$ rpki-client -vvf rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft File: uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft (raw, json) Hash identifier: 05op17L7FVS/gTrBoIeFmV2oEGzoabvkhRytNJpd0UA= Subject key identifier: 80:5C:D5:46:D1:72:51:D9:C8:6B:5B:6D:80:34:50:F8:6D:BD:5F:18 Authority key identifier: B8:AD:8D:91:6C:D9:48:2B:6D:A5:5D:30:7C:E9:5C:07:A9:5B:2F:74 Certificate issuer: /CN=A91103CF/serialNumber=B8AD8D916CD9482B6DA55D307CE95C07A95B2F74 Certificate serial: 02CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK2NkWzZSCttpV0wfOlcB6lbL3Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft Manifest number: 02C8 Signing time: Sun 19 May 2024 03:30:57 +0000 Manifest this update: Sun 19 May 2024 03:30:56 +0000 Manifest next update: Sun 26 May 2024 03:30:56 +0000 Files and hashes: 1: uK2NkWzZSCttpV0wfOlcB6lbL3Q.crl (hash: G8yyr6VfDZ5WdD37UHxN/YX4fMPKxegnTT7gES9xaA8=) 2: 931A51C07F5811EE82ECE456C4F9AE02.roa (hash: zf2+17plh3siOxScOTpZsDeWJyTqxQmvL8SXYqmaBqg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.crl rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK2NkWzZSCttpV0wfOlcB6lbL3Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 719 (0x2cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91103CF/serialNumber=B8AD8D916CD9482B6DA55D307CE95C07A95B2F74 Validity Not Before: May 19 03:30:56 2024 GMT Not After : May 26 03:30:56 2024 GMT Subject: CN=66497271-e872 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:7d:82:79:ec:67:bb:90:b7:1d:06:58:1a:7e: 0f:8d:5a:a7:46:4a:1d:c4:80:6e:8b:48:b5:24:58: 44:a5:01:e1:d5:be:02:a3:8f:ba:7c:85:a4:95:bf: 28:7b:9d:40:df:46:ad:88:65:3c:a6:df:3b:05:b0: 7f:46:50:44:74:dc:bc:24:48:e1:9e:98:a9:06:73: 8d:20:64:fc:07:88:de:82:5b:31:9b:21:1b:32:8c: f6:db:df:dd:32:1a:c6:ab:15:62:f4:91:bd:5d:e0: 37:8a:ce:ce:04:a5:c3:9d:e7:09:c9:38:fe:09:e3: c7:0c:29:04:8a:d4:34:d4:cd:1a:a8:5a:c7:e3:6c: 6e:3d:3a:8b:c0:4c:1d:41:f1:7a:c8:fb:75:ff:db: aa:6e:8d:75:66:60:a9:6c:ed:98:f7:1f:19:1d:44: 15:60:07:06:b9:e6:2d:37:eb:30:e7:02:2f:fd:82: a5:1e:bd:fa:7f:2f:67:81:f0:9e:38:d9:28:f0:8b: c1:65:32:53:ab:47:a4:13:f5:bd:cb:6b:f1:aa:47: 05:86:50:71:d1:06:b6:49:ad:2d:f1:6d:37:bb:82: 47:43:87:0a:dc:94:38:71:03:fb:47:4f:4f:3b:58: 79:42:87:4c:06:4d:6c:bf:b2:9d:41:5c:2c:26:e2: dd:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:5C:D5:46:D1:72:51:D9:C8:6B:5B:6D:80:34:50:F8:6D:BD:5F:18 X509v3 Authority Key Identifier: keyid:B8:AD:8D:91:6C:D9:48:2B:6D:A5:5D:30:7C:E9:5C:07:A9:5B:2F:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK2NkWzZSCttpV0wfOlcB6lbL3Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:3a:9b:6c:a1:3d:f7:7a:41:0d:b9:c3:1d:a4:d0:7c:98:db: f0:50:cc:fa:d4:d6:84:07:af:39:a1:e6:e7:51:65:02:20:67: 39:94:fb:2d:01:a2:28:40:00:dc:5b:cf:60:db:25:65:16:ed: 5e:fd:d4:fb:d5:dd:cd:0d:56:c5:04:79:15:4e:b9:96:7b:23: a9:aa:fa:60:d3:53:c6:42:df:cf:70:01:6e:4a:45:35:14:11: c0:a6:8d:76:b6:73:75:a8:31:9a:6c:2c:d1:79:70:9d:6d:31: e4:e6:b5:6d:ef:d3:f7:43:f5:cb:2e:b3:52:62:05:b5:e7:b7: 40:74:6e:ef:d4:84:8b:6d:8e:3f:cf:a0:f7:bd:cc:3b:ef:6f: 7b:31:da:f5:2a:e3:53:3c:42:0a:32:d3:d8:58:53:8a:f5:17: 7d:19:8a:23:ae:e4:8a:0f:a2:3d:78:95:31:51:03:d9:7e:8e: b7:de:c4:ea:2d:18:bc:12:0a:0d:18:b1:6e:4a:62:76:54:7f: e1:85:4a:2a:43:ec:4c:58:64:91:68:15:08:6f:47:64:66:b1: bc:df:d9:07:64:61:b6:d9:cd:d3:9f:d5:13:22:5a:48:f7:ac: c7:c8:75:0f:f2:55:f8:75:ea:d2:3f:a3:5f:92:8c:25:40:72: 4d:6c:7a:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAs8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAzQ0YxMTAvBgNVBAUTKEI4QUQ4RDkxNkNEOTQ4MkI2REE1NUQzMDdDRTk1QzA3 QTk1QjJGNzQwHhcNMjQwNTE5MDMzMDU2WhcNMjQwNTI2MDMzMDU2WjAYMRYwFAYD VQQDEw02NjQ5NzI3MS1lODcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8n2Ceexnu5C3HQZYGn4PjVqnRkodxIBui0i1JFhEpQHh1b4Co4+6fIWklb8o e51A30atiGU8pt87BbB/RlBEdNy8JEjhnpipBnONIGT8B4jeglsxmyEbMoz229/d MhrGqxVi9JG9XeA3is7OBKXDnecJyTj+CePHDCkEitQ01M0aqFrH42xuPTqLwEwd QfF6yPt1/9uqbo11ZmCpbO2Y9x8ZHUQVYAcGueYtN+sw5wIv/YKlHr36fy9ngfCe ONko8IvBZTJTq0ekE/W9y2vxqkcFhlBx0Qa2Sa0t8W03u4JHQ4cK3JQ4cQP7R09P O1h5QodMBk1sv7KdQVwsJuLdXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIBc1UbR clHZyGtbbYA0UPhtvV8YMB8GA1UdIwQYMBaAFLitjZFs2UgrbaVdMHzpXAepWy90 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDNDRi8xN0Q2RTRDMkE2 OEExMUVDQTlBNjM1NTFDNEY5QUUwMi91SzJOa1d6WlNDdHRwVjB3Zk9sY0I2bGJM M1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VLMk5rV3paU0N0dHBWMHdmT2xjQjZsYkwzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDNDRi8xN0Q2RTRDMkE2OEExMUVDQTlBNjM1NTFDNEY5QUUwMi91SzJOa1d6WlND dHRwVjB3Zk9sY0I2bGJMM1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrOptsoT33ekENucMdpNB8mNvwUMz61NaEB685oebnUWUCIGc5lPst AaIoQADcW89g2yVlFu1e/dT71d3NDVbFBHkVTrmWeyOpqvpg01PGQt/PcAFuSkU1 FBHApo12tnN1qDGabCzReXCdbTHk5rVt79P3Q/XLLrNSYgW157dAdG7v1ISLbY4/ z6D3vcw77297Mdr1KuNTPEIKMtPYWFOK9Rd9GYojruSKD6I9eJUxUQPZfo633sTq LRi8EgoNGLFuSmJ2VH/hhUoqQ+xMWGSRaBUIb0dkZrG839kHZGG22c3Tn9UTIlpI 96zHyHUP8lX4derSP6NfkowlQHJNbHpg -----END CERTIFICATE-----Generated at Sun May 19 04:22:03 2024 by rpki-client on console-fra.rpki-client.org