$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE9F7/379EC742544A11E9A350C127C4F9AE02/AXCw4NBuMUc8rBZOSwttIb300jc.mft File: AXCw4NBuMUc8rBZOSwttIb300jc.mft (raw, json) Hash identifier: cQWFIRWpuwJSry4WoRoFz2MiT7k8Qgh68WS7PACMBbg= Subject key identifier: 2B:8D:E0:C7:22:D3:3A:1E:A8:5D:0B:8F:C0:6C:C2:B2:A7:60:7B:FB Authority key identifier: 01:70:B0:E0:D0:6E:31:47:3C:AC:16:4E:4B:0B:6D:21:BD:F4:D2:37 Certificate issuer: /CN=A91AE9F7/serialNumber=0170B0E0D06E31473CAC164E4B0B6D21BDF4D237 Certificate serial: 0F1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AXCw4NBuMUc8rBZOSwttIb300jc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE9F7/379EC742544A11E9A350C127C4F9AE02/AXCw4NBuMUc8rBZOSwttIb300jc.mft Manifest number: 0F0F Signing time: Sat 18 May 2024 18:14:33 +0000 Manifest this update: Sat 18 May 2024 18:14:32 +0000 Manifest next update: Sat 25 May 2024 18:14:32 +0000 Files and hashes: 1: AXCw4NBuMUc8rBZOSwttIb300jc.crl (hash: 1RvZmWERPFwn9/YvZSjw5N7XEtbukDf7NE9NYyFDqJw=) 2: 1585570A544C11E9BDFF2B2DC4F9AE02.roa (hash: +rFBkVlxJctk1V7KCpdnceZUOBrtZEVgxAJI9xv2x48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE9F7/379EC742544A11E9A350C127C4F9AE02/AXCw4NBuMUc8rBZOSwttIb300jc.crl rsync://rpki.apnic.net/member_repository/A91AE9F7/379EC742544A11E9A350C127C4F9AE02/AXCw4NBuMUc8rBZOSwttIb300jc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AXCw4NBuMUc8rBZOSwttIb300jc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3866 (0xf1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE9F7/serialNumber=0170B0E0D06E31473CAC164E4B0B6D21BDF4D237 Validity Not Before: May 18 18:14:32 2024 GMT Not After : May 25 18:14:32 2024 GMT Subject: CN=6648f008-2edb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:8f:d2:da:0f:c0:9a:20:ff:8e:ec:81:88:ad: e5:56:2d:76:5a:dd:7d:e3:e2:19:e2:3b:30:d7:bc: b2:aa:e0:b1:97:c3:6e:a9:31:03:37:50:eb:04:bd: 86:24:8d:c0:a5:28:a2:18:05:62:d0:b4:e4:c9:fd: 3c:ea:fc:35:e1:36:4d:91:7d:6f:e2:46:a8:df:76: 8d:3c:a4:c7:f1:5d:43:c5:0d:f8:37:42:0b:a2:58: 0a:38:6e:3d:10:0e:24:46:4b:79:9b:c0:f1:96:29: cc:46:6d:0c:fa:06:73:12:d9:5f:68:b4:84:45:9d: 08:73:b6:47:bf:ab:94:35:bf:46:af:98:aa:c7:2e: 69:d1:f0:b5:c5:b1:bc:1f:9f:fa:58:68:f0:02:ff: dc:0e:7b:1a:c3:56:63:39:b3:e1:f8:65:92:c6:9e: 66:9c:49:1a:4d:7f:77:67:72:f1:ea:6a:e3:17:b7: 06:ec:68:72:5b:a3:0e:a6:6b:61:1c:02:ff:99:d9: 55:64:ca:37:89:a1:0e:bc:07:bc:44:1e:30:f4:b9: e8:ab:b8:e5:a6:5c:be:e7:f3:3d:35:50:b8:e9:2d: d4:c1:7e:05:e7:94:c7:30:65:43:e6:39:60:83:34: fa:17:6b:d8:e1:25:48:f4:51:c0:bb:df:ef:ce:4f: 18:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:8D:E0:C7:22:D3:3A:1E:A8:5D:0B:8F:C0:6C:C2:B2:A7:60:7B:FB X509v3 Authority Key Identifier: keyid:01:70:B0:E0:D0:6E:31:47:3C:AC:16:4E:4B:0B:6D:21:BD:F4:D2:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE9F7/379EC742544A11E9A350C127C4F9AE02/AXCw4NBuMUc8rBZOSwttIb300jc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AXCw4NBuMUc8rBZOSwttIb300jc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE9F7/379EC742544A11E9A350C127C4F9AE02/AXCw4NBuMUc8rBZOSwttIb300jc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:5e:50:ea:f5:4a:07:6a:cf:8f:f3:88:5c:f3:3e:4a:12:29: 39:9e:33:51:09:f5:4c:5b:f1:84:01:0d:eb:8a:6c:14:c0:68: 62:9d:32:8b:05:e1:83:b1:a3:d4:b0:4e:4f:fe:f3:19:4a:b7: f6:56:9d:3d:88:ea:11:28:60:38:d5:62:74:1f:0f:b4:50:2a: 1e:41:5b:31:7a:c4:20:fe:69:8d:4a:c0:30:33:7c:36:bc:8c: 26:b2:7f:b5:8a:18:95:22:2a:d5:db:70:8b:9e:64:5c:be:2a: 6e:57:f9:f2:f9:34:a6:36:31:b8:d6:7f:03:fe:30:5b:75:bb: 67:b3:1e:67:08:2d:5e:bf:ea:5a:b9:c4:12:5f:80:92:e2:e4: ab:54:5a:bc:b5:aa:a4:59:c9:68:6a:76:c3:b4:61:fa:06:93: b8:22:61:1e:5c:43:11:59:a7:50:97:a8:1e:47:0f:fe:15:a5: 80:10:2f:4c:44:b0:82:a3:88:0c:fd:26:b9:d6:56:29:9f:87: 4e:1d:46:e2:02:98:a2:d4:7e:db:f5:e0:fe:fe:b6:fb:44:93: 7c:19:cb:56:69:1b:3c:33:0a:e8:90:c3:94:5a:47:c0:18:22: 35:43:31:c1:35:c4:ac:7d:2e:4e:98:b2:2a:00:10:77:1a:5d: bd:97:97:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDxowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU5RjcxMTAvBgNVBAUTKDAxNzBCMEUwRDA2RTMxNDczQ0FDMTY0RTRCMEI2RDIx QkRGNEQyMzcwHhcNMjQwNTE4MTgxNDMyWhcNMjQwNTI1MTgxNDMyWjAYMRYwFAYD VQQDEw02NjQ4ZjAwOC0yZWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6I/S2g/AmiD/juyBiK3lVi12Wt194+IZ4jsw17yyquCxl8NuqTEDN1DrBL2G JI3ApSiiGAVi0LTkyf086vw14TZNkX1v4kao33aNPKTH8V1DxQ34N0ILolgKOG49 EA4kRkt5m8DxlinMRm0M+gZzEtlfaLSERZ0Ic7ZHv6uUNb9Gr5iqxy5p0fC1xbG8 H5/6WGjwAv/cDnsaw1ZjObPh+GWSxp5mnEkaTX93Z3Lx6mrjF7cG7GhyW6MOpmth HAL/mdlVZMo3iaEOvAe8RB4w9Lnoq7jlply+5/M9NVC46S3UwX4F55THMGVD5jlg gzT6F2vY4SVI9FHAu9/vzk8YYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCuN4Mci 0zoeqF0Lj8BswrKnYHv7MB8GA1UdIwQYMBaAFAFwsODQbjFHPKwWTksLbSG99NI3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTlGNy8zNzlFQzc0MjU0 NEExMUU5QTM1MEMxMjdDNEY5QUUwMi9BWEN3NE5CdU1VYzhyQlpPU3d0dEliMzAw amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FYQ3c0TkJ1TVVjOHJCWk9Td3R0SWIzMDBqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTlGNy8zNzlFQzc0MjU0NEExMUU5QTM1MEMxMjdDNEY5QUUwMi9BWEN3NE5CdU1V YzhyQlpPU3d0dEliMzAwamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiXlDq9UoHas+P84hc8z5KEik5njNRCfVMW/GEAQ3rimwUwGhinTKL BeGDsaPUsE5P/vMZSrf2Vp09iOoRKGA41WJ0Hw+0UCoeQVsxesQg/mmNSsAwM3w2 vIwmsn+1ihiVIirV23CLnmRcvipuV/ny+TSmNjG41n8D/jBbdbtnsx5nCC1ev+pa ucQSX4CS4uSrVFq8taqkWcloanbDtGH6BpO4ImEeXEMRWadQl6geRw/+FaWAEC9M RLCCo4gM/Sa51lYpn4dOHUbiApii1H7b9eD+/rb7RJN8GctWaRs8MwrokMOUWkfA GCI1QzHBNcSsfS5OmLIqABB3Gl29l5fZ -----END CERTIFICATE-----Generated at Sat May 18 18:46:46 2024 by rpki-client on console-fra.rpki-client.org