$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft File: g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft (raw, json) Hash identifier: V/hUbWKPnPm8Oacg12EAR2SJ5VqmSfrXteNaYfx4C+0= Subject key identifier: 1F:B1:27:53:9A:96:15:C4:A8:BB:A9:99:3A:64:B7:09:F9:09:5A:73 Authority key identifier: 83:8A:94:ED:25:24:09:59:AA:6F:15:49:10:03:AC:6E:6D:03:95:7E Certificate issuer: /CN=A91A7CDD/serialNumber=838A94ED25240959AA6F15491003AC6E6D03957E Certificate serial: 29 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft Manifest number: 27 Signing time: Sun 19 May 2024 08:30:54 +0000 Manifest this update: Sun 19 May 2024 08:30:54 +0000 Manifest next update: Sun 26 May 2024 08:30:54 +0000 Files and hashes: 1: g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl (hash: xwRyPwSavvS+0MfrlufeHcXu7PmxOzSuTlkThQ17atI=) 2: 1E595AE8DD0E11EE9833196BC4F9AE02.roa (hash: ABk7UnhSiI/cyac2q37QjbleVm+GdMhRfrm7xL7Vb0c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7CDD/serialNumber=838A94ED25240959AA6F15491003AC6E6D03957E Validity Not Before: May 19 08:30:54 2024 GMT Not After : May 26 08:30:54 2024 GMT Subject: CN=6649b8be-7c61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:7f:95:1d:5e:a2:c4:6a:bd:af:b3:ab:09:1c: 52:a5:ae:b3:19:a2:0a:fb:24:7f:66:cc:bb:46:a1: dd:f6:02:fb:8f:ad:50:be:45:36:61:ee:4f:95:0e: bb:c5:0e:f2:27:fd:04:25:2c:4f:17:78:66:a8:6a: 63:49:73:d4:45:ef:ab:17:13:b8:b3:19:cb:66:6a: d4:9f:ed:4f:a4:61:0b:e8:bd:d4:30:d8:6b:88:da: fb:59:24:f9:68:90:1f:64:ae:0b:3f:86:d2:25:91: 2f:36:93:17:89:88:33:a8:9a:5f:3b:3a:71:6d:e8: 78:5c:14:f8:ff:b1:8a:a5:00:3e:4d:cc:ca:e9:4d: c1:bb:2e:12:c2:2d:1a:d7:4f:ab:52:ac:b5:b4:68: 4e:86:e0:61:64:f9:f0:1a:fe:40:1c:e1:bf:32:e0: a4:40:5e:f3:ed:0e:b3:ba:e3:e0:1c:be:0c:73:ec: fd:87:c7:ff:11:eb:ac:92:fc:24:d3:58:b5:bf:5d: 5e:21:4b:ba:14:60:7f:be:72:ce:b9:a3:bc:58:fd: 14:cc:2f:fc:28:91:a8:cd:ac:4c:69:69:ae:1c:50: 30:ca:23:b9:b3:41:53:c1:4e:eb:1f:11:36:cf:64: 42:c4:5e:47:75:be:70:ac:48:51:85:47:68:f0:08: 44:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:B1:27:53:9A:96:15:C4:A8:BB:A9:99:3A:64:B7:09:F9:09:5A:73 X509v3 Authority Key Identifier: keyid:83:8A:94:ED:25:24:09:59:AA:6F:15:49:10:03:AC:6E:6D:03:95:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:5c:48:c3:c0:44:dc:f0:39:e3:a4:ab:37:13:65:78:08:7f: 87:e3:a4:ed:3a:30:04:2d:15:bd:2e:fa:b8:8d:ba:08:e0:28: 0e:39:22:c3:dd:52:fb:de:c4:45:62:d7:5b:ab:ad:31:fa:0a: 5f:de:6b:1f:1f:0f:7d:db:08:4b:c8:89:ec:30:b5:19:dd:6b: c4:1f:aa:4c:d5:6c:a8:7e:95:29:0b:81:9f:86:a6:87:88:a1: 5b:85:01:66:12:fb:56:d1:61:2f:a3:4c:88:f4:f5:3a:47:2b: 8f:56:d5:8c:22:35:f9:10:90:5c:19:a7:d2:c0:47:41:35:d8: ae:3a:98:a3:df:3b:8f:d7:83:fd:86:dc:30:07:1d:18:48:1c: 02:8c:f0:76:3e:73:61:f2:d9:25:19:8c:e7:66:c3:92:ca:28: f1:78:57:23:d1:62:d2:99:33:2f:66:ff:84:86:0b:0c:7e:51: d7:61:1b:9b:12:8c:db:f2:5a:b3:94:ae:1d:33:d8:f1:ac:90: 29:0c:ad:b7:3d:f4:66:91:e5:ed:f4:10:66:2a:50:45:53:b3: 9d:d2:1b:87:6a:0c:29:3f:ed:57:69:c1:f4:db:31:61:64:04: 5a:40:99:9b:92:e8:2a:6d:cc:04:89:a3:96:57:11:36:31:d6: 8e:a7:78:14 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB N0NERDExMC8GA1UEBRMoODM4QTk0RUQyNTI0MDk1OUFBNkYxNTQ5MTAwM0FDNkU2 RDAzOTU3RTAeFw0yNDA1MTkwODMwNTRaFw0yNDA1MjYwODMwNTRaMBgxFjAUBgNV BAMTDTY2NDliOGJlLTdjNjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDf5UdXqLEar2vs6sJHFKlrrMZogr7JH9mzLtGod32AvuPrVC+RTZh7k+VDrvF DvIn/QQlLE8XeGaoamNJc9RF76sXE7izGctmatSf7U+kYQvovdQw2GuI2vtZJPlo kB9krgs/htIlkS82kxeJiDOoml87OnFt6HhcFPj/sYqlAD5NzMrpTcG7LhLCLRrX T6tSrLW0aE6G4GFk+fAa/kAc4b8y4KRAXvPtDrO64+Acvgxz7P2Hx/8R66yS/CTT WLW/XV4hS7oUYH++cs65o7xY/RTML/wokajNrExpaa4cUDDKI7mzQVPBTusfETbP ZELEXkd1vnCsSFGFR2jwCEQLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUH7EnU5qW FcSou6mZOmS3CfkJWnMwHwYDVR0jBBgwFoAUg4qU7SUkCVmqbxVJEAOsbm0DlX4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3Q0RELzhBMjNBNkY4REQw RDExRUU5RDI5MkQ2QUM0RjlBRTAyL2c0cVU3U1VrQ1ZtcWJ4VkpFQU9zYm0wRGxY NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZzRxVTdTVWtDVm1xYnhWSkVBT3NibTBEbFg0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3 Q0RELzhBMjNBNkY4REQwRDExRUU5RDI5MkQ2QUM0RjlBRTAyL2c0cVU3U1VrQ1Zt cWJ4VkpFQU9zYm0wRGxYNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE9cSMPARNzwOeOkqzcTZXgIf4fjpO06MAQtFb0u+riNugjgKA45IsPd UvvexEVi11urrTH6Cl/eax8fD33bCEvIiewwtRnda8QfqkzVbKh+lSkLgZ+GpoeI oVuFAWYS+1bRYS+jTIj09TpHK49W1YwiNfkQkFwZp9LAR0E12K46mKPfO4/Xg/2G 3DAHHRhIHAKM8HY+c2Hy2SUZjOdmw5LKKPF4VyPRYtKZMy9m/4SGCwx+UddhG5sS jNvyWrOUrh0z2PGskCkMrbc99GaR5e30EGYqUEVTs53SG4dqDCk/7VdpwfTbMWFk BFpAmZuS6CptzASJo5ZXETYx1o6neBQ= -----END CERTIFICATE-----Generated at Sun May 19 09:04:14 2024 by rpki-client on console-fra.rpki-client.org