$ rpki-client -vvf rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft File: TUTi91KilQtrVSjAaZsUkOdXd0Q.mft (raw, json) Hash identifier: 0Jp/jl6QebcZyvMI0IgTYIkoOW853D+moGqBPVDALC8= Subject key identifier: E3:4B:AA:54:D3:24:52:E2:E5:74:32:F6:D9:08:99:A6:0E:7C:73:62 Authority key identifier: 4D:44:E2:F7:52:A2:95:0B:6B:55:28:C0:69:9B:14:90:E7:57:77:44 Certificate issuer: /CN=A91D15A4/serialNumber=4D44E2F752A2950B6B5528C0699B1490E7577744 Certificate serial: 0E89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUTi91KilQtrVSjAaZsUkOdXd0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft Manifest number: 0E80 Signing time: Fri 31 May 2024 18:51:40 +0000 Manifest this update: Fri 31 May 2024 18:51:39 +0000 Manifest next update: Fri 07 Jun 2024 18:51:39 +0000 Files and hashes: 1: TUTi91KilQtrVSjAaZsUkOdXd0Q.crl (hash: 2eDoIxo73PtA/MItviXirHsNeDt+iFk7Fnpj6ypjGYY=) 2: 3D371C5C708F11E9B105E92CC4F9AE02.roa (hash: f9TT75PVo7LnpoyTstCb9FAN+0+Guxy6a/cUSnN4C/Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.crl rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUTi91KilQtrVSjAaZsUkOdXd0Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3721 (0xe89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D15A4/serialNumber=4D44E2F752A2950B6B5528C0699B1490E7577744 Validity Not Before: May 31 18:51:39 2024 GMT Not After : Jun 7 18:51:39 2024 GMT Subject: CN=665a1c3b-fc76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:ee:8e:39:4f:7a:d1:8f:87:6c:c2:fc:af:4f: 86:0c:ac:78:2f:bf:8c:5b:ed:c7:e3:8e:79:a7:f7: 08:e8:1e:52:70:2e:63:87:7f:d0:d7:be:ce:1a:a0: fe:b7:70:19:47:3f:a3:b2:bb:15:3c:0c:52:04:12: d8:e4:1b:e8:50:b3:6e:68:10:ed:9f:a8:c3:e9:e9: 34:3e:9e:e7:32:c7:bc:93:d4:0b:2d:f6:32:26:49: 31:a9:d1:d9:61:c2:ee:1b:ed:c5:f4:5d:fe:29:dd: 70:af:29:d7:74:14:e1:3c:f5:ea:57:1d:d2:79:e2: 32:0e:54:69:4a:a5:dd:83:c4:87:10:24:cf:a1:af: 58:83:11:0b:fe:27:ae:09:67:f4:3d:79:12:a4:aa: 50:3b:71:15:77:98:08:01:ac:28:fb:3f:6c:f9:6d: 05:bb:f0:84:d0:b7:03:41:46:d8:02:24:c2:be:19: cb:bf:4b:8c:77:9d:66:f3:a0:45:43:dd:c1:c1:8e: e3:88:89:17:64:e4:76:aa:2d:b1:ea:16:b8:2d:40: 77:41:27:75:c3:e3:55:a7:9d:be:92:e5:66:19:85: 8b:da:3b:30:d9:4c:be:1a:43:a6:82:a3:e8:bb:c9: 81:33:aa:c4:f6:93:e8:7b:78:37:47:86:2b:03:fb: b5:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:4B:AA:54:D3:24:52:E2:E5:74:32:F6:D9:08:99:A6:0E:7C:73:62 X509v3 Authority Key Identifier: keyid:4D:44:E2:F7:52:A2:95:0B:6B:55:28:C0:69:9B:14:90:E7:57:77:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUTi91KilQtrVSjAaZsUkOdXd0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:dc:95:ac:0e:b4:16:a1:a6:de:3b:e2:3a:19:cc:b2:12:61: 46:43:49:0b:c5:38:a0:fb:d6:b7:a2:b6:fa:6e:9a:30:59:19: 15:0e:9e:6c:69:8e:89:0d:36:d5:c3:a4:a7:0d:0b:5c:8f:be: 1f:ca:01:fa:a8:53:57:2e:4d:78:84:ba:6f:1d:5a:2a:2f:fe: cc:41:bf:e6:88:66:7a:a0:5c:40:f7:b7:a6:7f:c8:7d:f2:47: c1:6c:cc:72:9b:0a:b8:15:14:ec:af:26:78:af:6b:98:11:48: 11:77:84:8b:ac:c6:ca:b3:fe:ae:89:e3:4b:68:bc:50:80:65: 42:e8:2b:3d:d6:f3:49:50:e2:b2:05:7d:c8:22:7d:bf:12:dc: 3e:b5:26:f7:81:2d:ac:0d:c5:bf:6c:74:09:e5:3d:99:7b:ee: d4:5a:77:95:2d:ec:4e:6e:30:86:b2:9f:cb:92:3f:ce:22:5e: 4c:d3:a2:13:52:9e:13:a6:a7:91:cb:59:c4:99:52:36:6c:f5: 23:26:09:c8:02:4d:7c:4a:de:62:d7:dd:6d:ab:70:97:59:68: 0e:29:27:c3:ec:7a:50:55:76:8c:ac:9e:80:0b:ae:54:30:dc: 76:c7:ce:eb:78:7e:02:81:07:08:29:d8:ed:6a:02:c9:ed:16: 1a:0f:ab:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE1QTQxMTAvBgNVBAUTKDRENDRFMkY3NTJBMjk1MEI2QjU1MjhDMDY5OUIxNDkw RTc1Nzc3NDQwHhcNMjQwNTMxMTg1MTM5WhcNMjQwNjA3MTg1MTM5WjAYMRYwFAYD VQQDEw02NjVhMWMzYi1mYzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3u6OOU960Y+HbML8r0+GDKx4L7+MW+3H4455p/cI6B5ScC5jh3/Q177OGqD+ t3AZRz+jsrsVPAxSBBLY5BvoULNuaBDtn6jD6ek0Pp7nMse8k9QLLfYyJkkxqdHZ YcLuG+3F9F3+Kd1wrynXdBThPPXqVx3SeeIyDlRpSqXdg8SHECTPoa9YgxEL/ieu CWf0PXkSpKpQO3EVd5gIAawo+z9s+W0Fu/CE0LcDQUbYAiTCvhnLv0uMd51m86BF Q93BwY7jiIkXZOR2qi2x6ha4LUB3QSd1w+NVp52+kuVmGYWL2jsw2Uy+GkOmgqPo u8mBM6rE9pPoe3g3R4YrA/u1NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFONLqlTT JFLi5XQy9tkImaYOfHNiMB8GA1UdIwQYMBaAFE1E4vdSopULa1UowGmbFJDnV3dE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTVBNC9CMzRFNkQ1MDcw OEExMUU5QUYwRjhEMjFDNEY5QUUwMi9UVVRpOTFLaWxRdHJWU2pBYVpzVWtPZFhk MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RVVGk5MUtpbFF0clZTakFhWnNVa09kWGQwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTVBNC9CMzRFNkQ1MDcwOEExMUU5QUYwRjhEMjFDNEY5QUUwMi9UVVRpOTFLaWxR dHJWU2pBYVpzVWtPZFhkMFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/3JWsDrQWoabeO+I6GcyyEmFGQ0kLxTig+9a3orb6bpowWRkVDp5s aY6JDTbVw6SnDQtcj74fygH6qFNXLk14hLpvHVoqL/7MQb/miGZ6oFxA97emf8h9 8kfBbMxymwq4FRTsryZ4r2uYEUgRd4SLrMbKs/6uieNLaLxQgGVC6Cs91vNJUOKy BX3IIn2/Etw+tSb3gS2sDcW/bHQJ5T2Ze+7UWneVLexObjCGsp/Lkj/OIl5M06IT Up4TpqeRy1nEmVI2bPUjJgnIAk18St5i191tq3CXWWgOKSfD7HpQVXaMrJ6AC65U MNx2x87reH4CgQcIKdjtagLJ7RYaD6uE -----END CERTIFICATE-----Generated at Fri May 31 20:34:16 2024 by rpki-client on console-ams.rpki-client.org