$ rpki-client -vvf rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft File: l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft (raw, json) Hash identifier: E5/K/nn4c4adIM5mObY6Bj5zuZg8R/F72+MpIR3xY1M= Subject key identifier: 36:8C:EC:AD:5D:97:35:81:88:25:07:B7:4B:6E:70:A5:1E:AB:80:1B Authority key identifier: 97:B3:DD:2A:B3:C8:9B:C8:A2:BB:C1:DB:80:3B:CE:68:EA:A5:AA:12 Certificate issuer: /CN=A91E39B4/serialNumber=97B3DD2AB3C89BC8A2BBC1DB803BCE68EAA5AA12 Certificate serial: 0A72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft Manifest number: 0A60 Signing time: Fri 26 Apr 2024 20:20:32 +0000 Manifest this update: Fri 26 Apr 2024 20:20:31 +0000 Manifest next update: Fri 03 May 2024 20:20:31 +0000 Files and hashes: 1: l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl (hash: K96us0Q4qNdWwfv8zU/Lv80pd9mWYIRaQlQpsMml+XQ=) 2: 46F57CF8137B11EBA3B47E37C4F9AE02.roa (hash: UA1wBoOmRxSSdDixQCbUxrZkxYKV1r6qcfxGovfLAxs=) 3: D968823E3DA111EA9A3FD550C4F9AE02.roa (hash: 8PwBQiPMjwBwm2C6NRT5Vk8KuFu9hRXjCMRCPWAI/SU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 20:20:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2674 (0xa72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E39B4/serialNumber=97B3DD2AB3C89BC8A2BBC1DB803BCE68EAA5AA12 Validity Not Before: Apr 26 20:20:31 2024 GMT Not After : May 3 20:20:31 2024 GMT Subject: CN=662c0c90-cf75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c7:22:0a:ff:2b:04:16:b3:e6:23:26:94:91: e5:1b:d0:c7:08:af:c4:89:a1:2e:63:2d:88:f6:1f: 07:0a:fe:81:6a:30:01:9b:23:85:0f:39:bc:b2:17: 22:44:74:c1:9d:9a:1b:fd:8d:99:67:38:37:fb:e4: 6f:2f:46:08:49:ad:c4:70:12:ff:d4:a8:45:50:f4: 3f:78:6b:53:28:34:95:50:2f:cb:32:3f:f6:6e:9b: 71:74:51:4c:0c:e5:6d:f3:6c:cf:58:ce:60:1b:2c: 98:78:1e:5b:39:17:b8:00:97:85:89:f1:33:a2:ae: 48:d1:72:bc:1d:b7:df:00:eb:ad:5c:65:f5:3d:d1: 5f:80:ca:c2:48:69:83:fc:b2:f8:e8:4a:a0:58:b9: 20:1b:3b:82:38:3c:eb:b1:ab:83:3c:4a:5b:64:e3: 07:91:db:c5:8c:9f:4e:7b:43:7a:9b:d2:35:1b:d2: b7:9f:ef:d9:0f:24:4b:56:35:5b:35:ca:87:eb:66: 0b:e5:17:b7:d3:f1:bb:45:ff:76:2d:4d:37:96:1d: 76:f1:f1:bc:94:3f:cb:13:19:f3:e6:05:1a:97:1d: 96:db:d1:14:93:e1:95:42:a7:84:85:1f:45:da:77: 44:ef:90:a1:c1:6a:8f:ed:fc:51:85:68:b9:ef:36: a3:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:8C:EC:AD:5D:97:35:81:88:25:07:B7:4B:6E:70:A5:1E:AB:80:1B X509v3 Authority Key Identifier: keyid:97:B3:DD:2A:B3:C8:9B:C8:A2:BB:C1:DB:80:3B:CE:68:EA:A5:AA:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:b3:3f:d6:eb:f5:f0:c8:8f:73:ba:21:12:4e:b4:e7:15:83: ba:35:2d:8b:37:b2:51:83:1d:63:53:37:ab:79:88:19:fa:3c: 61:63:06:8d:e9:6b:17:d2:e3:d9:8e:f2:a5:70:35:db:0a:1a: 0d:11:32:de:4c:59:cc:82:c4:4f:5c:15:d3:44:07:78:14:3f: 18:e0:bf:5f:a7:7b:7b:4b:ba:d2:3f:c8:d0:03:60:7a:1c:04: 85:59:2f:1b:6c:b5:af:db:03:b1:f5:dd:ae:4f:2b:ff:12:d2: 33:f4:da:f2:13:ce:06:bb:91:9b:9f:b0:ee:5c:b5:87:f4:68: a9:bf:8e:54:2e:85:88:da:e5:36:b9:76:56:c9:c2:59:2b:54: 5f:b3:da:2a:77:03:5f:57:b2:36:73:73:08:18:a9:c7:d7:cf: 79:c9:45:a2:bd:4e:fe:35:dc:2b:1d:cd:e0:b9:cc:eb:df:4a: ea:4c:95:45:57:98:3e:5c:0f:df:23:b1:89:b0:f5:b6:ea:d9: b7:da:bd:9f:99:c3:ba:fd:d3:50:e1:08:8f:e2:23:a3:47:1f: 51:a2:c4:36:84:80:a6:04:5f:fb:a3:1c:00:22:fe:33:c9:a8: 55:e5:61:cd:ce:e4:30:31:ed:d3:1c:bf:f1:14:82:d9:86:a6: 74:d9:05:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM5QjQxMTAvBgNVBAUTKDk3QjNERDJBQjNDODlCQzhBMkJCQzFEQjgwM0JDRTY4 RUFBNUFBMTIwHhcNMjQwNDI2MjAyMDMxWhcNMjQwNTAzMjAyMDMxWjAYMRYwFAYD VQQDEw02NjJjMGM5MC1jZjc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuMciCv8rBBaz5iMmlJHlG9DHCK/EiaEuYy2I9h8HCv6BajABmyOFDzm8shci RHTBnZob/Y2ZZzg3++RvL0YISa3EcBL/1KhFUPQ/eGtTKDSVUC/LMj/2bptxdFFM DOVt82zPWM5gGyyYeB5bORe4AJeFifEzoq5I0XK8HbffAOutXGX1PdFfgMrCSGmD /LL46EqgWLkgGzuCODzrsauDPEpbZOMHkdvFjJ9Oe0N6m9I1G9K3n+/ZDyRLVjVb NcqH62YL5Re30/G7Rf92LU03lh128fG8lD/LExnz5gUalx2W29EUk+GVQqeEhR9F 2ndE75ChwWqP7fxRhWi57zajkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDaM7K1d lzWBiCUHt0tucKUeq4AbMB8GA1UdIwQYMBaAFJez3SqzyJvIorvB24A7zmjqpaoS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzlCNC8xRUUxODI5RTNE QTExMUVBOEI2N0U5NEZDNEY5QUUwMi9sN1BkS3JQSW04aWl1OEhiZ0R2T2FPcWxx aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w3UGRLclBJbThpaXU4SGJnRHZPYU9xbHFoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzlCNC8xRUUxODI5RTNEQTExMUVBOEI2N0U5NEZDNEY5QUUwMi9sN1BkS3JQSW04 aWl1OEhiZ0R2T2FPcWxxaEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDsz/W6/XwyI9zuiESTrTnFYO6NS2LN7JRgx1jUzereYgZ+jxhYwaN 6WsX0uPZjvKlcDXbChoNETLeTFnMgsRPXBXTRAd4FD8Y4L9fp3t7S7rSP8jQA2B6 HASFWS8bbLWv2wOx9d2uTyv/EtIz9NryE84Gu5Gbn7DuXLWH9Gipv45ULoWI2uU2 uXZWycJZK1Rfs9oqdwNfV7I2c3MIGKnH1895yUWivU7+NdwrHc3guczr30rqTJVF V5g+XA/fI7GJsPW26tm32r2fmcO6/dNQ4QiP4iOjRx9RosQ2hICmBF/7oxwAIv4z yahV5WHNzuQwMe3THL/xFILZhqZ02QWz -----END CERTIFICATE-----Generated at Sat Apr 27 10:20:48 2024 by rpki-client on console-ams.rpki-client.org