$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft File: aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft (raw, json) Hash identifier: CX7nin6UwlzenHwAshfRQrumXEHxWxJwVbJaxvvAGgY= Subject key identifier: AC:C9:D8:01:76:04:35:9C:56:98:9F:A0:F3:82:11:43:C0:98:2E:81 Authority key identifier: 68:6A:00:57:16:4D:14:38:EC:59:58:6D:A8:BA:A5:46:5F:D8:29:C7 Certificate issuer: /CN=A91EA9BD/serialNumber=686A0057164D1438EC59586DA8BAA5465FD829C7 Certificate serial: 2FE5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft Manifest number: 2FE2 Signing time: Tue 30 Apr 2024 15:43:52 +0000 Manifest this update: Tue 30 Apr 2024 15:43:51 +0000 Manifest next update: Tue 07 May 2024 15:43:51 +0000 Files and hashes: 1: aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl (hash: L9tAQdDa/fC7mBEj/2yJZMS/zwIhC6bBj7utJzdTWa4=) 2: 93C0837AA52911EC9D2DAE83C4F9AE02.roa (hash: JfGwNVnzrNOIafxBENqEbRK+Usbwud6KX0g8nBIB4vQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 15:43:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12261 (0x2fe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD/serialNumber=686A0057164D1438EC59586DA8BAA5465FD829C7 Validity Not Before: Apr 30 15:43:51 2024 GMT Not After : May 7 15:43:51 2024 GMT Subject: CN=663111b7-ce2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b3:23:89:74:38:36:de:31:77:cb:dd:db:16: 7e:60:82:62:f9:d6:0d:3b:0c:d5:c3:3b:8c:e3:cc: 65:f5:f8:f5:d8:e6:a5:27:27:e1:8b:af:4e:b5:ca: 38:01:06:b6:4a:04:71:6b:23:8c:62:c9:a6:1f:7a: 3b:b6:1f:88:5f:2b:1f:b3:72:e7:1b:9d:f1:e4:2f: 29:b7:18:7c:43:22:a1:a7:c5:f4:2f:05:8e:a7:fe: c2:ec:59:f4:0c:44:66:0f:5d:07:a6:8b:0c:ee:83: c9:ac:c8:a5:fb:92:34:41:34:78:1e:a7:b9:fa:64: 8e:89:49:40:5f:c8:cd:5d:4a:f0:b5:72:ac:61:66: 1c:f9:22:75:cd:ad:19:d8:6c:56:bb:c7:0d:88:36: 57:b0:60:63:77:28:cd:50:43:8d:e6:a7:89:8f:76: a9:32:7e:c0:0b:96:7d:1f:a3:48:9a:69:1d:bf:05: 13:fc:12:e5:3c:14:f3:28:d4:ab:7d:87:73:e5:34: 56:c6:0e:91:97:43:a6:ba:bc:34:d9:74:c3:37:da: d1:de:2d:ab:7e:06:6d:0a:67:7c:2a:10:54:1d:54: 81:08:0e:99:c9:30:50:19:df:00:1f:56:24:58:f0: f9:c0:c0:f7:0f:de:bd:5f:82:62:cc:ab:96:c2:7b: 8d:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:C9:D8:01:76:04:35:9C:56:98:9F:A0:F3:82:11:43:C0:98:2E:81 X509v3 Authority Key Identifier: keyid:68:6A:00:57:16:4D:14:38:EC:59:58:6D:A8:BA:A5:46:5F:D8:29:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:ff:9e:37:6a:4f:af:1b:ca:93:48:61:0b:79:4b:52:1c:39: 76:50:56:a1:fe:20:dc:9b:16:a5:63:ec:9e:3b:19:a4:58:fc: 0c:c5:3a:d8:9c:8f:63:43:42:6f:04:76:6c:dc:27:1d:51:e0: e9:ea:c1:ad:9b:88:8d:a4:1b:39:97:fe:c9:97:e0:38:51:f9: bb:34:0a:c1:17:e9:62:1c:a2:c0:9b:fe:52:b5:59:5f:8c:8d: 5d:df:35:23:6e:e5:80:f5:5b:39:bf:3b:03:64:9d:c0:c6:c3: 14:c6:8e:ff:33:26:9b:37:d0:02:44:c7:91:b3:0f:3a:48:a5: 00:ef:ea:82:f8:b1:84:1c:cb:f6:e0:c4:68:d0:1e:9b:65:c0: 7c:14:bf:a0:a6:52:bc:34:a5:9a:db:a6:54:87:d4:ea:2a:79: a4:7e:ba:77:a6:ed:36:c5:99:96:2b:36:ff:9a:a7:2d:a6:84: 1c:df:01:8f:be:06:c3:5d:71:c4:c5:53:81:ad:b1:ab:1b:0c: df:f9:3f:c9:af:e9:cc:b1:58:f5:49:f0:99:88:1d:c4:a7:d8: ad:72:b2:ab:06:8e:29:12:60:f2:2f:fc:fe:4e:41:6b:07:0a: e5:1e:99:9d:57:61:32:8a:65:91:86:a9:0a:f8:e5:20:9a:9f: 1a:e0:bb:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICL+UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKDY4NkEwMDU3MTY0RDE0MzhFQzU5NTg2REE4QkFBNTQ2 NUZEODI5QzcwHhcNMjQwNDMwMTU0MzUxWhcNMjQwNTA3MTU0MzUxWjAYMRYwFAYD VQQDEw02NjMxMTFiNy1jZTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7MjiXQ4Nt4xd8vd2xZ+YIJi+dYNOwzVwzuM48xl9fj12OalJyfhi69Otco4 AQa2SgRxayOMYsmmH3o7th+IXysfs3LnG53x5C8ptxh8QyKhp8X0LwWOp/7C7Fn0 DERmD10HposM7oPJrMil+5I0QTR4Hqe5+mSOiUlAX8jNXUrwtXKsYWYc+SJ1za0Z 2GxWu8cNiDZXsGBjdyjNUEON5qeJj3apMn7AC5Z9H6NImmkdvwUT/BLlPBTzKNSr fYdz5TRWxg6Rl0Omurw02XTDN9rR3i2rfgZtCmd8KhBUHVSBCA6ZyTBQGd8AH1Yk WPD5wMD3D969X4JizKuWwnuNnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKzJ2AF2 BDWcVpifoPOCEUPAmC6BMB8GA1UdIwQYMBaAFGhqAFcWTRQ47FlYbai6pUZf2CnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wM0I4MEYzOERG NUMxMUUyOTcyQTk0Mjc1OTExRUEzMi9hR29BVnhaTkZEanNXVmh0cUxxbFJsX1lL Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FHb0FWeFpORkRqc1dWaHRxTHFsUmxfWUtjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wM0I4MEYzOERGNUMxMUUyOTcyQTk0Mjc1OTExRUEzMi9hR29BVnhaTkZE anNXVmh0cUxxbFJsX1lLY2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4/543ak+vG8qTSGELeUtSHDl2UFah/iDcmxalY+yeOxmkWPwMxTrY nI9jQ0JvBHZs3CcdUeDp6sGtm4iNpBs5l/7Jl+A4Ufm7NArBF+liHKLAm/5StVlf jI1d3zUjbuWA9Vs5vzsDZJ3AxsMUxo7/MyabN9ACRMeRsw86SKUA7+qC+LGEHMv2 4MRo0B6bZcB8FL+gplK8NKWa26ZUh9TqKnmkfrp3pu02xZmWKzb/mqctpoQc3wGP vgbDXXHExVOBrbGrGwzf+T/Jr+nMsVj1SfCZiB3Ep9itcrKrBo4pEmDyL/z+TkFr BwrlHpmdV2EyimWRhqkK+OUgmp8a4Lsi -----END CERTIFICATE-----Generated at Tue Apr 30 19:22:50 2024 by rpki-client on console-ams.rpki-client.org