$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft File: TZAcNCU7ylsnTusQaZPe9yCiUqw.mft (raw, json) Hash identifier: SCyU/BopMVRkT2rOZ2J+gs+nUqWMQJL5mBNJADWQ1rg= Subject key identifier: 19:52:D0:CE:10:01:2C:40:43:FC:71:5B:7F:79:D8:5F:C7:97:98:A4 Authority key identifier: 4D:90:1C:34:25:3B:CA:5B:27:4E:EB:10:69:93:DE:F7:20:A2:52:AC Certificate issuer: /CN=A91D6AB2/serialNumber=4D901C34253BCA5B274EEB106993DEF720A252AC Certificate serial: 0351 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft Manifest number: 0ABD Signing time: Sat 18 May 2024 22:15:21 +0000 Manifest this update: Sat 18 May 2024 22:15:21 +0000 Manifest next update: Sat 25 May 2024 22:15:21 +0000 Files and hashes: 1: TZAcNCU7ylsnTusQaZPe9yCiUqw.crl (hash: BpyINB+KUOni8RZLIBLKx+hkQ3k1gkbK1FEECvPzFH8=) 2: 577B4C026E1911ECBDBB1450C4F9AE02.roa (hash: kQhfAilsipPok0NxNBGRUDiXG4i7czW8cdkMPXcH45o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.crl rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 849 (0x351) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6AB2/serialNumber=4D901C34253BCA5B274EEB106993DEF720A252AC Validity Not Before: May 18 22:15:21 2024 GMT Not After : May 25 22:15:21 2024 GMT Subject: CN=66492879-4699 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e2:4b:9c:da:c2:12:aa:84:14:b0:77:a7:04: ad:56:98:25:21:b0:51:86:46:e7:51:15:05:bf:6e: 1f:a3:a2:3f:51:67:c6:e6:6b:1e:11:4b:96:20:4e: 75:c0:6f:8a:91:fd:99:27:e9:6d:57:6e:22:e7:8e: 10:f9:b9:39:53:14:89:07:be:bd:94:57:62:c3:33: 9e:f0:81:5f:15:b4:c1:cb:c7:58:b7:97:9a:2e:73: 9d:82:23:3b:9f:37:f8:14:f7:d2:8c:09:f4:6a:fe: 33:68:80:81:78:ff:88:64:4a:31:dd:6d:77:ba:09: 0c:2b:fc:9b:1e:b5:8a:2d:63:a4:f3:a8:8b:f5:9b: 9e:2d:63:17:23:e8:4c:b6:e1:4e:2c:3e:3a:be:b2: 98:f4:39:6b:24:c0:c6:e1:3f:77:ca:3c:72:fe:21: 45:80:fe:93:6d:f3:8a:3c:ce:a2:a2:98:75:6a:a6: 38:52:11:81:95:55:6d:0c:00:36:54:54:86:77:2c: 6d:0d:94:5c:4a:8d:8f:db:c2:48:6a:99:2d:56:d0: 4e:f7:19:ab:f7:2b:9f:b8:75:b9:2e:ae:e8:df:f1: 13:62:9b:b6:bf:39:0a:e3:d8:7f:00:6a:fe:7d:bf: e4:8b:b9:db:57:8a:19:c6:77:cc:fb:1a:2a:ce:f9: c2:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:52:D0:CE:10:01:2C:40:43:FC:71:5B:7F:79:D8:5F:C7:97:98:A4 X509v3 Authority Key Identifier: keyid:4D:90:1C:34:25:3B:CA:5B:27:4E:EB:10:69:93:DE:F7:20:A2:52:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:f1:d5:5c:e6:18:76:3a:7e:db:74:f4:59:37:e3:98:3f:44: 7f:af:d2:f7:2c:cf:72:cf:2f:3e:e6:98:39:69:ab:ef:96:0d: 71:b3:1b:36:a4:b4:1c:b6:4b:a4:cb:18:55:d1:2b:64:53:ce: a6:6b:f7:9e:b2:76:03:3b:d1:6c:3b:b4:7e:9f:9c:d8:ea:b2: 2b:17:d9:cc:10:48:19:16:f6:23:da:b2:e2:c0:96:be:8c:af: 64:d1:89:cf:a0:60:31:b9:67:bc:43:ad:96:6e:fd:22:9b:99: 90:21:bc:8f:32:d0:c0:b5:49:26:e0:69:fd:a6:7e:71:ab:51: 52:c5:dc:92:c5:80:36:d9:2d:d3:c1:3a:05:0e:d6:c0:72:30: 21:24:f2:e7:f6:36:67:ee:d3:42:52:78:6b:70:b9:65:14:94: 14:4b:c9:76:cf:1c:3c:2c:68:a1:c2:61:70:21:86:78:60:f3: 65:1e:96:d3:00:2e:17:38:40:8a:33:94:c2:7c:9d:51:9f:da: 29:b0:57:cb:bf:37:de:f0:0c:63:4e:2c:13:79:56:77:8f:07: 7b:4c:36:89:7a:4a:fa:38:ae:09:a4:4c:d3:db:de:7b:ef:14: 67:24:1b:e0:5c:77:ef:71:4d:14:69:fc:e6:36:39:1c:69:e8: 05:c3:23:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZBQjIxMTAvBgNVBAUTKDREOTAxQzM0MjUzQkNBNUIyNzRFRUIxMDY5OTNERUY3 MjBBMjUyQUMwHhcNMjQwNTE4MjIxNTIxWhcNMjQwNTI1MjIxNTIxWjAYMRYwFAYD VQQDEw02NjQ5Mjg3OS00Njk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs+JLnNrCEqqEFLB3pwStVpglIbBRhkbnURUFv24fo6I/UWfG5mseEUuWIE51 wG+Kkf2ZJ+ltV24i544Q+bk5UxSJB769lFdiwzOe8IFfFbTBy8dYt5eaLnOdgiM7 nzf4FPfSjAn0av4zaICBeP+IZEox3W13ugkMK/ybHrWKLWOk86iL9ZueLWMXI+hM tuFOLD46vrKY9DlrJMDG4T93yjxy/iFFgP6TbfOKPM6ioph1aqY4UhGBlVVtDAA2 VFSGdyxtDZRcSo2P28JIapktVtBO9xmr9yufuHW5Lq7o3/ETYpu2vzkK49h/AGr+ fb/ki7nbV4oZxnfM+xoqzvnCBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBlS0M4Q ASxAQ/xxW3952F/Hl5ikMB8GA1UdIwQYMBaAFE2QHDQlO8pbJ07rEGmT3vcgolKs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkFCMi8wQUYyRUFBQUNG NzAxMUVBOEFFNTVENDhDNEY5QUUwMi9UWkFjTkNVN3lsc25UdXNRYVpQZTl5Q2lV cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RaQWNOQ1U3eWxzblR1c1FhWlBlOXlDaVVxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkFCMi8wQUYyRUFBQUNGNzAxMUVBOEFFNTVENDhDNEY5QUUwMi9UWkFjTkNVN3ls c25UdXNRYVpQZTl5Q2lVcXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAk8dVc5hh2On7bdPRZN+OYP0R/r9L3LM9yzy8+5pg5aavvlg1xsxs2 pLQctkukyxhV0StkU86ma/eesnYDO9FsO7R+n5zY6rIrF9nMEEgZFvYj2rLiwJa+ jK9k0YnPoGAxuWe8Q62Wbv0im5mQIbyPMtDAtUkm4Gn9pn5xq1FSxdySxYA22S3T wToFDtbAcjAhJPLn9jZn7tNCUnhrcLllFJQUS8l2zxw8LGihwmFwIYZ4YPNlHpbT AC4XOECKM5TCfJ1Rn9opsFfLvzfe8AxjTiwTeVZ3jwd7TDaJekr6OK4JpEzT2957 7xRnJBvgXHfvcU0UafzmNjkcaegFwyND -----END CERTIFICATE-----Generated at Sun May 19 00:30:22 2024 by rpki-client on console-ams.rpki-client.org