$ rpki-client -vvf rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft File: 3K6HG3xct5vH7PZ5s7LTyVan2eM.mft (raw, json) Hash identifier: KYxkZ+0+wOVFYLa7yvF1X36ghXeSKntzRYT60bO6Fgg= Subject key identifier: 3E:7E:15:EE:7C:8D:37:D3:E5:25:E7:18:D4:D7:46:1F:EA:C1:7F:1F Authority key identifier: DC:AE:87:1B:7C:5C:B7:9B:C7:EC:F6:79:B3:B2:D3:C9:56:A7:D9:E3 Certificate issuer: /CN=A91604AC/serialNumber=DCAE871B7C5CB79BC7ECF679B3B2D3C956A7D9E3 Certificate serial: 05BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft Manifest number: 05B2 Signing time: Sun 19 May 2024 00:21:30 +0000 Manifest this update: Sun 19 May 2024 00:21:30 +0000 Manifest next update: Sun 26 May 2024 00:21:30 +0000 Files and hashes: 1: 3K6HG3xct5vH7PZ5s7LTyVan2eM.crl (hash: KNnpUbFerLlKunPiw1UoyKFEOEvOEol91y3Lj4TFYeM=) 2: 0081F3D6F22111EE8EEC070EC4F9AE02.roa (hash: O0WToewD6QdFMbl6xT5t2Q3rykz6toPpLMo5BA08OvY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.crl rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1469 (0x5bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91604AC/serialNumber=DCAE871B7C5CB79BC7ECF679B3B2D3C956A7D9E3 Validity Not Before: May 19 00:21:30 2024 GMT Not After : May 26 00:21:30 2024 GMT Subject: CN=6649460a-cb1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:69:a7:8e:94:ca:6f:c0:14:be:fa:f6:bc:98: b5:a3:5b:af:9e:1e:d0:90:0f:ba:4d:69:8c:46:32: 0c:0f:3e:53:21:25:7d:66:b6:54:91:47:8e:09:9e: bb:13:d9:be:64:90:98:1d:b6:c8:03:6c:94:3b:b2: 4f:37:a2:96:4f:ad:d9:5a:9b:f5:84:57:14:1c:3c: d2:9d:52:e3:d1:af:b3:e1:b2:8f:94:65:28:03:c9: b7:a0:9e:b8:d5:0a:a5:e2:cf:50:d1:92:88:9c:e7: bc:ce:12:0b:4f:ce:ca:88:07:f6:2d:66:9e:cf:b2: 76:c6:65:bb:56:d8:fc:d7:16:ed:79:fb:ac:50:6d: 68:e2:de:b9:ee:74:b7:c4:1f:98:9b:e2:bb:99:04: d5:e3:97:be:a9:fc:4b:4f:01:78:f1:55:2d:31:c7: 3b:fe:bf:21:ff:70:53:21:bf:1d:30:8e:7f:f9:c2: 11:f9:b3:a7:d7:76:98:52:64:16:30:4c:87:02:3b: 17:ba:a6:ef:e3:4d:44:0b:e8:7e:7d:a0:c5:c8:0c: a1:db:55:81:5b:02:ff:06:40:d2:19:24:17:c1:21: de:b9:d2:17:ab:c7:5e:ef:00:4b:b4:bc:d2:ad:69: c0:c3:b2:bd:7c:31:60:ca:04:a3:11:17:5b:91:0d: 5c:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:7E:15:EE:7C:8D:37:D3:E5:25:E7:18:D4:D7:46:1F:EA:C1:7F:1F X509v3 Authority Key Identifier: keyid:DC:AE:87:1B:7C:5C:B7:9B:C7:EC:F6:79:B3:B2:D3:C9:56:A7:D9:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:b0:2e:c3:ee:8d:97:4a:66:8d:0b:6d:73:db:85:be:1a:c5: 9c:b7:dc:8f:1a:39:52:9c:32:90:07:08:5d:55:2c:c0:f0:b1: ba:ff:1d:1b:3c:1f:ad:1c:32:ef:d0:ea:47:38:85:39:54:57: 23:51:a4:83:0f:c0:a4:cb:97:89:b2:f7:92:61:e4:e4:fa:13: c8:75:8f:af:f6:b8:66:fd:f4:84:70:d0:79:99:b5:9b:07:07: 32:85:95:dc:6e:84:a2:cf:8c:00:c3:e6:e5:ab:5e:ad:15:c4: 5e:ef:7b:fa:35:da:65:34:0a:ff:66:98:72:dc:c9:14:b0:a7: cd:0f:0f:95:a6:96:9e:51:ec:4d:49:c0:fa:34:e0:44:94:5f: eb:dd:e6:f3:da:d2:55:1e:e8:7f:0d:35:e6:73:3c:c0:60:58: 03:bc:ae:a8:31:f2:a8:f1:c6:1b:75:70:68:91:be:1b:d9:c2: e3:bc:31:ff:fc:13:20:b8:76:44:d1:0a:51:8b:c1:75:ca:09: 0b:4b:20:a5:fb:21:68:a9:f1:e6:5c:5a:26:16:bb:6d:1e:79: 5b:16:3d:11:8c:60:8f:19:2d:09:4e:09:3b:ce:0e:cc:4c:fa: 0e:9f:12:c8:e9:61:5a:24:f3:0f:bd:ed:47:b3:04:e5:38:74: 1c:46:b5:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA0QUMxMTAvBgNVBAUTKERDQUU4NzFCN0M1Q0I3OUJDN0VDRjY3OUIzQjJEM0M5 NTZBN0Q5RTMwHhcNMjQwNTE5MDAyMTMwWhcNMjQwNTI2MDAyMTMwWjAYMRYwFAYD VQQDEw02NjQ5NDYwYS1jYjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0mmnjpTKb8AUvvr2vJi1o1uvnh7QkA+6TWmMRjIMDz5TISV9ZrZUkUeOCZ67 E9m+ZJCYHbbIA2yUO7JPN6KWT63ZWpv1hFcUHDzSnVLj0a+z4bKPlGUoA8m3oJ64 1Qql4s9Q0ZKInOe8zhILT87KiAf2LWaez7J2xmW7Vtj81xbtefusUG1o4t657nS3 xB+Ym+K7mQTV45e+qfxLTwF48VUtMcc7/r8h/3BTIb8dMI5/+cIR+bOn13aYUmQW MEyHAjsXuqbv401EC+h+faDFyAyh21WBWwL/BkDSGSQXwSHeudIXq8de7wBLtLzS rWnAw7K9fDFgygSjERdbkQ1clwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD5+Fe58 jTfT5SXnGNTXRh/qwX8fMB8GA1UdIwQYMBaAFNyuhxt8XLebx+z2ebOy08lWp9nj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDRBQy80OTcyMDk5Njgx NDUxMUVCQjJERDVENEJDNEY5QUUwMi8zSzZIRzN4Y3Q1dkg3UFo1czdMVHlWYW4y ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNLNkhHM3hjdDV2SDdQWjVzN0xUeVZhbjJlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDRBQy80OTcyMDk5NjgxNDUxMUVCQjJERDVENEJDNEY5QUUwMi8zSzZIRzN4Y3Q1 dkg3UFo1czdMVHlWYW4yZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGsC7D7o2XSmaNC21z24W+GsWct9yPGjlSnDKQBwhdVSzA8LG6/x0b PB+tHDLv0OpHOIU5VFcjUaSDD8Cky5eJsveSYeTk+hPIdY+v9rhm/fSEcNB5mbWb BwcyhZXcboSiz4wAw+blq16tFcRe73v6NdplNAr/Zphy3MkUsKfNDw+VppaeUexN ScD6NOBElF/r3ebz2tJVHuh/DTXmczzAYFgDvK6oMfKo8cYbdXBokb4b2cLjvDH/ /BMguHZE0QpRi8F1ygkLSyCl+yFoqfHmXFomFrttHnlbFj0RjGCPGS0JTgk7zg7M TPoOnxLI6WFaJPMPve1HswTlOHQcRrX1 -----END CERTIFICATE-----Generated at Sun May 19 00:59:41 2024 by rpki-client on console-fra.rpki-client.org