$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft File: poP2ckwCoT8tOc8vIVAL4AOA3eM.mft (raw, json) Hash identifier: 0HD0Uc2/cMzbpFKiACzQuUvgWs7XgSlNd/dCBwWEeI0= Subject key identifier: 6A:FF:68:17:D8:DE:49:69:F6:9D:CA:B7:7C:80:7A:5C:61:37:47:82 Authority key identifier: A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 Certificate issuer: /CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Certificate serial: 340A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft Manifest number: 33E7 Signing time: Thu 16 May 2024 14:49:55 +0000 Manifest this update: Thu 16 May 2024 14:49:54 +0000 Manifest next update: Thu 23 May 2024 14:49:54 +0000 Files and hashes: 1: poP2ckwCoT8tOc8vIVAL4AOA3eM.crl (hash: WCdpwtVCLgDDD4lOkfhDxQwxsjdo/MTxAQ4PlDA7bAk=) 2: 888B171A960D11ED942B5D62C4F9AE02.roa (hash: 7hwDXnY/VSA9GeUJEFRZsOQeVulT134imAqDjjhy4Sw=) 3: DCB6CBAC7F6111EE871E1458C4F9AE02.roa (hash: QskQcbNe8+dEHW1kWpOC4qbtbsKjRaWI8+eIj9XFZHs=) 4: 89707206960D11ED942B5D62C4F9AE02.roa (hash: DJMGS4AtkqxIjOOjN++owRLxGBjnQ2dIqmuDZtGgVYU=) 5: 5B5ECC52474711ECA7B2426CC4F9AE02.roa (hash: Ns5Bt8M5YhH2CBq1ERBQLmCCxvJ/lw0Msh9Q/x176uo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 14:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13322 (0x340a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Validity Not Before: May 16 14:49:54 2024 GMT Not After : May 23 14:49:54 2024 GMT Subject: CN=66461d13-1456 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:32:6a:ca:80:70:8b:6c:40:71:67:a4:03:a9: 02:09:8e:d3:4f:c5:bf:60:39:3a:64:0d:f2:bd:82: a4:14:12:a3:1b:8d:16:04:09:0e:91:89:20:b6:bd: c6:bd:6a:51:f0:da:fc:16:68:e8:9b:28:24:1a:ee: b1:0d:1e:4d:05:ff:75:8b:2b:15:5b:12:84:96:ef: 10:51:84:7f:8d:aa:62:c3:80:ad:20:08:7b:75:e4: 6b:0c:cf:61:ab:8a:06:19:57:4b:77:de:c7:66:97: d3:6d:b0:92:a1:03:52:62:52:a9:5c:99:7a:af:6f: 58:1a:e0:6c:82:11:06:82:d9:a6:4e:da:22:96:27: 76:a9:53:35:e9:78:0b:1d:de:fd:0d:a5:31:2d:75: 79:20:70:ce:50:f0:f9:03:73:3d:fd:f7:c5:a1:91: a9:21:e5:d0:cd:5a:1e:ce:44:2b:e0:83:de:fc:e3: c3:0a:02:e6:36:ea:19:9d:3c:5a:c6:bc:78:6b:38: a7:3f:ec:57:e4:73:cc:50:49:a7:72:ea:6d:a8:2a: 66:35:17:81:62:5b:c2:4f:52:77:b1:8d:0b:ee:24: 3d:bc:0d:92:f7:82:2a:8a:21:4c:be:7f:3b:67:85: 7d:f6:d2:74:6c:95:61:62:13:02:53:9e:bb:ee:28: 7b:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:FF:68:17:D8:DE:49:69:F6:9D:CA:B7:7C:80:7A:5C:61:37:47:82 X509v3 Authority Key Identifier: keyid:A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:65:19:a9:a0:b8:6f:e3:06:ef:6e:a0:c0:4c:83:bf:8f:bc: 54:6e:ce:57:91:e4:84:48:17:da:4d:aa:14:c8:6c:67:96:ce: aa:25:15:2b:3c:2d:29:1e:bc:84:5e:07:38:8b:31:7a:a6:1c: b0:98:24:0b:a9:a9:da:c2:c7:fa:90:9e:65:f2:93:95:46:b8: 6b:d2:7e:d7:3b:07:0f:91:7c:ec:fd:15:70:8c:59:6b:6f:fb: ba:e4:5c:f3:ca:b8:d3:44:ec:eb:2a:f5:6e:bc:ef:29:c7:e0: 72:0d:78:58:1d:18:b4:e1:5f:34:88:5c:27:04:7b:06:a2:76: ed:e1:a9:23:65:69:66:0a:a4:b9:e0:bf:c4:38:6b:f1:e3:c0: a4:98:f2:24:57:c7:91:99:0e:73:5c:e4:fb:bc:f4:53:50:3f: ff:cf:f3:e7:fa:2e:44:fe:b4:78:47:8b:8e:a4:33:ed:0f:c1: cf:98:30:92:46:14:d7:0d:ea:ba:00:40:ee:7c:05:57:c0:ab: 2d:e8:33:e9:8d:fe:d2:76:64:0d:0e:4a:35:d4:b5:93:87:11: 39:58:ac:20:c2:dd:c9:68:b7:49:ad:18:60:e8:a9:32:88:83: f0:26:27:55:0d:8f:ac:5b:fb:f4:58:38:5e:fd:6a:fd:e1:aa: 23:18:e2:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNAowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThEMjIxMTAvBgNVBAUTKEE2ODNGNjcyNEMwMkExM0YyRDM5Q0YyRjIxNTAwQkUw MDM4MERERTMwHhcNMjQwNTE2MTQ0OTU0WhcNMjQwNTIzMTQ0OTU0WjAYMRYwFAYD VQQDEw02NjQ2MWQxMy0xNDU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqDJqyoBwi2xAcWekA6kCCY7TT8W/YDk6ZA3yvYKkFBKjG40WBAkOkYkgtr3G vWpR8Nr8FmjomygkGu6xDR5NBf91iysVWxKElu8QUYR/japiw4CtIAh7deRrDM9h q4oGGVdLd97HZpfTbbCSoQNSYlKpXJl6r29YGuBsghEGgtmmTtoilid2qVM16XgL Hd79DaUxLXV5IHDOUPD5A3M9/ffFoZGpIeXQzVoezkQr4IPe/OPDCgLmNuoZnTxa xrx4azinP+xX5HPMUEmncuptqCpmNReBYlvCT1J3sY0L7iQ9vA2S94IqiiFMvn87 Z4V99tJ0bJVhYhMCU5677ih7VwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGr/aBfY 3klp9p3Kt3yAelxhN0eCMB8GA1UdIwQYMBaAFKaD9nJMAqE/LTnPLyFQC+ADgN3j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEQyMi8yNTI2OTc5ODFE OTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29UOHRPYzh2SVZBTDRBT0Ez ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BvUDJja3dDb1Q4dE9jOHZJVkFMNEFPQTNlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEQyMi8yNTI2OTc5ODFEOTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29U OHRPYzh2SVZBTDRBT0EzZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeZRmpoLhv4wbvbqDATIO/j7xUbs5XkeSESBfaTaoUyGxnls6qJRUr PC0pHryEXgc4izF6phywmCQLqanawsf6kJ5l8pOVRrhr0n7XOwcPkXzs/RVwjFlr b/u65FzzyrjTROzrKvVuvO8px+ByDXhYHRi04V80iFwnBHsGonbt4akjZWlmCqS5 4L/EOGvx48CkmPIkV8eRmQ5zXOT7vPRTUD//z/Pn+i5E/rR4R4uOpDPtD8HPmDCS RhTXDeq6AEDufAVXwKst6DPpjf7SdmQNDko11LWThxE5WKwgwt3JaLdJrRhg6Kky iIPwJidVDY+sW/v0WDhe/Wr94aojGOI6 -----END CERTIFICATE-----Generated at Thu May 16 16:14:59 2024 by rpki-client on console-fra.rpki-client.org