$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft File: tlTdX1sVILMlvAnEv0yt88r7NCk.mft (raw, json) Hash identifier: D9gAV82NtYAnr+DxNhjEQus7vPYBdTuLJJVlTUwL1Kg= Subject key identifier: D7:6A:94:B9:F2:60:FC:4C:4A:8E:47:D7:C4:58:E3:8F:1D:26:31:E8 Authority key identifier: B6:54:DD:5F:5B:15:20:B3:25:BC:09:C4:BF:4C:AD:F3:CA:FB:34:29 Certificate issuer: /CN=A91E3B25/serialNumber=B654DD5F5B1520B325BC09C4BF4CADF3CAFB3429 Certificate serial: 0841 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft Manifest number: 1E32 Signing time: Mon 06 May 2024 17:17:52 +0000 Manifest this update: Mon 06 May 2024 17:17:51 +0000 Manifest next update: Mon 13 May 2024 17:17:51 +0000 Files and hashes: 1: tlTdX1sVILMlvAnEv0yt88r7NCk.crl (hash: Kz7BdCIlzMG0JUT0EQCDxLQ80T6Qmp9rBAi8n6tSnQ0=) 2: 3D13A01EA9AB11EAA4DBEA5EC4F9AE02.roa (hash: /rJ72nX+kkgSo0V45R+mQxQnHh38w+ytfp+FOoflTT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.crl rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 17:17:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2113 (0x841) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3B25/serialNumber=B654DD5F5B1520B325BC09C4BF4CADF3CAFB3429 Validity Not Before: May 6 17:17:51 2024 GMT Not After : May 13 17:17:51 2024 GMT Subject: CN=663910bf-fd2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:31:8e:51:12:ad:dc:f5:66:1d:b3:53:c3:5a: d3:1b:4b:c0:e2:06:59:cf:d2:fe:80:e5:b7:8e:4d: 0a:1d:06:65:b5:6f:cc:12:58:34:81:d2:e6:4b:78: 74:12:9c:98:dc:f8:e0:f6:2c:7b:c3:3b:f5:a5:71: ad:68:2e:73:3c:d7:d6:8e:05:4f:dc:b6:55:d4:6b: 8c:db:79:48:25:ee:cf:ac:44:65:d2:ba:07:b5:fa: 2a:6f:1f:72:f5:72:fd:c7:9c:7a:5f:61:72:07:f8: 6c:2e:a1:87:4b:bd:4c:29:dd:93:77:7b:23:12:d0: f1:f9:bc:1e:e2:15:24:70:b6:b1:39:34:b6:2d:03: c7:72:cf:8d:73:cc:7d:04:51:e7:25:6b:1a:4a:e8: cf:14:ba:7b:a3:fc:11:e8:ff:3a:90:2b:27:55:f6: ed:11:6a:a0:60:70:99:7d:58:85:75:97:f4:88:f8: e0:0a:9e:93:a3:ea:0a:cb:a8:e6:6e:29:43:72:90: 19:80:44:fe:b7:65:a3:c3:7f:e8:22:3b:37:26:dc: c2:76:b0:70:b3:51:a7:ad:ea:24:1e:07:d9:40:ab: 5c:32:c4:11:7c:f2:e1:e3:d1:ab:73:1e:1a:2a:e7: a2:37:d5:c4:e5:09:56:96:0e:b7:cb:ba:5f:1a:ed: eb:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:6A:94:B9:F2:60:FC:4C:4A:8E:47:D7:C4:58:E3:8F:1D:26:31:E8 X509v3 Authority Key Identifier: keyid:B6:54:DD:5F:5B:15:20:B3:25:BC:09:C4:BF:4C:AD:F3:CA:FB:34:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:82:a0:fd:7f:46:b2:5a:67:b9:98:aa:47:82:35:05:15:24: 71:ce:71:a9:70:57:43:c3:45:7f:8c:de:33:c4:ce:08:57:b5: 0f:98:96:98:73:0a:46:30:9d:b5:db:7a:c8:95:f1:33:67:e4: c2:31:ae:da:4f:37:a8:5e:ea:e1:ab:d7:f8:15:39:3d:e9:45: 6d:08:d6:fb:49:be:68:3c:57:b6:e0:c8:d8:89:f7:d9:54:f8: 8e:21:e6:02:5a:88:19:fc:77:54:f7:b2:ee:72:6a:e1:6c:ac: 67:57:d2:66:1e:47:06:68:5e:8f:ef:8e:ce:3a:88:93:b8:a5: 27:35:b7:d3:0c:05:46:0c:4b:b8:2d:71:a4:85:19:f4:3e:f3: 48:59:74:09:73:ab:c3:e9:c8:e5:78:07:7f:ac:a0:1d:b2:b9: 6f:ff:14:a0:b1:1b:a6:99:60:0e:2d:df:91:62:e6:5d:e1:d8: e1:39:c5:19:8a:55:53:52:e1:9b:90:7d:a0:c5:69:b1:e5:57: db:6e:56:a7:ac:85:a9:58:51:c4:7f:2b:66:25:3b:a0:85:94: 34:06:40:28:4f:c7:cf:c4:2c:22:cd:5a:b2:00:fd:e6:86:22: 95:96:31:c7:71:68:4e:e3:bb:7b:08:15:fb:a4:2b:a2:67:a6: 9a:d5:8b:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCMjUxMTAvBgNVBAUTKEI2NTRERDVGNUIxNTIwQjMyNUJDMDlDNEJGNENBREYz Q0FGQjM0MjkwHhcNMjQwNTA2MTcxNzUxWhcNMjQwNTEzMTcxNzUxWjAYMRYwFAYD VQQDEw02NjM5MTBiZi1mZDJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7DGOURKt3PVmHbNTw1rTG0vA4gZZz9L+gOW3jk0KHQZltW/MElg0gdLmS3h0 EpyY3Pjg9ix7wzv1pXGtaC5zPNfWjgVP3LZV1GuM23lIJe7PrERl0roHtfoqbx9y 9XL9x5x6X2FyB/hsLqGHS71MKd2Td3sjEtDx+bwe4hUkcLaxOTS2LQPHcs+Nc8x9 BFHnJWsaSujPFLp7o/wR6P86kCsnVfbtEWqgYHCZfViFdZf0iPjgCp6To+oKy6jm bilDcpAZgET+t2Wjw3/oIjs3JtzCdrBws1GnreokHgfZQKtcMsQRfPLh49Grcx4a KueiN9XE5QlWlg63y7pfGu3rnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNdqlLny YPxMSo5H18RY448dJjHoMB8GA1UdIwQYMBaAFLZU3V9bFSCzJbwJxL9MrfPK+zQp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0IyNS83RTg5MkNDMkY2 MTUxMUU3QjgzMDA5NkRDNEY5QUUwMi90bFRkWDFzVklMTWx2QW5FdjB5dDg4cjdO Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RsVGRYMXNWSUxNbHZBbkV2MHl0ODhyN05Day5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0IyNS83RTg5MkNDMkY2MTUxMUU3QjgzMDA5NkRDNEY5QUUwMi90bFRkWDFzVklM TWx2QW5FdjB5dDg4cjdOQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAgqD9f0ayWme5mKpHgjUFFSRxznGpcFdDw0V/jN4zxM4IV7UPmJaY cwpGMJ2123rIlfEzZ+TCMa7aTzeoXurhq9f4FTk96UVtCNb7Sb5oPFe24MjYiffZ VPiOIeYCWogZ/HdU97LucmrhbKxnV9JmHkcGaF6P747OOoiTuKUnNbfTDAVGDEu4 LXGkhRn0PvNIWXQJc6vD6cjleAd/rKAdsrlv/xSgsRummWAOLd+RYuZd4djhOcUZ ilVTUuGbkH2gxWmx5VfbblanrIWpWFHEfytmJTughZQ0BkAoT8fPxCwizVqyAP3m hiKVljHHcWhO47t7CBX7pCuiZ6aa1YvJ -----END CERTIFICATE-----Generated at Mon May 6 20:19:45 2024 by rpki-client on console-ams.rpki-client.org