$ rpki-client -vvf rpki.apnic.net/member_repository/A91884F8/228AD3EA6B3211E694166265C4F9AE02/_f0WbMUdnjq3SWQHS25klGdOL24.mft File: _f0WbMUdnjq3SWQHS25klGdOL24.mft (raw, json) Hash identifier: a8CBpj9we2EjgPOWsloZt/LlPtbEPBFQDFsMt9aAVlo= Subject key identifier: 7C:55:A9:9F:59:D1:42:6C:92:B9:82:4B:B1:E6:1E:1B:2F:B7:4D:E9 Authority key identifier: FD:FD:16:6C:C5:1D:9E:3A:B7:49:64:07:4B:6E:64:94:67:4E:2F:6E Certificate issuer: /CN=A91884F8/serialNumber=FDFD166CC51D9E3AB74964074B6E6494674E2F6E Certificate serial: 1DE6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_f0WbMUdnjq3SWQHS25klGdOL24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91884F8/228AD3EA6B3211E694166265C4F9AE02/_f0WbMUdnjq3SWQHS25klGdOL24.mft Manifest number: 1DDD Signing time: Sat 18 May 2024 16:26:32 +0000 Manifest this update: Sat 18 May 2024 16:26:31 +0000 Manifest next update: Sat 25 May 2024 16:26:31 +0000 Files and hashes: 1: _f0WbMUdnjq3SWQHS25klGdOL24.crl (hash: W91moTD3G9axwsDNkrK0LzOlmgzeVtC67einHZrI+x4=) 2: 888B4AC26B3611E6A149F871C4F9AE02.roa (hash: /Yw76U6MrvSdzu/AV7MrtQO5wD6lKLVFmj0OmRJiQ0s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91884F8/228AD3EA6B3211E694166265C4F9AE02/_f0WbMUdnjq3SWQHS25klGdOL24.crl rsync://rpki.apnic.net/member_repository/A91884F8/228AD3EA6B3211E694166265C4F9AE02/_f0WbMUdnjq3SWQHS25klGdOL24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_f0WbMUdnjq3SWQHS25klGdOL24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7654 (0x1de6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91884F8/serialNumber=FDFD166CC51D9E3AB74964074B6E6494674E2F6E Validity Not Before: May 18 16:26:31 2024 GMT Not After : May 25 16:26:31 2024 GMT Subject: CN=6648d6b8-5e5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:85:eb:52:bc:21:34:00:fc:22:67:44:30:7a: 0e:02:73:a7:0b:c6:88:8a:1c:74:a1:0a:1a:59:f8: 3f:65:62:5f:8d:a6:9d:be:ae:26:79:89:ac:20:47: bf:11:b2:1c:76:3e:64:4e:eb:e2:a5:a3:5a:cb:bb: e4:0a:3c:ca:b2:46:32:1b:8c:55:f3:e3:4e:26:70: 62:78:c8:51:0b:2c:8e:89:38:02:7e:87:c7:8c:ba: 4c:85:36:b1:57:34:50:c1:95:f6:b5:fe:f9:29:2f: 67:72:42:c1:bd:43:43:3a:9c:aa:a5:5a:d3:11:da: 43:f9:39:0c:58:b7:14:4d:88:0d:36:41:5c:9e:0c: 63:a4:be:1d:2f:74:e8:2f:f4:f4:54:16:56:9c:84: 8d:e5:ca:8d:f2:ca:ec:bb:8f:9a:1e:81:b1:bf:7e: a5:d4:31:c3:93:c7:0e:8d:cf:71:36:bb:25:b4:3f: 9e:a2:79:26:16:b2:20:dd:81:fc:09:a6:69:24:8e: d1:94:5a:41:84:1a:5d:ac:92:39:07:4f:00:d5:1f: bc:10:27:c2:85:1f:3e:c9:8e:66:87:70:fb:65:4f: 79:85:ad:f7:ca:31:36:36:21:7b:f4:c5:0b:a9:e5: 3a:e6:23:58:ab:28:08:28:d9:0c:99:1c:38:40:44: 3a:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:55:A9:9F:59:D1:42:6C:92:B9:82:4B:B1:E6:1E:1B:2F:B7:4D:E9 X509v3 Authority Key Identifier: keyid:FD:FD:16:6C:C5:1D:9E:3A:B7:49:64:07:4B:6E:64:94:67:4E:2F:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91884F8/228AD3EA6B3211E694166265C4F9AE02/_f0WbMUdnjq3SWQHS25klGdOL24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_f0WbMUdnjq3SWQHS25klGdOL24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91884F8/228AD3EA6B3211E694166265C4F9AE02/_f0WbMUdnjq3SWQHS25klGdOL24.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:9d:cf:cc:5b:8c:dd:f1:bf:aa:91:77:39:d7:2d:c9:cd:83: 97:83:1e:18:9b:5b:a1:12:c7:d5:84:e6:94:15:3e:84:9e:e5: b0:6d:8a:7a:1f:23:d7:bc:05:d2:23:98:52:d9:1b:ec:d4:0d: a9:1d:e2:e0:5c:e2:8a:fe:23:39:95:45:be:71:09:cc:31:6d: 53:f2:d6:53:45:48:87:d1:e3:4e:45:23:88:50:b5:92:b9:d9: 3d:f7:f9:3a:9f:7f:99:0f:a6:27:58:a5:b5:36:a0:72:4c:18: 3d:ab:dc:b9:cf:d0:5d:12:84:e9:d3:28:f2:14:d0:cd:ed:d8: 41:97:42:80:2c:57:f6:d6:58:39:2b:0c:38:ae:73:60:a4:00: 2a:80:06:58:fa:10:aa:d9:40:64:2d:5a:c4:35:4c:92:e6:f5: df:c0:1f:8d:67:e3:6c:4e:21:b6:20:97:b7:ae:98:9a:88:a4: 55:8e:2f:fa:f8:a0:aa:39:06:67:68:ce:19:e4:39:ce:77:ad: 00:2c:6c:f2:fd:7e:45:76:6b:51:11:a9:a4:5d:56:f1:00:96: ff:82:4d:fc:af:b8:75:f2:6a:84:16:81:7f:48:73:d6:a7:f0: a2:28:d3:76:7e:22:d4:94:96:c2:bc:20:75:d3:0f:00:7c:99: fa:0d:43:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODg0RjgxMTAvBgNVBAUTKEZERkQxNjZDQzUxRDlFM0FCNzQ5NjQwNzRCNkU2NDk0 Njc0RTJGNkUwHhcNMjQwNTE4MTYyNjMxWhcNMjQwNTI1MTYyNjMxWjAYMRYwFAYD VQQDEw02NjQ4ZDZiOC01ZTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoYXrUrwhNAD8ImdEMHoOAnOnC8aIihx0oQoaWfg/ZWJfjaadvq4meYmsIEe/ EbIcdj5kTuvipaNay7vkCjzKskYyG4xV8+NOJnBieMhRCyyOiTgCfofHjLpMhTax VzRQwZX2tf75KS9nckLBvUNDOpyqpVrTEdpD+TkMWLcUTYgNNkFcngxjpL4dL3To L/T0VBZWnISN5cqN8srsu4+aHoGxv36l1DHDk8cOjc9xNrsltD+eonkmFrIg3YH8 CaZpJI7RlFpBhBpdrJI5B08A1R+8ECfChR8+yY5mh3D7ZU95ha33yjE2NiF79MUL qeU65iNYqygIKNkMmRw4QEQ6wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHxVqZ9Z 0UJskrmCS7HmHhsvt03pMB8GA1UdIwQYMBaAFP39FmzFHZ46t0lkB0tuZJRnTi9u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODRGOC8yMjhBRDNFQTZC MzIxMUU2OTQxNjYyNjVDNEY5QUUwMi9fZjBXYk1VZG5qcTNTV1FIUzI1a2xHZE9M MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19mMFdiTVVkbmpxM1NXUUhTMjVrbEdkT0wyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 ODRGOC8yMjhBRDNFQTZCMzIxMUU2OTQxNjYyNjVDNEY5QUUwMi9fZjBXYk1VZG5q cTNTV1FIUzI1a2xHZE9MMjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8nc/MW4zd8b+qkXc51y3JzYOXgx4Ym1uhEsfVhOaUFT6EnuWwbYp6 HyPXvAXSI5hS2Rvs1A2pHeLgXOKK/iM5lUW+cQnMMW1T8tZTRUiH0eNORSOIULWS udk99/k6n3+ZD6YnWKW1NqByTBg9q9y5z9BdEoTp0yjyFNDN7dhBl0KALFf21lg5 Kww4rnNgpAAqgAZY+hCq2UBkLVrENUyS5vXfwB+NZ+NsTiG2IJe3rpiaiKRVji/6 +KCqOQZnaM4Z5DnOd60ALGzy/X5FdmtREamkXVbxAJb/gk38r7h18mqEFoF/SHPW p/CiKNN2fiLUlJbCvCB10w8AfJn6DUMJ -----END CERTIFICATE-----Generated at Sat May 18 16:57:54 2024 by rpki-client on console-fra.rpki-client.org