$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.mft File: FION2NTh_gMXFCZnF24W4KW2hlE.mft (raw, json) Hash identifier: 5hk9pWkevKHU13yAc3+Y3AfLqquUUnYx1cz33opBzb4= Subject key identifier: 16:67:37:08:B7:6C:E0:11:30:3E:52:B2:1B:F9:0F:A3:2D:01:0D:F6 Authority key identifier: 14:83:8D:D8:D4:E1:FE:03:17:14:26:67:17:6E:16:E0:A5:B6:86:51 Certificate issuer: /CN=A91991D9/serialNumber=14838DD8D4E1FE0317142667176E16E0A5B68651 Certificate serial: 0D23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FION2NTh_gMXFCZnF24W4KW2hlE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.mft Manifest number: 0D1D Signing time: Sat 18 May 2024 18:43:04 +0000 Manifest this update: Sat 18 May 2024 18:43:04 +0000 Manifest next update: Sat 25 May 2024 18:43:04 +0000 Files and hashes: 1: FION2NTh_gMXFCZnF24W4KW2hlE.crl (hash: OJEgYCFbBrJ+9RlmLc2lMWHnOHFh7WZG1br6QXsnM6U=) 2: 14E68648B42D11E9A44FF25BC4F9AE02.roa (hash: 4nKaNnAA+FlebgMH5PkzemVsKEEak9q9/5kaFpxo0dg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.crl rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FION2NTh_gMXFCZnF24W4KW2hlE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3363 (0xd23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D9/serialNumber=14838DD8D4E1FE0317142667176E16E0A5B68651 Validity Not Before: May 18 18:43:04 2024 GMT Not After : May 25 18:43:04 2024 GMT Subject: CN=6648f6b8-7523 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:3e:6e:30:65:e2:5a:e4:c2:04:c6:ab:11:2d: 2c:70:ee:73:d4:d9:39:b8:6e:89:5b:d6:08:c2:88: 2f:7a:7b:ee:2a:cf:5d:0c:df:dd:c1:e4:d4:a0:73: 88:8c:6e:ce:df:39:a0:59:38:17:dd:4c:f7:56:f8: 92:4a:d1:53:a0:6b:13:fb:e0:bd:2a:fa:f2:7f:27: 3f:68:49:d7:ae:30:25:25:af:b1:0b:13:b7:84:f4: e2:9b:5e:50:68:da:a6:80:6d:26:6e:5e:6c:4a:d3: 77:e7:76:f8:77:83:0a:4b:3f:6b:6b:88:af:5c:99: 00:54:7c:d0:32:85:cb:8f:29:bb:17:1e:93:86:cc: af:11:5f:eb:a0:26:f2:6e:fd:e1:4f:33:69:74:79: c2:b5:03:d4:9d:7f:a8:09:24:25:e3:0c:32:e0:cb: 3d:b9:f3:53:8b:02:a4:d0:62:e8:a8:08:46:59:46: 97:1a:f4:02:ab:66:e8:1f:1e:0e:62:96:f4:56:5f: 41:fa:21:9b:10:37:9c:5a:20:49:2b:a5:a1:48:40: 4f:b2:19:40:45:8b:2e:1d:f9:0e:57:65:a4:ee:e3: d2:7c:72:b4:9a:1d:2e:14:f2:ce:4e:98:25:97:a0: 17:6d:13:eb:47:63:bc:25:28:a2:48:14:e8:91:fc: b7:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:67:37:08:B7:6C:E0:11:30:3E:52:B2:1B:F9:0F:A3:2D:01:0D:F6 X509v3 Authority Key Identifier: keyid:14:83:8D:D8:D4:E1:FE:03:17:14:26:67:17:6E:16:E0:A5:B6:86:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FION2NTh_gMXFCZnF24W4KW2hlE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:7d:1a:40:3b:a2:85:09:d8:c9:0f:38:73:6e:1b:50:b7:a8: d2:d6:cd:90:91:f5:7b:9e:48:cc:52:6d:65:a5:fd:2d:80:5a: 96:c5:f7:a8:79:2b:8c:23:ba:9b:ef:fd:e1:df:0c:4b:7d:11: 06:fe:d7:4b:bc:04:c7:f0:89:f1:5c:cb:3b:fa:ae:d7:7c:4d: d4:e6:89:eb:0d:36:12:76:7b:cd:eb:21:d3:3c:10:50:e0:c9: f3:17:95:f1:3d:88:20:f5:86:4a:e8:95:38:31:50:af:c2:af: 9a:31:e3:de:04:21:a6:a2:ad:84:e0:8d:ba:29:be:cd:43:a2: 75:dc:9d:b4:24:50:db:0e:d3:a9:c5:2b:c4:ba:5c:8a:3e:09: d5:dc:56:f3:ff:d1:90:70:96:70:a0:c5:d1:94:27:0d:f6:71: ec:c4:87:59:8c:98:95:17:0d:10:41:e8:84:ad:f7:cc:ff:8d: fa:1e:25:b8:55:12:a5:1e:b9:2a:da:02:ee:58:33:58:06:fe: 9d:97:26:f9:f6:bc:ab:c7:a7:b5:06:9d:b7:db:a1:73:e1:ea: c9:9e:1f:d6:90:a2:72:01:0d:a8:ab:43:96:7c:7c:2e:14:a3: 80:43:1f:18:e5:b6:54:18:4c:95:05:d7:79:12:13:5a:02:7b: 3e:87:6a:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDSMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDkxMTAvBgNVBAUTKDE0ODM4REQ4RDRFMUZFMDMxNzE0MjY2NzE3NkUxNkUw QTVCNjg2NTEwHhcNMjQwNTE4MTg0MzA0WhcNMjQwNTI1MTg0MzA0WjAYMRYwFAYD VQQDEw02NjQ4ZjZiOC03NTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4D5uMGXiWuTCBMarES0scO5z1Nk5uG6JW9YIwogvenvuKs9dDN/dweTUoHOI jG7O3zmgWTgX3Uz3VviSStFToGsT++C9Kvryfyc/aEnXrjAlJa+xCxO3hPTim15Q aNqmgG0mbl5sStN353b4d4MKSz9ra4ivXJkAVHzQMoXLjym7Fx6ThsyvEV/roCby bv3hTzNpdHnCtQPUnX+oCSQl4wwy4Ms9ufNTiwKk0GLoqAhGWUaXGvQCq2boHx4O Ypb0Vl9B+iGbEDecWiBJK6WhSEBPshlARYsuHfkOV2Wk7uPSfHK0mh0uFPLOTpgl l6AXbRPrR2O8JSiiSBTokfy3kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBZnNwi3 bOARMD5Sshv5D6MtAQ32MB8GA1UdIwQYMBaAFBSDjdjU4f4DFxQmZxduFuCltoZR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEOS8xQzNERDk2NkI0 MjYxMUU5OERFMDg4NEFDNEY5QUUwMi9GSU9OMk5UaF9nTVhGQ1puRjI0VzRLVzJo bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZJT04yTlRoX2dNWEZDWm5GMjRXNEtXMmhsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTFEOS8xQzNERDk2NkI0MjYxMUU5OERFMDg4NEFDNEY5QUUwMi9GSU9OMk5UaF9n TVhGQ1puRjI0VzRLVzJobEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRfRpAO6KFCdjJDzhzbhtQt6jS1s2QkfV7nkjMUm1lpf0tgFqWxfeo eSuMI7qb7/3h3wxLfREG/tdLvATH8InxXMs7+q7XfE3U5onrDTYSdnvN6yHTPBBQ 4MnzF5XxPYgg9YZK6JU4MVCvwq+aMePeBCGmoq2E4I26Kb7NQ6J13J20JFDbDtOp xSvEulyKPgnV3Fbz/9GQcJZwoMXRlCcN9nHsxIdZjJiVFw0QQeiErffM/436HiW4 VRKlHrkq2gLuWDNYBv6dlyb59ryrx6e1Bp2326Fz4erJnh/WkKJyAQ2oq0OWfHwu FKOAQx8Y5bZUGEyVBdd5EhNaAns+h2oN -----END CERTIFICATE-----Generated at Sat May 18 20:16:01 2024 by rpki-client on console-ams.rpki-client.org