$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6BF5/9D0B422213F311EA80B3745FC4F9AE02/PoReqE4RAwvCoQYTCJefeYoSET8.mft File: PoReqE4RAwvCoQYTCJefeYoSET8.mft (raw, json) Hash identifier: jXHqjKcOmHulNGtchSwgm0kBeC5bvD8+LfK2kVO1OIw= Subject key identifier: 48:1A:BB:F1:19:A8:21:51:3A:95:90:C5:89:5E:17:5A:1B:CC:94:6B Authority key identifier: 3E:84:5E:A8:4E:11:03:0B:C2:A1:06:13:08:97:9F:79:8A:12:11:3F Certificate issuer: /CN=A91A6BF5/serialNumber=3E845EA84E11030BC2A1061308979F798A12113F Certificate serial: 0B3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PoReqE4RAwvCoQYTCJefeYoSET8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6BF5/9D0B422213F311EA80B3745FC4F9AE02/PoReqE4RAwvCoQYTCJefeYoSET8.mft Manifest number: 0B35 Signing time: Sat 18 May 2024 19:45:54 +0000 Manifest this update: Sat 18 May 2024 19:45:53 +0000 Manifest next update: Sat 25 May 2024 19:45:53 +0000 Files and hashes: 1: PoReqE4RAwvCoQYTCJefeYoSET8.crl (hash: hG95s6NKtdax+RgZRx4IyJKufzJpZJuG6YQSNak7lwE=) 2: 03EE880413F511EA8D120C65C4F9AE02.roa (hash: S5y331WliNZqXWWjOJuv3YKexz/b1+CG8n24v9FOM+4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6BF5/9D0B422213F311EA80B3745FC4F9AE02/PoReqE4RAwvCoQYTCJefeYoSET8.crl rsync://rpki.apnic.net/member_repository/A91A6BF5/9D0B422213F311EA80B3745FC4F9AE02/PoReqE4RAwvCoQYTCJefeYoSET8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PoReqE4RAwvCoQYTCJefeYoSET8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:45:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2876 (0xb3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6BF5/serialNumber=3E845EA84E11030BC2A1061308979F798A12113F Validity Not Before: May 18 19:45:53 2024 GMT Not After : May 25 19:45:53 2024 GMT Subject: CN=66490571-d3d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c6:29:47:91:16:10:47:e7:89:fe:2d:db:a3: 2c:18:e0:98:21:20:6a:1c:5b:d2:5a:4f:e0:17:e0: c2:51:75:32:40:3e:b8:d3:23:a4:3b:3d:d5:73:f0: 59:85:6f:3d:6c:cd:b5:a2:3d:5c:8e:ff:a9:91:3e: 5c:a4:fc:69:b1:81:58:3d:e6:6e:dc:7a:ef:99:6b: 31:e6:1c:c2:3a:4e:16:6b:33:9c:36:a3:1d:3b:35: 16:37:40:a4:1a:fc:48:3a:84:43:16:32:65:ea:6e: 82:ee:1f:a7:8b:80:4e:d3:f7:37:3d:53:92:04:fc: ba:eb:b6:b5:81:6d:ea:25:dd:28:8e:3e:d2:f4:09: 02:4c:68:50:2a:ab:79:6e:e3:01:f8:a9:70:e9:4d: 9a:a1:62:90:89:ba:a0:71:78:12:4f:9f:e1:39:a4: d9:22:0d:d7:e1:07:b2:39:73:f2:2c:cf:60:b4:7d: 9a:71:f2:ad:63:a8:0b:2e:63:84:c1:2b:2b:1c:27: b8:73:c4:70:e8:94:b3:2a:25:f2:ee:f6:46:23:12: c0:93:68:02:86:ed:96:51:00:70:98:af:e8:24:4b: 56:89:99:58:a9:d7:1b:fa:91:1d:55:7f:c6:63:aa: b7:5f:19:e5:8e:b9:ee:93:4a:28:a3:03:95:35:ad: 2a:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:1A:BB:F1:19:A8:21:51:3A:95:90:C5:89:5E:17:5A:1B:CC:94:6B X509v3 Authority Key Identifier: keyid:3E:84:5E:A8:4E:11:03:0B:C2:A1:06:13:08:97:9F:79:8A:12:11:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6BF5/9D0B422213F311EA80B3745FC4F9AE02/PoReqE4RAwvCoQYTCJefeYoSET8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PoReqE4RAwvCoQYTCJefeYoSET8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6BF5/9D0B422213F311EA80B3745FC4F9AE02/PoReqE4RAwvCoQYTCJefeYoSET8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:a4:70:55:b3:93:0f:90:e3:c7:1e:64:05:21:f6:41:06:d1: 2b:d8:4d:4a:e2:ad:e8:f3:16:0f:10:d7:e7:05:4c:5b:ec:df: 1a:20:6d:72:a5:b4:74:2e:9b:36:6d:ac:e1:5a:52:21:2b:46: 0b:cb:6f:5b:cb:ee:95:7c:c4:f8:bc:44:00:6f:6a:06:2e:f0: 62:51:a8:90:1f:be:e2:11:f3:5e:0d:bf:93:c2:4f:0f:3d:7e: d1:42:66:b3:33:75:80:99:f9:19:5c:68:77:da:fd:26:bc:66: 49:0e:51:3d:cc:61:da:eb:8c:0f:14:59:30:60:54:a6:ff:ef: cb:50:a2:29:b1:3e:75:6c:80:36:50:ee:be:42:59:25:a1:79: 83:85:01:9c:3c:ac:2a:cf:0c:d2:31:ad:75:18:7b:9a:74:ae: 91:ec:a4:ae:db:d1:83:a0:7c:b5:2c:7b:cf:0e:21:0b:8b:a4: 9f:7f:84:83:ac:fc:63:c6:d4:bb:c5:85:90:35:d5:15:ee:5f: c3:95:15:81:3e:35:5d:4c:d1:e4:09:77:c0:b2:c2:f6:f9:c7: e9:bc:5b:ea:50:96:af:3d:fa:b2:8b:05:c1:70:3c:d7:0e:f4: e9:a2:d0:16:90:4a:24:28:f6:79:d8:33:58:18:2f:0d:de:1c: 24:dc:39:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZCRjUxMTAvBgNVBAUTKDNFODQ1RUE4NEUxMTAzMEJDMkExMDYxMzA4OTc5Rjc5 OEExMjExM0YwHhcNMjQwNTE4MTk0NTUzWhcNMjQwNTI1MTk0NTUzWjAYMRYwFAYD VQQDEw02NjQ5MDU3MS1kM2Q5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq8YpR5EWEEfnif4t26MsGOCYISBqHFvSWk/gF+DCUXUyQD640yOkOz3Vc/BZ hW89bM21oj1cjv+pkT5cpPxpsYFYPeZu3HrvmWsx5hzCOk4WazOcNqMdOzUWN0Ck GvxIOoRDFjJl6m6C7h+ni4BO0/c3PVOSBPy667a1gW3qJd0ojj7S9AkCTGhQKqt5 buMB+Klw6U2aoWKQibqgcXgST5/hOaTZIg3X4QeyOXPyLM9gtH2acfKtY6gLLmOE wSsrHCe4c8Rw6JSzKiXy7vZGIxLAk2gChu2WUQBwmK/oJEtWiZlYqdcb+pEdVX/G Y6q3Xxnljrnuk0ooowOVNa0q+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEgau/EZ qCFROpWQxYleF1obzJRrMB8GA1UdIwQYMBaAFD6EXqhOEQMLwqEGEwiXn3mKEhE/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkJGNS85RDBCNDIyMjEz RjMxMUVBODBCMzc0NUZDNEY5QUUwMi9Qb1JlcUU0UkF3dkNvUVlUQ0plZmVZb1NF VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BvUmVxRTRSQXd2Q29RWVRDSmVmZVlvU0VUOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkJGNS85RDBCNDIyMjEzRjMxMUVBODBCMzc0NUZDNEY5QUUwMi9Qb1JlcUU0UkF3 dkNvUVlUQ0plZmVZb1NFVDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWpHBVs5MPkOPHHmQFIfZBBtEr2E1K4q3o8xYPENfnBUxb7N8aIG1y pbR0Lps2bazhWlIhK0YLy29by+6VfMT4vEQAb2oGLvBiUaiQH77iEfNeDb+Twk8P PX7RQmazM3WAmfkZXGh32v0mvGZJDlE9zGHa64wPFFkwYFSm/+/LUKIpsT51bIA2 UO6+QlkloXmDhQGcPKwqzwzSMa11GHuadK6R7KSu29GDoHy1LHvPDiELi6Sff4SD rPxjxtS7xYWQNdUV7l/DlRWBPjVdTNHkCXfAssL2+cfpvFvqUJavPfqyiwXBcDzX DvTpotAWkEokKPZ52DNYGC8N3hwk3Dl8 -----END CERTIFICATE-----Generated at Sat May 18 20:48:20 2024 by rpki-client on console-fra.rpki-client.org