$ rpki-client -vvf rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/sRd7K0wt-LMG0UpkMAcob4nWnMA.mft File: sRd7K0wt-LMG0UpkMAcob4nWnMA.mft (raw, json) Hash identifier: zNNyTd6MVxLabIjF9aayVFVt2EiVQnpl0xBDgHn7bxg= Subject key identifier: 3D:0E:16:22:91:A6:2E:2F:F2:E5:CE:CA:3A:56:D4:50:B6:31:69:3A Authority key identifier: B1:17:7B:2B:4C:2D:F8:B3:06:D1:4A:64:30:07:28:6F:89:D6:9C:C0 Certificate issuer: /CN=A915DA5A/serialNumber=B1177B2B4C2DF8B306D14A643007286F89D69CC0 Certificate serial: 0B91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sRd7K0wt-LMG0UpkMAcob4nWnMA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/sRd7K0wt-LMG0UpkMAcob4nWnMA.mft Manifest number: 0B8B Signing time: Sat 18 May 2024 19:19:08 +0000 Manifest this update: Sat 18 May 2024 19:19:07 +0000 Manifest next update: Sat 25 May 2024 19:19:07 +0000 Files and hashes: 1: sRd7K0wt-LMG0UpkMAcob4nWnMA.crl (hash: l1zgzecH6AXF4vT2LKaLVHAj1cYEO8Xgh/ZMYQcWum4=) 2: 719728B803EF11EAB301F66FC4F9AE02.roa (hash: QQchtcaBfC+kz2+McpDy2OREMEhK1dzWE54pdghGR84=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/sRd7K0wt-LMG0UpkMAcob4nWnMA.crl rsync://rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/sRd7K0wt-LMG0UpkMAcob4nWnMA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sRd7K0wt-LMG0UpkMAcob4nWnMA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2961 (0xb91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DA5A/serialNumber=B1177B2B4C2DF8B306D14A643007286F89D69CC0 Validity Not Before: May 18 19:19:07 2024 GMT Not After : May 25 19:19:07 2024 GMT Subject: CN=6648ff2c-92a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:49:77:de:5d:67:d0:42:4f:be:3a:e1:86:60: 0e:9c:01:81:17:58:b5:5e:de:d7:83:7c:c3:fe:92: 85:71:e6:a3:b2:a3:3e:41:20:6e:e2:c9:28:96:99: b2:18:65:11:cc:a5:86:00:f3:f9:68:19:04:ff:07: 4d:f5:b0:7e:db:f7:f2:3d:ba:33:52:64:a9:38:0c: 1c:af:a0:db:2a:c5:20:86:b3:a6:b5:74:88:db:84: 39:f5:da:d7:ff:ae:88:52:02:cc:bc:f6:0c:cf:57: e2:a2:56:41:ab:3b:12:10:67:70:88:a8:1b:b4:50: 42:0e:9a:d6:f4:e5:5a:9d:19:b4:9f:d6:b6:1f:42: 89:25:3a:f4:6e:d3:a1:56:d1:47:f0:20:2a:cb:de: a8:96:94:a4:5e:03:ca:c5:ab:6a:1d:44:b8:2d:31: a3:36:38:2a:f3:e3:0a:cd:ad:04:c6:ed:1c:9d:1b: e5:79:7d:ff:2d:c1:6a:22:4e:2b:b5:f2:bb:67:54: eb:1f:21:a3:c8:c2:fb:b1:19:4b:a0:24:89:3c:87: 85:54:4d:7d:d4:11:d8:91:92:3d:46:38:a0:0c:ff: 80:7b:73:43:7a:8c:f4:02:97:12:23:b9:d9:67:0f: 50:81:52:86:30:d6:cb:5a:22:1b:f8:a3:b9:18:da: c4:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:0E:16:22:91:A6:2E:2F:F2:E5:CE:CA:3A:56:D4:50:B6:31:69:3A X509v3 Authority Key Identifier: keyid:B1:17:7B:2B:4C:2D:F8:B3:06:D1:4A:64:30:07:28:6F:89:D6:9C:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/sRd7K0wt-LMG0UpkMAcob4nWnMA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sRd7K0wt-LMG0UpkMAcob4nWnMA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/sRd7K0wt-LMG0UpkMAcob4nWnMA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:f2:02:6f:94:25:42:00:ac:5c:8d:b9:b5:26:44:93:0d:e9: 5b:17:10:a9:f6:0a:da:32:5d:09:bb:bb:fc:bb:7a:26:03:fd: db:48:ee:7d:ab:b3:f6:26:35:2d:22:2b:a2:2f:6f:3c:61:c9: be:71:39:1b:ac:7e:6f:36:f5:b8:f9:f4:2f:82:12:11:9c:89: 43:d0:76:82:fe:60:ee:c4:d1:22:89:52:0b:bf:94:0a:49:81: d6:e2:fb:b7:6b:28:1a:d8:09:ea:e5:fa:4b:58:2b:f6:cf:fc: d6:51:d7:f2:03:71:84:37:1f:7f:f0:e5:a3:ed:59:c1:83:58: f1:38:67:70:e1:30:bc:08:b4:64:38:f4:89:ad:2b:53:af:4b: 28:37:2f:fc:26:f8:f8:41:40:e1:29:65:84:28:76:8e:64:84: fc:b4:b8:ca:61:fd:67:84:b2:56:5a:a5:2f:8e:79:07:70:52: db:b5:cd:da:d7:49:86:68:b9:6c:9b:c0:84:1a:9e:ce:84:d0: 69:6f:53:fd:f0:07:e3:eb:b5:94:52:84:e6:14:1c:94:a7:fd: 46:8a:22:86:f8:ea:c9:34:f7:c8:3a:5c:99:02:22:74:78:dd: 76:3b:d4:0d:cd:95:0f:ae:a4:5a:9b:4e:8a:13:43:be:ff:1b: be:23:51:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NURBNUExMTAvBgNVBAUTKEIxMTc3QjJCNEMyREY4QjMwNkQxNEE2NDMwMDcyODZG ODlENjlDQzAwHhcNMjQwNTE4MTkxOTA3WhcNMjQwNTI1MTkxOTA3WjAYMRYwFAYD VQQDEw02NjQ4ZmYyYy05MmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Ul33l1n0EJPvjrhhmAOnAGBF1i1Xt7Xg3zD/pKFceajsqM+QSBu4skolpmy GGURzKWGAPP5aBkE/wdN9bB+2/fyPbozUmSpOAwcr6DbKsUghrOmtXSI24Q59drX /66IUgLMvPYMz1fiolZBqzsSEGdwiKgbtFBCDprW9OVanRm0n9a2H0KJJTr0btOh VtFH8CAqy96olpSkXgPKxatqHUS4LTGjNjgq8+MKza0Exu0cnRvleX3/LcFqIk4r tfK7Z1TrHyGjyML7sRlLoCSJPIeFVE191BHYkZI9RjigDP+Ae3NDeoz0ApcSI7nZ Zw9QgVKGMNbLWiIb+KO5GNrE7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD0OFiKR pi4v8uXOyjpW1FC2MWk6MB8GA1UdIwQYMBaAFLEXeytMLfizBtFKZDAHKG+J1pzA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1REE1QS80NEU3NzBCMjAz RUUxMUVBQkNBMUExNkVDNEY5QUUwMi9zUmQ3SzB3dC1MTUcwVXBrTUFjb2I0bldu TUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NSZDdLMHd0LUxNRzBVcGtNQWNvYjRuV25NQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 REE1QS80NEU3NzBCMjAzRUUxMUVBQkNBMUExNkVDNEY5QUUwMi9zUmQ3SzB3dC1M TUcwVXBrTUFjb2I0blduTUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAR8gJvlCVCAKxcjbm1JkSTDelbFxCp9graMl0Ju7v8u3omA/3bSO59 q7P2JjUtIiuiL288Ycm+cTkbrH5vNvW4+fQvghIRnIlD0HaC/mDuxNEiiVILv5QK SYHW4vu3ayga2Anq5fpLWCv2z/zWUdfyA3GENx9/8OWj7VnBg1jxOGdw4TC8CLRk OPSJrStTr0soNy/8Jvj4QUDhKWWEKHaOZIT8tLjKYf1nhLJWWqUvjnkHcFLbtc3a 10mGaLlsm8CEGp7OhNBpb1P98Afj67WUUoTmFByUp/1GiiKG+OrJNPfIOlyZAiJ0 eN12O9QNzZUPrqRam06KE0O+/xu+I1Hm -----END CERTIFICATE-----Generated at Sat May 18 19:56:05 2024 by rpki-client on console-fra.rpki-client.org