$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft File: _jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft (raw, json) Hash identifier: QSgNcqNTJwAi0UTtWNP3lKXt/iqgGZ0T0d10WkJ2RsQ= Subject key identifier: 0A:94:E6:DF:0D:10:16:84:68:B3:02:F0:EF:CE:8C:66:76:5E:73:C7 Authority key identifier: FE:3C:D3:7C:EC:0E:38:23:07:B4:F9:D5:FF:D5:7E:97:F1:21:F0:53 Certificate issuer: /CN=A91B1185/serialNumber=FE3CD37CEC0E382307B4F9D5FFD57E97F121F053 Certificate serial: 1591 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft Manifest number: 156D Signing time: Sat 18 May 2024 17:17:12 +0000 Manifest this update: Sat 18 May 2024 17:17:11 +0000 Manifest next update: Sat 25 May 2024 17:17:11 +0000 Files and hashes: 1: _jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl (hash: blEcEcVYQiGN9K5ResHXCgKxNG0yIW60dfsfcbNCONE=) 2: 86BBD3DE994C11EC82BA3978C4F9AE02.roa (hash: xGXH2PWmw8oDO8KHFjeFDl/oeWp4UKrtZ9hJajuuCEc=) 3: 88FE530C09C111EDBB795459C4F9AE02.roa (hash: 8Q0foLkbfyJo/brnRiDH23CBEQA0zE9Ep41v6mU3An4=) 4: 87D45318994C11EC82BA3978C4F9AE02.roa (hash: HRxLdFHU7v9ktQmRHzKA7IbwxRL+QI1P77qnL5kGPjQ=) 5: 1AD64F18D23411EAAFD6AA3AC4F9AE02.roa (hash: kaCh08b2Mg8Eik2IuIhloga+8nnEdGyPNQCWzUmLk58=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5521 (0x1591) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1185/serialNumber=FE3CD37CEC0E382307B4F9D5FFD57E97F121F053 Validity Not Before: May 18 17:17:11 2024 GMT Not After : May 25 17:17:11 2024 GMT Subject: CN=6648e298-cf8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:9d:6b:17:37:a8:e5:8c:a5:77:c6:91:10:cf: 13:e0:b4:ed:e0:e1:34:38:f9:f8:84:8c:b1:45:5b: d6:11:2a:cd:b6:fc:92:b4:4c:5a:05:e2:94:c6:45: 21:7e:f4:fc:aa:68:61:56:c4:ff:97:8e:72:c8:99: e9:0f:be:83:21:ee:02:af:63:bb:c5:2e:f0:ac:b8: 72:7a:27:ab:70:ae:c4:3f:79:6f:01:66:e2:1d:4d: 49:4e:4a:f7:66:c3:36:56:ce:94:7e:4e:56:15:b3: 3f:eb:b7:53:74:4f:79:c2:b9:cc:de:ae:cd:1b:eb: 6a:25:3e:8c:75:a3:15:53:21:c1:0a:70:a7:66:f6: 38:e7:1c:0e:1b:46:48:19:9a:32:e1:63:3d:7c:22: 64:22:05:55:6d:1b:ff:aa:91:a0:52:a5:74:ff:da: c6:46:a5:0f:5b:80:4d:0f:9d:9f:f7:1b:3a:f6:89: 09:2e:87:3a:ff:be:8f:8c:7f:74:32:e6:19:1f:6c: ab:da:49:b9:26:b8:ef:d1:8e:c2:09:30:61:36:2d: 75:75:3c:74:ba:1c:5f:01:9e:14:24:a2:2b:e4:f9: 8e:14:6d:b3:91:ed:3b:b4:23:4d:e8:53:c9:e3:72: 35:35:d3:17:6f:73:db:10:7b:fa:7e:c4:ca:8d:c3: 9b:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:94:E6:DF:0D:10:16:84:68:B3:02:F0:EF:CE:8C:66:76:5E:73:C7 X509v3 Authority Key Identifier: keyid:FE:3C:D3:7C:EC:0E:38:23:07:B4:F9:D5:FF:D5:7E:97:F1:21:F0:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:75:e3:97:70:9c:a8:a7:2d:e5:e8:1c:e5:29:12:44:51:40: 60:e4:46:dd:74:45:22:15:6c:6a:38:12:06:6f:2d:a2:3f:91: 0f:04:d1:cd:b6:2b:cd:e9:14:be:cc:38:1f:44:57:40:59:39: 0f:7e:15:6d:44:39:a8:da:e4:0c:df:f9:b2:60:ca:e7:08:1d: 63:ea:96:63:95:04:64:b7:ae:2e:fd:ed:0a:4e:e4:77:88:98: 55:80:fc:0a:8e:e3:bc:6e:8b:4f:06:78:45:50:d8:16:a7:90: f1:4e:e8:66:fe:f1:c8:2c:a3:6f:e2:cf:10:6e:c6:c3:9c:a4: 7c:f6:43:79:53:ed:6a:7b:2a:2e:38:6f:d4:fb:70:9a:48:69: 4b:60:36:cf:4b:91:6d:8b:2d:62:c8:de:c5:49:d9:7b:78:05: 27:20:f8:ad:9f:5b:8b:e5:94:3a:87:b3:25:c9:e0:4d:33:07: 6b:0c:cc:66:de:94:d1:1e:29:58:09:78:09:2d:80:8a:85:66: cc:85:f3:82:7b:7a:07:ee:51:25:73:9a:01:bc:0a:1b:3c:2c: eb:a3:0e:cd:54:ba:93:43:42:8a:96:c1:8f:af:86:5c:eb:ea: e8:57:e4:29:4f:d7:c3:7f:f5:92:3b:81:17:06:4a:5c:49:ad: fb:ff:25:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjExODUxMTAvBgNVBAUTKEZFM0NEMzdDRUMwRTM4MjMwN0I0RjlENUZGRDU3RTk3 RjEyMUYwNTMwHhcNMjQwNTE4MTcxNzExWhcNMjQwNTI1MTcxNzExWjAYMRYwFAYD VQQDEw02NjQ4ZTI5OC1jZjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA751rFzeo5Yyld8aREM8T4LTt4OE0OPn4hIyxRVvWESrNtvyStExaBeKUxkUh fvT8qmhhVsT/l45yyJnpD76DIe4Cr2O7xS7wrLhyeiercK7EP3lvAWbiHU1JTkr3 ZsM2Vs6Ufk5WFbM/67dTdE95wrnM3q7NG+tqJT6MdaMVUyHBCnCnZvY45xwOG0ZI GZoy4WM9fCJkIgVVbRv/qpGgUqV0/9rGRqUPW4BND52f9xs69okJLoc6/76PjH90 MuYZH2yr2km5Jrjv0Y7CCTBhNi11dTx0uhxfAZ4UJKIr5PmOFG2zke07tCNN6FPJ 43I1NdMXb3PbEHv6fsTKjcOb3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAqU5t8N EBaEaLMC8O/OjGZ2XnPHMB8GA1UdIwQYMBaAFP4803zsDjgjB7T51f/VfpfxIfBT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTE4NS8zRUE5REQzQTE2 MjMxMUU4OTJDNEE5NDBDNEY5QUUwMi9fanpUZk93T09DTUh0UG5WXzlWLWxfRWg4 Rk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19qelRmT3dPT0NNSHRQblZfOVYtbF9FaDhGTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTE4NS8zRUE5REQzQTE2MjMxMUU4OTJDNEE5NDBDNEY5QUUwMi9fanpUZk93T09D TUh0UG5WXzlWLWxfRWg4Rk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIdeOXcJyopy3l6BzlKRJEUUBg5EbddEUiFWxqOBIGby2iP5EPBNHN tivN6RS+zDgfRFdAWTkPfhVtRDmo2uQM3/myYMrnCB1j6pZjlQRkt64u/e0KTuR3 iJhVgPwKjuO8botPBnhFUNgWp5DxTuhm/vHILKNv4s8QbsbDnKR89kN5U+1qeyou OG/U+3CaSGlLYDbPS5Ftiy1iyN7FSdl7eAUnIPitn1uL5ZQ6h7MlyeBNMwdrDMxm 3pTRHilYCXgJLYCKhWbMhfOCe3oH7lElc5oBvAobPCzrow7NVLqTQ0KKlsGPr4Zc 6+roV+QpT9fDf/WSO4EXBkpcSa37/yUu -----END CERTIFICATE-----Generated at Sat May 18 18:12:33 2024 by rpki-client on console-fra.rpki-client.org