$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.mft File: vC2jXLVlE6lKaLWR3Sx2xR2BETQ.mft (raw, json) Hash identifier: 4tcPJxMsv3UF0LWOoZoEvQ7oDkAZN9lh7UoTgJbqY1A= Subject key identifier: BB:36:4F:D9:A7:51:E5:A2:D6:B2:5F:62:01:58:4D:2B:53:82:31:E8 Authority key identifier: BC:2D:A3:5C:B5:65:13:A9:4A:68:B5:91:DD:2C:76:C5:1D:81:11:34 Certificate issuer: /CN=A91F7C21/serialNumber=BC2DA35CB56513A94A68B591DD2C76C51D811134 Certificate serial: 047D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.mft Manifest number: 0475 Signing time: Fri 03 May 2024 01:48:49 +0000 Manifest this update: Fri 03 May 2024 01:48:49 +0000 Manifest next update: Fri 10 May 2024 01:48:48 +0000 Files and hashes: 1: vC2jXLVlE6lKaLWR3Sx2xR2BETQ.crl (hash: 1wusl4SlJMG+qA362lHdyNWK8obaXJNPJKZBNS8iCjI=) 2: 7FBF284EF5B211EB8419A23AC4F9AE02.roa (hash: 1wCgN1Vdz8IxgVGd8lP79RUNCPrNtkM6T+hUatgaF5s=) 3: 0EF4DA3A38D011EC936A8C4FC4F9AE02.roa (hash: EL8qrYYkjLLsLn4vlWB8WNnpF1jgzXlPUP7HIco7dnU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.crl rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 00:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1149 (0x47d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7C21/serialNumber=BC2DA35CB56513A94A68B591DD2C76C51D811134 Validity Not Before: May 3 01:48:49 2024 GMT Not After : May 10 01:48:48 2024 GMT Subject: CN=66344281-701f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:81:bf:8e:c8:bb:15:99:15:ac:71:b5:bc:7b: 82:28:3c:f8:b9:57:ec:66:73:d2:ba:81:e3:b8:a6: 2d:3e:f1:47:7e:24:7c:f4:26:d9:25:fb:a4:07:27: fd:45:c1:10:09:74:3f:2a:47:6d:33:1a:12:7f:a1: 01:82:f2:e3:b8:5a:af:95:22:d3:c0:1c:99:38:7b: 7e:27:d5:93:22:25:32:9e:a4:f5:bb:34:f7:35:3b: 86:5a:4c:e3:1a:14:c4:4b:78:e1:71:f1:5c:9d:7a: bb:2e:d0:8f:12:d7:a3:d3:52:26:43:99:9b:29:5a: ff:e9:ca:f4:57:fb:23:21:87:cf:bc:93:32:6b:e0: 34:e0:20:99:27:6d:f1:60:a3:45:36:85:b6:13:87: 21:be:7a:b4:03:6a:e3:1f:cd:4b:43:31:3b:55:3b: 48:c0:36:3e:bd:39:22:b4:a6:b5:e3:08:56:de:78: ac:5b:ed:fe:33:fe:a1:ae:d7:1a:be:70:89:2d:be: fd:9f:0e:24:8f:43:57:e0:8a:c8:3d:74:22:19:7b: 78:e3:65:fd:d5:a3:38:d8:c3:9e:0c:23:38:28:bc: a3:1a:82:58:3d:20:9f:c5:da:a1:19:3a:a4:c6:c5: ed:9e:3b:be:a8:3a:3e:c2:4f:a4:4e:cb:9d:a6:51: c8:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:36:4F:D9:A7:51:E5:A2:D6:B2:5F:62:01:58:4D:2B:53:82:31:E8 X509v3 Authority Key Identifier: keyid:BC:2D:A3:5C:B5:65:13:A9:4A:68:B5:91:DD:2C:76:C5:1D:81:11:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:01:3e:0c:ab:b4:27:92:e0:06:e3:aa:0f:4b:e6:61:e8:75: 9e:36:16:ac:60:ff:c8:2f:4f:04:cb:c1:82:53:99:a4:b8:df: 08:57:b7:41:de:47:b3:88:f5:7e:7b:21:59:76:66:a3:fe:df: 9f:68:f4:30:5e:25:d1:6d:5c:f1:86:e4:f6:33:a9:64:6c:43: 4a:96:a6:a3:f7:c0:1e:03:bb:4a:ac:c9:d8:54:42:2a:69:f4: cd:26:19:45:ba:4b:7c:51:8c:95:ce:d7:c6:b2:25:40:c2:fa: 70:fa:da:72:04:11:e6:02:ef:c4:fb:d3:95:b4:2a:8f:5b:ec: 3d:c7:c5:dd:0c:13:28:c8:2d:54:2f:a5:2a:24:48:33:e3:0b: 19:bc:23:2d:c5:f3:f9:b7:44:b5:e4:92:dc:7f:52:e0:86:fc: f9:60:ea:1b:04:bb:63:07:eb:72:e4:f0:d4:a6:b3:f3:bc:c5: c6:09:ee:b1:d9:6c:75:9b:36:7d:a4:cd:a3:f8:b4:48:7b:22: 80:2c:c4:30:fc:fa:38:fe:e3:3b:08:3f:91:fd:57:ef:09:42: 4c:79:8d:f4:b7:8f:ed:f5:3f:5d:29:35:39:aa:e8:8d:dd:17: 84:19:ad:0d:94:ab:96:8c:c7:ae:db:ec:a8:f4:1f:50:9c:f3: 6b:a4:71:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdDMjExMTAvBgNVBAUTKEJDMkRBMzVDQjU2NTEzQTk0QTY4QjU5MUREMkM3NkM1 MUQ4MTExMzQwHhcNMjQwNTAzMDE0ODQ5WhcNMjQwNTEwMDE0ODQ4WjAYMRYwFAYD VQQDEw02NjM0NDI4MS03MDFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwoG/jsi7FZkVrHG1vHuCKDz4uVfsZnPSuoHjuKYtPvFHfiR89CbZJfukByf9 RcEQCXQ/KkdtMxoSf6EBgvLjuFqvlSLTwByZOHt+J9WTIiUynqT1uzT3NTuGWkzj GhTES3jhcfFcnXq7LtCPEtej01ImQ5mbKVr/6cr0V/sjIYfPvJMya+A04CCZJ23x YKNFNoW2E4chvnq0A2rjH81LQzE7VTtIwDY+vTkitKa14whW3nisW+3+M/6hrtca vnCJLb79nw4kj0NX4IrIPXQiGXt442X91aM42MOeDCM4KLyjGoJYPSCfxdqhGTqk xsXtnju+qDo+wk+kTsudplHI5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLs2T9mn UeWi1rJfYgFYTStTgjHoMB8GA1UdIwQYMBaAFLwto1y1ZROpSmi1kd0sdsUdgRE0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0MyMS8zQkNEMDA3NEY1 QUUxMUVCOEUzRUZCMzNDNEY5QUUwMi92QzJqWExWbEU2bEthTFdSM1N4MnhSMkJF VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZDMmpYTFZsRTZsS2FMV1IzU3gyeFIyQkVUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG N0MyMS8zQkNEMDA3NEY1QUUxMUVCOEUzRUZCMzNDNEY5QUUwMi92QzJqWExWbEU2 bEthTFdSM1N4MnhSMkJFVFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0AT4Mq7QnkuAG46oPS+Zh6HWeNhasYP/IL08Ey8GCU5mkuN8IV7dB 3keziPV+eyFZdmaj/t+faPQwXiXRbVzxhuT2M6lkbENKlqaj98AeA7tKrMnYVEIq afTNJhlFukt8UYyVztfGsiVAwvpw+tpyBBHmAu/E+9OVtCqPW+w9x8XdDBMoyC1U L6UqJEgz4wsZvCMtxfP5t0S15JLcf1Lghvz5YOobBLtjB+ty5PDUprPzvMXGCe6x 2Wx1mzZ9pM2j+LRIeyKALMQw/Po4/uM7CD+R/VfvCUJMeY30t4/t9T9dKTU5quiN 3ReEGa0NlKuWjMeu2+yo9B9QnPNrpHHs -----END CERTIFICATE-----Generated at Fri May 3 03:10:58 2024 by rpki-client on console-ams.rpki-client.org