$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.mft File: I8MbHNaMzE0c6105mlAbYFD9HUY.mft (raw, json) Hash identifier: 3SbxFmktqaOVeA2hdDX679GD8bFpWuiPH01QYutw+NY= Subject key identifier: D1:AE:A8:14:F5:6F:6F:73:95:7E:68:D9:20:6A:96:70:BF:C4:CE:CB Authority key identifier: 23:C3:1B:1C:D6:8C:CC:4D:1C:EB:5D:39:9A:50:1B:60:50:FD:1D:46 Certificate issuer: /CN=A91A0FC0/serialNumber=23C31B1CD68CCC4D1CEB5D399A501B6050FD1D46 Certificate serial: 02F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8MbHNaMzE0c6105mlAbYFD9HUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.mft Manifest number: 02ED Signing time: Sun 19 May 2024 22:36:47 +0000 Manifest this update: Sun 19 May 2024 22:36:47 +0000 Manifest next update: Sun 26 May 2024 22:36:47 +0000 Files and hashes: 1: I8MbHNaMzE0c6105mlAbYFD9HUY.crl (hash: 8kenTS6KXGU4aga+wrnSZsr8vD+5DN00DdRQadvheTk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.crl rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8MbHNaMzE0c6105mlAbYFD9HUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 19:59:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 752 (0x2f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0FC0/serialNumber=23C31B1CD68CCC4D1CEB5D399A501B6050FD1D46 Validity Not Before: May 19 22:36:47 2024 GMT Not After : May 26 22:36:47 2024 GMT Subject: CN=664a7eff-f103 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:27:45:bf:f2:b3:22:50:65:2e:20:08:e9:61: 74:d8:7b:3a:da:bb:50:2f:76:d2:3b:e3:8c:df:99: 86:6f:c0:8c:1d:3e:d3:2a:d0:2d:57:d6:47:40:70: 74:00:b3:8c:50:ac:f3:bc:39:1b:4a:51:12:55:0d: bb:2d:d9:1d:ba:7a:88:b6:86:a2:7a:8d:a3:4f:27: 0b:69:af:72:68:98:e4:2d:75:30:18:6b:f3:d5:ae: 14:fd:f1:9c:dc:ba:98:45:ce:4a:7b:61:ea:7f:fe: e2:08:9f:d2:6b:2f:61:ff:db:d0:ec:b2:a8:97:01: 67:36:42:c8:0f:22:98:f0:53:54:c2:58:1b:95:38: f2:81:3e:bc:c4:e9:c3:24:12:5a:60:38:1b:65:7c: 76:b4:14:d5:89:ac:bb:f4:81:53:dc:f8:7e:b7:26: c9:aa:a5:70:5f:90:67:26:95:ac:8e:9f:b7:32:ef: a1:1d:9a:46:b2:d9:d5:b0:cb:2d:0d:54:d4:68:06: 0e:eb:54:9e:d3:c6:0c:3c:ef:db:d2:af:2e:d9:a0: c0:f7:b3:11:9d:22:0c:be:23:d4:85:0f:34:df:05: e8:be:ba:cd:76:35:00:af:93:63:71:8a:52:c7:bd: 2a:85:91:c2:46:f4:22:9a:87:ee:84:63:38:99:c5: 95:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:AE:A8:14:F5:6F:6F:73:95:7E:68:D9:20:6A:96:70:BF:C4:CE:CB X509v3 Authority Key Identifier: keyid:23:C3:1B:1C:D6:8C:CC:4D:1C:EB:5D:39:9A:50:1B:60:50:FD:1D:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8MbHNaMzE0c6105mlAbYFD9HUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:a1:f2:42:8e:d3:4c:0f:53:9b:37:d1:b8:80:c8:d8:2f:99: 22:fc:33:b7:3c:25:b2:2c:4d:be:5d:e5:6a:fd:00:44:61:fa: e1:55:53:1a:1f:39:4b:9a:71:80:21:2e:f9:9b:85:d2:3c:81: d1:92:f1:45:c6:83:fe:c3:f3:94:07:ec:67:2a:3c:6a:37:25: 4d:fa:8d:0a:c6:a8:23:f3:c4:cb:7e:ab:8b:76:e7:3d:70:ad: d3:f1:ee:ea:6f:80:34:23:3e:88:18:0b:58:5f:ca:49:8b:5a: fd:0d:67:62:0f:ee:5f:33:01:2b:57:a7:8f:7c:d4:50:94:b1: 94:8f:f1:0c:20:3e:a1:3a:17:82:39:82:15:09:59:77:bd:3c: 9a:53:12:57:6b:00:32:70:d9:c2:af:2a:11:68:81:1b:b1:79: 68:d0:5c:44:18:bf:dc:e4:6d:b1:99:4a:20:6a:44:70:e7:f4: 1f:3a:2b:4a:5d:1e:60:26:fc:70:86:3f:1b:e4:22:5d:25:8a: 2d:de:47:39:ab:57:a9:e3:4e:83:31:07:b2:c9:32:d4:ed:b3: 6e:c7:25:ee:ce:a6:12:0d:2f:8b:cb:fd:06:2b:a7:6e:93:80: 37:ae:59:b1:7d:23:f0:e0:e7:b9:97:bd:06:1b:04:5b:6b:9d: 05:ea:2d:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBGQzAxMTAvBgNVBAUTKDIzQzMxQjFDRDY4Q0NDNEQxQ0VCNUQzOTlBNTAxQjYw NTBGRDFENDYwHhcNMjQwNTE5MjIzNjQ3WhcNMjQwNTI2MjIzNjQ3WjAYMRYwFAYD VQQDEw02NjRhN2VmZi1mMTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtydFv/KzIlBlLiAI6WF02Hs62rtQL3bSO+OM35mGb8CMHT7TKtAtV9ZHQHB0 ALOMUKzzvDkbSlESVQ27LdkdunqItoaieo2jTycLaa9yaJjkLXUwGGvz1a4U/fGc 3LqYRc5Ke2Hqf/7iCJ/Say9h/9vQ7LKolwFnNkLIDyKY8FNUwlgblTjygT68xOnD JBJaYDgbZXx2tBTViay79IFT3Ph+tybJqqVwX5BnJpWsjp+3Mu+hHZpGstnVsMst DVTUaAYO61Se08YMPO/b0q8u2aDA97MRnSIMviPUhQ803wXovrrNdjUAr5NjcYpS x70qhZHCRvQimofuhGM4mcWVxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNGuqBT1 b29zlX5o2SBqlnC/xM7LMB8GA1UdIwQYMBaAFCPDGxzWjMxNHOtdOZpQG2BQ/R1G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEZDMC9DREUwOTg3Njk1 NzgxMUVDQTMyQ0NGNTVDNEY5QUUwMi9JOE1iSE5hTXpFMGM2MTA1bWxBYllGRDlI VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k4TWJITmFNekUwYzYxMDVtbEFiWUZEOUhVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MEZDMC9DREUwOTg3Njk1NzgxMUVDQTMyQ0NGNTVDNEY5QUUwMi9JOE1iSE5hTXpF MGM2MTA1bWxBYllGRDlIVVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTofJCjtNMD1ObN9G4gMjYL5ki/DO3PCWyLE2+XeVq/QBEYfrhVVMa HzlLmnGAIS75m4XSPIHRkvFFxoP+w/OUB+xnKjxqNyVN+o0Kxqgj88TLfquLduc9 cK3T8e7qb4A0Iz6IGAtYX8pJi1r9DWdiD+5fMwErV6ePfNRQlLGUj/EMID6hOheC OYIVCVl3vTyaUxJXawAycNnCryoRaIEbsXlo0FxEGL/c5G2xmUogakRw5/QfOitK XR5gJvxwhj8b5CJdJYot3kc5q1ep406DMQeyyTLU7bNuxyXuzqYSDS+Ly/0GK6du k4A3rlmxfSPw4Oe5l70GGwRba50F6i28 -----END CERTIFICATE-----Generated at Sun May 19 23:42:29 2024 by rpki-client on console-fra.rpki-client.org