$ rpki-client -vvf rpki.apnic.net/member_repository/A91546FB/1E5C938A01E511EDBA7BA90EC4F9AE02/2lyPJyhAj-74JW4gOI3rlgHltRA.mft File: 2lyPJyhAj-74JW4gOI3rlgHltRA.mft (raw, json) Hash identifier: Ie4B1ROP1k0D3s4GKjOS/n6sMAfQJvtuETYodf4ORz8= Subject key identifier: CD:0A:68:A8:1C:B4:8E:09:EA:0D:6B:10:BF:FB:92:C0:93:25:8E:6C Authority key identifier: DA:5C:8F:27:28:40:8F:EE:F8:25:6E:20:38:8D:EB:96:01:E5:B5:10 Certificate issuer: /CN=A91546FB/serialNumber=DA5C8F2728408FEEF8256E20388DEB9601E5B510 Certificate serial: 01DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lyPJyhAj-74JW4gOI3rlgHltRA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91546FB/1E5C938A01E511EDBA7BA90EC4F9AE02/2lyPJyhAj-74JW4gOI3rlgHltRA.mft Manifest number: 01D4 Signing time: Sun 19 May 2024 04:20:55 +0000 Manifest this update: Sun 19 May 2024 04:20:54 +0000 Manifest next update: Sun 26 May 2024 04:20:54 +0000 Files and hashes: 1: 2lyPJyhAj-74JW4gOI3rlgHltRA.crl (hash: LklJRb7AXkT/jI2nByi07y8iZHWn1wfcpGjXrhGvymo=) 2: 3B63078201E711EDB2C82D0FC4F9AE02.roa (hash: y8EP44IV/D41qne8yMUw/86AS6rUnWXM3ggUmLWSPKQ=) 3: 3A84FA5A01E711EDB2C82D0FC4F9AE02.roa (hash: x4ZEI1/oN7zeGVnSfu0nnPCt20waWeVh+pcZZP/qEoY=) 4: 398C7DEE01E711EDB2C82D0FC4F9AE02.roa (hash: JkpAwyv1JWftgTjDfw5ndQKqelICGQqXBkAqr19Xf7o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91546FB/1E5C938A01E511EDBA7BA90EC4F9AE02/2lyPJyhAj-74JW4gOI3rlgHltRA.crl rsync://rpki.apnic.net/member_repository/A91546FB/1E5C938A01E511EDBA7BA90EC4F9AE02/2lyPJyhAj-74JW4gOI3rlgHltRA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lyPJyhAj-74JW4gOI3rlgHltRA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 474 (0x1da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91546FB/serialNumber=DA5C8F2728408FEEF8256E20388DEB9601E5B510 Validity Not Before: May 19 04:20:54 2024 GMT Not After : May 26 04:20:54 2024 GMT Subject: CN=66497e27-4e59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:46:2f:2c:a1:e3:38:38:e9:89:9f:ed:fd:11: 7b:03:c6:10:1f:01:b6:83:29:90:6f:95:87:84:b8: ee:9b:f3:04:23:f2:4c:66:51:2c:e7:f1:23:c7:12: 45:c7:9f:c1:1d:31:12:56:23:f7:42:f6:44:10:b7: ce:7f:8d:a5:ab:ec:f4:d1:1e:2c:77:9a:11:49:e7: 6f:cf:b6:a8:f3:81:22:ed:d7:1b:c5:ed:91:a5:f5: 42:c9:1e:01:f8:0a:0f:48:f9:39:dd:9c:e1:d1:76: c1:48:bf:dc:4c:5e:8b:11:bd:be:ae:6b:6c:bd:0f: f1:6f:cc:a2:ee:bf:eb:f4:59:6d:41:af:59:56:92: 1d:80:92:68:06:a4:f7:18:3e:a4:db:0a:c0:aa:7c: 92:b4:14:de:38:ad:c1:ad:e7:69:40:6c:1e:66:71: b4:db:17:a0:2e:85:34:94:7d:f7:4f:d7:90:a9:01: 50:48:4a:4f:e5:76:1e:9c:0c:da:73:76:a5:1f:cf: fa:2e:6c:1d:bd:30:64:29:a2:3f:69:5a:f9:0f:95: f6:89:93:25:a7:cc:84:4d:42:bb:c3:9a:42:05:e9: 0f:36:52:7d:d6:05:0a:fa:fd:3c:4b:e7:51:72:ec: 59:48:66:0c:15:ef:30:ed:fb:40:01:e2:5d:1d:74: a5:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:0A:68:A8:1C:B4:8E:09:EA:0D:6B:10:BF:FB:92:C0:93:25:8E:6C X509v3 Authority Key Identifier: keyid:DA:5C:8F:27:28:40:8F:EE:F8:25:6E:20:38:8D:EB:96:01:E5:B5:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91546FB/1E5C938A01E511EDBA7BA90EC4F9AE02/2lyPJyhAj-74JW4gOI3rlgHltRA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lyPJyhAj-74JW4gOI3rlgHltRA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91546FB/1E5C938A01E511EDBA7BA90EC4F9AE02/2lyPJyhAj-74JW4gOI3rlgHltRA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:2b:3b:64:a6:44:38:68:48:8a:08:50:c9:be:c0:4f:b2:c3: f1:ec:fd:c8:4a:43:b0:3f:2f:80:cc:bc:1c:69:e3:2f:1e:cc: 15:a3:25:ea:13:4a:23:ff:4d:2f:c3:1a:b8:00:34:10:64:80: 51:c8:dc:b4:63:8e:16:15:72:22:5d:3c:20:e1:cb:31:30:bd: 42:d9:1c:08:54:3b:28:86:ae:c9:8c:96:2b:ce:96:86:91:4e: 4e:a6:c4:a6:71:c3:d9:fd:cd:1e:0e:8c:5d:2f:81:55:84:36: ad:8d:74:0e:0b:58:1f:75:e5:05:c5:d5:a7:f8:06:41:b7:5b: c3:e7:4d:1b:b3:a8:90:6b:22:2f:ee:89:a4:b5:ea:ab:e4:2e: 71:9d:64:96:91:e7:30:7b:2e:9f:76:7a:00:32:eb:59:8e:43: 34:60:99:77:9c:cb:05:97:9d:18:4e:5f:36:11:6c:99:72:5b: ec:e7:7c:42:fd:30:7a:25:65:20:0e:94:16:2a:f2:84:38:4e: c1:13:0d:74:e5:6c:44:62:0c:ff:b4:3b:87:e4:0b:84:cd:e9: 88:f4:d4:7a:ed:1c:09:fe:dd:bc:74:a8:54:e5:5a:44:d2:a4: 83:f9:d4:24:1c:38:a5:58:84:15:b3:3f:36:aa:f3:a8:65:fa: 98:2f:27:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ2RkIxMTAvBgNVBAUTKERBNUM4RjI3Mjg0MDhGRUVGODI1NkUyMDM4OERFQjk2 MDFFNUI1MTAwHhcNMjQwNTE5MDQyMDU0WhcNMjQwNTI2MDQyMDU0WjAYMRYwFAYD VQQDEw02NjQ5N2UyNy00ZTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsEYvLKHjODjpiZ/t/RF7A8YQHwG2gymQb5WHhLjum/MEI/JMZlEs5/EjxxJF x5/BHTESViP3QvZEELfOf42lq+z00R4sd5oRSedvz7ao84Ei7dcbxe2RpfVCyR4B +AoPSPk53Zzh0XbBSL/cTF6LEb2+rmtsvQ/xb8yi7r/r9FltQa9ZVpIdgJJoBqT3 GD6k2wrAqnyStBTeOK3BredpQGweZnG02xegLoU0lH33T9eQqQFQSEpP5XYenAza c3alH8/6LmwdvTBkKaI/aVr5D5X2iZMlp8yETUK7w5pCBekPNlJ91gUK+v08S+dR cuxZSGYMFe8w7ftAAeJdHXSluQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM0KaKgc tI4J6g1rEL/7ksCTJY5sMB8GA1UdIwQYMBaAFNpcjycoQI/u+CVuIDiN65YB5bUQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDZGQi8xRTVDOTM4QTAx RTUxMUVEQkE3QkE5MEVDNEY5QUUwMi8ybHlQSnloQWotNzRKVzRnT0kzcmxnSGx0 UkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJseVBKeWhBai03NEpXNGdPSTNybGdIbHRSQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDZGQi8xRTVDOTM4QTAxRTUxMUVEQkE3QkE5MEVDNEY5QUUwMi8ybHlQSnloQWot NzRKVzRnT0kzcmxnSGx0UkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWKztkpkQ4aEiKCFDJvsBPssPx7P3ISkOwPy+AzLwcaeMvHswVoyXq E0oj/00vwxq4ADQQZIBRyNy0Y44WFXIiXTwg4csxML1C2RwIVDsohq7JjJYrzpaG kU5OpsSmccPZ/c0eDoxdL4FVhDatjXQOC1gfdeUFxdWn+AZBt1vD500bs6iQayIv 7omkteqr5C5xnWSWkecwey6fdnoAMutZjkM0YJl3nMsFl50YTl82EWyZclvs53xC /TB6JWUgDpQWKvKEOE7BEw105WxEYgz/tDuH5AuEzemI9NR67RwJ/t28dKhU5VpE 0qSD+dQkHDilWIQVsz82qvOoZfqYLyfP -----END CERTIFICATE-----Generated at Sun May 19 04:56:55 2024 by rpki-client on console-fra.rpki-client.org