$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft File: rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft (raw, json) Hash identifier: d/wFDgEiQRVxlO5HeiFrAWKTMFbR5mlnNtE7DrNC44s= Subject key identifier: 19:39:48:D0:70:6B:38:82:F0:B1:7E:C9:F9:F3:9B:66:55:40:7E:DB Authority key identifier: AD:73:AD:B9:14:21:38:62:ED:8E:14:D7:70:69:F4:74:D8:3C:C8:F5 Certificate issuer: /CN=A91EE735/serialNumber=AD73ADB914213862ED8E14D77069F474D83CC8F5 Certificate serial: 08A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft Manifest number: 0897 Signing time: Wed 24 Apr 2024 21:34:50 +0000 Manifest this update: Wed 24 Apr 2024 21:34:50 +0000 Manifest next update: Wed 01 May 2024 21:34:50 +0000 Files and hashes: 1: rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl (hash: p5iENEA+/Uk6N+JOJPbv8rxalvXRImavdWwpeNelRkA=) 2: 34E183809E5F11EB97709628C4F9AE02.roa (hash: 36c9Jg2qBuIJjOlQn8QxUqUYlMtF6lkxLHEe+aB1y+0=) 3: E7F141609E9911EBB4117632C4F9AE02.roa (hash: lv6rNcma20xy/b/MklODIFLV5yeSNLVoi38X1XngcUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 21:34:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2210 (0x8a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE735/serialNumber=AD73ADB914213862ED8E14D77069F474D83CC8F5 Validity Not Before: Apr 24 21:34:50 2024 GMT Not After : May 1 21:34:50 2024 GMT Subject: CN=66297afa-c20a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:bc:a3:ed:27:45:59:3a:5e:84:bd:b6:6d:95: ed:a2:1d:74:6f:1d:e4:99:6b:48:c1:4a:5e:83:f0: 5f:26:da:fa:97:14:bc:7c:7b:f3:b0:d8:4b:1a:30: 76:52:0f:6d:21:57:e7:35:eb:5c:9e:58:4a:ec:3b: 72:0f:00:a3:4c:d0:2c:52:69:5c:88:00:3c:b0:e1: 11:d6:95:04:47:10:aa:ba:78:14:ac:9a:d1:34:e9: 41:20:68:3b:68:fb:3e:cc:ea:a1:d9:c3:ab:b9:c1: 64:0b:a6:0b:de:1d:3f:33:2d:a5:2e:28:32:32:d8: 8e:ad:39:f8:f8:70:3c:01:1a:be:46:81:5a:67:83: 1f:ad:f7:f3:05:0d:96:33:5d:4a:58:c4:24:63:67: b9:d8:98:cb:4b:a4:fd:54:0a:05:7a:39:75:4c:e6: 4c:ae:29:55:af:ba:a0:87:29:7d:c4:37:f3:06:70: c7:ce:c1:e0:4a:27:d2:11:80:0f:0b:ab:59:6d:44: 01:d9:cf:18:79:2f:b6:00:3a:6a:63:2f:ba:90:80: 03:60:92:b0:87:34:50:26:a4:a9:e4:1a:03:07:8e: 3e:c8:ad:a3:d9:cb:c2:9e:90:fc:4c:b0:12:d4:d4: 2a:55:a2:63:49:d3:33:15:e8:1c:49:45:af:08:0f: 7f:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:39:48:D0:70:6B:38:82:F0:B1:7E:C9:F9:F3:9B:66:55:40:7E:DB X509v3 Authority Key Identifier: keyid:AD:73:AD:B9:14:21:38:62:ED:8E:14:D7:70:69:F4:74:D8:3C:C8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:e2:80:71:b9:5d:be:34:63:36:cb:90:5b:db:4d:34:61:11: ee:24:1b:f5:b3:e4:75:80:8d:07:e5:a9:4b:1d:46:63:3d:a6: 23:c1:f2:98:d3:5d:16:38:16:fa:bf:a6:7a:9b:df:87:58:af: 80:7b:36:9d:3a:45:21:a4:9d:34:51:9e:c1:18:fc:fc:6b:ad: 64:1a:bf:fd:ba:92:72:a6:c0:d9:14:1b:8a:d7:50:a2:b2:f7: a6:9a:b2:86:c6:4f:79:ef:a9:28:62:85:7a:4f:16:8b:5c:f2: 54:8e:75:13:c8:d7:85:21:b1:28:62:88:fe:6c:49:ec:a7:70: db:40:2f:0f:70:78:dd:a1:0b:62:b4:b9:82:7a:e7:c5:e1:1e: 9c:a6:df:d1:67:16:01:bf:ad:ff:1c:d3:b5:85:42:4e:0a:63: ae:06:0b:ca:34:d2:ed:1f:37:33:58:2a:10:a9:6e:53:fe:fa: a8:9b:cd:95:14:68:84:18:f7:ab:97:ae:17:db:99:29:15:86: 25:da:d1:86:e8:89:ba:f5:3e:29:7b:ef:61:86:f8:f8:69:f7: e7:9a:03:25:b7:a7:35:a6:ea:26:13:39:d7:3e:86:34:47:17: 42:df:ab:43:df:3f:5f:dd:65:23:1b:ba:72:aa:bb:71:84:19: 98:da:4d:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU3MzUxMTAvBgNVBAUTKEFENzNBREI5MTQyMTM4NjJFRDhFMTRENzcwNjlGNDc0 RDgzQ0M4RjUwHhcNMjQwNDI0MjEzNDUwWhcNMjQwNTAxMjEzNDUwWjAYMRYwFAYD VQQDEw02NjI5N2FmYS1jMjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoryj7SdFWTpehL22bZXtoh10bx3kmWtIwUpeg/BfJtr6lxS8fHvzsNhLGjB2 Ug9tIVfnNetcnlhK7DtyDwCjTNAsUmlciAA8sOER1pUERxCqungUrJrRNOlBIGg7 aPs+zOqh2cOrucFkC6YL3h0/My2lLigyMtiOrTn4+HA8ARq+RoFaZ4MfrffzBQ2W M11KWMQkY2e52JjLS6T9VAoFejl1TOZMrilVr7qghyl9xDfzBnDHzsHgSifSEYAP C6tZbUQB2c8YeS+2ADpqYy+6kIADYJKwhzRQJqSp5BoDB44+yK2j2cvCnpD8TLAS 1NQqVaJjSdMzFegcSUWvCA9/2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBk5SNBw aziC8LF+yfnzm2ZVQH7bMB8GA1UdIwQYMBaAFK1zrbkUIThi7Y4U13Bp9HTYPMj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTczNS9FOEU2NjdDQTk0 QkUxMUVBOTg0RkFENThDNEY5QUUwMi9yWE90dVJRaE9HTHRqaFRYY0duMGROZzh5 UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JYT3R1UlFoT0dMdGpoVFhjR24wZE5nOHlQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTczNS9FOEU2NjdDQTk0QkUxMUVBOTg0RkFENThDNEY5QUUwMi9yWE90dVJRaE9H THRqaFRYY0duMGROZzh5UFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCU4oBxuV2+NGM2y5Bb2000YRHuJBv1s+R1gI0H5alLHUZjPaYjwfKY 010WOBb6v6Z6m9+HWK+AezadOkUhpJ00UZ7BGPz8a61kGr/9upJypsDZFBuK11Ci svemmrKGxk9576koYoV6TxaLXPJUjnUTyNeFIbEoYoj+bEnsp3DbQC8PcHjdoQti tLmCeufF4R6cpt/RZxYBv63/HNO1hUJOCmOuBgvKNNLtHzczWCoQqW5T/vqom82V FGiEGPerl64X25kpFYYl2tGG6Im69T4pe+9hhvj4affnmgMlt6c1puomEznXPoY0 RxdC36tD3z9f3WUjG7pyqrtxhBmY2k2y -----END CERTIFICATE-----Generated at Wed Apr 24 23:34:37 2024 by rpki-client on console-ams.rpki-client.org