$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft File: phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft (raw, json) Hash identifier: cQtdCS96Sza12pOQHSr222VXeLPQLPj7IBywePMMtUc= Subject key identifier: A2:54:E0:A5:E8:C7:05:FC:03:95:7B:6B:F4:19:3A:AD:F4:19:55:9B Authority key identifier: A6:15:07:80:E0:BA:11:EA:0A:DC:43:4A:ED:38:3C:8B:82:A8:96:1D Certificate issuer: /CN=A91D1623/serialNumber=A6150780E0BA11EA0ADC434AED383C8B82A8961D Certificate serial: AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft Manifest number: AA Signing time: Wed 15 May 2024 06:46:26 +0000 Manifest this update: Wed 15 May 2024 06:46:26 +0000 Manifest next update: Wed 22 May 2024 06:46:26 +0000 Files and hashes: 1: phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl (hash: qWSLLiCJYtqq7sK7jahGShz5IbGx47SWMYW+I6lvmKo=) 2: 7C9E449814B311EEB9CD302AC4F9AE02.roa (hash: rBY3R/UnH6DV5KIvAk4nsAXD/4omLd0+tPwk5aX7Vf8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 06:46:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1623/serialNumber=A6150780E0BA11EA0ADC434AED383C8B82A8961D Validity Not Before: May 15 06:46:26 2024 GMT Not After : May 22 06:46:26 2024 GMT Subject: CN=66445a42-16e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ca:e9:07:41:c0:b7:bf:b7:4e:ba:be:19:34: 11:ed:a6:0e:4e:76:41:c6:30:05:c3:ff:28:40:19: 1c:ea:71:66:50:73:63:4c:31:c8:ae:36:dd:fe:6b: 4a:fd:37:b1:9b:86:52:24:26:67:03:78:6b:3c:c2: 47:4d:87:de:83:ec:32:95:f3:06:ea:7b:61:e6:d6: 6e:00:c0:a6:c9:32:8a:73:6d:98:04:2d:60:9c:4c: dc:b2:10:b8:b7:81:96:05:85:97:9b:a6:14:a7:8e: 3d:07:60:59:29:45:37:23:eb:c1:9d:98:e9:a8:fe: e1:cd:85:5f:fb:40:8e:5c:db:fa:be:59:94:0f:d1: ae:6c:1e:30:da:80:11:62:f3:15:64:cc:d0:a5:ad: 63:02:92:ba:de:94:8f:1b:4f:c3:11:50:a7:b8:32: 69:71:1b:6f:6b:a4:be:5f:2e:72:e6:b5:d0:ab:e4: d7:c1:d7:71:6f:af:7a:82:9c:78:dc:73:a2:a1:62: a0:c8:5d:64:8a:75:7d:b2:92:e5:0f:ba:61:4f:4a: 39:71:8d:8a:0e:36:1d:78:74:64:e2:f6:f6:70:e0: 14:d3:88:8e:70:56:75:64:c0:02:fb:c9:39:80:06: d8:25:45:4a:cf:eb:c4:a2:a0:ab:3c:5c:9e:ad:6b: ad:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:54:E0:A5:E8:C7:05:FC:03:95:7B:6B:F4:19:3A:AD:F4:19:55:9B X509v3 Authority Key Identifier: keyid:A6:15:07:80:E0:BA:11:EA:0A:DC:43:4A:ED:38:3C:8B:82:A8:96:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:a0:5f:51:c9:56:f3:4f:46:ca:dd:3d:4c:f0:e5:1b:41:79: e7:56:77:72:ac:e8:af:9c:99:27:7c:a4:f0:9f:55:98:0b:70: 26:40:eb:2f:79:24:b1:b4:46:88:85:8e:bd:41:29:2b:ee:55: 4d:b1:34:5f:96:ba:82:a4:1e:06:d2:b5:52:25:09:2f:f7:45: 65:88:b8:49:fa:c9:b1:f4:9c:5d:1b:c4:76:f0:37:2d:6b:59: bd:7f:22:59:3c:b1:8f:05:15:89:96:b1:0f:11:d0:d3:f3:62: ef:7e:58:99:ff:80:3d:f4:3b:be:41:5c:be:83:4f:68:51:99: d2:08:d4:c6:4d:67:b1:31:3f:d9:28:69:a1:a2:b5:a1:ff:2c: 3a:f4:23:40:18:bf:f4:72:e4:36:23:be:d7:29:4c:7f:e0:6a: 33:26:e1:02:50:f7:38:f2:c5:28:94:6b:d0:0e:60:74:af:1e: 0b:ba:2c:e2:4e:ad:1d:8e:55:12:9a:13:66:6d:75:ef:74:4f: 3a:01:b0:3a:22:18:80:f0:01:9f:83:98:10:8a:28:f6:12:47: 15:40:a0:81:7a:30:7e:dd:9c:a0:83:36:96:3d:7c:24:53:4e: 87:e5:5b:fb:75:59:05:d3:92:ee:13:7f:f3:68:9a:fd:a6:41: 74:2b:ae:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2MjMxMTAvBgNVBAUTKEE2MTUwNzgwRTBCQTExRUEwQURDNDM0QUVEMzgzQzhC ODJBODk2MUQwHhcNMjQwNTE1MDY0NjI2WhcNMjQwNTIyMDY0NjI2WjAYMRYwFAYD VQQDEw02NjQ0NWE0Mi0xNmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1srpB0HAt7+3Trq+GTQR7aYOTnZBxjAFw/8oQBkc6nFmUHNjTDHIrjbd/mtK /Texm4ZSJCZnA3hrPMJHTYfeg+wylfMG6nth5tZuAMCmyTKKc22YBC1gnEzcshC4 t4GWBYWXm6YUp449B2BZKUU3I+vBnZjpqP7hzYVf+0COXNv6vlmUD9GubB4w2oAR YvMVZMzQpa1jApK63pSPG0/DEVCnuDJpcRtva6S+Xy5y5rXQq+TXwddxb696gpx4 3HOioWKgyF1kinV9spLlD7phT0o5cY2KDjYdeHRk4vb2cOAU04iOcFZ1ZMAC+8k5 gAbYJUVKz+vEoqCrPFyerWutFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKJU4KXo xwX8A5V7a/QZOq30GVWbMB8GA1UdIwQYMBaAFKYVB4DguhHqCtxDSu04PIuCqJYd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTYyMy80MTA3MzVDQTE0 OUExMUVFQURGMUM2MTBDNEY5QUUwMi9waFVIZ09DNkVlb0szRU5LN1RnOGk0S29s aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BoVUhnT0M2RWVvSzNFTks3VGc4aTRLb2xoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTYyMy80MTA3MzVDQTE0OUExMUVFQURGMUM2MTBDNEY5QUUwMi9waFVIZ09DNkVl b0szRU5LN1RnOGk0S29saDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUoF9RyVbzT0bK3T1M8OUbQXnnVndyrOivnJknfKTwn1WYC3AmQOsv eSSxtEaIhY69QSkr7lVNsTRflrqCpB4G0rVSJQkv90VliLhJ+smx9JxdG8R28Dct a1m9fyJZPLGPBRWJlrEPEdDT82LvfliZ/4A99Du+QVy+g09oUZnSCNTGTWexMT/Z KGmhorWh/yw69CNAGL/0cuQ2I77XKUx/4GozJuECUPc48sUolGvQDmB0rx4Luizi Tq0djlUSmhNmbXXvdE86AbA6IhiA8AGfg5gQiij2EkcVQKCBejB+3ZyggzaWPXwk U06H5Vv7dVkF05LuE3/zaJr9pkF0K67o -----END CERTIFICATE-----Generated at Wed May 15 09:04:45 2024 by rpki-client on console-ams.rpki-client.org