$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft File: fNlYoAf08OVuSo0kV2aIYiurciE.mft (raw, json) Hash identifier: QbjOE/q42TKWeDtWTrNC8nR+wOzgfkA70/a42QBFUFg= Subject key identifier: E1:7C:CE:C1:D2:E3:F8:BD:A4:0E:E6:22:A8:AE:F6:66:72:54:2A:86 Authority key identifier: 7C:D9:58:A0:07:F4:F0:E5:6E:4A:8D:24:57:66:88:62:2B:AB:72:21 Certificate issuer: /CN=A91E8AF2/serialNumber=7CD958A007F4F0E56E4A8D24576688622BAB7221 Certificate serial: 65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNlYoAf08OVuSo0kV2aIYiurciE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft Manifest number: 62 Signing time: Fri 17 May 2024 07:47:54 +0000 Manifest this update: Fri 17 May 2024 07:47:54 +0000 Manifest next update: Fri 24 May 2024 07:47:54 +0000 Files and hashes: 1: fNlYoAf08OVuSo0kV2aIYiurciE.crl (hash: P/U3+0RT1EYf4Sk3HPAIDCXbNQmQcx9rnzGw2ZvzoNY=) 2: E7021416B54B11EE86895416C4F9AE02.roa (hash: QnOzRYee9/CXFAfgYy4gWQ8tMDT9D8AiqME3PaDyd8c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.crl rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNlYoAf08OVuSo0kV2aIYiurciE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 07:47:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 101 (0x65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8AF2/serialNumber=7CD958A007F4F0E56E4A8D24576688622BAB7221 Validity Not Before: May 17 07:47:54 2024 GMT Not After : May 24 07:47:54 2024 GMT Subject: CN=66470baa-c68c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:2f:ae:c3:23:a6:45:61:30:4f:d7:01:46:75: 23:93:fc:79:a4:33:e7:2d:9c:1a:e2:89:87:bd:60: e6:4f:5c:72:11:0b:66:7d:3f:6e:6c:58:81:fd:34: f5:08:da:9b:5c:73:df:39:f0:b5:c7:d6:3e:4c:76: c4:9b:81:38:f4:42:b4:36:cc:bf:de:59:89:ba:90: d7:e7:b4:e8:32:69:9b:72:f9:07:db:1d:25:eb:58: 9e:4f:73:12:ba:01:5c:cf:98:11:5e:45:22:23:c8: b0:aa:c5:f9:6f:19:59:30:43:16:05:90:99:ad:43: 72:b8:c5:87:39:e9:09:ce:2f:e3:2d:38:57:00:8c: ea:87:6f:f1:95:52:09:63:8d:49:24:87:64:eb:de: 84:9f:36:94:ab:73:c9:bf:e7:23:0e:6a:61:78:ed: 44:76:92:d9:da:a7:e5:e2:f1:10:15:c0:89:7c:35: c9:05:f2:0b:7e:22:be:f4:21:68:d7:e9:ad:f9:0e: 67:e4:1a:58:ca:3d:a9:23:d7:27:cd:30:2b:b6:95: a4:5b:0e:b0:35:20:74:f5:eb:b6:73:44:b9:98:35: 83:89:8c:b5:67:78:99:42:76:0b:20:49:a0:cf:c1: 08:fc:97:72:d5:6c:1d:f9:aa:3e:3e:95:b0:6a:e7: 3e:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:7C:CE:C1:D2:E3:F8:BD:A4:0E:E6:22:A8:AE:F6:66:72:54:2A:86 X509v3 Authority Key Identifier: keyid:7C:D9:58:A0:07:F4:F0:E5:6E:4A:8D:24:57:66:88:62:2B:AB:72:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNlYoAf08OVuSo0kV2aIYiurciE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:b7:e5:18:ed:7d:cb:4f:ec:3c:bb:3a:be:f1:40:da:bd:f0: 5b:6e:c1:6f:0e:57:79:7f:e2:ac:31:bf:5d:30:f1:34:27:f5: f2:e2:07:1c:33:17:7c:80:9a:e3:07:56:5a:c7:0f:6d:6f:d7: 3f:4b:9d:f7:a6:0b:f5:5e:bb:a6:5a:09:a6:e8:77:da:4b:32: 07:e4:7c:24:2c:67:90:e5:7b:99:8e:e4:8a:5b:76:bb:6e:47: bb:8c:61:33:1c:2f:55:de:5a:ad:b4:22:76:5b:1a:64:c4:83: 2b:f6:a5:e7:d3:92:a8:67:48:da:08:25:f4:f6:fd:e1:46:ec: ba:6a:18:a0:8a:f0:84:e1:da:0f:29:ec:4c:d2:b8:0d:ea:5a: b3:84:c6:54:54:2b:3a:c3:31:2b:9e:ff:50:79:72:ee:9f:36: a1:6b:8b:b1:89:98:1b:54:1a:ac:e8:73:ed:97:b4:cc:11:7e: c9:7b:60:70:0f:8c:ac:d6:48:e6:02:90:9d:2b:e1:f9:60:b1: 3f:5b:8b:2a:78:41:c4:49:d1:e2:13:eb:6a:08:8c:b2:f8:48: 9b:d0:5b:cb:05:f9:af:a4:96:dc:e5:d0:f5:12:96:e4:96:97: ee:92:1f:99:d4:65:52:fe:d4:69:9b:00:91:78:0e:98:3a:fb: 51:cf:a4:f1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF OEFGMjExMC8GA1UEBRMoN0NEOTU4QTAwN0Y0RjBFNTZFNEE4RDI0NTc2Njg4NjIy QkFCNzIyMTAeFw0yNDA1MTcwNzQ3NTRaFw0yNDA1MjQwNzQ3NTRaMBgxFjAUBgNV BAMTDTY2NDcwYmFhLWM2OGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDyL67DI6ZFYTBP1wFGdSOT/HmkM+ctnBriiYe9YOZPXHIRC2Z9P25sWIH9NPUI 2ptcc9858LXH1j5MdsSbgTj0QrQ2zL/eWYm6kNfntOgyaZty+QfbHSXrWJ5PcxK6 AVzPmBFeRSIjyLCqxflvGVkwQxYFkJmtQ3K4xYc56QnOL+MtOFcAjOqHb/GVUglj jUkkh2Tr3oSfNpSrc8m/5yMOamF47UR2ktnap+Xi8RAVwIl8NckF8gt+Ir70IWjX 6a35DmfkGljKPakj1yfNMCu2laRbDrA1IHT167ZzRLmYNYOJjLVneJlCdgsgSaDP wQj8l3LVbB35qj4+lbBq5z6pAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4XzOwdLj +L2kDuYiqK72ZnJUKoYwHwYDVR0jBBgwFoAUfNlYoAf08OVuSo0kV2aIYiurciEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4QUYyLzU3MzJDODM4ODQ0 QzExRUVCMUYyQ0EyOUM0RjlBRTAyL2ZObFlvQWYwOE9WdVNvMGtWMmFJWWl1cmNp RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZk5sWW9BZjA4T1Z1U28wa1YyYUlZaXVyY2lFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4 QUYyLzU3MzJDODM4ODQ0QzExRUVCMUYyQ0EyOUM0RjlBRTAyL2ZObFlvQWYwOE9W dVNvMGtWMmFJWWl1cmNpRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABS35RjtfctP7Dy7Or7xQNq98FtuwW8OV3l/4qwxv10w8TQn9fLiBxwz F3yAmuMHVlrHD21v1z9LnfemC/Veu6ZaCabod9pLMgfkfCQsZ5Dle5mO5Ipbdrtu R7uMYTMcL1XeWq20InZbGmTEgyv2pefTkqhnSNoIJfT2/eFG7LpqGKCK8ITh2g8p 7EzSuA3qWrOExlRUKzrDMSue/1B5cu6fNqFri7GJmBtUGqzoc+2XtMwRfsl7YHAP jKzWSOYCkJ0r4flgsT9biyp4QcRJ0eIT62oIjLL4SJvQW8sF+a+kltzl0PUSluSW l+6SH5nUZVL+1GmbAJF4Dpg6+1HPpPE= -----END CERTIFICATE-----Generated at Fri May 17 08:52:54 2024 by rpki-client on console-ams.rpki-client.org