$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft File: TN7H1CHxboUWcqgSOd0Y_IweOVY.mft (raw, json) Hash identifier: SucbfCj1d7zt1xV6YwkZIE1uDGAUg3cL61YEIvJriXM= Subject key identifier: A6:BA:CC:55:2B:31:8F:D6:5A:C7:3D:EE:78:7A:D2:09:8E:22:8F:5C Authority key identifier: 4C:DE:C7:D4:21:F1:6E:85:16:72:A8:12:39:DD:18:FC:8C:1E:39:56 Certificate issuer: /CN=A91D0A62/serialNumber=4CDEC7D421F16E851672A81239DD18FC8C1E3956 Certificate serial: 03FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft Manifest number: 03F9 Signing time: Fri 03 May 2024 02:17:16 +0000 Manifest this update: Fri 03 May 2024 02:17:16 +0000 Manifest next update: Fri 10 May 2024 02:17:16 +0000 Files and hashes: 1: TN7H1CHxboUWcqgSOd0Y_IweOVY.crl (hash: q9Bxih+ixdQIJRVb8dSowxq0FboN4ZsaYCjyhKCP6XU=) 2: C54BA97E283311ECBE887F3BC4F9AE02.roa (hash: X/FT4st5+ImqbrdQ5iBO/3xpp/J9+a1OV9m+sESj8YI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.crl rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 00:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1020 (0x3fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0A62/serialNumber=4CDEC7D421F16E851672A81239DD18FC8C1E3956 Validity Not Before: May 3 02:17:16 2024 GMT Not After : May 10 02:17:16 2024 GMT Subject: CN=6634492c-2cf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:8c:b6:59:ae:a5:0e:b5:4c:6e:34:a2:80:bc: ea:ca:19:0d:d4:49:ea:94:03:15:ec:4e:d4:01:a1: 9c:a9:2b:43:82:0e:16:ce:26:d7:3a:c9:0c:e0:57: 25:98:df:87:37:b5:1d:ce:97:d2:91:6e:fb:83:dd: e9:31:b0:b1:36:0b:1d:0c:38:6b:32:74:b8:01:0b: 14:10:7d:9c:8c:f8:2b:b3:33:fb:f4:86:30:0f:40: ea:07:69:0a:24:e5:40:4d:8f:c6:e4:55:b5:36:49: 87:87:a1:b8:6e:a0:c3:c6:7e:fc:b0:4a:41:5d:93: 83:68:f5:18:fd:56:3f:d3:06:69:0a:11:28:81:c4: f5:cd:78:84:69:5a:ec:7d:7b:80:80:5b:7a:8b:77: c1:94:7c:c6:db:8e:77:12:cb:0f:76:56:06:74:cf: d5:c9:72:83:63:d7:68:2c:5b:b5:e3:56:21:c6:ef: 23:85:2d:a0:5a:42:f1:8e:20:17:e5:2e:3d:01:09: be:ae:bb:66:73:7f:3f:46:29:f5:5a:aa:76:c4:3e: e7:a7:77:e1:01:1c:c9:6b:05:b7:9f:4f:e6:1a:7e: 15:98:ab:5a:2f:c5:9c:66:3d:c4:03:e5:13:1f:17: 62:a9:ab:66:07:a3:45:b4:ed:55:79:bc:e2:e3:bb: b4:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:BA:CC:55:2B:31:8F:D6:5A:C7:3D:EE:78:7A:D2:09:8E:22:8F:5C X509v3 Authority Key Identifier: keyid:4C:DE:C7:D4:21:F1:6E:85:16:72:A8:12:39:DD:18:FC:8C:1E:39:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:e0:36:e8:a0:b0:a8:96:cc:f2:42:74:d8:1e:fd:27:27:6f: b1:b4:61:68:af:3f:4e:89:cf:fe:2c:15:6a:68:ee:e1:1b:8e: 13:da:14:00:fb:10:66:c5:84:eb:1f:8f:ed:3c:02:c6:d3:9a: 24:f0:9e:77:1c:ac:aa:a8:b2:86:9e:4c:25:83:3b:36:95:0b: 47:64:95:e8:d1:79:3b:85:4c:5a:65:0b:96:d7:b6:4d:8d:43: 4e:47:b7:32:bd:fa:d6:e0:0e:5a:cc:bc:65:03:f8:06:48:ab: d1:ff:57:c0:52:ac:39:67:00:a4:a6:de:2a:c0:62:b0:53:e6: 17:95:4d:26:65:ea:53:e3:98:db:d5:86:b3:c4:fa:00:2d:09: 64:3c:95:08:67:91:89:cd:52:ba:0b:69:92:32:1d:e7:16:53: d9:a6:64:8b:92:ed:a7:00:3f:5b:d8:38:a6:57:86:69:e0:0d: ac:4c:ae:2d:9d:ea:e8:d1:42:ea:69:f4:51:3f:7a:c4:bf:b4: be:3d:17:42:ee:32:55:14:c4:cb:05:4f:21:f9:c5:7e:8e:9f: 38:54:85:d5:a6:16:42:0f:ed:ed:5b:3c:e1:5f:d6:f8:34:a7: 91:eb:91:0b:c9:7a:c4:1f:8c:49:21:fe:53:a1:38:c5:25:0e: 5f:ca:7e:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBBNjIxMTAvBgNVBAUTKDRDREVDN0Q0MjFGMTZFODUxNjcyQTgxMjM5REQxOEZD OEMxRTM5NTYwHhcNMjQwNTAzMDIxNzE2WhcNMjQwNTEwMDIxNzE2WjAYMRYwFAYD VQQDEw02NjM0NDkyYy0yY2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Iy2Wa6lDrVMbjSigLzqyhkN1EnqlAMV7E7UAaGcqStDgg4WzibXOskM4Fcl mN+HN7UdzpfSkW77g93pMbCxNgsdDDhrMnS4AQsUEH2cjPgrszP79IYwD0DqB2kK JOVATY/G5FW1NkmHh6G4bqDDxn78sEpBXZODaPUY/VY/0wZpChEogcT1zXiEaVrs fXuAgFt6i3fBlHzG2453EssPdlYGdM/VyXKDY9doLFu141Yhxu8jhS2gWkLxjiAX 5S49AQm+rrtmc38/Rin1Wqp2xD7np3fhARzJawW3n0/mGn4VmKtaL8WcZj3EA+UT HxdiqatmB6NFtO1Vebzi47u0PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKa6zFUr MY/WWsc97nh60gmOIo9cMB8GA1UdIwQYMBaAFEzex9Qh8W6FFnKoEjndGPyMHjlW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEE2Mi8xRkE5NkRBMDI4 MzExMUVDOTdBMDEzMTZDNEY5QUUwMi9UTjdIMUNIeGJvVVdjcWdTT2QwWV9Jd2VP VlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RON0gxQ0h4Ym9VV2NxZ1NPZDBZX0l3ZU9WWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEE2Mi8xRkE5NkRBMDI4MzExMUVDOTdBMDEzMTZDNEY5QUUwMi9UTjdIMUNIeGJv VVdjcWdTT2QwWV9Jd2VPVlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAD4DbooLColszyQnTYHv0nJ2+xtGForz9Oic/+LBVqaO7hG44T2hQA +xBmxYTrH4/tPALG05ok8J53HKyqqLKGnkwlgzs2lQtHZJXo0Xk7hUxaZQuW17ZN jUNOR7cyvfrW4A5azLxlA/gGSKvR/1fAUqw5ZwCkpt4qwGKwU+YXlU0mZepT45jb 1YazxPoALQlkPJUIZ5GJzVK6C2mSMh3nFlPZpmSLku2nAD9b2DimV4Zp4A2sTK4t nero0ULqafRRP3rEv7S+PRdC7jJVFMTLBU8h+cV+jp84VIXVphZCD+3tWzzhX9b4 NKeR65ELyXrEH4xJIf5ToTjFJQ5fyn5t -----END CERTIFICATE-----Generated at Fri May 3 03:10:56 2024 by rpki-client on console-ams.rpki-client.org