$ rpki-client -vvf rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.mft File: 10XhyGsYGPfQVj-Q6LoSvosa43g.mft (raw, json) Hash identifier: sCpPMjexUQAX+J4SM6MFZryZWO2uVXSrPVZV1oNNyys= Subject key identifier: E7:3B:BF:E8:91:F2:13:4C:B3:9D:85:C3:69:5C:B2:FE:D9:77:92:A2 Authority key identifier: D7:45:E1:C8:6B:18:18:F7:D0:56:3F:90:E8:BA:12:BE:8B:1A:E3:78 Certificate issuer: /CN=A91D97C4/serialNumber=D745E1C86B1818F7D0563F90E8BA12BE8B1AE378 Certificate serial: 91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10XhyGsYGPfQVj-Q6LoSvosa43g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.mft Manifest number: 90 Signing time: Fri 17 May 2024 07:06:55 +0000 Manifest this update: Fri 17 May 2024 07:06:54 +0000 Manifest next update: Fri 24 May 2024 07:06:54 +0000 Files and hashes: 1: 10XhyGsYGPfQVj-Q6LoSvosa43g.crl (hash: GjHOB8kPpQOARCfKlZe6XYMQ9IiRkpEpfKCp7Y0GY2A=) 2: 12DD779467A211EEA8239268C4F9AE02.roa (hash: MkdiGM7NTjZBRj74OoYyFzkrxDeUSDJUstylSiELgzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.crl rsync://rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10XhyGsYGPfQVj-Q6LoSvosa43g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 07:06:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 145 (0x91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D97C4/serialNumber=D745E1C86B1818F7D0563F90E8BA12BE8B1AE378 Validity Not Before: May 17 07:06:54 2024 GMT Not After : May 24 07:06:54 2024 GMT Subject: CN=6647020e-9212 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:20:52:3a:09:41:d6:51:63:d7:db:85:c0:2c: 68:af:db:f1:70:59:38:37:ea:09:17:23:62:26:dc: f9:3d:96:47:74:ac:a5:d0:87:91:e7:b5:5d:f7:fc: a0:fa:28:96:b7:31:b9:4d:66:d3:ef:4c:ad:62:be: 13:dd:79:9b:3d:1c:da:b7:1b:38:21:f8:a9:d4:e3: 0e:5f:b9:cd:a0:f4:a6:05:d1:93:95:46:6f:e9:ec: ef:47:ff:88:57:2f:18:b6:09:e7:8f:56:d3:18:2a: 00:18:99:48:a1:97:73:c8:9c:1e:7f:92:c7:46:e2: 5f:c1:d5:60:b3:3c:54:6e:f0:0a:47:2a:2d:be:d2: 94:7c:8d:e8:aa:4f:86:c5:7b:6a:67:6f:52:35:aa: c6:a0:aa:54:40:76:5a:d0:8c:4f:d9:df:17:af:aa: 90:2d:32:cd:c0:da:dc:a0:79:fe:d8:d4:42:12:33: 02:55:38:fe:c0:64:e9:c2:e6:dd:41:51:e5:2d:2b: ec:65:99:b9:bb:43:16:1a:7f:8a:13:c1:0b:44:c6: 25:7f:91:03:24:5e:ce:15:70:bd:cb:03:7a:2e:61: 45:5f:b9:0e:f4:85:d8:b5:31:e6:b7:47:3d:d6:ca: 49:2f:f4:66:6a:4e:a0:0a:b0:ee:72:d5:75:06:6a: cd:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:3B:BF:E8:91:F2:13:4C:B3:9D:85:C3:69:5C:B2:FE:D9:77:92:A2 X509v3 Authority Key Identifier: keyid:D7:45:E1:C8:6B:18:18:F7:D0:56:3F:90:E8:BA:12:BE:8B:1A:E3:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10XhyGsYGPfQVj-Q6LoSvosa43g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:d5:2d:2e:bd:5b:9e:74:5e:99:d3:f6:db:16:49:94:cb:4c: ea:bb:c9:da:09:e9:94:69:cc:7b:08:71:37:b6:b5:b8:64:a4: af:aa:c8:cf:d9:56:4f:7a:3b:c7:8c:5d:b5:1a:60:16:45:85: c8:2d:a3:78:a5:78:14:ad:83:51:92:1b:3a:05:ec:73:79:98: 66:09:e4:dd:08:bf:53:08:1c:49:73:20:1a:47:b1:2d:f1:e5: ce:99:86:a7:35:8d:95:86:3d:63:83:a4:6d:a3:3d:56:a5:46: 79:e7:93:1a:c9:0e:35:1a:13:5f:d1:dd:cf:69:6a:7e:28:56: a5:93:1e:8a:ca:0a:40:06:ba:dc:77:14:4a:87:e6:c6:7d:45: 75:d6:32:dd:c3:aa:b5:e6:ac:d3:f3:c5:f0:5f:5d:57:95:08: 11:05:69:f2:78:c8:74:1c:2e:52:fa:8a:0b:8e:9a:89:dc:c1: 02:59:ab:be:fe:8f:32:7e:ef:1b:34:eb:c4:60:73:ca:b6:90: 06:9a:c4:f1:cd:36:5d:e4:f6:98:7c:0f:7a:1f:ce:f4:5b:66: 2d:a6:c5:86:05:6b:12:d8:76:ef:89:70:c0:08:8d:e1:f7:49: b7:f6:5c:f4:f4:f1:d1:84:f2:cc:0a:3f:e8:cc:70:ff:73:3f: ac:2a:21:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDk3QzQxMTAvBgNVBAUTKEQ3NDVFMUM4NkIxODE4RjdEMDU2M0Y5MEU4QkExMkJF OEIxQUUzNzgwHhcNMjQwNTE3MDcwNjU0WhcNMjQwNTI0MDcwNjU0WjAYMRYwFAYD VQQDEw02NjQ3MDIwZS05MjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxCBSOglB1lFj19uFwCxor9vxcFk4N+oJFyNiJtz5PZZHdKyl0IeR57Vd9/yg +iiWtzG5TWbT70ytYr4T3XmbPRzatxs4Ifip1OMOX7nNoPSmBdGTlUZv6ezvR/+I Vy8Ytgnnj1bTGCoAGJlIoZdzyJwef5LHRuJfwdVgszxUbvAKRyotvtKUfI3oqk+G xXtqZ29SNarGoKpUQHZa0IxP2d8Xr6qQLTLNwNrcoHn+2NRCEjMCVTj+wGTpwubd QVHlLSvsZZm5u0MWGn+KE8ELRMYlf5EDJF7OFXC9ywN6LmFFX7kO9IXYtTHmt0c9 1spJL/Rmak6gCrDuctV1BmrNBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOc7v+iR 8hNMs52Fw2lcsv7Zd5KiMB8GA1UdIwQYMBaAFNdF4chrGBj30FY/kOi6Er6LGuN4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOTdDNC9DNjNERjIwMDND NjQxMUVFQkNBQzUxNzBDNEY5QUUwMi8xMFhoeUdzWUdQZlFWai1RNkxvU3Zvc2E0 M2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzEwWGh5R3NZR1BmUVZqLVE2TG9Tdm9zYTQzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OTdDNC9DNjNERjIwMDNDNjQxMUVFQkNBQzUxNzBDNEY5QUUwMi8xMFhoeUdzWUdQ ZlFWai1RNkxvU3Zvc2E0M2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAF1S0uvVuedF6Z0/bbFkmUy0zqu8naCemUacx7CHE3trW4ZKSvqsjP 2VZPejvHjF21GmAWRYXILaN4pXgUrYNRkhs6BexzeZhmCeTdCL9TCBxJcyAaR7Et 8eXOmYanNY2Vhj1jg6Rtoz1WpUZ555MayQ41GhNf0d3PaWp+KFalkx6KygpABrrc dxRKh+bGfUV11jLdw6q15qzT88XwX11XlQgRBWnyeMh0HC5S+ooLjpqJ3MECWau+ /o8yfu8bNOvEYHPKtpAGmsTxzTZd5PaYfA96H870W2YtpsWGBWsS2HbviXDACI3h 90m39lz09PHRhPLMCj/ozHD/cz+sKiGZ -----END CERTIFICATE-----Generated at Fri May 17 08:52:54 2024 by rpki-client on console-ams.rpki-client.org