$ rpki-client -vvf rpki.apnic.net/member_repository/A91317CB/CB73F7864AB311E8AD4D1E28C4F9AE02/3Fys5yJTQlYHBjKHYfkTyTZJius.mft File: 3Fys5yJTQlYHBjKHYfkTyTZJius.mft (raw, json) Hash identifier: p8JX7A4SRTIGX4nMYk4DTXkQqL3vlphrRbqRfpHI/6Q= Subject key identifier: 0E:C1:3B:7F:A2:E8:0C:3F:ED:36:9A:D4:3E:B1:43:D2:61:9D:43:17 Authority key identifier: DC:5C:AC:E7:22:53:42:56:07:06:32:87:61:F9:13:C9:36:49:8A:EB Certificate issuer: /CN=A91317CB/serialNumber=DC5CACE7225342560706328761F913C936498AEB Certificate serial: 1453 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Fys5yJTQlYHBjKHYfkTyTZJius.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91317CB/CB73F7864AB311E8AD4D1E28C4F9AE02/3Fys5yJTQlYHBjKHYfkTyTZJius.mft Manifest number: 144C Signing time: Sat 18 May 2024 17:23:34 +0000 Manifest this update: Sat 18 May 2024 17:23:34 +0000 Manifest next update: Sat 25 May 2024 17:23:34 +0000 Files and hashes: 1: 3Fys5yJTQlYHBjKHYfkTyTZJius.crl (hash: IdZHnekaAWwu/rwlh/5I+WuBMiD5dmZ85N3Omj1CCzE=) 2: CBA65F7C4AB411E887FB7E29C4F9AE02.roa (hash: q+1s6n0nvvvzY2lsXHxfSdzsEmNaz8tOfMeKBxpnQYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91317CB/CB73F7864AB311E8AD4D1E28C4F9AE02/3Fys5yJTQlYHBjKHYfkTyTZJius.crl rsync://rpki.apnic.net/member_repository/A91317CB/CB73F7864AB311E8AD4D1E28C4F9AE02/3Fys5yJTQlYHBjKHYfkTyTZJius.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Fys5yJTQlYHBjKHYfkTyTZJius.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5203 (0x1453) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91317CB/serialNumber=DC5CACE7225342560706328761F913C936498AEB Validity Not Before: May 18 17:23:34 2024 GMT Not After : May 25 17:23:34 2024 GMT Subject: CN=6648e416-5a95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:83:05:7d:22:40:fc:68:23:65:ce:16:ba:fc: 67:d1:e4:ea:c2:0d:37:c8:74:88:e0:b6:72:40:0c: cb:49:7e:04:ff:78:ed:aa:8e:1c:0b:37:a9:3d:58: 7b:13:2d:ba:42:fc:b5:c9:7e:cd:31:d5:b9:c6:5a: 66:ca:7a:9c:01:5c:3b:7b:ea:8a:c6:51:02:d7:7f: 3d:16:49:9a:ee:65:3b:b9:73:0f:dd:a4:fc:ab:80: da:c1:4e:59:d4:bd:e6:fd:e0:36:aa:5f:e3:e2:7b: 4b:6b:45:9d:7d:62:40:75:28:41:bb:79:61:01:d0: b4:a8:d8:92:d6:6c:d8:6a:37:a9:07:1e:fe:e5:e2: fc:5d:da:aa:67:f7:f7:d3:2a:64:a7:fd:d3:e2:eb: 34:59:54:9c:15:27:8e:9a:3b:8b:f8:74:5a:9c:fd: 3f:a7:8e:77:de:18:01:1d:48:f6:3d:c0:f6:5b:06: e1:cc:1f:29:e6:9e:4a:ff:47:bf:fa:68:50:cc:8a: 88:b0:9e:cb:84:7c:8d:ec:8f:9a:d4:97:76:4e:57: 57:2c:1c:51:f1:6b:45:5b:20:d0:15:18:32:d7:59: 2b:f3:36:d6:94:7f:43:ab:c9:33:fa:93:df:58:92: 33:ef:73:85:bb:f3:66:ba:34:6c:a3:26:1b:1c:62: e7:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:C1:3B:7F:A2:E8:0C:3F:ED:36:9A:D4:3E:B1:43:D2:61:9D:43:17 X509v3 Authority Key Identifier: keyid:DC:5C:AC:E7:22:53:42:56:07:06:32:87:61:F9:13:C9:36:49:8A:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91317CB/CB73F7864AB311E8AD4D1E28C4F9AE02/3Fys5yJTQlYHBjKHYfkTyTZJius.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Fys5yJTQlYHBjKHYfkTyTZJius.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91317CB/CB73F7864AB311E8AD4D1E28C4F9AE02/3Fys5yJTQlYHBjKHYfkTyTZJius.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:6d:b3:56:d2:6f:e2:45:cc:f4:4d:12:b6:ec:91:c3:7c:d2: 12:93:aa:24:2d:b4:e4:25:54:a7:20:6a:eb:1c:31:a1:e1:77: ba:b6:79:fd:49:82:93:7e:cb:4b:16:22:ed:a3:2d:ac:81:e5: a6:96:64:53:c0:03:78:ca:12:3e:2b:21:98:a8:61:85:e2:c7: dc:59:8e:f0:1a:9c:bb:cc:ae:84:ef:33:40:c6:b5:64:71:73: 84:52:ba:d7:2c:a5:f4:a6:a5:c3:f7:a0:10:64:0f:61:da:ca: 4a:4b:82:7d:35:64:ac:5d:2f:fb:54:2b:92:86:b3:ae:d0:8f: ef:63:0d:f5:95:e3:30:c0:5c:21:07:5c:e8:ec:3a:9a:65:67: 0d:90:98:52:bb:1e:17:52:9b:6a:7c:39:14:8a:e9:c8:9b:8b: c3:4d:72:2d:60:49:30:43:0e:ae:d7:c0:ee:73:db:ca:1b:56: 34:b0:99:29:e5:8e:9a:b2:80:84:17:fe:74:ac:42:33:03:c6: c2:b2:11:9a:f6:14:b2:ab:4f:c0:90:96:e1:c3:bf:80:de:34: c6:41:0a:be:7e:a8:8f:99:17:91:fe:af:a5:ec:ea:f5:49:37: 43:17:cb:f3:0e:4f:f0:4c:d4:43:79:c0:4d:f1:23:af:35:ce: 15:3d:92:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE3Q0IxMTAvBgNVBAUTKERDNUNBQ0U3MjI1MzQyNTYwNzA2MzI4NzYxRjkxM0M5 MzY0OThBRUIwHhcNMjQwNTE4MTcyMzM0WhcNMjQwNTI1MTcyMzM0WjAYMRYwFAYD VQQDEw02NjQ4ZTQxNi01YTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvoMFfSJA/GgjZc4Wuvxn0eTqwg03yHSI4LZyQAzLSX4E/3jtqo4cCzepPVh7 Ey26Qvy1yX7NMdW5xlpmynqcAVw7e+qKxlEC1389Fkma7mU7uXMP3aT8q4DawU5Z 1L3m/eA2ql/j4ntLa0WdfWJAdShBu3lhAdC0qNiS1mzYajepBx7+5eL8XdqqZ/f3 0ypkp/3T4us0WVScFSeOmjuL+HRanP0/p4533hgBHUj2PcD2WwbhzB8p5p5K/0e/ +mhQzIqIsJ7LhHyN7I+a1Jd2TldXLBxR8WtFWyDQFRgy11kr8zbWlH9Dq8kz+pPf WJIz73OFu/NmujRsoyYbHGLnNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA7BO3+i 6Aw/7Taa1D6xQ9JhnUMXMB8GA1UdIwQYMBaAFNxcrOciU0JWBwYyh2H5E8k2SYrr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTdDQi9DQjczRjc4NjRB QjMxMUU4QUQ0RDFFMjhDNEY5QUUwMi8zRnlzNXlKVFFsWUhCaktIWWZrVHlUWkpp dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNGeXM1eUpUUWxZSEJqS0hZZmtUeVRaSml1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTdDQi9DQjczRjc4NjRBQjMxMUU4QUQ0RDFFMjhDNEY5QUUwMi8zRnlzNXlKVFFs WUhCaktIWWZrVHlUWkppdXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjbbNW0m/iRcz0TRK27JHDfNISk6okLbTkJVSnIGrrHDGh4Xe6tnn9 SYKTfstLFiLtoy2sgeWmlmRTwAN4yhI+KyGYqGGF4sfcWY7wGpy7zK6E7zNAxrVk cXOEUrrXLKX0pqXD96AQZA9h2spKS4J9NWSsXS/7VCuShrOu0I/vYw31leMwwFwh B1zo7DqaZWcNkJhSux4XUptqfDkUiunIm4vDTXItYEkwQw6u18Duc9vKG1Y0sJkp 5Y6asoCEF/50rEIzA8bCshGa9hSyq0/AkJbhw7+A3jTGQQq+fqiPmReR/q+l7Or1 STdDF8vzDk/wTNRDecBN8SOvNc4VPZIe -----END CERTIFICATE-----Generated at Sat May 18 18:12:31 2024 by rpki-client on console-fra.rpki-client.org