$ rpki-client -vvf rpki.apnic.net/member_repository/A91870C2/8D712EA2006211EAABE73F4CC4F9AE02/jHj-x0VZIMv94DD-VE5X8eyfyGQ.mft File: jHj-x0VZIMv94DD-VE5X8eyfyGQ.mft (raw, json) Hash identifier: c5djPSJat/E7r4w0Ay/UPjXCu1YBxItKIQ67UsVOkUw= Subject key identifier: F3:D4:64:7E:09:A6:B3:2E:7F:60:0A:AB:E7:32:F8:EE:4F:5D:98:8C Authority key identifier: 8C:78:FE:C7:45:59:20:CB:FD:E0:30:FE:54:4E:57:F1:EC:9F:C8:64 Certificate issuer: /CN=A91870C2/serialNumber=8C78FEC7455920CBFDE030FE544E57F1EC9FC864 Certificate serial: 0B9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jHj-x0VZIMv94DD-VE5X8eyfyGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91870C2/8D712EA2006211EAABE73F4CC4F9AE02/jHj-x0VZIMv94DD-VE5X8eyfyGQ.mft Manifest number: 0B99 Signing time: Sat 18 May 2024 19:14:50 +0000 Manifest this update: Sat 18 May 2024 19:14:49 +0000 Manifest next update: Sat 25 May 2024 19:14:49 +0000 Files and hashes: 1: jHj-x0VZIMv94DD-VE5X8eyfyGQ.crl (hash: lX9nPoLs/3TtCTe4ExlNVeUXkeZy6iOYTbs80gNwJ3w=) 2: 6FF4CA0E006311EAB403274DC4F9AE02.roa (hash: r72v/EyKxTF64jY+Sy+xAC5v6NT9NGanOanJ0mr1WQo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91870C2/8D712EA2006211EAABE73F4CC4F9AE02/jHj-x0VZIMv94DD-VE5X8eyfyGQ.crl rsync://rpki.apnic.net/member_repository/A91870C2/8D712EA2006211EAABE73F4CC4F9AE02/jHj-x0VZIMv94DD-VE5X8eyfyGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jHj-x0VZIMv94DD-VE5X8eyfyGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2975 (0xb9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91870C2/serialNumber=8C78FEC7455920CBFDE030FE544E57F1EC9FC864 Validity Not Before: May 18 19:14:49 2024 GMT Not After : May 25 19:14:49 2024 GMT Subject: CN=6648fe2a-89e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e1:cc:7c:5a:35:d2:17:f4:48:5e:1e:9d:bd: 89:d3:b3:e7:d0:52:a5:4a:b0:db:00:12:1c:a2:3f: b7:6c:b6:dd:04:70:7e:9e:f3:75:17:2c:f8:5d:86: 2c:83:42:1e:bd:b0:e0:53:d2:28:66:44:cc:82:60: 30:d7:3d:75:45:24:23:b7:7e:88:63:eb:48:17:7c: 10:cf:d1:2c:d7:f1:5f:19:ca:09:34:ee:35:91:b3: 70:25:a8:6b:d5:19:81:6e:c1:e4:6b:e6:3e:2b:f5: 6a:1a:69:6f:5e:e8:ee:a5:1b:00:00:6a:10:fc:35: c3:80:f6:4f:07:e2:46:bc:98:28:f1:13:20:f8:56: ff:8e:d8:e6:52:24:e1:96:3f:4b:29:a5:cd:ba:d3: 9b:f6:35:6d:f2:20:97:57:ea:b9:e4:22:45:83:0d: 4d:90:b9:4a:b2:7f:f5:b0:9e:47:93:22:bd:af:c3: b3:c0:18:06:1d:44:e3:9e:bb:0c:d2:22:8f:bf:80: 96:93:f6:bc:49:83:17:2d:3d:8f:fa:e2:53:87:07: 36:15:c7:91:24:75:5e:ae:37:26:2c:76:16:0c:39: c7:6f:cc:5b:6b:65:da:d7:b6:af:4b:7c:40:9f:d9: 7e:d8:31:09:b4:89:cc:47:b8:1e:c4:11:51:be:59: f9:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:D4:64:7E:09:A6:B3:2E:7F:60:0A:AB:E7:32:F8:EE:4F:5D:98:8C X509v3 Authority Key Identifier: keyid:8C:78:FE:C7:45:59:20:CB:FD:E0:30:FE:54:4E:57:F1:EC:9F:C8:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91870C2/8D712EA2006211EAABE73F4CC4F9AE02/jHj-x0VZIMv94DD-VE5X8eyfyGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jHj-x0VZIMv94DD-VE5X8eyfyGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91870C2/8D712EA2006211EAABE73F4CC4F9AE02/jHj-x0VZIMv94DD-VE5X8eyfyGQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:28:69:88:1d:57:d6:30:1f:aa:5f:75:9c:00:4a:0e:b5:fc: ab:06:20:9b:4c:20:02:26:62:c7:2d:69:54:21:d3:10:af:9d: b3:56:1e:3b:45:70:a8:88:47:0d:07:ba:6b:80:ab:7d:f4:57: a8:ab:52:9c:bd:0f:00:3b:9b:7c:f0:d3:68:81:22:27:7c:d0: 30:bf:f8:b8:e0:8c:4d:3d:d7:fc:ee:ce:98:5c:f7:55:ee:14: c6:50:6b:cd:72:3a:90:73:2a:2d:0a:c3:31:db:61:d3:14:8e: 97:40:08:8f:5c:1e:3b:4a:d2:98:50:a9:73:9c:b2:bf:ae:8c: f7:3d:8a:24:74:0f:db:9f:4a:7a:1b:20:fa:c3:e8:82:a9:c3: 96:cb:47:63:2e:91:c3:78:5b:82:ca:dc:0d:ea:cb:2d:37:8a: d1:96:b2:f3:26:25:59:03:7a:e9:bc:49:70:c2:6c:c3:5a:fc: f5:61:13:e9:7a:7e:1c:19:d5:7c:95:ce:59:79:59:09:b2:ce: b6:8e:fb:b5:b3:bb:cd:a8:f8:4b:a4:02:b8:31:8f:f1:35:99: f0:b0:d2:5a:40:bd:7f:ac:6d:7c:09:a8:6c:7f:46:84:26:08: 9a:b8:c0:5a:d9:9a:60:8e:d2:77:e2:df:94:67:84:7e:47:1c: 1a:28:b9:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC58wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcwQzIxMTAvBgNVBAUTKDhDNzhGRUM3NDU1OTIwQ0JGREUwMzBGRTU0NEU1N0Yx RUM5RkM4NjQwHhcNMjQwNTE4MTkxNDQ5WhcNMjQwNTI1MTkxNDQ5WjAYMRYwFAYD VQQDEw02NjQ4ZmUyYS04OWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAouHMfFo10hf0SF4enb2J07Pn0FKlSrDbABIcoj+3bLbdBHB+nvN1Fyz4XYYs g0IevbDgU9IoZkTMgmAw1z11RSQjt36IY+tIF3wQz9Es1/FfGcoJNO41kbNwJahr 1RmBbsHka+Y+K/VqGmlvXujupRsAAGoQ/DXDgPZPB+JGvJgo8RMg+Fb/jtjmUiTh lj9LKaXNutOb9jVt8iCXV+q55CJFgw1NkLlKsn/1sJ5HkyK9r8OzwBgGHUTjnrsM 0iKPv4CWk/a8SYMXLT2P+uJThwc2FceRJHVerjcmLHYWDDnHb8xba2Xa17avS3xA n9l+2DEJtInMR7gexBFRvln5UQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPPUZH4J prMuf2AKq+cy+O5PXZiMMB8GA1UdIwQYMBaAFIx4/sdFWSDL/eAw/lROV/Hsn8hk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzBDMi84RDcxMkVBMjAw NjIxMUVBQUJFNzNGNENDNEY5QUUwMi9qSGoteDBWWklNdjk0REQtVkU1WDhleWZ5 R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pIai14MFZaSU12OTRERC1WRTVYOGV5ZnlHUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzBDMi84RDcxMkVBMjAwNjIxMUVBQUJFNzNGNENDNEY5QUUwMi9qSGoteDBWWklN djk0REQtVkU1WDhleWZ5R1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBKGmIHVfWMB+qX3WcAEoOtfyrBiCbTCACJmLHLWlUIdMQr52zVh47 RXCoiEcNB7prgKt99Feoq1KcvQ8AO5t88NNogSInfNAwv/i44IxNPdf87s6YXPdV 7hTGUGvNcjqQcyotCsMx22HTFI6XQAiPXB47StKYUKlznLK/roz3PYokdA/bn0p6 GyD6w+iCqcOWy0djLpHDeFuCytwN6sstN4rRlrLzJiVZA3rpvElwwmzDWvz1YRPp en4cGdV8lc5ZeVkJss62jvu1s7vNqPhLpAK4MY/xNZnwsNJaQL1/rG18Cahsf0aE JgiauMBa2ZpgjtJ34t+UZ4R+RxwaKLmr -----END CERTIFICATE-----Generated at Sat May 18 19:56:06 2024 by rpki-client on console-fra.rpki-client.org