$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft File: 4CEd1HfFtNoX56IChgOs2OcWZrU.mft (raw, json) Hash identifier: 1eAwzHeeKeQJWio2WmLUWphCzAQAGvibvUa6Vuy9+Cg= Subject key identifier: 79:C8:74:EE:9E:62:32:42:15:8E:7F:23:B5:CA:D4:54:52:0D:43:93 Authority key identifier: E0:21:1D:D4:77:C5:B4:DA:17:E7:A2:02:86:03:AC:D8:E7:16:66:B5 Certificate issuer: /CN=A91EB1BE/serialNumber=E0211DD477C5B4DA17E7A2028603ACD8E71666B5 Certificate serial: 120A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft Manifest number: 11FA Signing time: Tue 30 Apr 2024 17:56:34 +0000 Manifest this update: Tue 30 Apr 2024 17:56:33 +0000 Manifest next update: Tue 07 May 2024 17:56:33 +0000 Files and hashes: 1: 4CEd1HfFtNoX56IChgOs2OcWZrU.crl (hash: 1Aiy63MXwJcSKMVq5cWeYYSOh8PxFbgQzbbGadfQ730=) 2: 31E1DE72B04B11EE9F3B384BC4F9AE02.roa (hash: 4FTXEbd36TLSBVL60riUrPtGwhGXpjrmhxc/EZngzE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.crl rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 17:56:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4618 (0x120a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB1BE/serialNumber=E0211DD477C5B4DA17E7A2028603ACD8E71666B5 Validity Not Before: Apr 30 17:56:33 2024 GMT Not After : May 7 17:56:33 2024 GMT Subject: CN=663130d2-5f3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7a:9b:a9:10:31:1b:26:92:a8:b2:a2:a9:67: 25:75:5c:e3:3b:d0:d8:20:94:09:23:d9:98:4a:83: d1:29:ee:6e:e6:b6:0c:d9:a4:5f:ee:a5:3b:3b:69: 6a:7f:63:b4:92:6c:9f:dd:47:56:cd:aa:bb:34:bf: 2f:7c:fb:41:85:a1:05:f0:ab:fd:fb:de:16:8f:6a: 52:cf:77:a7:29:32:00:67:4a:1a:f7:29:78:b7:12: 7b:f5:cd:bf:26:6b:96:08:8d:ee:09:24:7b:78:2e: 2c:75:00:a8:07:40:55:be:53:d7:86:e6:88:1b:29: 98:7f:63:65:ed:6b:8e:0c:4c:ff:96:37:c9:f4:37: c1:cb:96:69:9d:ca:78:f9:5a:8b:81:99:b2:af:34: f5:3d:ce:2e:b5:19:06:16:92:b0:e8:06:de:2d:87: 99:94:8d:d3:d1:86:a5:b6:1c:2a:c0:0b:2f:4b:1a: 9e:9a:a7:58:fa:04:63:d8:5e:78:47:3b:76:ea:81: e2:f0:c7:6b:e5:6f:83:97:43:28:27:a7:8c:61:b9: a6:b7:ea:62:a1:a2:19:9b:d0:d5:ca:f0:b9:27:b4: 05:f8:24:50:a6:b7:d3:fa:5a:d1:20:e4:db:32:f6: 9c:22:d1:0d:06:dc:33:50:e5:23:40:dc:fe:db:c9: 4f:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:C8:74:EE:9E:62:32:42:15:8E:7F:23:B5:CA:D4:54:52:0D:43:93 X509v3 Authority Key Identifier: keyid:E0:21:1D:D4:77:C5:B4:DA:17:E7:A2:02:86:03:AC:D8:E7:16:66:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:2e:89:7b:5c:b8:63:20:b0:06:e0:ec:d7:fa:1b:93:d5:eb: 6f:b6:5c:3d:30:94:7f:6a:19:38:2c:f5:7c:0b:2f:d6:28:06: af:fb:b8:99:f2:b4:07:7a:e6:34:15:c1:56:19:05:77:8b:bc: bd:f1:b1:da:de:52:3d:03:ef:cd:ac:ff:8e:45:af:ff:1a:f6: 69:e5:e7:41:6e:6c:4d:fc:e0:69:3e:eb:a1:ec:95:c7:10:0a: b1:5a:5d:8b:c4:c0:6b:bc:97:56:b6:b5:c1:3d:a1:4f:29:fd: 56:67:1f:e9:95:f2:cd:db:c5:f5:db:cf:23:1b:40:a3:71:06: 34:e3:64:95:dc:29:40:eb:48:48:89:5c:32:cd:f7:95:a6:66: f4:34:e5:04:60:b4:7b:ba:2b:4c:49:0c:dd:e4:52:6c:9e:cf: 54:f4:2a:ee:db:31:07:65:01:8f:2f:d6:63:f9:c5:ad:58:56: 31:91:3f:22:00:af:a1:7f:ca:cd:d0:a2:d1:2f:87:d7:fe:c1: 44:e4:9f:c7:0b:4a:1e:cc:16:6d:25:dd:bc:db:82:15:2c:4f: ba:db:ee:41:a6:b7:0a:a1:88:b5:86:aa:b5:30:27:17:e5:32: a8:14:f2:7c:67:85:05:2e:b7:47:b0:e4:f9:b8:31:a0:20:7f: 96:b3:0b:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIxQkUxMTAvBgNVBAUTKEUwMjExREQ0NzdDNUI0REExN0U3QTIwMjg2MDNBQ0Q4 RTcxNjY2QjUwHhcNMjQwNDMwMTc1NjMzWhcNMjQwNTA3MTc1NjMzWjAYMRYwFAYD VQQDEw02NjMxMzBkMi01ZjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwnqbqRAxGyaSqLKiqWcldVzjO9DYIJQJI9mYSoPRKe5u5rYM2aRf7qU7O2lq f2O0kmyf3UdWzaq7NL8vfPtBhaEF8Kv9+94Wj2pSz3enKTIAZ0oa9yl4txJ79c2/ JmuWCI3uCSR7eC4sdQCoB0BVvlPXhuaIGymYf2Nl7WuODEz/ljfJ9DfBy5Zpncp4 +VqLgZmyrzT1Pc4utRkGFpKw6AbeLYeZlI3T0YalthwqwAsvSxqemqdY+gRj2F54 Rzt26oHi8Mdr5W+Dl0MoJ6eMYbmmt+pioaIZm9DVyvC5J7QF+CRQprfT+lrRIOTb MvacItENBtwzUOUjQNz+28lPUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHnIdO6e YjJCFY5/I7XK1FRSDUOTMB8GA1UdIwQYMBaAFOAhHdR3xbTaF+eiAoYDrNjnFma1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjFCRS81QTU3Nzg2Q0Mw QzgxMUU4QUU4MDUzMzRDNEY5QUUwMi80Q0VkMUhmRnROb1g1NklDaGdPczJPY1da clUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRDRWQxSGZGdE5vWDU2SUNoZ09zMk9jV1pyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjFCRS81QTU3Nzg2Q0MwQzgxMUU4QUU4MDUzMzRDNEY5QUUwMi80Q0VkMUhmRnRO b1g1NklDaGdPczJPY1daclUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJLol7XLhjILAG4OzX+huT1etvtlw9MJR/ahk4LPV8Cy/WKAav+7iZ 8rQHeuY0FcFWGQV3i7y98bHa3lI9A+/NrP+ORa//GvZp5edBbmxN/OBpPuuh7JXH EAqxWl2LxMBrvJdWtrXBPaFPKf1WZx/plfLN28X1288jG0CjcQY042SV3ClA60hI iVwyzfeVpmb0NOUEYLR7uitMSQzd5FJsns9U9Cru2zEHZQGPL9Zj+cWtWFYxkT8i AK+hf8rN0KLRL4fX/sFE5J/HC0oezBZtJd2824IVLE+62+5BprcKoYi1hqq1MCcX 5TKoFPJ8Z4UFLrdHsOT5uDGgIH+WswvA -----END CERTIFICATE-----Generated at Tue Apr 30 19:22:51 2024 by rpki-client on console-ams.rpki-client.org