$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft File: tpVKYo70-TShCnBay8uQbtYQSAw.mft (raw, json) Hash identifier: yD0GFIOLTr/gQbj/EdvPDUci/JyDewsqMKpxd98lN0A= Subject key identifier: 63:37:80:D5:F8:7E:B9:37:0F:67:C4:F3:CA:03:48:BC:B2:0F:D7:2A Authority key identifier: B6:95:4A:62:8E:F4:F9:34:A1:0A:70:5A:CB:CB:90:6E:D6:10:48:0C Certificate issuer: /CN=A91DE43E/serialNumber=B6954A628EF4F934A10A705ACBCB906ED610480C Certificate serial: 0AB8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft Manifest number: 0AB3 Signing time: Fri 26 Apr 2024 20:07:51 +0000 Manifest this update: Fri 26 Apr 2024 20:07:51 +0000 Manifest next update: Fri 03 May 2024 20:07:51 +0000 Files and hashes: 1: tpVKYo70-TShCnBay8uQbtYQSAw.crl (hash: jpTPPA7FJXNA3sdV2BTmQX2MeA7PBiBzJsdMeOHDlqE=) 2: 5E117DC82AFC11EAB5FEC955C4F9AE02.roa (hash: 1QrZ8l58V/+hrgX4EydJuc5N4220X3xtp9kwFtuNsFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.crl rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 20:07:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2744 (0xab8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE43E/serialNumber=B6954A628EF4F934A10A705ACBCB906ED610480C Validity Not Before: Apr 26 20:07:51 2024 GMT Not After : May 3 20:07:51 2024 GMT Subject: CN=662c0997-bae0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:12:1d:fe:c6:47:1c:db:f3:5c:ba:a8:da:90: 8a:f5:2c:9b:79:ea:c2:5f:09:ac:42:62:20:8c:11: 42:17:b1:1f:92:c9:21:2f:cd:73:cf:db:93:b5:57: d2:19:33:5e:19:64:c5:9e:52:7b:cc:13:b4:6c:19: e4:9e:22:61:9a:55:08:85:23:b0:15:63:4f:79:de: 4f:73:54:95:07:3b:f4:00:d9:06:c7:54:c4:49:76: 8b:2f:4f:9e:3c:97:e3:ad:5e:e5:c6:a1:92:c9:1c: 57:e4:60:72:3d:5a:4b:c0:78:ac:51:ac:70:b1:5c: ca:53:d6:e6:62:c9:09:d5:44:ca:69:bb:2e:0e:32: ae:96:4b:af:ae:98:1f:32:ce:b9:84:98:5a:b5:3d: dd:74:d2:2e:42:a3:b0:0d:17:53:9a:63:5d:74:88: 4e:be:84:e9:93:db:7d:8c:e0:24:55:a0:da:2d:74: eb:a0:73:0c:0b:fb:42:e3:21:ac:62:95:c5:85:3c: cb:79:4e:cc:3e:74:f5:d1:d7:c3:1c:bd:f6:99:fc: 0e:db:88:d9:ff:06:72:43:49:cd:fd:56:44:1c:a7: ad:f0:c4:8d:0b:f2:a3:5e:26:09:15:b9:3a:9a:fc: 4f:46:ae:fc:1a:74:34:8d:fc:6f:b7:8d:c7:78:a1: 89:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:37:80:D5:F8:7E:B9:37:0F:67:C4:F3:CA:03:48:BC:B2:0F:D7:2A X509v3 Authority Key Identifier: keyid:B6:95:4A:62:8E:F4:F9:34:A1:0A:70:5A:CB:CB:90:6E:D6:10:48:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:3f:99:37:90:4b:db:5e:bc:9f:d8:3b:7c:5d:78:5f:af:d9: 7a:13:3b:f7:da:c8:81:e7:ee:a5:2c:47:7a:5d:a9:0f:91:21: e6:0d:ea:13:06:1f:f5:86:1c:e9:c6:26:fe:1d:1a:22:43:06: 75:01:c9:e1:fa:77:eb:09:17:3b:4e:d8:36:4b:e8:ec:1c:c7: c5:fb:cb:2f:30:bf:34:19:9c:f5:82:58:42:02:c6:fb:4f:ec: 93:7c:69:f0:07:e2:1c:cb:0d:c5:ce:f2:84:e5:7e:5f:22:84: 74:5f:66:f8:8d:af:dc:38:13:7d:0f:0f:7e:40:b8:14:bd:ec: dc:04:6d:10:1e:74:0e:b7:db:e8:71:0d:df:55:73:f3:f0:3f: df:b4:a5:48:d5:6e:af:f1:45:8c:d7:e8:54:52:b0:66:51:9f: f3:2e:c5:67:92:65:37:24:76:6c:4e:0b:ec:bd:18:73:bc:16: 06:c2:69:9a:f4:3a:e1:0c:58:2e:0f:25:1f:12:73:db:90:88: fe:89:bd:80:20:9b:6b:c4:d6:26:91:4e:83:c1:e3:80:c9:bf: f3:92:e5:07:d3:19:7d:19:65:97:b7:0b:33:2c:be:e6:49:8f: d4:b9:d2:02:07:84:56:d3:4b:1a:36:91:73:18:aa:a4:c8:6a: 0a:c5:d5:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU0M0UxMTAvBgNVBAUTKEI2OTU0QTYyOEVGNEY5MzRBMTBBNzA1QUNCQ0I5MDZF RDYxMDQ4MEMwHhcNMjQwNDI2MjAwNzUxWhcNMjQwNTAzMjAwNzUxWjAYMRYwFAYD VQQDEw02NjJjMDk5Ny1iYWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxxId/sZHHNvzXLqo2pCK9SybeerCXwmsQmIgjBFCF7EfkskhL81zz9uTtVfS GTNeGWTFnlJ7zBO0bBnkniJhmlUIhSOwFWNPed5Pc1SVBzv0ANkGx1TESXaLL0+e PJfjrV7lxqGSyRxX5GByPVpLwHisUaxwsVzKU9bmYskJ1UTKabsuDjKulkuvrpgf Ms65hJhatT3ddNIuQqOwDRdTmmNddIhOvoTpk9t9jOAkVaDaLXTroHMMC/tC4yGs YpXFhTzLeU7MPnT10dfDHL32mfwO24jZ/wZyQ0nN/VZEHKet8MSNC/KjXiYJFbk6 mvxPRq78GnQ0jfxvt43HeKGJyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGM3gNX4 frk3D2fE88oDSLyyD9cqMB8GA1UdIwQYMBaAFLaVSmKO9Pk0oQpwWsvLkG7WEEgM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTQzRS9DQzAzRkJCODJB RkIxMUVBOERGMzdENTVDNEY5QUUwMi90cFZLWW83MC1UU2hDbkJheTh1UWJ0WVFT QXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RwVktZbzcwLVRTaENuQmF5OHVRYnRZUVNBdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTQzRS9DQzAzRkJCODJBRkIxMUVBOERGMzdENTVDNEY5QUUwMi90cFZLWW83MC1U U2hDbkJheTh1UWJ0WVFTQXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuP5k3kEvbXryf2Dt8XXhfr9l6Ezv32siB5+6lLEd6XakPkSHmDeoT Bh/1hhzpxib+HRoiQwZ1Acnh+nfrCRc7Ttg2S+jsHMfF+8svML80GZz1glhCAsb7 T+yTfGnwB+Icyw3FzvKE5X5fIoR0X2b4ja/cOBN9Dw9+QLgUvezcBG0QHnQOt9vo cQ3fVXPz8D/ftKVI1W6v8UWM1+hUUrBmUZ/zLsVnkmU3JHZsTgvsvRhzvBYGwmma 9DrhDFguDyUfEnPbkIj+ib2AIJtrxNYmkU6DweOAyb/zkuUH0xl9GWWXtwszLL7m SY/UudICB4RW00saNpFzGKqkyGoKxdWc -----END CERTIFICATE-----Generated at Sat Apr 27 10:20:41 2024 by rpki-client on console-ams.rpki-client.org