$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB193/93D4E490F63111EE9ACBE221C4F9AE02/exrifTz1FJnFBW59qHNmXk5BUXk.mft File: exrifTz1FJnFBW59qHNmXk5BUXk.mft (raw, json) Hash identifier: TiBoikWclKPGYEEYF7g7cXQiFTEiFhj/PSX28e/w8wc= Subject key identifier: B3:34:B8:52:5F:AD:6E:E4:11:99:80:EC:9D:82:00:38:BE:89:11:27 Authority key identifier: 7B:1A:E2:7D:3C:F5:14:99:C5:05:6E:7D:A8:73:66:5E:4E:41:51:79 Certificate issuer: /CN=A91AB193/serialNumber=7B1AE27D3CF51499C5056E7DA873665E4E415179 Certificate serial: 1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/exrifTz1FJnFBW59qHNmXk5BUXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB193/93D4E490F63111EE9ACBE221C4F9AE02/exrifTz1FJnFBW59qHNmXk5BUXk.mft Manifest number: 1C Signing time: Fri 31 May 2024 09:38:53 +0000 Manifest this update: Fri 31 May 2024 09:38:52 +0000 Manifest next update: Fri 07 Jun 2024 09:38:52 +0000 Files and hashes: 1: exrifTz1FJnFBW59qHNmXk5BUXk.crl (hash: x42TtARiDfXVRX7F4W+/hlIua5xeT8KCBjVlhMh0tUY=) 2: BF0AEB12F63311EE863CC844C4F9AE02.roa (hash: G/J3iORvNE81RBoxtrIbg1rhldWObuX031NoD7+NMa4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB193/93D4E490F63111EE9ACBE221C4F9AE02/exrifTz1FJnFBW59qHNmXk5BUXk.crl rsync://rpki.apnic.net/member_repository/A91AB193/93D4E490F63111EE9ACBE221C4F9AE02/exrifTz1FJnFBW59qHNmXk5BUXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/exrifTz1FJnFBW59qHNmXk5BUXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 09:38:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB193/serialNumber=7B1AE27D3CF51499C5056E7DA873665E4E415179 Validity Not Before: May 31 09:38:52 2024 GMT Not After : Jun 7 09:38:52 2024 GMT Subject: CN=66599aac-b35b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:3d:3e:e0:d3:37:4f:bd:68:d9:d1:d1:dc:2e: 6a:dd:54:89:e8:9a:97:28:4a:45:58:3d:19:39:3e: 75:0c:7e:32:f3:a6:93:e6:6d:c0:50:dd:f6:67:48: d8:35:af:51:a9:04:40:d1:6a:bc:6e:3b:fe:0d:b3: 13:dc:85:5d:7a:82:68:b4:5a:6a:6b:a5:0f:fb:7d: b0:fb:77:f1:c0:f0:3b:c7:28:d6:22:a0:83:b0:18: 59:e9:1a:b5:a8:46:60:10:d2:e3:e1:f0:73:be:b9: e9:a2:42:56:cc:8f:20:10:df:8f:ee:be:e5:f8:aa: 9b:54:f0:f2:9f:c9:92:2e:85:a3:6a:dc:23:a8:c4: cf:42:ae:4d:61:3e:d9:c2:e5:6b:02:06:ec:ff:31: 4b:35:7e:8e:ed:f9:28:be:bf:6a:dd:1f:60:4e:00: 3b:9b:88:78:f2:0d:00:d7:d3:4e:2b:71:02:11:2b: 79:da:32:7b:3c:86:0f:49:34:30:0d:3f:13:9a:78: f2:e4:70:46:3f:a1:10:d3:a4:7a:84:bd:6d:ce:f8: 11:2f:db:0a:d3:a3:5b:0b:aa:f7:ac:63:61:0e:84: 18:ed:1f:50:c9:e4:33:9d:56:2a:70:97:85:1e:38: d8:ef:4b:11:0f:4d:5d:d5:18:c7:d3:dd:2e:9a:92: 8c:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:34:B8:52:5F:AD:6E:E4:11:99:80:EC:9D:82:00:38:BE:89:11:27 X509v3 Authority Key Identifier: keyid:7B:1A:E2:7D:3C:F5:14:99:C5:05:6E:7D:A8:73:66:5E:4E:41:51:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB193/93D4E490F63111EE9ACBE221C4F9AE02/exrifTz1FJnFBW59qHNmXk5BUXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/exrifTz1FJnFBW59qHNmXk5BUXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB193/93D4E490F63111EE9ACBE221C4F9AE02/exrifTz1FJnFBW59qHNmXk5BUXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:8f:22:a2:ee:8e:0d:ff:2c:0b:2b:0c:63:ae:46:f9:98:eb: db:f6:90:66:fb:eb:ff:f1:7d:43:ef:db:c9:36:ff:ba:72:3c: 45:c4:04:d9:f2:ab:aa:38:2f:f1:39:cd:73:00:5a:96:ff:2a: 3c:2e:aa:df:4f:89:40:40:80:18:e2:33:69:49:65:33:37:67: 2f:62:c3:26:da:70:c3:30:ca:94:69:a9:21:5a:ef:2e:18:36: ee:15:d2:3d:47:8d:2c:49:af:77:b0:4a:d5:64:c0:26:b5:6b: f3:cb:16:82:94:c1:7a:84:1c:83:7e:bb:4c:2e:02:60:ac:45: fe:ba:c8:98:a5:a3:1e:bb:e8:e7:17:9d:d7:18:a3:04:5c:f7: cd:77:d9:10:cb:6a:45:dc:79:95:53:71:75:07:a9:01:a4:37: ca:89:92:bd:2d:dc:29:eb:d5:17:89:48:54:54:87:5a:f5:df: c1:49:a9:74:6e:8f:5e:54:97:c2:59:5e:04:61:d4:f7:ea:40: e1:ae:23:c5:6f:dd:71:59:c1:15:87:ca:58:26:b0:a6:a0:81: 80:e8:3c:ef:f5:b3:e9:bf:e7:7e:36:63:9e:1b:c2:83:b0:a6: 95:06:2c:ba:57:e7:31:82:51:52:18:ec:82:11:9a:10:fc:00: dc:99:48:88 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QjE5MzExMC8GA1UEBRMoN0IxQUUyN0QzQ0Y1MTQ5OUM1MDU2RTdEQTg3MzY2NUU0 RTQxNTE3OTAeFw0yNDA1MzEwOTM4NTJaFw0yNDA2MDcwOTM4NTJaMBgxFjAUBgNV BAMTDTY2NTk5YWFjLWIzNWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDaPT7g0zdPvWjZ0dHcLmrdVInompcoSkVYPRk5PnUMfjLzppPmbcBQ3fZnSNg1 r1GpBEDRarxuO/4NsxPchV16gmi0WmprpQ/7fbD7d/HA8DvHKNYioIOwGFnpGrWo RmAQ0uPh8HO+uemiQlbMjyAQ34/uvuX4qptU8PKfyZIuhaNq3COoxM9Crk1hPtnC 5WsCBuz/MUs1fo7t+Si+v2rdH2BOADubiHjyDQDX004rcQIRK3naMns8hg9JNDAN PxOaePLkcEY/oRDTpHqEvW3O+BEv2wrTo1sLqvesY2EOhBjtH1DJ5DOdVipwl4Ue ONjvSxEPTV3VGMfT3S6akozFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUszS4Ul+t buQRmYDsnYIAOL6JEScwHwYDVR0jBBgwFoAUexrifTz1FJnFBW59qHNmXk5BUXkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFCMTkzLzkzRDRFNDkwRjYz MTExRUU5QUNCRTIyMUM0RjlBRTAyL2V4cmlmVHoxRkpuRkJXNTlxSE5tWGs1QlVY ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZXhyaWZUejFGSm5GQlc1OXFITm1YazVCVVhrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFC MTkzLzkzRDRFNDkwRjYzMTExRUU5QUNCRTIyMUM0RjlBRTAyL2V4cmlmVHoxRkpu RkJXNTlxSE5tWGs1QlVYay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACmPIqLujg3/LAsrDGOuRvmY69v2kGb76//xfUPv28k2/7pyPEXEBNny q6o4L/E5zXMAWpb/Kjwuqt9PiUBAgBjiM2lJZTM3Zy9iwybacMMwypRpqSFa7y4Y Nu4V0j1HjSxJr3ewStVkwCa1a/PLFoKUwXqEHIN+u0wuAmCsRf66yJilox676OcX ndcYowRc98132RDLakXceZVTcXUHqQGkN8qJkr0t3Cnr1ReJSFRUh1r138FJqXRu j15Ul8JZXgRh1PfqQOGuI8Vv3XFZwRWHylgmsKaggYDoPO/1s+m/5342Y54bwoOw ppUGLLpX5zGCUVIY7IIRmhD8ANyZSIg= -----END CERTIFICATE-----Generated at Fri May 31 13:04:58 2024 by rpki-client on console-ams.rpki-client.org