$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft File: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft (raw, json) Hash identifier: meKlisOEXhPuCipvaOhIiDAsmkJ4WFb4SywEEYxA/Nc= Subject key identifier: 3B:F2:0D:2D:57:B4:0B:31:0F:7A:73:8D:F5:A9:07:00:DF:E2:7A:4F Authority key identifier: 46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 Certificate issuer: /CN=A91964B3/serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Certificate serial: 0F48 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft Manifest number: 0F41 Signing time: Fri 31 May 2024 14:26:54 +0000 Manifest this update: Fri 31 May 2024 14:26:53 +0000 Manifest next update: Fri 07 Jun 2024 14:26:53 +0000 Files and hashes: 1: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl (hash: J97NasyVKebR36e3Qz2B6C/MXNfXn/TCMHP1ZGXazCU=) 2: 246FF7A2E1CD11EE88C91543C4F9AE02.roa (hash: KVbCZMb4qsrXwErwdG1cPXD8UTuCBQb5XBLFRzMGvX8=) 3: 23B68638C5DD11EABC58FD24C4F9AE02.roa (hash: n1ulTZnoiZo9WIdYfZ6JIPOA4ruKUDzb0tMA5wN61vU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3912 (0xf48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3/serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Validity Not Before: May 31 14:26:53 2024 GMT Not After : Jun 7 14:26:53 2024 GMT Subject: CN=6659de2e-9078 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:4e:2b:0b:08:a2:84:4b:9a:2c:bd:62:7e:f3: 83:81:28:99:67:c9:70:65:11:07:da:46:4d:76:5a: a0:d0:8a:79:f8:ac:e5:20:ff:e3:a6:f7:98:8e:3b: 48:0f:e8:16:04:b7:ac:13:bd:21:95:c7:43:86:3c: f0:6f:04:83:53:2b:53:2b:1e:d6:2f:1a:4d:1a:81: 10:cc:00:30:75:80:ad:8b:76:44:4c:3a:57:6b:7a: 78:35:16:da:77:6b:2a:f2:91:40:26:ca:78:e8:b4: f8:ff:03:06:1e:f4:fa:54:aa:ec:49:31:19:6e:79: d0:e8:4a:f9:18:4b:20:42:c3:2c:86:7b:8a:82:34: 3e:21:cc:fc:08:03:b2:38:b9:11:78:6e:18:b7:87: b7:69:3f:33:dc:79:ab:fc:82:73:f1:19:a8:2f:dc: 13:2e:62:89:69:b7:20:b6:2b:ed:f3:63:65:c2:a2: 22:fc:8c:90:7d:bf:03:79:aa:d7:b1:e8:78:a3:91: d3:c8:a3:4e:be:10:a0:c1:a1:dd:4e:ed:f3:49:cb: 90:c5:07:18:de:4d:fe:e4:e6:10:ac:2a:27:77:5f: 44:8a:43:a9:c6:37:c4:8b:4c:95:7c:aa:99:f1:bd: 8a:0d:28:87:38:a5:b8:61:c5:54:21:83:b9:15:f0: da:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:F2:0D:2D:57:B4:0B:31:0F:7A:73:8D:F5:A9:07:00:DF:E2:7A:4F X509v3 Authority Key Identifier: keyid:46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:6e:46:f6:54:a4:5f:c0:2f:dd:90:66:d1:40:ab:7f:b3:e8: 0d:70:5b:e0:22:dd:9b:d1:7f:c3:3c:d3:50:d6:c7:cd:64:55: 90:d9:ec:84:9c:93:da:6c:30:d0:2d:c0:d4:eb:43:1a:70:c9: 24:0d:0e:48:f0:c1:3a:a5:9d:12:4f:0b:d9:78:3c:97:ea:50: 11:53:75:5c:e9:91:6f:77:4c:9a:be:d8:96:56:57:cc:5c:65: 84:da:49:16:f6:97:f9:64:f7:a9:b0:cc:1f:1f:ee:be:5c:b1: 5d:20:9c:a6:53:0e:6c:83:9f:10:59:b5:c6:6c:c1:0a:1c:fc: 0e:97:00:d3:0b:ae:bf:bf:53:23:8e:99:cb:d1:b0:41:e4:4b: 91:33:99:26:82:3f:8d:08:7c:23:36:71:cf:e5:45:bc:66:96: 15:8c:c9:d7:36:0a:0c:55:30:77:00:f5:50:26:93:9b:bf:90: 4d:bb:4c:c8:b3:94:3d:c9:fb:41:ed:46:fc:06:be:60:c6:be: f7:af:63:74:0d:4a:24:80:db:d4:aa:e9:dc:68:b7:57:c8:de: 76:e4:1f:13:83:35:91:cb:75:31:17:e6:49:e0:50:ad:14:61: ba:6c:08:23:e1:a8:8b:d8:47:cd:39:09:c5:5b:84:1a:ff:55: a4:0c:65:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD0gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKDQ2NDg1NEZCNTBBOTkwM0M1MjUzNDE4QzU4M0QwRjMx Qjg0MUQ1OTcwHhcNMjQwNTMxMTQyNjUzWhcNMjQwNjA3MTQyNjUzWjAYMRYwFAYD VQQDEw02NjU5ZGUyZS05MDc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy04rCwiihEuaLL1ifvODgSiZZ8lwZREH2kZNdlqg0Ip5+KzlIP/jpveYjjtI D+gWBLesE70hlcdDhjzwbwSDUytTKx7WLxpNGoEQzAAwdYCti3ZETDpXa3p4NRba d2sq8pFAJsp46LT4/wMGHvT6VKrsSTEZbnnQ6Er5GEsgQsMshnuKgjQ+Icz8CAOy OLkReG4Yt4e3aT8z3Hmr/IJz8RmoL9wTLmKJabcgtivt82NlwqIi/IyQfb8DearX seh4o5HTyKNOvhCgwaHdTu3zScuQxQcY3k3+5OYQrCond19EikOpxjfEi0yVfKqZ 8b2KDSiHOKW4YcVUIYO5FfDaMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDvyDS1X tAsxD3pzjfWpBwDf4npPMB8GA1UdIwQYMBaAFEZIVPtQqZA8UlNBjFg9DzG4QdWX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy8yQTU5NDBGMjRC QjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtEeFNVMEdNV0QwUE1iaEIx WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JraFUtMUNwa0R4U1UwR01XRDBQTWJoQjFaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjRCMy8yQTU5NDBGMjRCQjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtE eFNVMEdNV0QwUE1iaEIxWmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTbkb2VKRfwC/dkGbRQKt/s+gNcFvgIt2b0X/DPNNQ1sfNZFWQ2eyE nJPabDDQLcDU60MacMkkDQ5I8ME6pZ0STwvZeDyX6lARU3Vc6ZFvd0yavtiWVlfM XGWE2kkW9pf5ZPepsMwfH+6+XLFdIJymUw5sg58QWbXGbMEKHPwOlwDTC66/v1Mj jpnL0bBB5EuRM5kmgj+NCHwjNnHP5UW8ZpYVjMnXNgoMVTB3APVQJpObv5BNu0zI s5Q9yftB7Ub8Br5gxr73r2N0DUokgNvUquncaLdXyN525B8TgzWRy3UxF+ZJ4FCt FGG6bAgj4aiL2EfNOQnFW4Qa/1WkDGWI -----END CERTIFICATE-----Generated at Fri May 31 15:08:32 2024 by rpki-client on console-fra.rpki-client.org