$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft File: TihN8oxlIKdxEwQV85PINH1ubek.mft (raw, json) Hash identifier: vL/YHf8ouZkIdW02a7YpQMJNgl/w6gUzruyEcJj6xa4= Subject key identifier: DB:DA:3B:DC:1C:11:28:BD:2B:55:8E:68:52:AB:39:18:1E:2F:DD:D5 Authority key identifier: 4E:28:4D:F2:8C:65:20:A7:71:13:04:15:F3:93:C8:34:7D:6E:6D:E9 Certificate issuer: /CN=A91FC765/serialNumber=4E284DF28C6520A771130415F393C8347D6E6DE9 Certificate serial: 1D74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft Manifest number: 1D6C Signing time: Tue 30 Apr 2024 16:34:00 +0000 Manifest this update: Tue 30 Apr 2024 16:34:00 +0000 Manifest next update: Tue 07 May 2024 16:34:00 +0000 Files and hashes: 1: TihN8oxlIKdxEwQV85PINH1ubek.crl (hash: FriD6Gi1tbvlMUD69JeZ+9GWvepW+fNNyI17eTPY7ao=) 2: 9071A5E690CB11E6A804EF84C4F9AE02.roa (hash: ruVgrGKXbrrrPmrpNQkG+dlO1fJg2p5pHhv0e/zgj3M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.crl rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 16:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7540 (0x1d74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC765/serialNumber=4E284DF28C6520A771130415F393C8347D6E6DE9 Validity Not Before: Apr 30 16:34:00 2024 GMT Not After : May 7 16:34:00 2024 GMT Subject: CN=66311d78-4c36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:9a:64:a5:8b:51:f8:c2:f8:d3:df:a7:07:39: fe:67:e1:d4:c4:b9:33:e9:1c:7c:ed:ca:5b:e6:9c: 62:85:4b:71:44:52:25:0a:52:47:70:02:78:9c:2d: c8:73:22:c5:92:eb:d4:27:e4:c2:59:1a:84:66:51: 12:97:f9:2c:19:f2:28:02:ea:27:3c:69:ef:3b:cb: 58:74:76:84:40:c9:b3:7c:76:d2:89:e6:44:00:e2: 5a:a9:a2:61:8f:9b:e7:70:c3:fa:af:49:16:e6:86: dc:e6:55:b8:c9:5a:22:1a:4b:aa:75:cb:4b:d9:8a: 7d:9e:d9:df:7a:e4:fc:4b:37:f8:aa:24:51:bb:15: 8f:b8:e6:3c:bb:fa:a1:78:05:30:37:35:79:a1:9a: 38:26:8b:8b:be:81:de:d1:38:dc:d8:27:e0:3c:ec: 74:58:06:dc:57:f0:1e:2f:08:68:d5:72:e9:ff:92: a2:15:ec:2e:b4:b6:1a:95:a1:5f:a9:10:c7:4b:75: 69:52:53:fd:39:a6:3d:49:0f:fc:f4:38:91:76:fe: 97:15:0c:6c:a2:a9:54:0e:57:16:a1:87:9b:d4:44: 24:13:9b:24:fb:0b:c9:08:00:fc:6c:c2:fe:df:26: 4d:9c:7f:00:6d:f6:31:e5:74:a8:d1:aa:09:30:df: 9d:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:DA:3B:DC:1C:11:28:BD:2B:55:8E:68:52:AB:39:18:1E:2F:DD:D5 X509v3 Authority Key Identifier: keyid:4E:28:4D:F2:8C:65:20:A7:71:13:04:15:F3:93:C8:34:7D:6E:6D:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:c9:15:6f:e0:4b:5d:13:6c:84:b3:ee:38:45:93:f2:56:31: 84:73:fe:06:ea:fa:4d:c0:3e:44:c1:7e:84:75:7a:6c:ce:31: d8:c9:6d:17:ea:75:09:a1:67:d0:38:00:3f:76:13:1e:a6:95: e4:83:41:8f:c0:4e:9d:55:2a:f0:3f:68:10:89:a3:f5:c5:f4: 11:8d:5d:ee:77:7c:50:db:88:64:93:79:3f:ec:51:06:56:38: 93:af:c3:9f:c5:02:8e:17:de:c0:71:2d:d9:20:f3:0b:75:1a: 6d:84:a8:47:58:10:8e:3e:0e:ba:66:54:8f:4d:ab:39:d2:02: a4:62:f2:c5:42:62:60:b7:7d:68:97:7a:67:56:ae:c3:fb:c7: f7:ba:1f:79:22:a8:da:ab:e7:1f:0e:e7:c5:e6:27:61:09:58: eb:ce:f8:22:06:aa:27:86:d0:4b:9a:88:65:a9:dd:31:aa:b8: 14:5a:33:13:23:4f:2e:ca:51:8b:59:f7:20:a6:b3:3c:1c:74: 62:d7:32:32:de:e7:6e:03:5f:a5:89:ad:2d:fe:9c:25:37:96: 09:c2:40:c5:47:90:30:5e:77:4a:84:36:d5:66:0b:ec:00:74: 52:e3:e0:54:17:2d:d9:7a:fb:36:b1:35:cd:d3:d9:4f:f8:ff: 7e:34:68:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM3NjUxMTAvBgNVBAUTKDRFMjg0REYyOEM2NTIwQTc3MTEzMDQxNUYzOTNDODM0 N0Q2RTZERTkwHhcNMjQwNDMwMTYzNDAwWhcNMjQwNTA3MTYzNDAwWjAYMRYwFAYD VQQDEw02NjMxMWQ3OC00YzM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ZpkpYtR+ML409+nBzn+Z+HUxLkz6Rx87cpb5pxihUtxRFIlClJHcAJ4nC3I cyLFkuvUJ+TCWRqEZlESl/ksGfIoAuonPGnvO8tYdHaEQMmzfHbSieZEAOJaqaJh j5vncMP6r0kW5obc5lW4yVoiGkuqdctL2Yp9ntnfeuT8Szf4qiRRuxWPuOY8u/qh eAUwNzV5oZo4JouLvoHe0Tjc2CfgPOx0WAbcV/AeLwho1XLp/5KiFewutLYalaFf qRDHS3VpUlP9OaY9SQ/89DiRdv6XFQxsoqlUDlcWoYeb1EQkE5sk+wvJCAD8bML+ 3yZNnH8AbfYx5XSo0aoJMN+dTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNvaO9wc ESi9K1WOaFKrORgeL93VMB8GA1UdIwQYMBaAFE4oTfKMZSCncRMEFfOTyDR9bm3p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzc2NS9FNUM3NEJBQTdG ODExMUU2ODk4RTVGNDVDNEY5QUUwMi9UaWhOOG94bElLZHhFd1FWODVQSU5IMXVi ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RpaE44b3hsSUtkeEV3UVY4NVBJTkgxdWJlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Qzc2NS9FNUM3NEJBQTdGODExMUU2ODk4RTVGNDVDNEY5QUUwMi9UaWhOOG94bElL ZHhFd1FWODVQSU5IMXViZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6yRVv4EtdE2yEs+44RZPyVjGEc/4G6vpNwD5EwX6EdXpszjHYyW0X 6nUJoWfQOAA/dhMeppXkg0GPwE6dVSrwP2gQiaP1xfQRjV3ud3xQ24hkk3k/7FEG VjiTr8OfxQKOF97AcS3ZIPMLdRpthKhHWBCOPg66ZlSPTas50gKkYvLFQmJgt31o l3pnVq7D+8f3uh95Iqjaq+cfDufF5idhCVjrzvgiBqonhtBLmohlqd0xqrgUWjMT I08uylGLWfcgprM8HHRi1zIy3uduA1+lia0t/pwlN5YJwkDFR5AwXndKhDbVZgvs AHRS4+BUFy3Zevs2sTXN09lP+P9+NGiW -----END CERTIFICATE-----Generated at Tue Apr 30 18:57:43 2024 by rpki-client on console-fra.rpki-client.org