$ rpki-client -vvf rpki.apnic.net/member_repository/A91F87BB/9DF0DFBE7DE911ECBEA08E0FC4F9AE02/sxnfFFXYouFJjNxdSRVpgxxa_aE.mft File: sxnfFFXYouFJjNxdSRVpgxxa_aE.mft (raw, json) Hash identifier: Sbb9SfmLjxTG8fTlXx71BXH3CwtdlO0a14XUSvj24eA= Subject key identifier: 11:05:53:00:C0:B1:DC:FB:9B:A4:85:36:11:F0:4F:B2:07:2D:A1:3D Authority key identifier: B3:19:DF:14:55:D8:A2:E1:49:8C:DC:5D:49:15:69:83:1C:5A:FD:A1 Certificate issuer: /CN=A91F87BB/serialNumber=B319DF1455D8A2E1498CDC5D491569831C5AFDA1 Certificate serial: 0334 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sxnfFFXYouFJjNxdSRVpgxxa_aE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F87BB/9DF0DFBE7DE911ECBEA08E0FC4F9AE02/sxnfFFXYouFJjNxdSRVpgxxa_aE.mft Manifest number: 032A Signing time: Tue 07 May 2024 03:01:49 +0000 Manifest this update: Tue 07 May 2024 03:01:48 +0000 Manifest next update: Tue 14 May 2024 03:01:48 +0000 Files and hashes: 1: sxnfFFXYouFJjNxdSRVpgxxa_aE.crl (hash: XUpjYcThIBHkAPj9RqxSbddXsxeg2N1AxiLuutqcxQ4=) 2: 88B3F0026E9F11EEB03D9582C4F9AE02.roa (hash: XwKeJLskTB6Imr0S9o23k/3GveOx7qAiEQDWVAowUlY=) 3: DDCB6B02D9D311EEBB3BDF10C4F9AE02.roa (hash: fa+qO5xpgOgt/uE45uXILHD+EmZJYo5mycKYiXut9tM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F87BB/9DF0DFBE7DE911ECBEA08E0FC4F9AE02/sxnfFFXYouFJjNxdSRVpgxxa_aE.crl rsync://rpki.apnic.net/member_repository/A91F87BB/9DF0DFBE7DE911ECBEA08E0FC4F9AE02/sxnfFFXYouFJjNxdSRVpgxxa_aE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sxnfFFXYouFJjNxdSRVpgxxa_aE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 02:50:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 820 (0x334) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F87BB/serialNumber=B319DF1455D8A2E1498CDC5D491569831C5AFDA1 Validity Not Before: May 7 03:01:48 2024 GMT Not After : May 14 03:01:48 2024 GMT Subject: CN=6639999c-9248 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:b0:b2:44:ce:23:ee:06:06:73:4e:38:23:12: 26:cd:0b:0e:d2:a0:a8:a6:aa:59:83:e1:54:c9:9e: 07:33:04:e2:3c:7d:be:b8:bb:53:7c:e6:4b:db:90: f7:52:17:cb:0a:0d:1c:25:63:07:04:f2:49:9b:78: 52:f7:4f:2a:67:df:2f:c3:2c:7b:d4:6d:95:70:52: 90:24:c5:bd:d3:e7:8a:30:5c:17:85:59:1e:79:ba: ae:ad:06:f4:b5:6d:bf:90:75:94:81:32:ff:2e:99: 4f:3e:32:04:7d:72:92:49:e0:23:cf:9a:64:46:af: 70:22:6e:52:5b:9a:ce:83:76:56:2b:1b:cb:35:04: f8:3d:05:23:ea:24:2f:2d:20:d6:9e:0f:10:b1:b2: 75:61:a0:d1:7b:9d:0d:3a:02:44:19:68:b2:ae:9d: 9d:1b:d1:34:2b:b1:13:ae:6e:1f:41:de:a5:6d:02: b4:b0:7a:b3:94:ca:4a:ac:64:04:e3:56:a8:8e:92: 92:42:7f:91:80:8d:c0:ed:a8:d1:e2:a9:6e:f4:3a: 35:fa:7d:2e:67:8c:14:12:51:ac:70:dc:81:f2:ea: e9:b6:74:38:dc:d9:ba:80:91:06:72:f2:08:8d:b0: 17:96:f6:bc:9d:fc:0b:26:b0:85:d3:aa:6f:01:85: f4:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:05:53:00:C0:B1:DC:FB:9B:A4:85:36:11:F0:4F:B2:07:2D:A1:3D X509v3 Authority Key Identifier: keyid:B3:19:DF:14:55:D8:A2:E1:49:8C:DC:5D:49:15:69:83:1C:5A:FD:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F87BB/9DF0DFBE7DE911ECBEA08E0FC4F9AE02/sxnfFFXYouFJjNxdSRVpgxxa_aE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sxnfFFXYouFJjNxdSRVpgxxa_aE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F87BB/9DF0DFBE7DE911ECBEA08E0FC4F9AE02/sxnfFFXYouFJjNxdSRVpgxxa_aE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:3e:e6:12:bb:67:ab:bb:ba:63:ba:ac:89:06:ff:16:1c:5c: 71:f4:c9:96:87:83:8e:57:5f:60:9a:f0:87:1e:f1:a7:c8:1d: b3:48:5f:d2:e6:e8:51:eb:97:08:0d:11:e6:10:19:73:b3:e0: af:c0:9c:21:3d:96:9b:d2:37:fc:a2:90:95:45:ee:5c:fb:0a: d3:e8:2a:9f:7f:bf:f7:38:82:e6:db:e4:2d:b3:2c:00:e3:9a: e9:10:03:2f:5b:ee:7e:c9:16:d9:d0:91:55:73:cf:12:fb:7f: 2b:ec:0e:16:24:86:31:53:00:64:e6:38:84:dc:80:81:aa:5c: 83:4a:34:84:15:39:6c:48:76:2f:20:db:70:0f:8b:26:35:6b: 52:81:bd:60:d7:17:87:98:15:67:cf:c3:49:70:56:09:71:5c: 34:72:96:97:49:f5:0b:74:2a:c0:82:7e:d3:91:88:db:ac:32: 46:ec:80:76:8c:ab:3b:a7:7c:a2:e2:d4:73:25:b9:16:4a:d5: 07:67:5a:de:51:76:9e:e5:63:41:88:60:ec:d5:2d:88:13:7f: 5f:1e:49:9a:d3:48:22:9c:32:08:67:cd:96:a0:1b:98:a1:85: 96:4e:11:f4:43:01:c4:2d:7a:f8:fc:04:91:cd:c2:8a:92:47: 8a:bc:74:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg3QkIxMTAvBgNVBAUTKEIzMTlERjE0NTVEOEEyRTE0OThDREM1RDQ5MTU2OTgz MUM1QUZEQTEwHhcNMjQwNTA3MDMwMTQ4WhcNMjQwNTE0MDMwMTQ4WjAYMRYwFAYD VQQDEw02NjM5OTk5Yy05MjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA57CyRM4j7gYGc044IxImzQsO0qCopqpZg+FUyZ4HMwTiPH2+uLtTfOZL25D3 UhfLCg0cJWMHBPJJm3hS908qZ98vwyx71G2VcFKQJMW90+eKMFwXhVkeebqurQb0 tW2/kHWUgTL/LplPPjIEfXKSSeAjz5pkRq9wIm5SW5rOg3ZWKxvLNQT4PQUj6iQv LSDWng8QsbJ1YaDRe50NOgJEGWiyrp2dG9E0K7ETrm4fQd6lbQK0sHqzlMpKrGQE 41aojpKSQn+RgI3A7ajR4qlu9Do1+n0uZ4wUElGscNyB8urptnQ43Nm6gJEGcvII jbAXlva8nfwLJrCF06pvAYX0jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBEFUwDA sdz7m6SFNhHwT7IHLaE9MB8GA1UdIwQYMBaAFLMZ3xRV2KLhSYzcXUkVaYMcWv2h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODdCQi85REYwREZCRTdE RTkxMUVDQkVBMDhFMEZDNEY5QUUwMi9zeG5mRkZYWW91RkpqTnhkU1JWcGd4eGFf YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3N4bmZGRlhZb3VGSmpOeGRTUlZwZ3h4YV9hRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODdCQi85REYwREZCRTdERTkxMUVDQkVBMDhFMEZDNEY5QUUwMi9zeG5mRkZYWW91 RkpqTnhkU1JWcGd4eGFfYUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXPuYSu2eru7pjuqyJBv8WHFxx9MmWh4OOV19gmvCHHvGnyB2zSF/S 5uhR65cIDRHmEBlzs+CvwJwhPZab0jf8opCVRe5c+wrT6Cqff7/3OILm2+QtsywA 45rpEAMvW+5+yRbZ0JFVc88S+38r7A4WJIYxUwBk5jiE3ICBqlyDSjSEFTlsSHYv INtwD4smNWtSgb1g1xeHmBVnz8NJcFYJcVw0cpaXSfULdCrAgn7TkYjbrDJG7IB2 jKs7p3yi4tRzJbkWStUHZ1reUXae5WNBiGDs1S2IE39fHkma00ginDIIZ82WoBuY oYWWThH0QwHELXr4/ASRzcKKkkeKvHRD -----END CERTIFICATE-----Generated at Tue May 7 03:50:01 2024 by rpki-client on console-ams.rpki-client.org