$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.mft File: 3ASvGYyX8lgvFa3e7nxoJhHK2lE.mft (raw, json) Hash identifier: YXACsL2Vt0X642Y7E9HihFjNqfLd3TAOJFDiDbAoQsY= Subject key identifier: 8C:02:D9:AD:06:5F:1A:F4:B9:F8:7B:9E:A0:FF:0A:C7:58:49:94:5D Authority key identifier: DC:04:AF:19:8C:97:F2:58:2F:15:AD:DE:EE:7C:68:26:11:CA:DA:51 Certificate issuer: /CN=A91D1691/serialNumber=DC04AF198C97F2582F15ADDEEE7C682611CADA51 Certificate serial: 17D0 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/3ASvGYyX8lgvFa3e7nxoJhHK2lE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.mft Manifest number: 17CB Signing time: Fri 24 May 2024 16:10:11 +0000 Manifest this update: Fri 24 May 2024 16:10:10 +0000 Manifest next update: Fri 31 May 2024 16:10:10 +0000 Files and hashes: 1: 3ASvGYyX8lgvFa3e7nxoJhHK2lE.crl (hash: FVm9nSzC+TyyihpuiJuXTaEkAp+ZD3eYuSeyYHvHrNc=) 2: AEA7C9C0818911EA81577016C4F9AE02.roa (hash: aDnY8RtLKoVa9izIbxJd49k0PDh93caH+Q1DtM3oWPQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.crl rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/3ASvGYyX8lgvFa3e7nxoJhHK2lE.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 14:50:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6096 (0x17d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1691/serialNumber=DC04AF198C97F2582F15ADDEEE7C682611CADA51 Validity Not Before: May 24 16:10:10 2024 GMT Not After : May 31 16:10:10 2024 GMT Subject: CN=6650bbe2-6358 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ad:17:74:fc:0a:08:73:0d:5b:0d:67:55:de: 5f:bc:89:d7:66:ab:07:1d:00:a6:c1:2d:7a:69:72: 45:94:2a:00:7a:0f:a0:6c:2b:bc:24:04:f8:12:b3: 1a:5f:79:b5:a1:76:8a:6b:31:56:69:41:6b:49:97: d4:49:24:37:91:a6:fd:67:15:31:46:b0:ea:f7:92: 44:ee:b0:f8:c0:61:ca:dc:27:f0:4d:ba:fd:ea:7c: 94:73:0f:57:7f:09:b7:85:d0:2b:e0:76:c3:c7:b3: 42:22:fd:56:33:30:56:e3:43:29:69:e9:ab:87:e7: d7:ff:08:e5:f3:39:81:40:76:95:d9:df:d1:1f:a6: 93:8a:2f:48:fe:6a:e1:2b:ad:38:3a:e2:54:76:cd: 84:77:1c:66:6b:0f:56:80:98:92:88:bd:c8:cf:60: d8:e9:fb:38:a9:09:0d:e9:f1:f9:fb:45:a9:b6:aa: f6:c0:49:ec:25:6d:16:5e:d2:d4:30:e6:70:64:fc: a8:c4:9b:fb:24:90:c4:69:b0:ff:ab:e1:b3:b2:5d: 53:36:1b:67:1a:dd:89:c9:53:14:d2:24:ac:28:0f: 33:a7:ec:14:d7:87:d7:68:68:2f:c9:ef:b5:db:22: e2:f3:8f:2e:2e:8e:bf:eb:e0:07:98:6a:2f:61:7c: 45:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:02:D9:AD:06:5F:1A:F4:B9:F8:7B:9E:A0:FF:0A:C7:58:49:94:5D X509v3 Authority Key Identifier: keyid:DC:04:AF:19:8C:97:F2:58:2F:15:AD:DE:EE:7C:68:26:11:CA:DA:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/3ASvGYyX8lgvFa3e7nxoJhHK2lE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:8b:3e:22:ac:a0:c1:f9:06:e3:48:f3:47:ff:b6:d9:74:76: c7:1e:42:a7:7c:2b:13:b7:40:37:4c:5a:ed:65:aa:41:a7:55: 3b:14:01:13:13:ce:d5:f1:84:c1:f9:4f:f7:40:9e:f6:02:87: d7:cb:a1:f6:50:e8:7c:29:12:b0:6c:36:2b:d4:81:db:d5:21: dc:f0:06:d7:ec:1e:8c:3f:d7:15:8a:3e:ff:2a:a0:70:73:ea: 6a:21:a2:50:38:38:d9:d9:47:15:96:a0:db:55:4c:80:58:ef: d5:e1:40:c6:5e:77:63:b4:e2:04:bb:9b:e6:da:ac:2d:ce:0d: 26:a8:07:c6:8b:19:d8:48:9b:a8:f5:e2:f9:c8:17:70:64:23: 9e:30:49:99:ba:5a:b1:d6:5c:4f:ac:17:c8:e2:eb:6e:50:fd: fa:32:4a:2d:d3:6d:52:be:10:99:9a:88:02:f8:75:a9:b7:c0: 09:a7:a3:15:24:77:64:58:7e:bf:ce:2f:de:ee:e4:5b:95:5a: 5b:c1:f0:4c:af:ad:52:62:5f:d0:fd:16:95:40:7d:75:e2:8d: 20:81:37:a4:bc:24:fc:66:fb:65:38:c4:03:e7:99:13:a6:75: bb:d0:cf:2c:38:a8:00:d5:5a:33:e6:8d:f5:54:e1:3d:83:58: 65:9b:1c:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2OTExMTAvBgNVBAUTKERDMDRBRjE5OEM5N0YyNTgyRjE1QURERUVFN0M2ODI2 MTFDQURBNTEwHhcNMjQwNTI0MTYxMDEwWhcNMjQwNTMxMTYxMDEwWjAYMRYwFAYD VQQDEw02NjUwYmJlMi02MzU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA360XdPwKCHMNWw1nVd5fvInXZqsHHQCmwS16aXJFlCoAeg+gbCu8JAT4ErMa X3m1oXaKazFWaUFrSZfUSSQ3kab9ZxUxRrDq95JE7rD4wGHK3CfwTbr96nyUcw9X fwm3hdAr4HbDx7NCIv1WMzBW40Mpaemrh+fX/wjl8zmBQHaV2d/RH6aTii9I/mrh K604OuJUds2Edxxmaw9WgJiSiL3Iz2DY6fs4qQkN6fH5+0Wptqr2wEnsJW0WXtLU MOZwZPyoxJv7JJDEabD/q+Gzsl1TNhtnGt2JyVMU0iSsKA8zp+wU14fXaGgvye+1 2yLi848uLo6/6+AHmGovYXxF5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIwC2a0G Xxr0ufh7nqD/CsdYSZRdMB8GA1UdIwQYMBaAFNwErxmMl/JYLxWt3u58aCYRytpR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTY5MS81MEM2OTI5MjlE MjQxMUU3ODYxQTIyNkJDNEY5QUUwMi8zQVN2R1l5WDhsZ3ZGYTNlN254b0poSEsy bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzNBU3ZHWXlYOGxndkZhM2U3bnhvSmhISzJsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTY5MS81MEM2OTI5MjlEMjQxMUU3ODYxQTIyNkJDNEY5QUUwMi8zQVN2R1l5WDhs Z3ZGYTNlN254b0poSEsybEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBiz4irKDB+QbjSPNH/7bZdHbHHkKnfCsTt0A3TFrtZapBp1U7FAET E87V8YTB+U/3QJ72AofXy6H2UOh8KRKwbDYr1IHb1SHc8AbX7B6MP9cVij7/KqBw c+pqIaJQODjZ2UcVlqDbVUyAWO/V4UDGXndjtOIEu5vm2qwtzg0mqAfGixnYSJuo 9eL5yBdwZCOeMEmZulqx1lxPrBfI4utuUP36Mkot021SvhCZmogC+HWpt8AJp6MV JHdkWH6/zi/e7uRblVpbwfBMr61SYl/Q/RaVQH114o0ggTekvCT8ZvtlOMQD55kT pnW70M8sOKgA1Voz5o31VOE9g1hlmxwW -----END CERTIFICATE-----Generated at Fri May 24 18:24:00 2024 by rpki-client on console-ams.rpki-client.org