$ rpki-client -vvf rpki.apnic.net/member_repository/A9148C7B/5BFCFF8CD63011EA940DA039C4F9AE02/f3lmXmO_PNVtwkoKcNV_mpQt0bg.mft File: f3lmXmO_PNVtwkoKcNV_mpQt0bg.mft (raw, json) Hash identifier: fYoBfPBwj7hddOJ2rkWX0I+mHWeQEexQNyP2lrneIx4= Subject key identifier: 39:73:B7:EE:4F:B1:3D:16:B9:00:BA:8E:0A:8E:50:46:00:E8:42:A9 Authority key identifier: 7F:79:66:5E:63:BF:3C:D5:6D:C2:4A:0A:70:D5:7F:9A:94:2D:D1:B8 Certificate issuer: /CN=A9148C7B/serialNumber=7F79665E63BF3CD56DC24A0A70D57F9A942DD1B8 Certificate serial: 07B8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/f3lmXmO_PNVtwkoKcNV_mpQt0bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148C7B/5BFCFF8CD63011EA940DA039C4F9AE02/f3lmXmO_PNVtwkoKcNV_mpQt0bg.mft Manifest number: 0791 Signing time: Sun 19 May 2024 14:20:59 +0000 Manifest this update: Sun 19 May 2024 14:20:58 +0000 Manifest next update: Sun 26 May 2024 14:20:58 +0000 Files and hashes: 1: f3lmXmO_PNVtwkoKcNV_mpQt0bg.crl (hash: xdX3QwtiN06XekelU6griuqypDaQCq64S9dvciP4a54=) 2: 664604CCD8E211ED913C4684C4F9AE02.roa (hash: GI6FTz/63iOyD89xUjzyjPFzQsyS02fULKQPxC7ST4I=) 3: 5503948C15E911EF8907C019C4F9AE02.roa (hash: DlBXsGP7hQgf1ZKPelkD9oWT57vyij6P+7rPC2Mu7xI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148C7B/5BFCFF8CD63011EA940DA039C4F9AE02/f3lmXmO_PNVtwkoKcNV_mpQt0bg.crl rsync://rpki.apnic.net/member_repository/A9148C7B/5BFCFF8CD63011EA940DA039C4F9AE02/f3lmXmO_PNVtwkoKcNV_mpQt0bg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/f3lmXmO_PNVtwkoKcNV_mpQt0bg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 14:20:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1976 (0x7b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148C7B/serialNumber=7F79665E63BF3CD56DC24A0A70D57F9A942DD1B8 Validity Not Before: May 19 14:20:58 2024 GMT Not After : May 26 14:20:58 2024 GMT Subject: CN=664a0aca-f481 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:c4:73:e2:4e:5b:65:8c:fe:de:61:2f:22:ef: 5d:a0:12:32:5d:d1:a4:0f:9e:3c:2d:e6:03:4c:a1: 5e:49:72:8b:91:9e:9f:b9:67:0d:dd:b5:00:89:7f: f4:0c:a7:6f:b0:26:7b:7c:6e:c1:e5:92:2d:d8:de: 97:a2:ea:78:8e:1a:93:3f:5c:d8:7c:85:47:75:a8: 4d:7e:ae:02:47:a4:a4:b7:28:15:fe:63:3e:ce:40: 98:ea:65:68:d3:9f:cb:28:12:50:06:69:9c:e8:a8: a8:87:bb:71:35:56:3f:f5:3c:7a:d9:1e:e8:f8:38: 18:37:bb:63:45:70:1b:be:f9:aa:3b:ac:13:6b:20: 19:c1:f2:0c:d6:02:1c:f6:79:90:3a:51:f6:a1:b3: b6:0b:70:1e:9a:81:45:a1:70:45:c1:2d:18:9d:bc: 8e:03:b3:38:a8:e4:34:e4:bc:94:01:25:dd:b0:60: 3a:5b:20:95:e4:87:fa:70:19:ef:35:e0:cb:82:18: b6:dd:e6:44:14:dc:e9:f5:c9:d6:2d:27:fc:99:ee: 15:35:a5:e3:8b:2d:9e:5e:d8:d0:f5:b8:d1:a9:de: 73:77:55:3c:ae:ad:bf:ca:1f:b3:c4:72:c5:04:d4: c3:f8:83:9e:43:ea:98:4e:64:1c:0e:41:fe:a7:7f: 93:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:73:B7:EE:4F:B1:3D:16:B9:00:BA:8E:0A:8E:50:46:00:E8:42:A9 X509v3 Authority Key Identifier: keyid:7F:79:66:5E:63:BF:3C:D5:6D:C2:4A:0A:70:D5:7F:9A:94:2D:D1:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148C7B/5BFCFF8CD63011EA940DA039C4F9AE02/f3lmXmO_PNVtwkoKcNV_mpQt0bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/f3lmXmO_PNVtwkoKcNV_mpQt0bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148C7B/5BFCFF8CD63011EA940DA039C4F9AE02/f3lmXmO_PNVtwkoKcNV_mpQt0bg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:cc:d7:8f:22:ba:e9:25:ff:9e:d4:5e:ff:b7:cf:6e:19:f2: 4f:64:73:c8:74:8d:68:e7:d6:5a:ee:91:e5:bd:b0:8b:01:6a: 61:8d:69:31:c4:ad:79:30:84:8b:c3:33:74:13:13:ca:e3:36: ac:91:d1:0b:20:ff:b8:6f:ed:5e:09:50:d6:dd:13:cc:f4:d4: 40:a5:22:bc:05:ab:8a:cd:aa:66:74:60:d0:86:6e:d9:e6:76: f6:50:54:dc:5b:40:a8:b1:5d:6d:42:fc:b5:c7:1f:c4:7c:a0: 0c:72:5f:6d:2d:41:96:28:26:6a:98:93:9f:f0:4e:b3:25:2d: 8b:6b:27:c2:04:1f:9e:20:df:7e:34:03:e6:58:12:34:15:24: 1c:ec:c3:14:21:4d:f8:14:d8:ab:05:e3:d6:9e:19:ee:73:ff: cc:d7:3b:23:c6:b3:f6:11:f1:d7:51:89:aa:4a:17:b9:4e:26: 74:da:82:d1:71:1e:2b:5d:64:46:2e:72:19:56:b9:11:d4:3c: 41:0d:9b:1f:91:f1:33:96:83:aa:a9:7b:47:a9:f2:29:69:d3: 6e:ba:24:91:65:8c:aa:2b:ea:28:aa:a5:ca:20:7d:ac:04:54: 31:4c:e0:8e:49:dc:d8:46:01:a4:a2:3c:e9:e3:5e:e5:c1:30: 1b:29:bb:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhDN0IxMTAvBgNVBAUTKDdGNzk2NjVFNjNCRjNDRDU2REMyNEEwQTcwRDU3RjlB OTQyREQxQjgwHhcNMjQwNTE5MTQyMDU4WhcNMjQwNTI2MTQyMDU4WjAYMRYwFAYD VQQDEw02NjRhMGFjYS1mNDgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5MRz4k5bZYz+3mEvIu9doBIyXdGkD548LeYDTKFeSXKLkZ6fuWcN3bUAiX/0 DKdvsCZ7fG7B5ZIt2N6Xoup4jhqTP1zYfIVHdahNfq4CR6SktygV/mM+zkCY6mVo 05/LKBJQBmmc6Kioh7txNVY/9Tx62R7o+DgYN7tjRXAbvvmqO6wTayAZwfIM1gIc 9nmQOlH2obO2C3AemoFFoXBFwS0YnbyOA7M4qOQ05LyUASXdsGA6WyCV5If6cBnv NeDLghi23eZEFNzp9cnWLSf8me4VNaXjiy2eXtjQ9bjRqd5zd1U8rq2/yh+zxHLF BNTD+IOeQ+qYTmQcDkH+p3+T/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDlzt+5P sT0WuQC6jgqOUEYA6EKpMB8GA1UdIwQYMBaAFH95Zl5jvzzVbcJKCnDVf5qULdG4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEM3Qi81QkZDRkY4Q0Q2 MzAxMUVBOTQwREEwMzlDNEY5QUUwMi9mM2xtWG1PX1BOVnR3a29LY05WX21wUXQw YmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2YzbG1YbU9fUE5WdHdrb0tjTlZfbXBRdDBiZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEM3Qi81QkZDRkY4Q0Q2MzAxMUVBOTQwREEwMzlDNEY5QUUwMi9mM2xtWG1PX1BO VnR3a29LY05WX21wUXQwYmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUzNePIrrpJf+e1F7/t89uGfJPZHPIdI1o59Za7pHlvbCLAWphjWkx xK15MISLwzN0ExPK4zaskdELIP+4b+1eCVDW3RPM9NRApSK8BauKzapmdGDQhm7Z 5nb2UFTcW0CosV1tQvy1xx/EfKAMcl9tLUGWKCZqmJOf8E6zJS2LayfCBB+eIN9+ NAPmWBI0FSQc7MMUIU34FNirBePWnhnuc//M1zsjxrP2EfHXUYmqShe5TiZ02oLR cR4rXWRGLnIZVrkR1DxBDZsfkfEzloOqqXtHqfIpadNuuiSRZYyqK+ooqqXKIH2s BFQxTOCOSdzYRgGkojzp417lwTAbKbvo -----END CERTIFICATE-----Generated at Sun May 19 15:46:14 2024 by rpki-client on console-fra.rpki-client.org