$ rpki-client -vvf rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.mft File: _nQHcdbqABLeOHBW-Iy-3TbEqGA.mft (raw, json) Hash identifier: FkYqssf2MnNQ0MzAGcLLN2FEy4lgNv6C4nmSnMFUcmc= Subject key identifier: EA:62:19:75:62:70:46:BD:35:81:0C:84:01:73:47:00:3A:D9:FF:86 Authority key identifier: FE:74:07:71:D6:EA:00:12:DE:38:70:56:F8:8C:BE:DD:36:C4:A8:60 Certificate issuer: /CN=A91889A4/serialNumber=FE740771D6EA0012DE387056F88CBEDD36C4A860 Certificate serial: B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_nQHcdbqABLeOHBW-Iy-3TbEqGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.mft Manifest number: B3 Signing time: Sun 19 May 2024 06:31:02 +0000 Manifest this update: Sun 19 May 2024 06:31:01 +0000 Manifest next update: Sun 26 May 2024 06:31:01 +0000 Files and hashes: 1: _nQHcdbqABLeOHBW-Iy-3TbEqGA.crl (hash: lbcMLNAdZrXH4Mjar9fQkiA6pQxrAx9D57QMHgN22Qk=) 2: 37B318C0050111EEAFBCAE7EC4F9AE02.roa (hash: CyGmUXgqCRCPIjhYPOT0hWuMRz6TFMafnNdtCYirRYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.crl rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_nQHcdbqABLeOHBW-Iy-3TbEqGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91889A4/serialNumber=FE740771D6EA0012DE387056F88CBEDD36C4A860 Validity Not Before: May 19 06:31:01 2024 GMT Not After : May 26 06:31:01 2024 GMT Subject: CN=66499ca6-10db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:56:ab:83:ff:5e:c7:4a:81:4f:db:7c:8d:9e: 62:ff:67:5a:7d:93:73:ec:cb:33:71:b9:f5:07:34: a9:b2:31:4f:80:c3:da:d3:cb:31:b9:71:6c:e6:47: 4e:73:02:8c:d8:71:a3:ca:3f:1b:11:38:43:2f:cf: 01:48:e3:c5:ab:3e:68:06:5e:b6:b1:98:6f:5c:14: 96:6b:c7:56:58:00:5d:41:99:45:ee:80:d1:01:ba: cd:bf:f4:9f:cb:16:96:40:45:95:fd:5d:79:1e:a2: a8:eb:50:34:34:11:db:79:6a:d9:11:4d:30:dd:b0: ba:c5:aa:a4:2c:d8:61:8f:9e:21:fa:df:25:c7:9e: f6:d3:09:8f:5f:f2:d0:3c:4f:25:66:57:33:92:a2: 6c:3f:70:25:dc:5c:4d:7e:ed:1d:e6:ba:d5:3e:d0: a3:8d:a7:85:c7:f1:ff:33:e4:9c:f3:15:0f:9f:54: 79:ab:01:d9:41:e6:e8:70:05:e0:20:71:c9:29:11: e4:52:f6:bb:6e:0a:ce:74:43:7c:04:f8:ed:cd:15: 07:b2:1f:67:ff:7c:d9:23:8f:54:8b:87:53:00:ce: 1f:97:46:b1:15:0a:1b:93:a1:9f:db:5c:bd:cd:16: 97:1a:8a:ae:16:3a:ae:8d:71:9b:69:6f:48:b2:69: 80:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:62:19:75:62:70:46:BD:35:81:0C:84:01:73:47:00:3A:D9:FF:86 X509v3 Authority Key Identifier: keyid:FE:74:07:71:D6:EA:00:12:DE:38:70:56:F8:8C:BE:DD:36:C4:A8:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_nQHcdbqABLeOHBW-Iy-3TbEqGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:ff:0e:6d:af:ac:6d:93:79:f4:f7:8b:87:13:b0:0b:98:90: 48:ad:b7:46:e6:a8:ab:15:aa:a2:74:f9:37:c2:e7:65:75:c3: a9:df:37:aa:9c:c7:98:f4:77:58:e5:20:70:c5:ec:01:36:e7: c0:af:d1:ba:e7:2c:6b:aa:e9:92:f2:3a:93:c4:f9:74:35:9c: e8:30:5a:ea:45:9d:d2:e8:d5:f9:07:e7:0a:b2:ca:81:2b:04: b6:c5:83:25:73:71:df:e1:0f:66:b0:16:3e:a0:f2:1c:0a:72: b1:a8:a6:8b:13:c6:d6:e4:1f:2f:7e:6a:a5:b3:84:de:63:24: e5:37:d5:5c:cf:cd:9a:a9:8d:7d:78:96:25:92:25:4a:e5:d6: b9:91:af:c5:3b:7c:82:e6:3d:93:2b:80:e8:e1:cc:12:67:cf: 50:05:eb:3d:86:ad:ab:f1:35:e1:a0:76:7f:05:c6:c3:2e:eb: 56:b6:45:3b:71:fb:d2:ed:4a:fc:7c:c4:93:08:13:9e:fb:e2: 8d:7e:09:81:03:4d:3b:06:37:b9:61:e1:dc:87:72:a8:d4:3d: fe:a9:79:d2:a9:c9:a6:9d:06:ae:b9:28:18:e7:dc:44:02:83: d0:01:07:ee:cc:cb:3c:da:a2:19:b9:8e:a3:f3:71:f5:27:aa: cd:33:ea:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODg5QTQxMTAvBgNVBAUTKEZFNzQwNzcxRDZFQTAwMTJERTM4NzA1NkY4OENCRURE MzZDNEE4NjAwHhcNMjQwNTE5MDYzMTAxWhcNMjQwNTI2MDYzMTAxWjAYMRYwFAYD VQQDEw02NjQ5OWNhNi0xMGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvFarg/9ex0qBT9t8jZ5i/2dafZNz7Mszcbn1BzSpsjFPgMPa08sxuXFs5kdO cwKM2HGjyj8bEThDL88BSOPFqz5oBl62sZhvXBSWa8dWWABdQZlF7oDRAbrNv/Sf yxaWQEWV/V15HqKo61A0NBHbeWrZEU0w3bC6xaqkLNhhj54h+t8lx5720wmPX/LQ PE8lZlczkqJsP3Al3FxNfu0d5rrVPtCjjaeFx/H/M+Sc8xUPn1R5qwHZQebocAXg IHHJKRHkUva7bgrOdEN8BPjtzRUHsh9n/3zZI49Ui4dTAM4fl0axFQobk6Gf21y9 zRaXGoquFjqujXGbaW9IsmmAfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOpiGXVi cEa9NYEMhAFzRwA62f+GMB8GA1UdIwQYMBaAFP50B3HW6gAS3jhwVviMvt02xKhg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODlBNC8yN0EyNUE1NjA0 RkExMUVFOEQ0NkUyNDVDNEY5QUUwMi9fblFIY2RicUFCTGVPSEJXLUl5LTNUYkVx R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19uUUhjZGJxQUJMZU9IQlctSXktM1RiRXFHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 ODlBNC8yN0EyNUE1NjA0RkExMUVFOEQ0NkUyNDVDNEY5QUUwMi9fblFIY2RicUFC TGVPSEJXLUl5LTNUYkVxR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9/w5tr6xtk3n094uHE7ALmJBIrbdG5qirFaqidPk3wudldcOp3zeq nMeY9HdY5SBwxewBNufAr9G65yxrqumS8jqTxPl0NZzoMFrqRZ3S6NX5B+cKssqB KwS2xYMlc3Hf4Q9msBY+oPIcCnKxqKaLE8bW5B8vfmqls4TeYyTlN9Vcz82aqY19 eJYlkiVK5da5ka/FO3yC5j2TK4Do4cwSZ89QBes9hq2r8TXhoHZ/BcbDLutWtkU7 cfvS7Ur8fMSTCBOe++KNfgmBA007Bje5YeHch3Ko1D3+qXnSqcmmnQauuSgY59xE AoPQAQfuzMs82qIZuY6j83H1J6rNM+pZ -----END CERTIFICATE-----Generated at Sun May 19 07:40:41 2024 by rpki-client on console-fra.rpki-client.org