$ rpki-client -vvf rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft File: l7tUs9I8N8PdPgFpypdNJ9up8FA.mft (raw, json) Hash identifier: 1lu3/wY2ogVVKKVPYBSJD7onWidsx6QcbEwYQtTlC7M= Subject key identifier: D9:B1:8E:8C:F8:A3:48:BC:80:89:60:CC:0D:48:2E:BD:F0:96:65:5D Authority key identifier: 97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50 Certificate issuer: /CN=A91D51C1/serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050 Certificate serial: 0502 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft Manifest number: 04FB Signing time: Wed 01 May 2024 01:32:44 +0000 Manifest this update: Wed 01 May 2024 01:32:44 +0000 Manifest next update: Wed 08 May 2024 01:32:44 +0000 Files and hashes: 1: l7tUs9I8N8PdPgFpypdNJ9up8FA.crl (hash: bcNalGkkplTjSZxm4t0BpGu0PiMoJqtv63JAToh4TVA=) 2: 1E8ADFD0C1F211EBA984726AC4F9AE02.roa (hash: CUsajeVLvPH3ZpK+1V7h6ODIDiML6sMTOfEXOZQhT4I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 01:32:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1282 (0x502) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D51C1/serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050 Validity Not Before: May 1 01:32:44 2024 GMT Not After : May 8 01:32:44 2024 GMT Subject: CN=66319bbc-a2aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:87:5b:5d:b6:99:e4:bf:f9:73:f0:5d:3f:d2: 13:aa:1c:51:d5:a2:4e:f0:7e:1b:11:79:12:40:09: 2b:ba:5c:7c:24:2b:ba:90:7f:98:9e:72:6e:e3:fa: 6a:eb:cf:a3:6a:38:8d:d2:8f:8f:21:86:c9:08:0b: e3:65:6b:6d:9c:be:b7:09:4f:b4:d9:aa:9c:4a:e5: db:6d:cd:ee:18:00:86:ef:4e:b0:8f:01:b7:3e:c9: 97:ed:d9:83:00:13:cc:f3:24:73:ce:88:ad:b1:8f: f7:8f:2d:08:36:bc:83:6b:aa:c4:87:75:46:1e:2a: f3:09:86:0d:d2:50:2d:0b:a3:98:6f:32:14:fd:45: e3:8f:f7:ed:76:94:f9:a0:45:b5:e0:1b:cb:42:c6: 56:d2:53:61:ef:f6:fc:56:7a:38:4e:d6:60:e1:63: f8:9e:f0:e4:2e:38:47:ca:db:b4:4b:10:13:7f:4e: 5f:d8:9f:63:16:f5:28:7d:93:c6:8d:c0:d1:65:a9: 7a:6d:7a:ad:03:70:85:de:72:f8:91:fb:98:c8:15: b5:63:cf:ef:33:a7:96:ef:35:d8:83:72:e5:ea:51: 72:c9:61:92:8c:d7:91:a4:16:73:fb:2e:19:9e:df: 2f:2c:73:91:d4:51:c8:d6:14:cd:47:f7:c9:f9:9c: 50:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:B1:8E:8C:F8:A3:48:BC:80:89:60:CC:0D:48:2E:BD:F0:96:65:5D X509v3 Authority Key Identifier: keyid:97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:c1:9b:bd:aa:7b:02:d7:56:76:d8:37:95:81:f4:e4:8f:d5: 24:f4:38:91:d1:98:9f:98:31:d3:8f:d8:65:57:58:77:d7:e3: 56:99:a9:61:39:4a:c1:ea:9b:8d:1f:86:b8:73:8f:a5:61:16: 5f:46:2a:65:77:8e:0c:70:f8:d9:a8:d0:72:43:29:7b:e5:e2: 38:8b:af:b6:f8:18:d4:f3:6b:8d:42:6e:ff:1b:32:e8:a2:e8: 96:19:8b:ed:d5:68:2e:0c:a7:7f:94:ee:c3:53:00:09:c8:ce: 25:9e:33:16:3f:3f:08:24:72:6f:16:66:b6:9f:c8:e6:a1:e6: 22:81:94:52:97:32:cc:34:c7:d1:6c:03:71:67:32:f3:46:48: 0b:62:b1:be:36:db:1d:93:a9:d9:d2:b1:a9:e9:7a:45:b5:0a: 0f:d8:5d:c3:e1:e3:2e:bb:c5:89:a6:de:4f:1d:f0:a8:20:00: d0:a7:f9:13:3e:24:5d:f7:90:42:4f:1f:ec:b5:e8:cf:0b:e2: d2:23:b2:43:a9:53:77:50:48:7a:10:ca:c5:7a:be:b5:0b:55: cb:33:0b:8f:5f:82:c8:63:e3:0a:5b:d2:ee:22:a0:21:75:f9: e2:17:9c:5d:dd:de:7f:db:31:e1:54:76:81:d2:f0:de:33:04: 98:99:4b:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxQzExMTAvBgNVBAUTKDk3QkI1NEIzRDIzQzM3QzNERDNFMDE2OUNBOTc0RDI3 REJBOUYwNTAwHhcNMjQwNTAxMDEzMjQ0WhcNMjQwNTA4MDEzMjQ0WjAYMRYwFAYD VQQDEw02NjMxOWJiYy1hMmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3odbXbaZ5L/5c/BdP9ITqhxR1aJO8H4bEXkSQAkrulx8JCu6kH+YnnJu4/pq 68+jajiN0o+PIYbJCAvjZWttnL63CU+02aqcSuXbbc3uGACG706wjwG3PsmX7dmD ABPM8yRzzoitsY/3jy0INryDa6rEh3VGHirzCYYN0lAtC6OYbzIU/UXjj/ftdpT5 oEW14BvLQsZW0lNh7/b8Vno4TtZg4WP4nvDkLjhHytu0SxATf05f2J9jFvUofZPG jcDRZal6bXqtA3CF3nL4kfuYyBW1Y8/vM6eW7zXYg3Ll6lFyyWGSjNeRpBZz+y4Z nt8vLHOR1FHI1hTNR/fJ+ZxQAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNmxjoz4 o0i8gIlgzA1ILr3wlmVdMB8GA1UdIwQYMBaAFJe7VLPSPDfD3T4BacqXTSfbqfBQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTFDMS9EOTJFNjlBQUMx RUUxMUVCQkZENTdFMkFDNEY5QUUwMi9sN3RVczlJOE44UGRQZ0ZweXBkTko5dXA4 RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w3dFVzOUk4TjhQZFBnRnB5cGROSjl1cDhGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTFDMS9EOTJFNjlBQUMxRUUxMUVCQkZENTdFMkFDNEY5QUUwMi9sN3RVczlJOE44 UGRQZ0ZweXBkTko5dXA4RkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUwZu9qnsC11Z22DeVgfTkj9Uk9DiR0ZifmDHTj9hlV1h31+NWmalh OUrB6puNH4a4c4+lYRZfRipld44McPjZqNByQyl75eI4i6+2+BjU82uNQm7/GzLo ouiWGYvt1WguDKd/lO7DUwAJyM4lnjMWPz8IJHJvFma2n8jmoeYigZRSlzLMNMfR bANxZzLzRkgLYrG+Ntsdk6nZ0rGp6XpFtQoP2F3D4eMuu8WJpt5PHfCoIADQp/kT PiRd95BCTx/stejPC+LSI7JDqVN3UEh6EMrFer61C1XLMwuPX4LIY+MKW9LuIqAh dfniF5xd3d5/2zHhVHaB0vDeMwSYmUuT -----END CERTIFICATE-----Generated at Wed May 1 02:46:22 2024 by rpki-client on console-ams.rpki-client.org