$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.mft File: 4ISfBUORggKxeEROX_IviZ-eMg4.mft (raw, json) Hash identifier: 7IsW0KKyYXsw6mQn9IJE2xBDep2w5ypo9zwSTJAVWzU= Subject key identifier: D6:B8:1E:CE:8A:EE:01:A4:28:50:E1:59:EF:00:A5:59:2A:40:66:23 Authority key identifier: E0:84:9F:05:43:91:82:02:B1:78:44:4E:5F:F2:2F:89:9F:9E:32:0E Certificate issuer: /CN=A91F7DBA/serialNumber=E0849F0543918202B178444E5FF22F899F9E320E Certificate serial: 03F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4ISfBUORggKxeEROX_IviZ-eMg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.mft Manifest number: 03EF Signing time: Fri 03 May 2024 02:19:21 +0000 Manifest this update: Fri 03 May 2024 02:19:21 +0000 Manifest next update: Fri 10 May 2024 02:19:21 +0000 Files and hashes: 1: 4ISfBUORggKxeEROX_IviZ-eMg4.crl (hash: k5/g0FAOMt+nTD+v/H45tAtrnAWC6IL1r7rpaW5wdTw=) 2: 145F8B6434D211EEA9BD8F64C4F9AE02.roa (hash: za49YiDvakb0KYV2DWPH4yPIuLhotdQStkSPaX9XAfY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.crl rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4ISfBUORggKxeEROX_IviZ-eMg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 00:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1011 (0x3f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7DBA/serialNumber=E0849F0543918202B178444E5FF22F899F9E320E Validity Not Before: May 3 02:19:21 2024 GMT Not After : May 10 02:19:21 2024 GMT Subject: CN=663449a9-be6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ec:d9:c4:4c:f5:a2:fa:a7:7c:f4:04:26:3d: 2b:46:8a:78:a0:31:e6:7e:c7:77:0a:44:f5:bc:86: ab:d7:56:b1:7e:cf:1d:2a:37:f0:26:ca:6d:3c:71: 85:59:87:d2:29:24:3d:c6:b8:e1:c0:1f:de:1a:43: d6:50:93:5e:77:72:44:da:29:bf:19:78:c4:01:50: df:17:83:92:bb:7a:83:63:18:5f:32:1f:50:81:46: b2:7d:dc:8f:16:81:dd:b6:d5:06:59:01:cc:7e:5a: cd:93:37:11:09:d3:ab:5e:ae:a8:82:a8:5d:76:05: 00:3f:b5:6e:b2:d0:34:99:9f:a5:fe:fe:4c:49:68: 36:57:47:9f:0c:cd:da:1c:f6:7b:d5:6a:19:90:60: dc:9a:f6:52:da:27:d4:6e:8b:dc:db:0d:cb:61:5c: 74:b9:6d:ef:69:a2:d2:c9:05:b8:9c:36:76:de:c5: 6f:48:b0:34:21:18:60:99:db:7a:6e:11:d0:ec:78: ea:2c:40:dd:b7:ec:ba:e3:2c:e6:99:91:59:d3:b5: f0:b0:f5:e0:52:18:d2:df:92:33:99:ef:8d:86:91: d4:5b:7b:88:a3:68:40:3b:ca:ba:bc:5a:04:6d:ec: a2:f8:15:d6:f5:2a:9d:00:8e:4e:2a:36:da:79:04: 1a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:B8:1E:CE:8A:EE:01:A4:28:50:E1:59:EF:00:A5:59:2A:40:66:23 X509v3 Authority Key Identifier: keyid:E0:84:9F:05:43:91:82:02:B1:78:44:4E:5F:F2:2F:89:9F:9E:32:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4ISfBUORggKxeEROX_IviZ-eMg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:05:d6:83:cc:2f:48:70:af:2b:c4:94:08:2e:be:61:13:6a: 03:85:ac:e2:7c:5b:3d:67:2f:a8:b6:95:ce:b4:f1:a0:4a:c7: 02:6f:08:f0:eb:92:69:1e:25:3d:90:63:21:82:b8:67:e7:bd: aa:90:ca:62:98:d5:8d:65:2c:71:85:ba:26:60:d7:b7:23:31: bd:f5:28:de:e6:9a:50:9a:63:fd:0c:7f:91:7b:83:c3:62:12: 65:2b:38:73:0d:e1:fd:9f:be:94:2d:6d:47:eb:82:0c:4a:1b: 34:24:da:23:c6:fd:44:16:69:1b:1b:dc:42:04:29:dc:18:1f: f1:bd:cf:96:83:e0:bb:87:9d:b1:68:c8:4e:c5:db:3a:14:0a: 21:55:5f:7c:3b:12:17:07:61:fd:98:a4:58:13:10:2e:8f:b1: 64:bc:32:f5:3e:c3:1c:d0:f4:3c:06:8d:61:bd:c8:1b:7a:48: 8a:54:5c:58:02:fa:36:76:97:19:28:ce:93:af:f3:7c:70:eb: b7:b8:54:50:47:da:96:29:21:9b:8d:a1:9d:6e:72:59:d3:0e: ff:a1:17:3f:9d:d0:f6:58:b3:7f:ab:43:5f:15:34:de:a3:fc: 34:cc:c3:15:42:2e:31:f4:e9:51:4e:e4:2d:04:78:59:23:ad: d2:99:db:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdEQkExMTAvBgNVBAUTKEUwODQ5RjA1NDM5MTgyMDJCMTc4NDQ0RTVGRjIyRjg5 OUY5RTMyMEUwHhcNMjQwNTAzMDIxOTIxWhcNMjQwNTEwMDIxOTIxWjAYMRYwFAYD VQQDEw02NjM0NDlhOS1iZTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxOzZxEz1ovqnfPQEJj0rRop4oDHmfsd3CkT1vIar11axfs8dKjfwJsptPHGF WYfSKSQ9xrjhwB/eGkPWUJNed3JE2im/GXjEAVDfF4OSu3qDYxhfMh9QgUayfdyP FoHdttUGWQHMflrNkzcRCdOrXq6ogqhddgUAP7VustA0mZ+l/v5MSWg2V0efDM3a HPZ71WoZkGDcmvZS2ifUbovc2w3LYVx0uW3vaaLSyQW4nDZ23sVvSLA0IRhgmdt6 bhHQ7HjqLEDdt+y64yzmmZFZ07XwsPXgUhjS35Izme+NhpHUW3uIo2hAO8q6vFoE beyi+BXW9SqdAI5OKjbaeQQa8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNa4Hs6K 7gGkKFDhWe8ApVkqQGYjMB8GA1UdIwQYMBaAFOCEnwVDkYICsXhETl/yL4mfnjIO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0RCQS8yOEVCNzE0NjJC RDQxMUVDQjBCQURFNThDNEY5QUUwMi80SVNmQlVPUmdnS3hlRVJPWF9JdmlaLWVN ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRJU2ZCVU9SZ2dLeGVFUk9YX0l2aVotZU1nNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG N0RCQS8yOEVCNzE0NjJCRDQxMUVDQjBCQURFNThDNEY5QUUwMi80SVNmQlVPUmdn S3hlRVJPWF9JdmlaLWVNZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6BdaDzC9IcK8rxJQILr5hE2oDhazifFs9Zy+otpXOtPGgSscCbwjw 65JpHiU9kGMhgrhn572qkMpimNWNZSxxhbomYNe3IzG99Sje5ppQmmP9DH+Re4PD YhJlKzhzDeH9n76ULW1H64IMShs0JNojxv1EFmkbG9xCBCncGB/xvc+Wg+C7h52x aMhOxds6FAohVV98OxIXB2H9mKRYExAuj7FkvDL1PsMc0PQ8Bo1hvcgbekiKVFxY Avo2dpcZKM6Tr/N8cOu3uFRQR9qWKSGbjaGdbnJZ0w7/oRc/ndD2WLN/q0NfFTTe o/w0zMMVQi4x9OlRTuQtBHhZI63SmdtJ -----END CERTIFICATE-----Generated at Fri May 3 03:10:58 2024 by rpki-client on console-ams.rpki-client.org