$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft File: tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft (raw, json) Hash identifier: NJytGHZp4bKhEpmvjZ+pe4zfw9oQE4JCz+dSocYvMvk= Subject key identifier: F5:44:A5:7F:AA:87:64:C4:54:4D:9F:A3:1A:20:8F:80:C6:F8:17:FD Authority key identifier: B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B Certificate issuer: /CN=A91FD64D/serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B Certificate serial: FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft Manifest number: F5 Signing time: Tue 07 May 2024 05:44:18 +0000 Manifest this update: Tue 07 May 2024 05:44:17 +0000 Manifest next update: Tue 14 May 2024 05:44:17 +0000 Files and hashes: 1: tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl (hash: UeAOZHiGuMt06q5bZVGmPFYn7A5LRsnaly3jM1IDoCE=) 2: 34BB892E449C11EEB60E1441C4F9AE02.roa (hash: FmDMcqicvsxlDbwC/EaBQPR0koJ5obImCIK4fks4NaY=) 3: 66D00EB2449C11EE86105C41C4F9AE02.roa (hash: +yOPHXbGEhMTNhrz1gWIJCSv+uUbWM9Qo7qcKoe/CLQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 05:44:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 251 (0xfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD64D/serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B Validity Not Before: May 7 05:44:17 2024 GMT Not After : May 14 05:44:17 2024 GMT Subject: CN=6639bfb2-74ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:53:6c:bf:7d:45:c8:12:16:41:f8:79:fd:2a: cf:73:54:77:60:05:cb:4b:1a:e9:b2:d9:1c:1a:a9: 00:0b:24:f1:b0:50:21:fe:86:5a:f5:e5:cf:47:5b: 3b:67:f3:1a:19:85:57:2a:24:c9:5a:09:3a:4c:ef: 62:d4:f4:ca:cd:de:92:f2:fb:ed:e1:fd:97:6c:e1: 74:23:e6:e1:ae:57:05:71:05:81:57:b7:a3:1c:fa: 80:42:4d:03:d6:45:c4:de:1b:5d:72:8b:0a:cd:0c: df:1f:8e:32:06:b7:2a:6a:81:78:9a:41:6b:84:c2: c1:80:43:c1:b2:df:49:d9:e2:85:48:42:b8:6d:21: 69:ef:ce:ff:aa:44:62:17:3f:81:a0:c0:a5:b9:74: 2d:48:45:86:4e:ca:d3:e0:af:cd:6b:1f:ed:60:56: b3:24:6a:1b:0f:77:6c:e5:20:54:3f:f3:07:79:93: cf:54:69:5d:7d:84:bb:c3:a6:3c:02:94:53:68:e7: a8:29:1c:17:b9:da:50:84:0d:25:a7:77:62:e4:ff: 7c:cf:61:0c:63:6a:05:af:ae:e5:23:b0:80:5d:ae: a2:fd:7d:6f:c6:5e:65:34:82:cd:73:ca:89:74:79: 0e:d6:ab:b9:86:1f:77:b2:54:da:ed:c5:1a:02:94: bf:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:44:A5:7F:AA:87:64:C4:54:4D:9F:A3:1A:20:8F:80:C6:F8:17:FD X509v3 Authority Key Identifier: keyid:B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:8b:bb:7e:27:a1:8a:2e:54:9a:82:74:64:dd:f1:d6:89:75: 17:c9:f4:5f:ea:9c:ef:47:8e:99:9c:01:33:5c:03:47:1b:72: 81:97:ae:ff:f3:f3:4e:ca:37:ab:19:7a:e2:a0:31:90:48:7d: 48:ea:f9:ba:55:1f:a2:ef:e9:da:81:fb:26:41:d9:16:50:56: 4e:01:3b:5d:10:5d:b3:83:64:f5:0a:5e:22:19:1b:8a:d1:0b: bf:e2:6f:f2:fa:5a:04:f5:5d:ed:19:8b:aa:a6:78:77:5c:76: eb:bf:c7:ca:fe:20:5b:f8:e1:10:a3:53:eb:2c:fa:f8:02:86: 82:03:f9:36:fd:2d:8d:53:ec:79:5b:94:8b:1b:34:f2:bc:4f: 18:0c:0e:7b:7d:d1:c0:5b:d6:2a:8a:9a:59:ca:1a:b0:5c:a6: d2:54:f1:58:e8:8c:5b:1e:00:2d:7e:e9:fb:44:d5:52:e1:c9: 99:57:3d:db:65:7e:37:c6:a9:11:14:f0:4c:a1:a5:ff:fe:74: 1a:19:bb:8a:e0:9d:be:b9:9a:81:e9:f3:bc:a6:09:63:fa:7b: 08:6b:0c:89:5f:c6:b6:69:21:b5:67:ed:1b:c5:1a:34:c6:4f: 90:e3:a7:9c:16:ed:dd:80:55:b7:09:f9:5e:14:5a:2b:0f:60: 85:be:6f:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ2NEQxMTAvBgNVBAUTKEI0QjE4QTI1M0ZCNjI5MzQzNzExNjYzNUREREQxOTk0 MjhCNjhENUIwHhcNMjQwNTA3MDU0NDE3WhcNMjQwNTE0MDU0NDE3WjAYMRYwFAYD VQQDEw02NjM5YmZiMi03NGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArlNsv31FyBIWQfh5/SrPc1R3YAXLSxrpstkcGqkACyTxsFAh/oZa9eXPR1s7 Z/MaGYVXKiTJWgk6TO9i1PTKzd6S8vvt4f2XbOF0I+bhrlcFcQWBV7ejHPqAQk0D 1kXE3htdcosKzQzfH44yBrcqaoF4mkFrhMLBgEPBst9J2eKFSEK4bSFp787/qkRi Fz+BoMCluXQtSEWGTsrT4K/Nax/tYFazJGobD3ds5SBUP/MHeZPPVGldfYS7w6Y8 ApRTaOeoKRwXudpQhA0lp3di5P98z2EMY2oFr67lI7CAXa6i/X1vxl5lNILNc8qJ dHkO1qu5hh93slTa7cUaApS/VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPVEpX+q h2TEVE2foxogj4DG+Bf9MB8GA1UdIwQYMBaAFLSxiiU/tik0NxFmNd3dGZQoto1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDY0RC8zNzA3ODZDODk5 OTQxMUVEODU2NzMxMUZDNEY5QUUwMi90TEdLSlQtMktUUTNFV1kxM2QwWmxDaTJq VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMR0tKVC0yS1RRM0VXWTEzZDBabENpMmpWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDY0RC8zNzA3ODZDODk5OTQxMUVEODU2NzMxMUZDNEY5QUUwMi90TEdLSlQtMktU UTNFV1kxM2QwWmxDaTJqVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+i7t+J6GKLlSagnRk3fHWiXUXyfRf6pzvR46ZnAEzXANHG3KBl67/ 8/NOyjerGXrioDGQSH1I6vm6VR+i7+nagfsmQdkWUFZOATtdEF2zg2T1Cl4iGRuK 0Qu/4m/y+loE9V3tGYuqpnh3XHbrv8fK/iBb+OEQo1PrLPr4AoaCA/k2/S2NU+x5 W5SLGzTyvE8YDA57fdHAW9YqippZyhqwXKbSVPFY6IxbHgAtfun7RNVS4cmZVz3b ZX43xqkRFPBMoaX//nQaGbuK4J2+uZqB6fO8pglj+nsIawyJX8a2aSG1Z+0bxRo0 xk+Q46ecFu3dgFW3CfleFForD2CFvm/X -----END CERTIFICATE-----Generated at Tue May 7 06:30:15 2024 by rpki-client on console-ams.rpki-client.org