$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft File: RZTy7BffVsPQZUDzZtKvEYsxfx4.mft (raw, json) Hash identifier: CwTupaYYjTyehrNrY6ChZ93j6jrn4AIxeeHeDHfgjuI= Subject key identifier: 59:28:28:62:BF:C1:44:2A:3A:56:CE:15:21:C8:F6:6B:B5:BD:CE:50 Authority key identifier: 45:94:F2:EC:17:DF:56:C3:D0:65:40:F3:66:D2:AF:11:8B:31:7F:1E Certificate issuer: /CN=A91CE978/serialNumber=4594F2EC17DF56C3D06540F366D2AF118B317F1E Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft Manifest number: 43 Signing time: Mon 20 May 2024 15:01:06 +0000 Manifest this update: Mon 20 May 2024 15:01:06 +0000 Manifest next update: Mon 27 May 2024 15:01:06 +0000 Files and hashes: 1: RZTy7BffVsPQZUDzZtKvEYsxfx4.crl (hash: uWa85kzn0Cz2mfHPYWfxVPcZraL0KVYjqn40AaFvD6Y=) 2: 30EAE110B9AD11EE83063243C4F9AE02.roa (hash: 5N+f2t+l19je3pcCt5hEaTL3vroVIGjp7rNbmODsUvM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.crl rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 15:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE978/serialNumber=4594F2EC17DF56C3D06540F366D2AF118B317F1E Validity Not Before: May 20 15:01:06 2024 GMT Not After : May 27 15:01:06 2024 GMT Subject: CN=664b65b2-fe2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ad:d1:c3:53:d8:82:92:3f:e1:36:42:3e:e7: c0:ef:33:97:89:4a:9e:4d:c2:8f:e4:c9:24:fb:46: c3:92:fa:0a:f0:ed:bd:9f:15:5a:22:fa:a6:0f:4a: 0c:1f:7d:ad:74:e4:d7:dc:02:2a:3a:05:86:e9:ad: f8:4b:12:86:0b:ed:74:a5:8c:9c:f2:c7:21:4b:94: 0e:35:40:f7:e2:68:4e:a7:13:cd:e8:a9:37:4f:e7: a6:1d:93:4b:e8:fa:82:fc:46:f2:dc:ea:cd:bc:a3: 70:03:a4:c0:bf:70:2a:81:81:8b:36:32:45:b1:47: f5:8e:3b:d5:4d:e9:25:8c:c3:c9:88:2c:bf:25:89: 6d:03:4e:44:4b:f6:93:6f:6c:c0:d5:08:85:86:80: 9a:23:22:de:53:f2:37:25:09:f2:6c:49:e2:f0:8b: df:60:05:aa:a5:51:40:bc:c5:95:52:94:ca:63:b1: 0e:cc:b6:d3:89:05:6a:df:4e:b2:d7:42:97:90:39: 9f:88:c1:42:55:54:98:2a:ea:a3:9c:de:0b:55:85: e3:e6:14:0d:df:8f:bd:da:57:19:bd:7e:a8:e1:18: 3c:b9:d8:15:b4:40:17:c2:87:10:8a:46:3e:bc:97: c6:bc:da:e2:33:03:c1:35:81:cd:28:16:e8:eb:0c: dc:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:28:28:62:BF:C1:44:2A:3A:56:CE:15:21:C8:F6:6B:B5:BD:CE:50 X509v3 Authority Key Identifier: keyid:45:94:F2:EC:17:DF:56:C3:D0:65:40:F3:66:D2:AF:11:8B:31:7F:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:09:42:ae:5c:d5:28:32:ed:ef:9a:57:ac:69:b5:b4:9a:24: 0c:15:6a:cf:46:86:79:fc:22:d5:d1:0f:fd:5b:49:6a:7a:04: ed:72:fc:e9:23:3a:7e:c1:a4:c4:e4:6e:9b:82:de:ee:ff:2b: 2c:ba:62:fa:a9:53:b3:4b:3b:d4:fa:ee:0b:20:6a:30:2d:b7: 5d:84:5e:85:06:4a:a6:07:24:36:1c:b4:25:c0:36:8b:05:2e: ff:e9:eb:4d:7d:3e:ad:40:86:8b:c2:a5:a1:76:26:44:3c:06: a4:56:35:3d:3e:1f:0b:85:0a:1d:7f:77:64:28:07:89:e7:e0: 39:4d:a0:81:b3:ba:7a:b3:eb:a2:9a:05:d6:a0:fe:44:7f:74: 9a:13:de:1c:1e:e8:d0:47:00:4e:f1:52:b3:9e:27:4d:06:c7: 76:72:8d:f1:c2:20:1c:62:9c:64:6d:d9:59:6b:54:93:a1:20: 58:b2:fb:e6:51:59:2e:cd:d1:89:53:2e:59:9a:6c:dc:ec:cf: 88:41:f1:ef:fd:0f:cd:ce:16:59:93:25:2a:69:c1:6d:40:c3: 05:e8:ad:c2:36:6c:2a:fe:0a:e2:d2:1b:06:08:a4:39:b0:aa: fd:87:ba:3b:4c:7b:4e:39:91:12:08:8a:cd:fd:6a:68:23:4a: e4:48:98:93 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RTk3ODExMC8GA1UEBRMoNDU5NEYyRUMxN0RGNTZDM0QwNjU0MEYzNjZEMkFGMTE4 QjMxN0YxRTAeFw0yNDA1MjAxNTAxMDZaFw0yNDA1MjcxNTAxMDZaMBgxFjAUBgNV BAMTDTY2NGI2NWIyLWZlMmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDArdHDU9iCkj/hNkI+58DvM5eJSp5Nwo/kyST7RsOS+grw7b2fFVoi+qYPSgwf fa105NfcAio6BYbprfhLEoYL7XSljJzyxyFLlA41QPfiaE6nE83oqTdP56Ydk0vo +oL8RvLc6s28o3ADpMC/cCqBgYs2MkWxR/WOO9VN6SWMw8mILL8liW0DTkRL9pNv bMDVCIWGgJojIt5T8jclCfJsSeLwi99gBaqlUUC8xZVSlMpjsQ7MttOJBWrfTrLX QpeQOZ+IwUJVVJgq6qOc3gtVhePmFA3fj73aVxm9fqjhGDy52BW0QBfChxCKRj68 l8a82uIzA8E1gc0oFujrDNw5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWSgoYr/B RCo6Vs4VIcj2a7W9zlAwHwYDVR0jBBgwFoAURZTy7BffVsPQZUDzZtKvEYsxfx4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNFOTc4LzVEQjU1NUFBQjhE QTExRUVCQzRCRUMyREM0RjlBRTAyL1JaVHk3QmZmVnNQUVpVRHpadEt2RVlzeGZ4 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUlpUeTdCZmZWc1BRWlVEelp0S3ZFWXN4Zng0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNF OTc4LzVEQjU1NUFBQjhEQTExRUVCQzRCRUMyREM0RjlBRTAyL1JaVHk3QmZmVnNQ UVpVRHpadEt2RVlzeGZ4NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABYJQq5c1Sgy7e+aV6xptbSaJAwVas9Ghnn8ItXRD/1bSWp6BO1y/Okj On7BpMTkbpuC3u7/Kyy6YvqpU7NLO9T67gsgajAtt12EXoUGSqYHJDYctCXANosF Lv/p6019Pq1AhovCpaF2JkQ8BqRWNT0+HwuFCh1/d2QoB4nn4DlNoIGzunqz66Ka Bdag/kR/dJoT3hwe6NBHAE7xUrOeJ00Gx3ZyjfHCIBxinGRt2VlrVJOhIFiy++ZR WS7N0YlTLlmabNzsz4hB8e/9D83OFlmTJSppwW1AwwXorcI2bCr+CuLSGwYIpDmw qv2HujtMe045kRIIis39amgjSuRImJM= -----END CERTIFICATE-----Generated at Mon May 20 17:23:57 2024 by rpki-client on console-ams.rpki-client.org