$ rpki-client -vvf rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft File: 4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft (raw, json) Hash identifier: +kXfk7nbaULHbEDXE9BCQMbRQb04fvD2ayi9VrZTQjM= Subject key identifier: EA:8E:67:16:DA:70:6F:2F:61:D5:F5:31:DF:25:70:2A:B2:DC:1D:CC Authority key identifier: E2:5F:CD:9B:77:25:85:39:42:79:1A:62:D4:75:EC:FE:D7:C0:3F:64 Certificate issuer: /CN=A91F59A6/serialNumber=E25FCD9B7725853942791A62D475ECFED7C03F64 Certificate serial: 07A4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft Manifest number: 0790 Signing time: Wed 24 Apr 2024 19:03:28 +0000 Manifest this update: Wed 24 Apr 2024 19:03:28 +0000 Manifest next update: Wed 01 May 2024 19:03:28 +0000 Files and hashes: 1: 4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl (hash: Enkcay2bIHamprcOc6Lq1AxXQXAcdOGYrqc2qMFXDTI=) 2: 18B1B5361CE611EBB543881CC4F9AE02.roa (hash: PGnvpZG9j+8PVGDfoWU78CHdTxQL71RyxM1cORWBi1E=) 3: 19B0BAAE1CE611EBB543881CC4F9AE02.roa (hash: 8XbL0HPru2wM23ZZCoVoS9QMZNPokbBL/zQZk5BXNh8=) 4: D385E420314711EBA579873DC4F9AE02.roa (hash: X0Ak64Imr8iV6J5Ioi78WqjK4EqCXQlaDRqqcAQZcVk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 15:58:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1956 (0x7a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F59A6/serialNumber=E25FCD9B7725853942791A62D475ECFED7C03F64 Validity Not Before: Apr 24 19:03:28 2024 GMT Not After : May 1 19:03:28 2024 GMT Subject: CN=66295780-8735 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:f4:64:a6:8e:cf:42:dc:33:f1:cb:81:b3:16: 4f:34:f5:9b:e0:62:6b:45:3c:7c:f0:10:8f:89:d8: e0:cd:d2:f4:0d:71:f8:4a:ea:bf:31:ba:1d:77:ff: ba:00:61:6f:ac:80:19:f5:1a:72:68:9c:ea:90:71: 71:44:46:5a:ff:52:93:11:8c:00:05:b4:b9:b1:89: 20:68:ad:d6:cf:3d:50:87:c0:2d:f4:a6:61:db:45: bd:7d:ed:c6:78:e3:15:36:62:a8:8f:b5:0f:5b:86: a7:06:5e:e7:c8:b6:49:b9:dc:c4:d4:be:22:1f:f0: b8:d7:d2:e4:a8:cc:01:eb:61:b7:d9:74:09:08:d3: 27:d2:f6:c7:b9:22:43:5b:8a:89:ec:54:15:b5:1c: 75:3f:d9:34:2b:88:1e:7a:53:ed:fe:9d:c9:a4:dc: 17:95:f2:aa:58:17:57:0c:aa:8b:74:ed:fb:70:d7: ed:1f:38:ed:ec:d9:75:1b:c3:b1:93:1a:e7:94:7c: 7d:3f:1e:35:3e:3a:a9:80:90:21:c4:9f:90:90:46: d2:61:af:fe:9f:ab:68:12:df:2c:d6:97:25:b1:cd: 4b:39:26:d2:cf:59:46:71:63:78:7b:27:e1:57:0f: 8a:ae:b3:b1:97:2b:de:df:fe:ec:a9:64:ef:38:cd: 10:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:8E:67:16:DA:70:6F:2F:61:D5:F5:31:DF:25:70:2A:B2:DC:1D:CC X509v3 Authority Key Identifier: keyid:E2:5F:CD:9B:77:25:85:39:42:79:1A:62:D4:75:EC:FE:D7:C0:3F:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:d0:57:1b:bd:72:d1:88:73:32:3f:8c:8f:63:9c:08:1f:cc: 39:1d:3f:42:b8:c2:ab:fd:f1:d7:bb:5a:e4:45:db:53:6a:c7: c0:ac:c6:94:40:6a:a1:76:e8:3c:01:a2:85:60:56:fc:cf:16: 61:06:df:03:f8:70:57:17:6c:91:e7:ce:55:a0:1c:73:ed:9f: 7b:cd:13:e5:0c:98:d9:cc:40:31:b4:9b:6f:1b:df:6c:14:9e: 11:65:df:71:39:d6:14:59:87:c2:81:87:49:6c:99:fb:8a:b4: d1:ce:a8:0c:fa:8d:ec:9e:71:da:46:35:80:a3:94:0b:b1:2a: d9:43:3c:d4:eb:35:37:99:a3:56:d9:a5:2b:39:19:cd:cb:21: 13:ba:2e:2c:cf:ee:57:5b:f0:d5:b8:32:3a:37:82:98:68:22: 02:ab:51:71:ff:11:8c:f8:7a:1e:6c:52:1c:c3:e1:35:71:75: f5:32:15:27:6a:71:70:1b:ea:32:7d:96:64:9c:89:31:a0:26: 57:25:23:3c:84:41:fe:f1:83:34:5a:dd:c5:42:52:fc:8e:58: 82:5c:1f:df:bc:0a:4b:40:c4:4f:d9:61:50:e4:ca:21:de:15: 49:a4:3c:72:0a:c4:00:a9:70:5b:e6:57:0a:12:44:29:90:53: 6d:78:27:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU5QTYxMTAvBgNVBAUTKEUyNUZDRDlCNzcyNTg1Mzk0Mjc5MUE2MkQ0NzVFQ0ZF RDdDMDNGNjQwHhcNMjQwNDI0MTkwMzI4WhcNMjQwNTAxMTkwMzI4WjAYMRYwFAYD VQQDEw02NjI5NTc4MC04NzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4fRkpo7PQtwz8cuBsxZPNPWb4GJrRTx88BCPidjgzdL0DXH4Suq/Mbodd/+6 AGFvrIAZ9RpyaJzqkHFxREZa/1KTEYwABbS5sYkgaK3Wzz1Qh8At9KZh20W9fe3G eOMVNmKoj7UPW4anBl7nyLZJudzE1L4iH/C419LkqMwB62G32XQJCNMn0vbHuSJD W4qJ7FQVtRx1P9k0K4geelPt/p3JpNwXlfKqWBdXDKqLdO37cNftHzjt7Nl1G8Ox kxrnlHx9Px41PjqpgJAhxJ+QkEbSYa/+n6toEt8s1pclsc1LOSbSz1lGcWN4eyfh Vw+KrrOxlyve3/7sqWTvOM0QHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOqOZxba cG8vYdX1Md8lcCqy3B3MMB8GA1UdIwQYMBaAFOJfzZt3JYU5QnkaYtR17P7XwD9k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTlBNi9FNEVEQUMxOENC MUExMUVBODdDRDU1NDRDNEY5QUUwMi80bF9ObTNjbGhUbENlUnBpMUhYc190ZkFQ MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzRsX05tM2NsaFRsQ2VScGkxSFhzX3RmQVAyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTlBNi9FNEVEQUMxOENCMUExMUVBODdDRDU1NDRDNEY5QUUwMi80bF9ObTNjbGhU bENlUnBpMUhYc190ZkFQMlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAN0FcbvXLRiHMyP4yPY5wIH8w5HT9CuMKr/fHXu1rkRdtTasfArMaU QGqhdug8AaKFYFb8zxZhBt8D+HBXF2yR585VoBxz7Z97zRPlDJjZzEAxtJtvG99s FJ4RZd9xOdYUWYfCgYdJbJn7irTRzqgM+o3snnHaRjWAo5QLsSrZQzzU6zU3maNW 2aUrORnNyyETui4sz+5XW/DVuDI6N4KYaCICq1Fx/xGM+HoebFIcw+E1cXX1MhUn anFwG+oyfZZknIkxoCZXJSM8hEH+8YM0Wt3FQlL8jliCXB/fvApLQMRP2WFQ5Moh 3hVJpDxyCsQAqXBb5lcKEkQpkFNteCfK -----END CERTIFICATE-----Generated at Wed Apr 24 21:18:23 2024 by rpki-client on console-ams.rpki-client.org