$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft File: 40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft (raw, json) Hash identifier: /RQcl1UhEPv4zvEPED2dhQzzokgiCXNcrYqcu7ZQgLw= Subject key identifier: 07:8B:94:6F:71:7C:94:7F:E6:F3:CC:1B:54:6D:3B:41:27:6F:21:1E Authority key identifier: E3:43:84:05:47:64:02:A3:AA:8F:98:7C:3A:FA:06:90:D9:6E:D4:74 Certificate issuer: /CN=A91E9406/serialNumber=E3438405476402A3AA8F987C3AFA0690D96ED474 Certificate serial: 019A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40OEBUdkAqOqj5h8OvoGkNlu1HQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft Manifest number: 0196 Signing time: Wed 01 May 2024 05:00:19 +0000 Manifest this update: Wed 01 May 2024 05:00:19 +0000 Manifest next update: Wed 08 May 2024 05:00:19 +0000 Files and hashes: 1: 40OEBUdkAqOqj5h8OvoGkNlu1HQ.crl (hash: uNAN42sZMFVKRVnngA7D2nnHBUScPmpq1N7T9MqRirs=) 2: F76D8A5C170D11EDA7EC2F87C4F9AE02.roa (hash: tR+tQXacvF1YYLgZ1npEr0rsbJz4qFqr8hFwc8UIkxM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.crl rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40OEBUdkAqOqj5h8OvoGkNlu1HQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 410 (0x19a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9406/serialNumber=E3438405476402A3AA8F987C3AFA0690D96ED474 Validity Not Before: May 1 05:00:19 2024 GMT Not After : May 8 05:00:19 2024 GMT Subject: CN=6631cc63-c9e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ec:bd:c3:8c:ae:89:d6:41:7f:fc:78:72:2e: 25:1a:bb:76:26:d3:e0:a8:82:b0:44:ef:7a:6e:e0: 56:ca:02:c7:c5:5c:65:6f:17:6b:1d:cf:46:59:46: 28:61:34:d1:9e:93:51:db:82:99:18:63:ee:18:ff: 76:dd:b2:a0:fa:78:0b:cc:80:cd:3a:cb:1a:0f:c3: c8:67:15:68:89:66:2d:a0:1a:59:bc:ad:80:0e:5e: 32:61:40:4f:8b:15:84:91:a1:ea:5b:be:e3:27:5d: 38:43:80:af:51:bf:c1:87:19:9e:df:70:fe:8f:9a: 59:01:c1:59:b0:cd:8e:20:f6:0f:78:9a:e3:46:b9: 4f:37:9e:73:14:01:86:85:c8:a4:5b:45:71:3e:43: b1:cf:a6:00:dc:bd:1f:82:50:47:eb:c3:8b:67:22: 9f:0b:ff:83:60:cb:e6:c7:2a:29:2c:fe:fa:5b:e1: f6:56:3c:ca:6f:9c:b3:a5:8f:74:d2:68:2d:e0:f2: 16:8f:e0:c6:0c:29:bc:92:ea:49:09:8c:69:62:9c: b2:93:2c:59:d3:fa:ea:ef:42:69:bd:d3:ba:76:1c: 85:dd:41:9d:15:99:0f:e3:56:4d:b5:d3:fd:ca:ee: ef:14:48:8d:a6:ac:28:13:fe:34:ba:d9:43:37:21: fb:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:8B:94:6F:71:7C:94:7F:E6:F3:CC:1B:54:6D:3B:41:27:6F:21:1E X509v3 Authority Key Identifier: keyid:E3:43:84:05:47:64:02:A3:AA:8F:98:7C:3A:FA:06:90:D9:6E:D4:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40OEBUdkAqOqj5h8OvoGkNlu1HQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:9d:fe:5c:0c:b0:62:8d:57:e8:72:74:69:9a:00:00:cb:d4: fa:5f:b7:3d:19:2d:e8:b8:d2:ab:2d:2d:d8:92:76:cf:9b:04: 9a:94:0a:5d:10:1e:a9:6c:3d:65:80:aa:77:a2:8c:12:e3:94: c5:1b:23:02:01:b9:4c:cd:60:4e:e2:79:0d:04:a7:58:be:c3: 82:e4:9a:80:52:ee:7d:70:6e:11:02:4b:56:a5:e3:75:06:71: d0:da:3c:9d:8a:49:57:ec:5f:20:54:dd:b3:a0:ee:a9:3d:43: ef:a6:1f:1b:8a:97:9f:93:a2:21:93:8f:66:4f:a9:84:57:64: e0:96:cb:da:5e:10:7c:4f:f5:2d:a1:5c:9c:58:ba:a4:25:e7: 0a:20:81:03:74:e4:12:b1:bf:00:3e:c9:63:bb:39:1a:cc:f5: 7b:09:23:69:b2:7d:c6:f2:2b:7a:00:4b:2c:65:8a:fc:bc:43: f4:ef:dd:36:55:de:11:d4:82:1b:fc:ab:49:fb:61:84:dc:41: d6:f5:80:90:f5:fd:e4:1c:dd:99:00:4e:89:04:69:73:c1:df: a4:45:b7:e3:e3:73:89:e0:ac:02:1e:4c:a0:39:64:94:43:1e: d8:3d:20:ad:be:72:5f:ae:4f:06:c0:67:c9:8a:f1:54:70:f6: 9e:c6:13:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk0MDYxMTAvBgNVBAUTKEUzNDM4NDA1NDc2NDAyQTNBQThGOTg3QzNBRkEwNjkw RDk2RUQ0NzQwHhcNMjQwNTAxMDUwMDE5WhcNMjQwNTA4MDUwMDE5WjAYMRYwFAYD VQQDEw02NjMxY2M2My1jOWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn+y9w4yuidZBf/x4ci4lGrt2JtPgqIKwRO96buBWygLHxVxlbxdrHc9GWUYo YTTRnpNR24KZGGPuGP923bKg+ngLzIDNOssaD8PIZxVoiWYtoBpZvK2ADl4yYUBP ixWEkaHqW77jJ104Q4CvUb/Bhxme33D+j5pZAcFZsM2OIPYPeJrjRrlPN55zFAGG hcikW0VxPkOxz6YA3L0fglBH68OLZyKfC/+DYMvmxyopLP76W+H2VjzKb5yzpY90 0mgt4PIWj+DGDCm8kupJCYxpYpyykyxZ0/rq70JpvdO6dhyF3UGdFZkP41ZNtdP9 yu7vFEiNpqwoE/40utlDNyH7oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAeLlG9x fJR/5vPMG1RtO0EnbyEeMB8GA1UdIwQYMBaAFONDhAVHZAKjqo+YfDr6BpDZbtR0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTQwNi85ODY4QTlGMDE3 MDkxMUVEQjZGODA4NjhDNEY5QUUwMi80ME9FQlVka0FxT3FqNWg4T3ZvR2tObHUx SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwT0VCVWRrQXFPcWo1aDhPdm9Ha05sdTFIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTQwNi85ODY4QTlGMDE3MDkxMUVEQjZGODA4NjhDNEY5QUUwMi80ME9FQlVka0Fx T3FqNWg4T3ZvR2tObHUxSFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYnf5cDLBijVfocnRpmgAAy9T6X7c9GS3ouNKrLS3YknbPmwSalApd EB6pbD1lgKp3oowS45TFGyMCAblMzWBO4nkNBKdYvsOC5JqAUu59cG4RAktWpeN1 BnHQ2jydiklX7F8gVN2zoO6pPUPvph8bipefk6Ihk49mT6mEV2TglsvaXhB8T/Ut oVycWLqkJecKIIEDdOQSsb8APsljuzkazPV7CSNpsn3G8it6AEssZYr8vEP07902 Vd4R1IIb/KtJ+2GE3EHW9YCQ9f3kHN2ZAE6JBGlzwd+kRbfj43OJ4KwCHkygOWSU Qx7YPSCtvnJfrk8GwGfJivFUcPaexhMP -----END CERTIFICATE-----Generated at Wed May 1 05:55:46 2024 by rpki-client on console-ams.rpki-client.org