$ rpki-client -vvf rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.mft File: SyWxRyDwREuz1mj5Y1hDVPf6whM.mft (raw, json) Hash identifier: obrFjEZziVEW6fAhe1/H1PlN942QUKv1HboV55rZrfc= Subject key identifier: 1D:AF:6C:EC:89:AA:38:A4:70:49:F3:A2:87:14:21:2A:A7:5E:39:1A Authority key identifier: 4B:25:B1:47:20:F0:44:4B:B3:D6:68:F9:63:58:43:54:F7:FA:C2:13 Certificate issuer: /CN=A91650EA/serialNumber=4B25B14720F0444BB3D668F963584354F7FAC213 Certificate serial: 29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SyWxRyDwREuz1mj5Y1hDVPf6whM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.mft Manifest number: 28 Signing time: Sun 19 May 2024 08:29:14 +0000 Manifest this update: Sun 19 May 2024 08:29:13 +0000 Manifest next update: Sun 26 May 2024 08:29:13 +0000 Files and hashes: 1: SyWxRyDwREuz1mj5Y1hDVPf6whM.crl (hash: 6Q9rKcgKn/3tkW49YvqIyg83v0IprSPeHDVdVjECZ1s=) 2: D0F245E0D76711EE99C72C29C4F9AE02.roa (hash: JK0bPzT8yakMMRyYc7JiDFGO+FB67qkctv2hOGSnM1U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.crl rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SyWxRyDwREuz1mj5Y1hDVPf6whM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650EA/serialNumber=4B25B14720F0444BB3D668F963584354F7FAC213 Validity Not Before: May 19 08:29:13 2024 GMT Not After : May 26 08:29:13 2024 GMT Subject: CN=6649b859-16fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d0:db:69:59:22:ab:cf:ec:66:59:e3:80:82: 0f:9f:2f:e0:fc:3d:8c:f2:d6:89:31:cf:2d:f2:af: c0:6e:d9:9b:f8:df:e5:d3:ae:34:c5:90:59:21:79: 6c:a3:c3:a2:72:75:8a:eb:21:bb:b6:3c:d4:d1:4e: 09:43:66:3b:37:0e:54:5b:5d:63:50:18:f4:6b:74: d6:36:5e:1e:9d:e8:7a:2d:ec:32:68:0d:df:d7:82: 48:63:d5:df:36:73:ff:e4:0d:94:02:d4:c2:50:86: 9e:2c:16:45:e8:3a:d6:e2:43:0b:01:92:97:05:3f: e0:14:1c:8f:fe:2d:31:13:fb:42:03:36:58:55:3a: c0:0f:46:f6:0d:9d:a7:53:0f:9a:fe:8c:e9:1c:88: 71:c4:b1:e0:53:ed:d5:f1:15:05:6c:5a:1b:70:01: 94:8a:6d:57:a0:f7:6f:db:e9:c7:8c:ea:46:85:e1: ed:3b:13:f2:d2:1c:63:7d:06:48:3e:d2:8a:b6:4d: d1:2f:33:df:a2:73:2f:ad:2c:87:c0:0f:e4:bc:a0: 4b:5f:84:c8:ae:b5:69:8f:90:d3:29:39:ad:0f:c6: 74:a8:1c:c9:a3:39:c9:a3:49:4c:76:5e:75:bd:05: 37:db:86:ba:72:35:48:bb:37:2f:86:19:c2:cb:11: b8:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:AF:6C:EC:89:AA:38:A4:70:49:F3:A2:87:14:21:2A:A7:5E:39:1A X509v3 Authority Key Identifier: keyid:4B:25:B1:47:20:F0:44:4B:B3:D6:68:F9:63:58:43:54:F7:FA:C2:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SyWxRyDwREuz1mj5Y1hDVPf6whM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:98:ce:3d:55:7d:18:60:88:47:f0:28:e3:78:5e:af:51:dc: 75:eb:d0:6e:95:13:6c:da:a3:61:86:aa:cf:1a:4d:f2:96:ff: aa:95:79:18:eb:10:4a:1d:21:64:45:b9:38:6c:30:b8:27:59: 61:e1:b0:b8:64:fe:d1:66:6e:d3:24:c0:9f:7a:56:f0:ed:c2: 08:77:cb:65:29:0c:f9:0d:79:be:f4:42:00:48:e9:ad:1c:99: 06:df:95:fc:e6:98:9c:1e:17:9b:5f:44:96:49:aa:94:dc:ba: 09:86:5c:d9:54:32:e8:b5:f4:75:29:9d:52:9c:f6:3f:16:b5: 65:52:b3:b4:82:52:5c:25:68:cc:35:f5:8d:cb:f6:11:37:53: 64:37:cf:88:10:7a:f1:bc:45:e5:ba:fa:40:e6:a4:a4:25:51: 86:2f:56:c7:3e:9d:9c:72:5d:22:cc:eb:e8:dc:20:e5:b7:51: da:6a:16:eb:a5:45:70:4b:93:cf:04:5f:f5:19:d3:72:39:ba: 3d:9e:50:ab:3c:14:f1:37:ae:2c:55:c5:c8:23:20:61:bd:7c: 22:89:d9:8d:08:53:1a:82:c0:7f:72:5f:23:c0:9e:56:60:68: 38:f4:2b:d5:a7:85:8f:7c:44:25:10:2f:0d:c9:69:58:4f:f1: 68:c9:4f:92 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTBFQTExMC8GA1UEBRMoNEIyNUIxNDcyMEYwNDQ0QkIzRDY2OEY5NjM1ODQzNTRG N0ZBQzIxMzAeFw0yNDA1MTkwODI5MTNaFw0yNDA1MjYwODI5MTNaMBgxFjAUBgNV BAMTDTY2NDliODU5LTE2ZmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDI0NtpWSKrz+xmWeOAgg+fL+D8PYzy1okxzy3yr8Bu2Zv43+XTrjTFkFkheWyj w6JydYrrIbu2PNTRTglDZjs3DlRbXWNQGPRrdNY2Xh6d6Hot7DJoDd/Xgkhj1d82 c//kDZQC1MJQhp4sFkXoOtbiQwsBkpcFP+AUHI/+LTET+0IDNlhVOsAPRvYNnadT D5r+jOkciHHEseBT7dXxFQVsWhtwAZSKbVeg92/b6ceM6kaF4e07E/LSHGN9Bkg+ 0oq2TdEvM9+icy+tLIfAD+S8oEtfhMiutWmPkNMpOa0PxnSoHMmjOcmjSUx2XnW9 BTfbhrpyNUi7Ny+GGcLLEbinAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHa9s7Imq OKRwSfOihxQhKqdeORowHwYDVR0jBBgwFoAUSyWxRyDwREuz1mj5Y1hDVPf6whMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1MEVBLzUyMUQxQUQ4RDc2 NzExRUVBRjIyQzA2NkM0RjlBRTAyL1N5V3hSeUR3UkV1ejFtajVZMWhEVlBmNndo TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU3lXeFJ5RHdSRXV6MW1qNVkxaERWUGY2d2hNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1 MEVBLzUyMUQxQUQ4RDc2NzExRUVBRjIyQzA2NkM0RjlBRTAyL1N5V3hSeUR3UkV1 ejFtajVZMWhEVlBmNndoTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD+Yzj1VfRhgiEfwKON4Xq9R3HXr0G6VE2zao2GGqs8aTfKW/6qVeRjr EEodIWRFuThsMLgnWWHhsLhk/tFmbtMkwJ96VvDtwgh3y2UpDPkNeb70QgBI6a0c mQbflfzmmJweF5tfRJZJqpTcugmGXNlUMui19HUpnVKc9j8WtWVSs7SCUlwlaMw1 9Y3L9hE3U2Q3z4gQevG8ReW6+kDmpKQlUYYvVsc+nZxyXSLM6+jcIOW3UdpqFuul RXBLk88EX/UZ03I5uj2eUKs8FPE3rixVxcgjIGG9fCKJ2Y0IUxqCwH9yXyPAnlZg aDj0K9WnhY98RCUQLw3JaVhP8WjJT5I= -----END CERTIFICATE-----Generated at Sun May 19 09:04:13 2024 by rpki-client on console-fra.rpki-client.org