$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft File: sTgy_KSTRJYjasOJSZjD3VE9fAk.mft (raw, json) Hash identifier: Y05eaSLl+Ni0yZ7Xkg2mYThb9wpFzDaKvyP0QSVddyc= Subject key identifier: FC:57:5C:A6:4C:C0:0E:A7:42:87:CD:22:DA:0D:1F:24:F4:C0:12:88 Authority key identifier: B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 Certificate issuer: /CN=A91D4A16/serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Certificate serial: D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft Manifest number: D1 Signing time: Fri 03 May 2024 06:15:17 +0000 Manifest this update: Fri 03 May 2024 06:15:16 +0000 Manifest next update: Fri 10 May 2024 06:15:16 +0000 Files and hashes: 1: sTgy_KSTRJYjasOJSZjD3VE9fAk.crl (hash: O5oNZkdCUorphibdGEgNGz4AVGq0f39vCJ0jpQTV0uE=) 2: AAE6C020CC5E11ED8812DA68C4F9AE02.roa (hash: lSoidaFmpDS5MY9m7Ma1YPASIErHiR97XohoZLyqWYY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 06:15:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4A16/serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Validity Not Before: May 3 06:15:16 2024 GMT Not After : May 10 06:15:16 2024 GMT Subject: CN=663480f4-a375 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:76:f4:f1:81:36:59:10:62:ba:83:71:e2:8d: ad:93:5b:a6:2f:c2:bf:5f:99:c6:0b:a0:87:35:33: b9:97:08:a9:3f:f5:58:a8:0b:06:58:bb:b9:2e:fc: a8:c3:ed:5d:e7:3a:18:86:07:92:f3:67:a5:e2:f3: 52:3e:6c:9a:26:c0:46:07:bf:15:66:46:90:7d:3b: 0f:37:88:f9:1b:cb:63:34:61:6b:fe:9e:3a:44:9b: 8e:5a:f2:0a:fc:66:24:2e:c0:52:a6:d7:ec:fc:de: 2d:35:fb:52:19:af:6e:62:ff:ec:1e:8f:73:de:dc: c3:d9:c8:d2:4e:68:95:5f:0c:ef:11:c4:24:8b:68: 26:61:98:34:f0:fe:f8:ca:90:60:86:3f:fa:93:70: 45:5d:3d:3d:2a:6b:ed:c0:6e:e5:36:98:60:dd:a7: 84:4f:57:47:58:cd:54:49:7f:d3:23:42:99:df:c8: 99:51:9d:d7:07:7c:20:16:b8:13:96:2b:15:c2:a1: 0f:79:51:9c:d2:22:df:54:69:55:34:b2:97:e8:87: d2:5b:6f:54:d8:61:24:e6:7f:3d:89:13:16:4c:09: bb:f1:ce:fe:73:53:cb:d9:70:88:93:98:6f:65:a5: 2f:09:f7:70:fe:b2:55:81:35:4c:9a:1c:07:ca:11: 9c:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:57:5C:A6:4C:C0:0E:A7:42:87:CD:22:DA:0D:1F:24:F4:C0:12:88 X509v3 Authority Key Identifier: keyid:B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:ea:b5:85:81:9a:ca:f7:26:c4:9c:26:f8:e8:a2:32:ff:8e: fd:e9:33:6d:f1:dc:ae:93:81:4b:93:6b:04:8e:da:06:fa:4a: 3f:9c:3c:d6:56:0f:21:ef:cc:45:49:e5:17:4f:1b:99:41:7c: fd:c4:aa:78:b5:40:50:3c:7e:33:c9:50:23:12:e4:18:00:a6: 1a:28:f7:ee:2d:e5:d8:5e:0c:f7:0a:9b:86:73:35:05:83:9d: d9:52:3e:fe:31:00:a4:f0:ce:a8:14:fc:02:89:af:5e:5a:9e: 1d:d0:57:d3:5b:d3:d2:4d:36:c8:c6:99:53:dc:af:11:b3:70: 8c:c7:74:08:c9:35:05:30:91:fd:25:12:f7:6e:fc:04:ee:d6: b6:16:f9:99:90:0e:39:ba:78:e8:7a:d2:04:71:ae:f2:29:94: 36:6c:4a:a6:54:e3:44:3c:1e:b1:8b:cf:c2:c7:0e:65:fa:37: a9:e9:45:5e:54:a6:c1:84:81:23:1d:9a:4a:0b:1b:ea:dc:0b: 8f:dd:3a:f1:1d:37:1e:b5:54:42:c3:f7:10:b8:e8:af:98:25: 3a:b5:bf:72:7a:2f:98:ae:19:1e:b9:31:05:02:62:40:96:16: 9d:a4:4e:e1:84:aa:41:7a:90:9e:59:73:5a:ca:da:08:b0:b5: 0e:94:e3:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRBMTYxMTAvBgNVBAUTKEIxMzgzMkZDQTQ5MzQ0OTYyMzZBQzM4OTQ5OThDM0RE NTEzRDdDMDkwHhcNMjQwNTAzMDYxNTE2WhcNMjQwNTEwMDYxNTE2WjAYMRYwFAYD VQQDEw02NjM0ODBmNC1hMzc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuXb08YE2WRBiuoNx4o2tk1umL8K/X5nGC6CHNTO5lwipP/VYqAsGWLu5Lvyo w+1d5zoYhgeS82el4vNSPmyaJsBGB78VZkaQfTsPN4j5G8tjNGFr/p46RJuOWvIK /GYkLsBSptfs/N4tNftSGa9uYv/sHo9z3tzD2cjSTmiVXwzvEcQki2gmYZg08P74 ypBghj/6k3BFXT09KmvtwG7lNphg3aeET1dHWM1USX/TI0KZ38iZUZ3XB3wgFrgT lisVwqEPeVGc0iLfVGlVNLKX6IfSW29U2GEk5n89iRMWTAm78c7+c1PL2XCIk5hv ZaUvCfdw/rJVgTVMmhwHyhGc5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPxXXKZM wA6nQofNItoNHyT0wBKIMB8GA1UdIwQYMBaAFLE4Mvykk0SWI2rDiUmYw91RPXwJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEExNi9CQUU3RUZGRUND NTMxMUVEODFGNEM1MTVDNEY5QUUwMi9zVGd5X0tTVFJKWWphc09KU1pqRDNWRTlm QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NUZ3lfS1NUUkpZamFzT0pTWmpEM1ZFOWZBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEExNi9CQUU3RUZGRUNDNTMxMUVEODFGNEM1MTVDNEY5QUUwMi9zVGd5X0tTVFJK WWphc09KU1pqRDNWRTlmQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAB6rWFgZrK9ybEnCb46KIy/4796TNt8dyuk4FLk2sEjtoG+ko/nDzW Vg8h78xFSeUXTxuZQXz9xKp4tUBQPH4zyVAjEuQYAKYaKPfuLeXYXgz3CpuGczUF g53ZUj7+MQCk8M6oFPwCia9eWp4d0FfTW9PSTTbIxplT3K8Rs3CMx3QIyTUFMJH9 JRL3bvwE7ta2FvmZkA45unjoetIEca7yKZQ2bEqmVONEPB6xi8/Cxw5l+jep6UVe VKbBhIEjHZpKCxvq3AuP3TrxHTcetVRCw/cQuOivmCU6tb9yei+YrhkeuTEFAmJA lhadpE7hhKpBepCeWXNaytoIsLUOlOPt -----END CERTIFICATE-----Generated at Fri May 3 08:21:39 2024 by rpki-client on console-ams.rpki-client.org