$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.mft File: 2IDvJluUDjHf7RxCrvUUS2RBNxc.mft (raw, json) Hash identifier: KV2ubqQNsCQOmngodV6mWgz2lWyTlp7poIRMH3PBWdk= Subject key identifier: 0D:9F:3C:C2:52:5A:49:04:65:3D:4B:D8:BA:DE:79:0C:A0:48:60:10 Authority key identifier: D8:80:EF:26:5B:94:0E:31:DF:ED:1C:42:AE:F5:14:4B:64:41:37:17 Certificate issuer: /CN=A91CFA8E/serialNumber=D880EF265B940E31DFED1C42AEF5144B64413717 Certificate serial: C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2IDvJluUDjHf7RxCrvUUS2RBNxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.mft Manifest number: BD Signing time: Fri 03 May 2024 06:37:40 +0000 Manifest this update: Fri 03 May 2024 06:37:40 +0000 Manifest next update: Fri 10 May 2024 06:37:40 +0000 Files and hashes: 1: 2IDvJluUDjHf7RxCrvUUS2RBNxc.crl (hash: UGf/lHW2Cl6IfFR2jMJDM/oUObueGE8qJUvSgRUwZmI=) 2: 61663178F88311EDB1DF555DC4F9AE02.roa (hash: UrcwKDaR3AkRy6/pEVnSRQ8ZMWTM/9hdb4jF8pJExns=) 3: 43E961E013E711EE8ECA2D3CC4F9AE02.roa (hash: DoaNPcTx2dfkhFvl7+uLAlA1D5Z+LFugwiwtkHb8xH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.crl rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2IDvJluUDjHf7RxCrvUUS2RBNxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 06:37:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFA8E/serialNumber=D880EF265B940E31DFED1C42AEF5144B64413717 Validity Not Before: May 3 06:37:40 2024 GMT Not After : May 10 06:37:40 2024 GMT Subject: CN=66348634-2f6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:60:74:c7:b3:e9:0b:b5:3d:9a:53:72:df:54: 7d:fc:60:ae:6d:48:c8:18:5b:06:1f:47:b5:7e:fe: f2:32:be:33:57:95:aa:8c:c9:bc:b9:70:91:7b:43: c9:59:e4:39:5e:24:38:ea:a2:85:72:18:5c:2e:3b: 93:8e:87:ae:95:6b:28:4c:bf:b2:2c:24:e8:66:ff: 97:70:d7:90:e1:d5:ae:6b:3e:81:69:35:e0:34:7a: 09:53:a7:ae:c3:5a:7e:87:a1:a2:b6:8d:d6:6d:93: 3e:bd:ce:32:ae:de:27:b0:f3:cd:af:c4:1a:16:4c: 53:dc:99:88:84:ba:8d:f8:de:b5:f4:07:c9:8f:86: 80:9a:c7:92:78:a3:8e:79:72:1c:4e:dd:1a:4f:b7: ca:93:5d:ee:8b:c5:45:19:b8:c3:29:fb:61:ed:10: 5e:a5:81:5b:32:2c:d0:91:b7:95:03:fc:4f:6d:d3: 60:90:3b:5c:11:45:f8:e6:9b:09:9c:c8:40:2a:91: ea:83:bd:0b:44:78:63:d0:ee:04:cf:bd:26:e1:5c: 8b:50:e6:e1:8e:7e:32:55:39:ee:17:e3:93:76:e0: e5:ce:68:52:f8:82:bc:74:6f:bd:33:27:cc:c6:64: 09:c5:a2:1d:eb:74:ee:8c:96:13:09:b8:1a:12:68: 78:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:9F:3C:C2:52:5A:49:04:65:3D:4B:D8:BA:DE:79:0C:A0:48:60:10 X509v3 Authority Key Identifier: keyid:D8:80:EF:26:5B:94:0E:31:DF:ED:1C:42:AE:F5:14:4B:64:41:37:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2IDvJluUDjHf7RxCrvUUS2RBNxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:8c:eb:cc:a5:22:10:9f:f5:05:be:68:ac:c1:37:6d:a1:5e: 8a:ab:fe:94:99:18:79:6a:e2:bf:91:f1:5e:7d:00:9e:fb:e9: 2d:01:33:ab:21:e0:dd:8b:17:ac:36:40:70:3b:5f:89:1f:5a: 26:59:b9:69:eb:f2:21:ac:aa:50:89:c5:c9:de:cb:b9:e9:b4: 62:91:3e:0a:ab:6a:bd:32:87:df:8e:9d:ef:4e:4a:c6:8e:6c: e7:6e:bd:cf:ef:81:f1:95:81:71:e4:21:2a:7d:5b:4e:5b:6e: f3:1c:06:d1:a6:30:f9:35:c5:51:a4:21:9d:32:a8:54:86:53: dd:75:5d:5a:53:e0:fe:af:98:5f:ce:87:1f:2c:db:cd:57:30: 3c:3a:83:2e:d6:e7:de:d3:a6:24:04:f7:5a:c6:f8:ff:0c:8b: e5:4a:0f:72:a8:64:ee:1f:ba:ee:60:c6:6d:8c:ab:4d:2f:d3: 4d:d2:22:79:97:da:96:e8:ce:cd:4d:a2:88:43:22:b2:d6:16: 8e:ec:5e:81:cc:22:6c:c7:14:4b:7d:d5:70:90:08:59:12:d0: f8:9e:af:14:bc:93:e9:c8:eb:50:56:2a:e8:3b:4a:ba:df:75: e7:ed:a3:18:35:66:e3:f1:15:42:5a:94:3b:8a:e2:18:45:bd: 12:19:1b:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBOEUxMTAvBgNVBAUTKEQ4ODBFRjI2NUI5NDBFMzFERkVEMUM0MkFFRjUxNDRC NjQ0MTM3MTcwHhcNMjQwNTAzMDYzNzQwWhcNMjQwNTEwMDYzNzQwWjAYMRYwFAYD VQQDEw02NjM0ODYzNC0yZjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7GB0x7PpC7U9mlNy31R9/GCubUjIGFsGH0e1fv7yMr4zV5WqjMm8uXCRe0PJ WeQ5XiQ46qKFchhcLjuTjoeulWsoTL+yLCToZv+XcNeQ4dWuaz6BaTXgNHoJU6eu w1p+h6Gito3WbZM+vc4yrt4nsPPNr8QaFkxT3JmIhLqN+N619AfJj4aAmseSeKOO eXIcTt0aT7fKk13ui8VFGbjDKfth7RBepYFbMizQkbeVA/xPbdNgkDtcEUX45psJ nMhAKpHqg70LRHhj0O4Ez70m4VyLUObhjn4yVTnuF+OTduDlzmhS+IK8dG+9MyfM xmQJxaId63TujJYTCbgaEmh4VwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA2fPMJS WkkEZT1L2LreeQygSGAQMB8GA1UdIwQYMBaAFNiA7yZblA4x3+0cQq71FEtkQTcX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkE4RS82MUJBRDhFMEY4 N0UxMUVEOTBEODQ0NUNDNEY5QUUwMi8ySUR2Smx1VURqSGY3UnhDcnZVVVMyUkJO eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJJRHZKbHVVRGpIZjdSeENydlVVUzJSQk54Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkE4RS82MUJBRDhFMEY4N0UxMUVEOTBEODQ0NUNDNEY5QUUwMi8ySUR2Smx1VURq SGY3UnhDcnZVVVMyUkJOeGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjjOvMpSIQn/UFvmiswTdtoV6Kq/6UmRh5auK/kfFefQCe++ktATOr IeDdixesNkBwO1+JH1omWblp6/IhrKpQicXJ3su56bRikT4Kq2q9Moffjp3vTkrG jmznbr3P74HxlYFx5CEqfVtOW27zHAbRpjD5NcVRpCGdMqhUhlPddV1aU+D+r5hf zocfLNvNVzA8OoMu1ufe06YkBPdaxvj/DIvlSg9yqGTuH7ruYMZtjKtNL9NN0iJ5 l9qW6M7NTaKIQyKy1haO7F6BzCJsxxRLfdVwkAhZEtD4nq8UvJPpyOtQViroO0q6 33Xn7aMYNWbj8RVCWpQ7iuIYRb0SGRu3 -----END CERTIFICATE-----Generated at Fri May 3 08:21:39 2024 by rpki-client on console-ams.rpki-client.org