$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft File: 4mhztF-I0fXYg8F-TM9wokUWIUI.mft (raw, json) Hash identifier: mcKaHu8AW+4nCvtOxmJ9ArycjH2NjR8VuexvTT+9zJo= Subject key identifier: 2E:B5:E6:4E:0E:B2:04:8D:67:04:FB:DD:15:19:CB:AC:74:A4:1D:B9 Authority key identifier: E2:68:73:B4:5F:88:D1:F5:D8:83:C1:7E:4C:CF:70:A2:45:16:21:42 Certificate issuer: /CN=A91F4C6B/serialNumber=E26873B45F88D1F5D883C17E4CCF70A245162142 Certificate serial: 0805 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4mhztF-I0fXYg8F-TM9wokUWIUI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft Manifest number: 07F8 Signing time: Thu 02 May 2024 22:03:17 +0000 Manifest this update: Thu 02 May 2024 22:03:17 +0000 Manifest next update: Thu 09 May 2024 22:03:17 +0000 Files and hashes: 1: 4mhztF-I0fXYg8F-TM9wokUWIUI.crl (hash: daMKc4sJ688C10cmA3tnrJOB60IT3LKEKHSBstJnEcA=) 2: E146B994B51F11EA9146DD58C4F9AE02.roa (hash: 9ClGkaiLZJSsxx5I62kiJUH3IYlW5OJPUglUBTKzUbE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.crl rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4mhztF-I0fXYg8F-TM9wokUWIUI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 22:03:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2053 (0x805) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4C6B/serialNumber=E26873B45F88D1F5D883C17E4CCF70A245162142 Validity Not Before: May 2 22:03:17 2024 GMT Not After : May 9 22:03:17 2024 GMT Subject: CN=66340da5-6061 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:bb:8f:57:71:62:9e:1d:21:e1:3e:79:89:5e: df:eb:f1:c8:75:d6:06:1a:e1:94:d5:9c:de:df:e3: 2c:4f:ae:94:f8:18:e2:56:0c:fb:07:6f:b9:a6:44: 3f:7a:21:ed:6f:fc:dc:54:8d:40:a7:a0:2c:b5:77: 40:b3:f3:99:8a:83:16:90:40:eb:a2:23:c2:61:c5: 3f:b8:87:e2:5c:b7:66:e1:34:ee:78:52:84:24:bb: a7:47:03:b0:2e:8b:c6:8d:ce:3b:42:84:1d:f1:6f: a7:26:f8:48:c0:fb:0c:f6:38:d3:29:33:ba:e6:d2: a0:1c:9b:9f:94:b5:50:95:b2:b1:45:05:cd:9a:20: b1:57:f3:07:47:d1:02:bb:3a:e7:ff:7b:6b:fa:2b: ae:90:67:44:9c:5d:dd:19:00:17:3b:b5:87:98:5e: 86:b9:e0:32:a7:10:52:c5:a0:ae:db:aa:22:2b:0c: c7:15:6c:90:c0:2e:e4:db:be:6b:25:39:db:36:17: cf:d4:5a:9e:ad:17:6c:68:f1:04:a3:a6:25:43:42: bc:26:b9:23:91:84:16:ae:f9:a1:0e:67:e6:28:28: 3b:fd:15:51:00:76:82:4f:9b:99:07:94:17:99:a5: e8:a7:13:7b:d0:49:df:16:f2:78:f4:af:3b:7c:a6: 79:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:B5:E6:4E:0E:B2:04:8D:67:04:FB:DD:15:19:CB:AC:74:A4:1D:B9 X509v3 Authority Key Identifier: keyid:E2:68:73:B4:5F:88:D1:F5:D8:83:C1:7E:4C:CF:70:A2:45:16:21:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4mhztF-I0fXYg8F-TM9wokUWIUI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:89:37:b7:f4:cc:0a:30:30:e7:3a:8a:79:2b:ae:27:86:8d: 8c:e6:54:66:84:a8:3b:6f:ba:4b:a4:ef:03:1d:0e:5d:89:8e: 81:7f:08:49:53:f1:8a:92:1d:43:16:53:c0:8c:72:25:c5:cb: e3:04:54:99:5c:db:9e:f4:82:19:c8:a6:80:2a:4b:88:b5:92: 2f:d1:a0:28:78:7c:e6:7e:2f:60:3f:a3:47:29:c4:bf:87:d2: 6a:69:4f:2d:25:98:79:cc:00:99:93:2f:f9:b9:0e:bc:8c:63: aa:b5:6a:6f:54:b0:b2:8e:27:56:4e:32:07:c2:10:21:87:84: 9c:7e:29:7e:2d:5c:19:77:9a:5e:89:21:1c:ec:ac:cb:47:d0: c7:98:85:3b:f6:ed:43:8c:5e:a4:29:04:d9:12:18:06:c4:16: 47:4a:7e:de:46:96:8c:18:37:94:16:99:0c:ab:2f:13:2a:3e: 28:06:27:f3:9e:d7:5a:2c:34:93:4f:2b:5c:aa:bd:dc:27:db: 3f:bd:9f:f8:eb:36:67:0e:8a:c9:11:64:28:12:35:ac:53:ff: c8:a3:6b:c8:aa:14:b6:9f:ad:64:bc:c1:9b:78:1f:17:8f:6b: ba:01:f7:32:47:36:a8:65:22:df:23:4a:3b:73:5c:97:57:13: bb:93:af:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRDNkIxMTAvBgNVBAUTKEUyNjg3M0I0NUY4OEQxRjVEODgzQzE3RTRDQ0Y3MEEy NDUxNjIxNDIwHhcNMjQwNTAyMjIwMzE3WhcNMjQwNTA5MjIwMzE3WjAYMRYwFAYD VQQDEw02NjM0MGRhNS02MDYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtbuPV3Finh0h4T55iV7f6/HIddYGGuGU1Zze3+MsT66U+BjiVgz7B2+5pkQ/ eiHtb/zcVI1Ap6AstXdAs/OZioMWkEDroiPCYcU/uIfiXLdm4TTueFKEJLunRwOw LovGjc47QoQd8W+nJvhIwPsM9jjTKTO65tKgHJuflLVQlbKxRQXNmiCxV/MHR9EC uzrn/3tr+iuukGdEnF3dGQAXO7WHmF6GueAypxBSxaCu26oiKwzHFWyQwC7k275r JTnbNhfP1FqerRdsaPEEo6YlQ0K8JrkjkYQWrvmhDmfmKCg7/RVRAHaCT5uZB5QX maXopxN70EnfFvJ49K87fKZ58wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC615k4O sgSNZwT73RUZy6x0pB25MB8GA1UdIwQYMBaAFOJoc7RfiNH12IPBfkzPcKJFFiFC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEM2Qi8yNzhBQTNFNEI1 MUYxMUVBOUZFOEJENThDNEY5QUUwMi80bWh6dEYtSTBmWFlnOEYtVE05d29rVVdJ VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRtaHp0Ri1JMGZYWWc4Ri1UTTl3b2tVV0lVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEM2Qi8yNzhBQTNFNEI1MUYxMUVBOUZFOEJENThDNEY5QUUwMi80bWh6dEYtSTBm WFlnOEYtVE05d29rVVdJVUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAriTe39MwKMDDnOop5K64nho2M5lRmhKg7b7pLpO8DHQ5diY6BfwhJ U/GKkh1DFlPAjHIlxcvjBFSZXNue9IIZyKaAKkuItZIv0aAoeHzmfi9gP6NHKcS/ h9JqaU8tJZh5zACZky/5uQ68jGOqtWpvVLCyjidWTjIHwhAhh4Scfil+LVwZd5pe iSEc7KzLR9DHmIU79u1DjF6kKQTZEhgGxBZHSn7eRpaMGDeUFpkMqy8TKj4oBifz ntdaLDSTTytcqr3cJ9s/vZ/46zZnDorJEWQoEjWsU//Io2vIqhS2n61kvMGbeB8X j2u6AfcyRzaoZSLfI0o7c1yXVxO7k69i -----END CERTIFICATE-----Generated at Thu May 2 23:19:04 2024 by rpki-client on console-ams.rpki-client.org