$ rpki-client -vvf rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.mft File: VB4KZv5g86rAJQLO8eSOYnpi90E.mft (raw, json) Hash identifier: 26lYkC+Y/6idyG9i0bAOa4KWbIE8BOh4EJhtB7DwnkM= Subject key identifier: 6C:44:3E:E9:25:69:78:EA:59:2D:D7:CA:05:5E:5E:86:BD:71:EF:98 Authority key identifier: 54:1E:0A:66:FE:60:F3:AA:C0:25:02:CE:F1:E4:8E:62:7A:62:F7:41 Certificate issuer: /CN=A91288D9/serialNumber=541E0A66FE60F3AAC02502CEF1E48E627A62F741 Certificate serial: 0A50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB4KZv5g86rAJQLO8eSOYnpi90E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.mft Manifest number: 0A4A Signing time: Fri 31 May 2024 21:04:59 +0000 Manifest this update: Fri 31 May 2024 21:04:59 +0000 Manifest next update: Fri 07 Jun 2024 21:04:59 +0000 Files and hashes: 1: VB4KZv5g86rAJQLO8eSOYnpi90E.crl (hash: pZQ3kR1ZfKS9aENIYbR77Z/e3Jt/yRWrbtS30JgAjJg=) 2: E0FCE614425811EAADEA3B45C4F9AE02.roa (hash: iutvKuQaedn8zzArd1Jct3I36yVud5lgd8KiFWg+ekQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.crl rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB4KZv5g86rAJQLO8eSOYnpi90E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 21:04:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2640 (0xa50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91288D9/serialNumber=541E0A66FE60F3AAC02502CEF1E48E627A62F741 Validity Not Before: May 31 21:04:59 2024 GMT Not After : Jun 7 21:04:59 2024 GMT Subject: CN=665a3b7b-54ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b9:4f:ae:69:be:37:de:bf:0a:fb:b4:c3:af: c8:0e:9d:49:f5:79:27:47:16:9e:7b:3b:5a:6b:5f: dd:34:df:d0:15:5d:7b:b8:4d:e1:ec:2a:3c:33:2d: c7:73:c2:77:12:38:35:2a:7c:68:70:dd:64:f8:ce: 64:13:c3:32:d3:aa:45:81:f7:69:04:cb:00:4b:fa: 73:92:19:f6:bf:5e:cf:cb:c5:7e:cd:57:c3:4e:35: 5d:99:4c:37:01:f6:99:b3:84:32:f2:9d:06:cc:ff: c9:05:b4:c6:8d:bc:55:1d:c2:2d:cf:83:d4:46:37: 52:e5:30:0e:e3:01:d3:6d:21:6d:4b:f4:1e:01:ef: 0a:c4:f3:96:f0:ab:88:ee:a3:4a:38:cb:d6:9e:05: 69:c5:95:4f:ec:a3:01:63:72:eb:fe:41:d8:f5:b9: 76:99:63:20:aa:d4:22:5e:0d:e9:02:05:64:e5:46: 34:41:f7:0b:ad:04:08:55:d3:4b:89:45:74:7e:bc: 5b:23:8d:28:6b:6a:0c:6a:c8:73:49:ea:8c:16:72: e7:6d:72:b3:d6:f5:9d:6f:7c:31:a1:bc:e4:f0:a5: 1f:ea:1e:bf:5f:39:38:ea:51:37:0f:29:f8:fa:9b: 69:47:4e:06:fe:cf:be:05:ed:2f:19:df:00:cf:d8: ab:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:44:3E:E9:25:69:78:EA:59:2D:D7:CA:05:5E:5E:86:BD:71:EF:98 X509v3 Authority Key Identifier: keyid:54:1E:0A:66:FE:60:F3:AA:C0:25:02:CE:F1:E4:8E:62:7A:62:F7:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB4KZv5g86rAJQLO8eSOYnpi90E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:01:7e:4a:13:7e:1d:fc:5d:1c:0a:ca:a8:84:fe:2f:1e:0d: f6:b9:88:2a:6c:7d:3e:78:a3:21:a1:e6:ce:da:c9:60:0d:ac: 89:3a:41:af:13:ab:79:6a:af:85:01:0b:bd:f9:6b:88:4c:99: 28:64:64:e5:fa:08:99:2e:f6:b4:dd:55:46:2c:66:84:18:65: cd:15:1a:ab:63:cf:5c:78:92:3c:a6:3a:0a:0e:62:cf:d4:74: 9a:5b:36:24:20:9c:88:1b:b7:dc:db:7c:3c:f4:3a:95:f4:30: b6:d7:82:99:9a:2c:8b:24:4f:74:b3:64:db:0c:2a:d0:7c:f9: bf:a3:03:59:90:3b:5b:27:32:56:4d:b5:a9:76:44:f2:24:ef: 7b:ab:de:12:1c:f9:a5:72:40:25:f3:6c:3f:3a:5d:87:20:7f: 3f:13:8b:41:79:dd:8f:eb:36:d1:4e:fa:b1:dc:13:d7:72:6b: c9:98:8e:02:de:83:4c:7b:81:a9:37:ff:f9:e4:e0:3c:58:9b: cd:a2:ea:ef:57:51:bb:82:37:ef:d4:18:34:74:cb:91:f5:b7: 86:2e:b3:ec:1b:75:39:ba:c0:23:8d:51:11:4d:f7:eb:56:29: 78:d2:c3:d7:3f:f2:8a:76:33:67:aa:4c:b8:af:a5:7e:0d:a1: 6c:ab:f1:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg4RDkxMTAvBgNVBAUTKDU0MUUwQTY2RkU2MEYzQUFDMDI1MDJDRUYxRTQ4RTYy N0E2MkY3NDEwHhcNMjQwNTMxMjEwNDU5WhcNMjQwNjA3MjEwNDU5WjAYMRYwFAYD VQQDEw02NjVhM2I3Yi01NGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1rlPrmm+N96/Cvu0w6/IDp1J9XknRxaeeztaa1/dNN/QFV17uE3h7Co8My3H c8J3Ejg1KnxocN1k+M5kE8My06pFgfdpBMsAS/pzkhn2v17Py8V+zVfDTjVdmUw3 AfaZs4Qy8p0GzP/JBbTGjbxVHcItz4PURjdS5TAO4wHTbSFtS/QeAe8KxPOW8KuI 7qNKOMvWngVpxZVP7KMBY3Lr/kHY9bl2mWMgqtQiXg3pAgVk5UY0QfcLrQQIVdNL iUV0frxbI40oa2oMashzSeqMFnLnbXKz1vWdb3wxobzk8KUf6h6/Xzk46lE3Dyn4 +ptpR04G/s++Be0vGd8Az9irTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGxEPukl aXjqWS3XygVeXoa9ce+YMB8GA1UdIwQYMBaAFFQeCmb+YPOqwCUCzvHkjmJ6YvdB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODhEOS9CQTU5NTM1RTQy NTcxMUVBOEY4MzhBNDNDNEY5QUUwMi9WQjRLWnY1Zzg2ckFKUUxPOGVTT1lucGk5 MEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZCNEtadjVnODZyQUpRTE84ZVNPWW5waTkwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODhEOS9CQTU5NTM1RTQyNTcxMUVBOEY4MzhBNDNDNEY5QUUwMi9WQjRLWnY1Zzg2 ckFKUUxPOGVTT1lucGk5MEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrAX5KE34d/F0cCsqohP4vHg32uYgqbH0+eKMhoebO2slgDayJOkGv E6t5aq+FAQu9+WuITJkoZGTl+giZLva03VVGLGaEGGXNFRqrY89ceJI8pjoKDmLP 1HSaWzYkIJyIG7fc23w89DqV9DC214KZmiyLJE90s2TbDCrQfPm/owNZkDtbJzJW TbWpdkTyJO97q94SHPmlckAl82w/Ol2HIH8/E4tBed2P6zbRTvqx3BPXcmvJmI4C 3oNMe4GpN//55OA8WJvNourvV1G7gjfv1Bg0dMuR9beGLrPsG3U5usAjjVERTffr Vil40sPXP/KKdjNnqky4r6V+DaFsq/FY -----END CERTIFICATE-----Generated at Fri May 31 22:13:02 2024 by rpki-client on console-fra.rpki-client.org