6P ESM7kIQjFM7oanP7vrJLxLxZUFVLZYYIH8wMV51eomBLaDoB4Chr8ajUBSxr3IGI sS7B4Y1Nnx+englfj+GxYdMstVbdZqshMB7IMCJWdfif8CrSXsvhvxpmpnVWZxB7 F38rt5A4E3TsUsEY+yJvUKenN+p0VOW3/nOBxSUuFnf2oshDyNAEASrScF3610hU vo4t2nOYWkGE8E4Mf5gT3yvL+uFerOqjk0vdIsysdE2r+KAJ3OR0RjQzhaAlX+0p pP67G1g/++SnZes+ofDh3gw0ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPiIDAL4 dz4nQvcwhA1zKR+h4K6GMB8GA1UdIwQYMBaAFLUpcGVVbSsik0k151IHIr1TM9pP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDdBNC8zQ0M3MTk5NjEx ODcxMUVFQjM5RkUyNDNDNEY5QUUwMi90U2x3WlZWdEt5S1RTVFhuVWdjaXZWTXoy azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RTbHdaVlZ0S3lLVFNUWG5VZ2NpdlZNejJrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDdBNC8zQ0M3MTk5NjExODcxMUVFQjM5RkUyNDNDNEY5QUUwMi90U2x3WlZWdEt5 S1RTVFhuVWdjaXZWTXoyazgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9Cnc935js0RChNScmfqbQ/lNktl+/pEsPYaoXbzzAzR5EVE6U+2eq vGzPHDCLjWqm8MiD08+h89kAM/2vp02XAby+yepVtWVwdLuVK4wAKu4YYnX2+R6n 6j3d4ujpH+rD5Hdr3Yuj3S9Y2bUlRuoh3NjZaeSlKpfX7VLgPJpQViVkArVYHqHK 9A3FOTVKcHKhNFgjmTTqB+PObsaO8SHFHwSQpUWeo2VmuGHlk9nTXPyJ3E9uQzBO CLuqeCD1k+RoCPVEViQLvtD/60knsz8yT89VxVNd1HonWs+YExEJYCgXhoUXbVtu 1tSP7X5LdxPmdEbM9rIHOIZsG+GYiLdv -----END CERTIFICATE-----Generated at Wed May 15 09:04:45 2024 by rpki-client on console-ams.rpki-client.org