$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft File: pSAa7m9KXB64p-HHhTv7srp1y9I.mft (raw, json) Hash identifier: cDMyX30ud2MdxRQhHNkvMrDS92AM8rg+LaKYzxqdMX0= Subject key identifier: 33:25:72:E6:E0:38:D3:62:08:A4:98:D5:9D:26:97:E4:B5:09:52:B7 Authority key identifier: A5:20:1A:EE:6F:4A:5C:1E:B8:A7:E1:C7:85:3B:FB:B2:BA:75:CB:D2 Certificate issuer: /CN=A91D1003/serialNumber=A5201AEE6F4A5C1EB8A7E1C7853BFBB2BA75CBD2 Certificate serial: 0AA3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft Manifest number: 0A99 Signing time: Sat 04 May 2024 20:23:35 +0000 Manifest this update: Sat 04 May 2024 20:23:34 +0000 Manifest next update: Sat 11 May 2024 20:23:34 +0000 Files and hashes: 1: pSAa7m9KXB64p-HHhTv7srp1y9I.crl (hash: IzNkTYBCWYjO+60rKZBJzd7pVBiW+Q5v1n2qgwtqKUA=) 2: 0DC2568E320511EA8CF6B72DC4F9AE02.roa (hash: 1+11cacphPqsNd+omnkh++SqQDiBnfm5tRRdQKET7hw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.crl rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 19:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2723 (0xaa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1003/serialNumber=A5201AEE6F4A5C1EB8A7E1C7853BFBB2BA75CBD2 Validity Not Before: May 4 20:23:34 2024 GMT Not After : May 11 20:23:34 2024 GMT Subject: CN=66369947-b633 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b4:53:8c:ec:01:7f:b2:26:a8:30:f6:2c:ff: 4e:fd:3d:cb:62:d8:60:4e:06:7b:b2:6a:89:d5:0a: 51:25:ef:77:fe:7a:42:01:03:9c:50:f0:85:8c:4f: f7:4a:ab:93:08:52:07:0a:3b:11:47:f1:e7:75:b4: 66:64:db:2d:a6:57:6c:c2:5e:cb:73:79:d0:ab:55: bc:8b:4f:ce:ad:62:2b:c1:d6:bc:cd:d0:b7:ac:47: e4:78:d7:b9:a0:73:29:88:37:f0:5e:f8:5e:d1:87: f9:e7:a4:7d:34:f2:dc:dd:09:65:e3:0b:fb:f2:d7: 92:77:23:09:ba:90:c0:00:91:d1:46:7e:8f:52:42: 00:a3:6e:ac:45:0d:3b:0d:4d:9e:08:fe:0a:7e:fd: 92:9c:a7:44:04:9c:db:eb:5f:56:35:cb:c0:8d:b5: c5:13:b2:e8:5a:53:ef:d7:6a:04:1a:46:d2:be:8f: b2:26:cf:69:a5:ba:38:9b:4f:4e:09:12:33:91:4c: 79:d7:69:02:35:ac:a3:6a:ee:51:3c:c9:fd:42:69: c6:14:1a:c7:30:31:bf:cf:6d:48:20:3e:52:4c:3d: 84:c5:17:eb:44:8a:71:10:cd:fa:d1:ad:92:e5:70: b4:23:35:51:96:03:da:2c:a8:49:d5:a0:4a:4c:da: 74:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:25:72:E6:E0:38:D3:62:08:A4:98:D5:9D:26:97:E4:B5:09:52:B7 X509v3 Authority Key Identifier: keyid:A5:20:1A:EE:6F:4A:5C:1E:B8:A7:E1:C7:85:3B:FB:B2:BA:75:CB:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:65:d5:2f:54:eb:81:77:8e:c4:b8:30:0a:f2:68:c1:ff:b6: 53:3e:69:bc:14:25:4d:fe:6e:f6:41:55:27:73:63:e4:b3:20: 5f:9e:92:a0:e0:db:17:cb:02:aa:88:e5:66:3a:50:9a:10:7d: b5:05:ad:2a:84:3c:04:d2:5f:df:0a:b0:0f:a4:36:96:1d:e2: ec:68:38:84:18:dd:df:85:20:79:bc:66:fd:f6:21:cd:2e:bf: ae:f4:03:d4:8a:16:98:ad:9e:bb:b8:e7:45:41:2b:9c:20:87: c6:42:83:de:b8:23:e2:7c:51:22:df:6f:ac:f3:0a:b1:0b:ac: 33:84:6f:8a:b2:cb:39:22:87:ad:0e:74:bf:12:2d:2d:56:0d: 67:87:9f:20:ee:53:8f:64:48:53:7d:68:80:ce:5f:e1:76:b6: b3:35:57:62:ce:2f:5c:d9:43:90:9f:85:8d:32:0a:13:fe:5b: fd:62:34:e0:c4:1b:6f:cd:ba:79:c0:35:7f:69:55:61:10:c9: 68:90:ea:67:d4:61:7a:72:78:e0:1c:a1:45:ea:f2:71:36:c3: 5d:88:7c:30:3c:65:de:33:b0:77:3b:aa:a6:c3:64:d5:af:2f: 3d:43:df:46:97:2e:c5:9f:2d:af:c1:49:38:53:fa:57:a3:77: 69:17:79:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEwMDMxMTAvBgNVBAUTKEE1MjAxQUVFNkY0QTVDMUVCOEE3RTFDNzg1M0JGQkIy QkE3NUNCRDIwHhcNMjQwNTA0MjAyMzM0WhcNMjQwNTExMjAyMzM0WjAYMRYwFAYD VQQDEw02NjM2OTk0Ny1iNjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtrRTjOwBf7ImqDD2LP9O/T3LYthgTgZ7smqJ1QpRJe93/npCAQOcUPCFjE/3 SquTCFIHCjsRR/HndbRmZNstpldswl7Lc3nQq1W8i0/OrWIrwda8zdC3rEfkeNe5 oHMpiDfwXvhe0Yf556R9NPLc3Qll4wv78teSdyMJupDAAJHRRn6PUkIAo26sRQ07 DU2eCP4Kfv2SnKdEBJzb619WNcvAjbXFE7LoWlPv12oEGkbSvo+yJs9ppbo4m09O CRIzkUx512kCNayjau5RPMn9QmnGFBrHMDG/z21IID5STD2ExRfrRIpxEM360a2S 5XC0IzVRlgPaLKhJ1aBKTNp0sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDMlcubg ONNiCKSY1Z0ml+S1CVK3MB8GA1UdIwQYMBaAFKUgGu5vSlweuKfhx4U7+7K6dcvS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTAwMy9BQTRFOTVDODMy MDMxMUVBOEQyQTFCMkJDNEY5QUUwMi9wU0FhN205S1hCNjRwLUhIaFR2N3NycDF5 OUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BTQWE3bTlLWEI2NHAtSEhoVHY3c3JwMXk5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTAwMy9BQTRFOTVDODMyMDMxMUVBOEQyQTFCMkJDNEY5QUUwMi9wU0FhN205S1hC NjRwLUhIaFR2N3NycDF5OUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+ZdUvVOuBd47EuDAK8mjB/7ZTPmm8FCVN/m72QVUnc2PksyBfnpKg 4NsXywKqiOVmOlCaEH21Ba0qhDwE0l/fCrAPpDaWHeLsaDiEGN3fhSB5vGb99iHN Lr+u9APUihaYrZ67uOdFQSucIIfGQoPeuCPifFEi32+s8wqxC6wzhG+Ksss5Ioet DnS/Ei0tVg1nh58g7lOPZEhTfWiAzl/hdrazNVdizi9c2UOQn4WNMgoT/lv9YjTg xBtvzbp5wDV/aVVhEMlokOpn1GF6cnjgHKFF6vJxNsNdiHwwPGXeM7B3O6qmw2TV ry89Q99Gly7Fny2vwUk4U/pXo3dpF3mW -----END CERTIFICATE-----Generated at Sat May 4 21:19:32 2024 by rpki-client on console-ams.rpki-client.org