$ rpki-client -vvf rpki.apnic.net/member_repository/A91655EF/607729D0FAC111E8BC76D671C4F9AE02/B04WzKCA1UX-9PLYrcuQnw7LIKI.mft File: B04WzKCA1UX-9PLYrcuQnw7LIKI.mft (raw, json) Hash identifier: kxg5MlcNI00PHxEmS7AqsU/rn9CdlnCKAgjFu3ku2kk= Subject key identifier: C5:66:18:29:DC:E0:46:13:1D:62:B2:A1:02:23:E9:5A:49:C2:12:85 Authority key identifier: 07:4E:16:CC:A0:80:D5:45:FE:F4:F2:D8:AD:CB:90:9F:0E:CB:20:A2 Certificate issuer: /CN=A91655EF/serialNumber=074E16CCA080D545FEF4F2D8ADCB909F0ECB20A2 Certificate serial: 10FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B04WzKCA1UX-9PLYrcuQnw7LIKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91655EF/607729D0FAC111E8BC76D671C4F9AE02/B04WzKCA1UX-9PLYrcuQnw7LIKI.mft Manifest number: 10E0 Signing time: Sat 18 May 2024 17:53:01 +0000 Manifest this update: Sat 18 May 2024 17:53:01 +0000 Manifest next update: Sat 25 May 2024 17:53:01 +0000 Files and hashes: 1: B04WzKCA1UX-9PLYrcuQnw7LIKI.crl (hash: W51HJgJgRTl+bNCJ8/xQ/KbQ7bvJbV0zYznnlv6DWtU=) 2: 70F8E50039AF11EE8486453DC4F9AE02.roa (hash: P1PXKxb5YOY8BpDSu1o3skcs/Ukvr/AZNNjHU7y8sT8=) 3: BA1EA120E6FC11EE96775810C4F9AE02.roa (hash: A5fAuFOfiGUQaeu45xBTYCW02QdZE5mmyPLZM+zs/1w=) 4: FEDDF63AE6FC11EE8AD61644C4F9AE02.roa (hash: 7HrlYeJwAUge6HN9R5M1sm7+xrjvlVoJATUKHYifHl0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91655EF/607729D0FAC111E8BC76D671C4F9AE02/B04WzKCA1UX-9PLYrcuQnw7LIKI.crl rsync://rpki.apnic.net/member_repository/A91655EF/607729D0FAC111E8BC76D671C4F9AE02/B04WzKCA1UX-9PLYrcuQnw7LIKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B04WzKCA1UX-9PLYrcuQnw7LIKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4346 (0x10fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91655EF/serialNumber=074E16CCA080D545FEF4F2D8ADCB909F0ECB20A2 Validity Not Before: May 18 17:53:01 2024 GMT Not After : May 25 17:53:01 2024 GMT Subject: CN=6648eafd-64c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:cf:e4:6a:52:3f:f9:0b:d2:0b:f2:2a:62:2d: 94:10:9f:de:02:c0:53:6a:10:c9:42:60:f4:3b:be: 86:90:d1:b5:7f:87:fb:90:45:cd:7c:87:56:de:16: d3:22:9c:8f:f7:7b:f7:8b:90:37:4b:d7:75:c3:60: 65:2d:c5:16:a0:ec:06:8b:58:c4:b2:71:72:6c:75: c9:0a:b6:dc:db:bc:71:81:31:91:39:bb:84:9a:af: 58:cf:e8:36:6c:f9:d0:27:e1:ba:92:a3:f9:fb:f6: b3:53:49:58:e1:37:90:94:de:07:57:6b:49:0e:54: 5b:9f:5a:b8:ab:ee:00:f3:87:53:e3:96:86:6d:70: f9:b2:98:42:a5:16:51:58:10:7c:d6:c3:e3:8b:10: fb:fd:39:86:d6:4c:b4:ed:7a:d5:c2:d7:c7:7d:3f: bf:05:ac:83:bf:1d:13:55:6b:5c:7d:d0:e2:d1:51: a7:9a:fb:4b:65:c1:6c:39:9f:37:4d:8e:1c:2f:81: c9:df:dc:a2:89:a7:07:6e:79:3f:37:e8:85:5b:e5: b8:39:44:59:ab:5e:06:7a:35:a9:95:80:2b:e9:8e: 47:3f:5e:bd:95:f2:2a:74:0d:36:70:9f:b4:3b:1e: 63:41:28:03:d0:b5:da:dc:46:8f:e7:ba:ad:8c:56: 2a:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:66:18:29:DC:E0:46:13:1D:62:B2:A1:02:23:E9:5A:49:C2:12:85 X509v3 Authority Key Identifier: keyid:07:4E:16:CC:A0:80:D5:45:FE:F4:F2:D8:AD:CB:90:9F:0E:CB:20:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91655EF/607729D0FAC111E8BC76D671C4F9AE02/B04WzKCA1UX-9PLYrcuQnw7LIKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B04WzKCA1UX-9PLYrcuQnw7LIKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91655EF/607729D0FAC111E8BC76D671C4F9AE02/B04WzKCA1UX-9PLYrcuQnw7LIKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:00:20:5b:16:97:df:03:08:47:a1:77:ae:05:11:30:05:f5: 02:cd:26:b9:88:40:5f:4f:71:1e:ec:be:da:69:7f:8a:6a:dc: 1d:59:b6:4c:5a:a0:9e:a8:09:21:1e:80:3f:7d:e9:0d:90:ae: fe:2a:f7:cf:bb:8d:37:83:26:cf:0f:fd:cb:e8:2f:97:b1:ca: 18:40:e5:f1:4d:a1:e6:0b:86:39:32:4e:da:b1:0c:9e:10:79: 34:e8:c7:22:c5:01:7b:39:d2:b2:45:2c:72:f5:db:65:8e:c1: ff:2e:dc:01:07:3a:d2:7f:2d:d6:16:4e:60:b4:f2:84:50:5c: 33:3f:11:38:60:e5:cc:15:7c:8c:dd:b1:12:e5:a2:f7:0b:80: 83:0f:40:f5:7c:cb:66:9f:75:93:67:ef:3c:21:1b:d6:4f:5a: 5a:38:bb:91:df:c4:cc:c9:ef:1f:ac:c8:3a:da:20:d3:0f:c2: 78:a6:ce:a7:70:50:7e:53:0d:9d:8a:cf:43:35:dc:fe:77:6d: c9:d8:57:0b:b6:d3:e4:78:c7:00:01:bf:81:9c:a5:e2:6d:3a: de:03:57:09:3e:f8:e8:b7:37:8e:db:bd:84:29:c2:ef:f5:ac: 08:32:91:0d:0a:40:3c:8d:35:78:64:a4:bf:27:d0:15:33:41: 64:79:af:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1RUYxMTAvBgNVBAUTKDA3NEUxNkNDQTA4MEQ1NDVGRUY0RjJEOEFEQ0I5MDlG MEVDQjIwQTIwHhcNMjQwNTE4MTc1MzAxWhcNMjQwNTI1MTc1MzAxWjAYMRYwFAYD VQQDEw02NjQ4ZWFmZC02NGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp8/kalI/+QvSC/IqYi2UEJ/eAsBTahDJQmD0O76GkNG1f4f7kEXNfIdW3hbT IpyP93v3i5A3S9d1w2BlLcUWoOwGi1jEsnFybHXJCrbc27xxgTGRObuEmq9Yz+g2 bPnQJ+G6kqP5+/azU0lY4TeQlN4HV2tJDlRbn1q4q+4A84dT45aGbXD5sphCpRZR WBB81sPjixD7/TmG1ky07XrVwtfHfT+/BayDvx0TVWtcfdDi0VGnmvtLZcFsOZ83 TY4cL4HJ39yiiacHbnk/N+iFW+W4OURZq14GejWplYAr6Y5HP169lfIqdA02cJ+0 Ox5jQSgD0LXa3EaP57qtjFYqEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMVmGCnc 4EYTHWKyoQIj6VpJwhKFMB8GA1UdIwQYMBaAFAdOFsyggNVF/vTy2K3LkJ8OyyCi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTVFRi82MDc3MjlEMEZB QzExMUU4QkM3NkQ2NzFDNEY5QUUwMi9CMDRXektDQTFVWC05UExZcmN1UW53N0xJ S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0IwNFd6S0NBMVVYLTlQTFlyY3VRbnc3TElLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTVFRi82MDc3MjlEMEZBQzExMUU4QkM3NkQ2NzFDNEY5QUUwMi9CMDRXektDQTFV WC05UExZcmN1UW53N0xJS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCACBbFpffAwhHoXeuBREwBfUCzSa5iEBfT3Ee7L7aaX+KatwdWbZM WqCeqAkhHoA/fekNkK7+KvfPu403gybPD/3L6C+XscoYQOXxTaHmC4Y5Mk7asQye EHk06McixQF7OdKyRSxy9dtljsH/LtwBBzrSfy3WFk5gtPKEUFwzPxE4YOXMFXyM 3bES5aL3C4CDD0D1fMtmn3WTZ+88IRvWT1paOLuR38TMye8frMg62iDTD8J4ps6n cFB+Uw2dis9DNdz+d23J2FcLttPkeMcAAb+BnKXibTreA1cJPvjotzeO272EKcLv 9awIMpENCkA8jTV4ZKS/J9AVM0Fkea9X -----END CERTIFICATE-----Generated at Sat May 18 18:46:45 2024 by rpki-client on console-fra.rpki-client.org