$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft File: rroZtvzB0hrnExdw57HaPhR17JA.mft (raw, json) Hash identifier: ecOBGI+CjMWJOSJBU3LiTeXrV794CjISSbTLIvcvNiw= Subject key identifier: 7A:90:17:D7:E8:28:96:51:33:0D:68:02:67:F2:EE:FF:F2:84:CE:65 Authority key identifier: AE:BA:19:B6:FC:C1:D2:1A:E7:13:17:70:E7:B1:DA:3E:14:75:EC:90 Certificate issuer: /CN=A91FE7DB/serialNumber=AEBA19B6FCC1D21AE7131770E7B1DA3E1475EC90 Certificate serial: 0A5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft Manifest number: 0A54 Signing time: Tue 30 Apr 2024 20:42:13 +0000 Manifest this update: Tue 30 Apr 2024 20:42:13 +0000 Manifest next update: Tue 07 May 2024 20:42:13 +0000 Files and hashes: 1: rroZtvzB0hrnExdw57HaPhR17JA.crl (hash: 0Q33ULegiF1vOBT41GgEvdFARaLLT1jFhio1VE4iaaI=) 2: 078AE946642A11EAA019224CC4F9AE02.roa (hash: zuPgCF1JRKRsNBDnVgon3sTbonHhVFuQJcOm55m3PwI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.crl rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 20:42:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2650 (0xa5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE7DB/serialNumber=AEBA19B6FCC1D21AE7131770E7B1DA3E1475EC90 Validity Not Before: Apr 30 20:42:13 2024 GMT Not After : May 7 20:42:13 2024 GMT Subject: CN=663157a5-0d0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d5:ce:50:ea:41:f1:dd:43:d2:92:ed:ca:f3: d1:12:c0:96:3d:e0:8d:6b:e6:1e:f3:f9:dc:29:b0: 95:ec:e4:cf:a0:76:4e:86:c8:6b:87:b0:17:1f:dd: 19:01:c6:45:5c:53:e5:6f:8b:20:ea:e7:33:36:ea: 05:1a:28:7b:34:00:ee:39:f8:dc:8c:1a:c3:0b:2d: 9f:e6:54:f4:45:ba:42:db:59:b1:f2:48:22:93:f8: e7:ab:91:d4:41:b6:87:c8:0b:a1:ec:9e:af:b9:40: f6:30:87:ad:34:2d:53:6c:f0:64:cd:57:ed:9d:ce: b9:dd:9a:cd:b6:63:d5:02:4e:0c:52:22:6e:14:57: b8:c4:61:38:34:59:a9:85:cb:df:db:3e:b6:fd:01: 05:37:83:42:b2:a2:32:46:1d:3e:67:87:0c:55:3d: 53:eb:ac:5b:11:29:f9:82:57:8f:5a:9d:76:9d:a9: 17:80:69:aa:5d:8e:b1:77:b8:92:8e:79:b4:be:59: 76:1b:58:4b:db:31:9c:7f:66:dd:7f:5d:04:bb:ce: 11:41:54:77:72:1b:cc:c7:87:4b:ba:55:72:5e:f6: 5f:44:b9:3e:ab:49:50:d5:a7:4f:59:5e:71:1c:0d: 8c:f8:99:f7:5a:9c:ff:bb:98:15:0b:66:af:6f:db: 8e:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:90:17:D7:E8:28:96:51:33:0D:68:02:67:F2:EE:FF:F2:84:CE:65 X509v3 Authority Key Identifier: keyid:AE:BA:19:B6:FC:C1:D2:1A:E7:13:17:70:E7:B1:DA:3E:14:75:EC:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:07:22:ad:c1:a2:02:d6:d0:6d:61:cc:98:1e:fe:46:69:4d: e2:4b:d7:b1:35:3c:cc:22:58:fb:84:9e:6f:24:5f:52:06:c0: 59:03:03:f4:03:36:a6:8d:82:03:53:ec:db:59:42:7f:dc:f1: 36:f9:55:c1:4f:17:27:2a:5b:05:79:d0:7d:31:04:4c:6c:37: d3:72:c7:6f:f6:7f:c4:63:d8:1a:b3:cf:64:d8:9d:52:c0:fb: 8e:fe:a9:fe:bc:b7:25:c7:60:60:c3:d9:8f:31:2e:62:a1:b3: 2a:a4:a7:c6:7f:0a:f3:d7:4d:22:19:82:a3:5d:16:e5:43:95: e0:10:58:ba:52:48:b3:ca:a8:30:1d:83:2c:60:5d:84:d8:ee: 73:dc:b2:5d:5c:15:aa:b2:38:34:0f:65:7b:ed:5d:c3:fd:62: fe:86:7f:d9:87:f7:fb:1d:10:70:1b:9e:2c:80:03:44:67:95: a2:27:4d:f5:80:ee:6a:cc:57:30:f3:09:dd:a5:3e:3d:07:7e: 68:e6:e7:b5:b8:ca:34:2c:13:71:a5:b5:f9:32:73:b8:b9:fc: 8f:60:ec:b3:e8:92:2f:ed:c1:3a:f8:0e:99:0d:e2:e3:a1:e3: db:67:cb:54:1d:81:39:db:fd:bd:15:90:d2:2c:f4:1d:ea:e9: 33:01:5d:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU3REIxMTAvBgNVBAUTKEFFQkExOUI2RkNDMUQyMUFFNzEzMTc3MEU3QjFEQTNF MTQ3NUVDOTAwHhcNMjQwNDMwMjA0MjEzWhcNMjQwNTA3MjA0MjEzWjAYMRYwFAYD VQQDEw02NjMxNTdhNS0wZDBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApdXOUOpB8d1D0pLtyvPREsCWPeCNa+Ye8/ncKbCV7OTPoHZOhshrh7AXH90Z AcZFXFPlb4sg6uczNuoFGih7NADuOfjcjBrDCy2f5lT0RbpC21mx8kgik/jnq5HU QbaHyAuh7J6vuUD2MIetNC1TbPBkzVftnc653ZrNtmPVAk4MUiJuFFe4xGE4NFmp hcvf2z62/QEFN4NCsqIyRh0+Z4cMVT1T66xbESn5glePWp12nakXgGmqXY6xd7iS jnm0vll2G1hL2zGcf2bdf10Eu84RQVR3chvMx4dLulVyXvZfRLk+q0lQ1adPWV5x HA2M+Jn3Wpz/u5gVC2avb9uORQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHqQF9fo KJZRMw1oAmfy7v/yhM5lMB8GA1UdIwQYMBaAFK66Gbb8wdIa5xMXcOex2j4UdeyQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTdEQi9COTUxRTI4QzNE Q0ExMUVBODFCOUQzNTJDNEY5QUUwMi9ycm9adHZ6QjBocm5FeGR3NTdIYVBoUjE3 SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jyb1p0dnpCMGhybkV4ZHc1N0hhUGhSMTdKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTdEQi9COTUxRTI4QzNEQ0ExMUVBODFCOUQzNTJDNEY5QUUwMi9ycm9adHZ6QjBo cm5FeGR3NTdIYVBoUjE3SkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAByKtwaIC1tBtYcyYHv5GaU3iS9exNTzMIlj7hJ5vJF9SBsBZAwP0 AzamjYIDU+zbWUJ/3PE2+VXBTxcnKlsFedB9MQRMbDfTcsdv9n/EY9gas89k2J1S wPuO/qn+vLclx2Bgw9mPMS5iobMqpKfGfwrz100iGYKjXRblQ5XgEFi6Ukizyqgw HYMsYF2E2O5z3LJdXBWqsjg0D2V77V3D/WL+hn/Zh/f7HRBwG54sgANEZ5WiJ031 gO5qzFcw8wndpT49B35o5ue1uMo0LBNxpbX5MnO4ufyPYOyz6JIv7cE6+A6ZDeLj oePbZ8tUHYE52/29FZDSLPQd6ukzAV3c -----END CERTIFICATE-----Generated at Tue Apr 30 21:59:11 2024 by rpki-client on console-ams.rpki-client.org