$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft File: a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft (raw, json) Hash identifier: 3uxMDNV1XTBjTgHY2FT6Ni46UjvS8Do2aSsiTe1Tjg4= Subject key identifier: 20:A9:46:26:1B:73:3F:90:4A:B4:D5:75:3F:3D:39:D2:46:95:E7:FA Authority key identifier: 6B:56:7C:84:3E:42:52:3E:0E:5B:64:F6:4A:0F:2A:E0:55:17:BB:70 Certificate issuer: /CN=A91EAE3D/serialNumber=6B567C843E42523E0E5B64F64A0F2AE05517BB70 Certificate serial: 13A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft Manifest number: 1396 Signing time: Fri 26 Apr 2024 17:32:10 +0000 Manifest this update: Fri 26 Apr 2024 17:32:10 +0000 Manifest next update: Fri 03 May 2024 17:32:10 +0000 Files and hashes: 1: a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl (hash: r/z40dNn0TtwZuDJX4fJnVWwpS2K9W1/c0dAfoW2iek=) 2: F693F2689CB811EB97F77E14C4F9AE02.roa (hash: /f5dzKwWa8mvOs/cB+px+vSnnT+vivJkjy65k2sS3ug=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 17:32:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5033 (0x13a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D/serialNumber=6B567C843E42523E0E5B64F64A0F2AE05517BB70 Validity Not Before: Apr 26 17:32:10 2024 GMT Not After : May 3 17:32:10 2024 GMT Subject: CN=662be51a-60c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ee:d6:d7:0c:29:69:41:b9:5b:dc:1c:a4:04: 2c:eb:5a:c6:ce:e7:f5:9e:73:1a:29:80:da:28:fe: 30:11:69:71:b7:ea:86:80:a4:0c:80:cd:bb:2b:be: 05:a5:eb:7d:cf:1f:be:01:e5:d9:e9:92:a4:5e:3c: a5:b0:28:26:6e:64:91:8d:a4:45:86:10:4c:bf:e5: 2d:cd:2a:01:3c:73:af:c8:0b:9f:04:23:c7:3b:de: 8a:3b:49:d5:69:20:c4:d6:ed:e0:95:d1:b4:50:7f: c9:5f:06:a4:b2:5c:df:d6:cb:dd:9c:d8:a1:42:2f: 44:04:29:be:7f:7d:15:db:60:b7:03:ef:24:e9:fe: 7d:60:c2:d3:fe:b5:fd:0c:a3:82:1f:d6:38:9f:df: de:47:1f:ad:dc:61:85:11:74:a3:e6:c5:eb:be:fd: f4:ea:31:ef:fc:3c:9e:62:65:f2:9d:50:03:bb:c7: 2f:69:ee:1e:87:f9:02:11:32:1f:40:6f:f7:44:9c: 48:c4:4d:00:f2:c1:09:a9:62:81:fa:be:a3:b8:8e: f9:44:85:bf:1a:01:e1:81:88:1d:ea:a2:19:40:04: c5:72:4c:ef:89:54:b6:6a:14:f8:ab:58:b6:2e:5f: 84:61:00:f3:cb:30:05:e6:b5:ee:76:83:1b:57:38: c5:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:A9:46:26:1B:73:3F:90:4A:B4:D5:75:3F:3D:39:D2:46:95:E7:FA X509v3 Authority Key Identifier: keyid:6B:56:7C:84:3E:42:52:3E:0E:5B:64:F6:4A:0F:2A:E0:55:17:BB:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:7c:c5:f7:c8:7c:32:de:26:d8:16:b3:08:e5:dd:cb:7d:ed: 2b:6e:a1:d5:12:30:a2:39:2b:c0:4e:dd:59:60:8a:0a:b3:0a: 17:42:75:df:fc:0b:25:e9:d6:f1:0e:fd:e8:d3:1f:ca:88:c4: f8:aa:eb:11:5b:26:49:44:70:b8:e0:f3:fc:66:bd:49:25:4e: ad:5b:dc:d7:2c:a5:0c:0e:f7:e2:e0:40:8c:57:45:25:9e:c2: 0b:96:0b:70:0a:b9:ff:fc:11:4f:8b:9d:82:b5:73:ac:f6:c6: 41:8a:3e:bf:8d:17:92:6c:68:ea:15:b6:c7:cc:14:c2:52:c4: 2d:1a:b7:ca:bf:52:37:db:a2:29:ff:b1:f2:dd:b1:e5:d1:a1: 4f:55:a4:68:74:6e:fc:8a:f9:51:7b:c4:3d:ea:c2:a7:0d:0e: d0:45:06:8e:9d:b4:0b:9e:e2:15:b4:88:84:7f:90:73:3e:6d: 93:19:66:84:6f:38:ab:53:f0:e7:09:71:e8:c1:a1:0a:ac:97: 2a:7c:13:3d:a2:ed:63:b5:e9:e6:1b:76:fd:13:b6:97:94:75: 12:59:d5:0d:88:10:98:81:33:03:76:69:77:b6:66:f5:85:7a: 64:2c:86:ea:03:86:f0:87:f9:31:b9:d1:90:db:ae:57:f6:0d: db:cd:3c:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE6kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKDZCNTY3Qzg0M0U0MjUyM0UwRTVCNjRGNjRBMEYyQUUw NTUxN0JCNzAwHhcNMjQwNDI2MTczMjEwWhcNMjQwNTAzMTczMjEwWjAYMRYwFAYD VQQDEw02NjJiZTUxYS02MGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAue7W1wwpaUG5W9wcpAQs61rGzuf1nnMaKYDaKP4wEWlxt+qGgKQMgM27K74F pet9zx++AeXZ6ZKkXjylsCgmbmSRjaRFhhBMv+UtzSoBPHOvyAufBCPHO96KO0nV aSDE1u3gldG0UH/JXwakslzf1svdnNihQi9EBCm+f30V22C3A+8k6f59YMLT/rX9 DKOCH9Y4n9/eRx+t3GGFEXSj5sXrvv306jHv/DyeYmXynVADu8cvae4eh/kCETIf QG/3RJxIxE0A8sEJqWKB+r6juI75RIW/GgHhgYgd6qIZQATFckzviVS2ahT4q1i2 Ll+EYQDzyzAF5rXudoMbVzjFPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCCpRiYb cz+QSrTVdT89OdJGlef6MB8GA1UdIwQYMBaAFGtWfIQ+QlI+Dltk9koPKuBVF7tw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC84RUY0MkE0Njc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi9hMVo4aEQ1Q1VqNE9XMlQyU2c4cTRGVVh1 M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ExWjhoRDVDVWo0T1cyVDJTZzhxNEZVWHUzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUUzRC84RUY0MkE0Njc1REUxMUU4QjcwNEEyNDZDNEY5QUUwMi9hMVo4aEQ1Q1Vq NE9XMlQyU2c4cTRGVVh1M0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWfMX3yHwy3ibYFrMI5d3Lfe0rbqHVEjCiOSvATt1ZYIoKswoXQnXf /Asl6dbxDv3o0x/KiMT4qusRWyZJRHC44PP8Zr1JJU6tW9zXLKUMDvfi4ECMV0Ul nsILlgtwCrn//BFPi52CtXOs9sZBij6/jReSbGjqFbbHzBTCUsQtGrfKv1I326Ip /7Hy3bHl0aFPVaRodG78ivlRe8Q96sKnDQ7QRQaOnbQLnuIVtIiEf5BzPm2TGWaE bzirU/DnCXHowaEKrJcqfBM9ou1jtenmG3b9E7aXlHUSWdUNiBCYgTMDdml3tmb1 hXpkLIbqA4bwh/kxudGQ265X9g3bzTwG -----END CERTIFICATE-----Generated at Sat Apr 27 10:20:51 2024 by rpki-client on console-ams.rpki-client.org