$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE1B5/8B405E5E003B11EF911B8F68C4F9AE02/7sDpmYfcHqnUAviE_NqX4DFFpKA.mft File: 7sDpmYfcHqnUAviE_NqX4DFFpKA.mft (raw, json) Hash identifier: hhtLaZIfCg2daXgN9+Q5BBNvkhxZTt463V4hzE9ok8Q= Subject key identifier: 02:03:EF:76:97:D4:F0:74:CE:44:A2:69:59:60:6C:A5:D6:E1:9F:2D Authority key identifier: EE:C0:E9:99:87:DC:1E:A9:D4:02:F8:84:FC:DA:97:E0:31:45:A4:A0 Certificate issuer: /CN=A91AE1B5/serialNumber=EEC0E99987DC1EA9D402F884FCDA97E03145A4A0 Certificate serial: 13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7sDpmYfcHqnUAviE_NqX4DFFpKA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE1B5/8B405E5E003B11EF911B8F68C4F9AE02/7sDpmYfcHqnUAviE_NqX4DFFpKA.mft Manifest number: 11 Signing time: Sun 19 May 2024 08:50:37 +0000 Manifest this update: Sun 19 May 2024 08:50:37 +0000 Manifest next update: Sun 26 May 2024 08:50:37 +0000 Files and hashes: 1: 7sDpmYfcHqnUAviE_NqX4DFFpKA.crl (hash: pTugfgtFtkjLE1e5oM66Ik4qPpgL/ijeSdUbrZo22Ok=) 2: D2A2FF4A003B11EFA6658D0DC4F9AE02.roa (hash: MYlI9yRjETR2JPXMYIrWDtkNVEE6j+/Uw0eg1BqzYM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE1B5/8B405E5E003B11EF911B8F68C4F9AE02/7sDpmYfcHqnUAviE_NqX4DFFpKA.crl rsync://rpki.apnic.net/member_repository/A91AE1B5/8B405E5E003B11EF911B8F68C4F9AE02/7sDpmYfcHqnUAviE_NqX4DFFpKA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7sDpmYfcHqnUAviE_NqX4DFFpKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE1B5/serialNumber=EEC0E99987DC1EA9D402F884FCDA97E03145A4A0 Validity Not Before: May 19 08:50:37 2024 GMT Not After : May 26 08:50:37 2024 GMT Subject: CN=6649bd5d-073b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d6:01:2b:b5:58:c3:49:85:f9:04:3c:47:55: f0:10:7c:09:f8:9f:88:ae:64:fc:f8:3b:b7:6c:a1: 00:67:e1:cc:a5:d8:f2:2e:3d:5a:0b:3e:d6:39:50: d7:20:32:12:85:57:cf:22:e7:57:3d:34:26:9c:c0: 10:a8:e8:7c:05:f6:fb:c6:63:04:1b:b6:cc:63:ae: c0:18:e4:c6:de:72:8c:cb:60:c3:dd:ac:61:11:aa: 77:bd:12:b6:db:5a:45:8b:51:86:69:7b:1f:b9:7e: 3e:a2:ec:ff:1e:10:ab:05:b8:da:b7:b3:ac:43:c8: 29:33:67:93:46:86:48:cd:0c:13:1a:df:db:1e:b7: b2:58:4b:fc:d3:41:bb:c0:16:9b:90:d9:bf:a9:93: d7:33:45:9b:5b:ce:24:39:9e:40:92:14:0f:a1:f0: 87:18:45:5f:dc:e5:cd:9d:b3:16:e3:ef:38:76:d1: c5:6f:6c:07:52:77:11:45:40:ee:a8:f9:74:e9:39: 8f:f6:8d:1f:c9:2c:fb:a2:a6:f4:a3:3c:49:06:90: 74:43:10:94:75:98:f9:45:ff:d3:eb:49:ee:6f:f2: 2b:11:ac:22:02:be:c6:13:b1:7e:b4:21:c2:e1:51: 79:fd:5c:59:53:a7:3d:a5:3a:8a:ae:b2:d9:3e:12: c5:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:03:EF:76:97:D4:F0:74:CE:44:A2:69:59:60:6C:A5:D6:E1:9F:2D X509v3 Authority Key Identifier: keyid:EE:C0:E9:99:87:DC:1E:A9:D4:02:F8:84:FC:DA:97:E0:31:45:A4:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE1B5/8B405E5E003B11EF911B8F68C4F9AE02/7sDpmYfcHqnUAviE_NqX4DFFpKA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7sDpmYfcHqnUAviE_NqX4DFFpKA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE1B5/8B405E5E003B11EF911B8F68C4F9AE02/7sDpmYfcHqnUAviE_NqX4DFFpKA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:f9:28:a0:40:90:89:64:1f:06:ea:73:8d:34:02:99:54:97: 88:a4:8f:d5:7a:6c:4c:07:f3:25:9a:0d:fd:11:ec:d6:83:43: 41:51:76:de:dc:b5:9b:d6:a2:54:ce:1e:0f:1b:41:7f:32:f0: bc:00:d5:b7:a8:df:bf:83:08:77:6d:86:7c:f2:16:a8:2e:4b: 08:8c:76:7b:46:15:32:8e:8b:e0:3b:e2:51:9d:5c:90:ad:d7: b9:81:0d:15:f8:41:81:dd:94:ae:0d:4c:f5:83:07:7c:4e:10: fe:58:8a:6c:59:a6:42:7d:76:6d:21:d8:c0:56:e2:45:20:d6: 58:ec:26:33:fa:6e:eb:a1:57:5f:52:26:a9:03:57:5d:18:b0: 9e:5f:ea:f9:cc:77:c8:fd:bc:7e:50:1b:34:07:88:b7:11:c9: 7e:a2:4a:1e:70:eb:b6:8d:86:55:51:83:bd:c3:08:b2:45:ed: fd:94:89:de:90:73:14:80:b9:7f:3d:4c:74:47:78:3e:74:25: ee:d9:80:47:91:ae:22:d5:10:f1:b8:2a:e9:db:35:40:58:97: f7:11:3e:f0:4d:ea:cf:97:c5:57:c9:cd:ab:c3:31:9d:54:bb: ab:dc:5d:36:1f:6d:55:14:16:6f:5f:5e:7d:3d:2d:c1:19:ab: 8a:58:61:14 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB RTFCNTExMC8GA1UEBRMoRUVDMEU5OTk4N0RDMUVBOUQ0MDJGODg0RkNEQTk3RTAz MTQ1QTRBMDAeFw0yNDA1MTkwODUwMzdaFw0yNDA1MjYwODUwMzdaMBgxFjAUBgNV BAMTDTY2NDliZDVkLTA3M2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDV1gErtVjDSYX5BDxHVfAQfAn4n4iuZPz4O7dsoQBn4cyl2PIuPVoLPtY5UNcg MhKFV88i51c9NCacwBCo6HwF9vvGYwQbtsxjrsAY5MbecozLYMPdrGERqne9Erbb WkWLUYZpex+5fj6i7P8eEKsFuNq3s6xDyCkzZ5NGhkjNDBMa39set7JYS/zTQbvA FpuQ2b+pk9czRZtbziQ5nkCSFA+h8IcYRV/c5c2dsxbj7zh20cVvbAdSdxFFQO6o +XTpOY/2jR/JLPuipvSjPEkGkHRDEJR1mPlF/9PrSe5v8isRrCICvsYTsX60IcLh UXn9XFlTpz2lOoqustk+EsV7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUAgPvdpfU 8HTORKJpWWBspdbhny0wHwYDVR0jBBgwFoAU7sDpmYfcHqnUAviE/NqX4DFFpKAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFFMUI1LzhCNDA1RTVFMDAz QjExRUY5MTFCOEY2OEM0RjlBRTAyLzdzRHBtWWZjSHFuVUF2aUVfTnFYNERGRnBL QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN3NEcG1ZZmNIcW5VQXZpRV9OcVg0REZGcEtBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFF MUI1LzhCNDA1RTVFMDAzQjExRUY5MTFCOEY2OEM0RjlBRTAyLzdzRHBtWWZjSHFu VUF2aUVfTnFYNERGRnBLQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE75KKBAkIlkHwbqc400AplUl4ikj9V6bEwH8yWaDf0R7NaDQ0FRdt7c tZvWolTOHg8bQX8y8LwA1beo37+DCHdthnzyFqguSwiMdntGFTKOi+A74lGdXJCt 17mBDRX4QYHdlK4NTPWDB3xOEP5YimxZpkJ9dm0h2MBW4kUg1ljsJjP6buuhV19S JqkDV10YsJ5f6vnMd8j9vH5QGzQHiLcRyX6iSh5w67aNhlVRg73DCLJF7f2Uid6Q cxSAuX89THRHeD50Je7ZgEeRriLVEPG4KunbNUBYl/cRPvBN6s+XxVfJzavDMZ1U u6vcXTYfbVUUFm9fXn09LcEZq4pYYRQ= -----END CERTIFICATE-----Generated at Sun May 19 09:38:26 2024 by rpki-client on console-fra.rpki-client.org