$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft File: 2gNU-zgfRSHBCxY-y9IqCD-3omw.mft (raw, json) Hash identifier: 6lia7vvfMIZXfJrvtzO2JqE+sF3lbQtZTJ6eRkXjyi8= Subject key identifier: E5:40:3D:A3:7B:63:0C:02:C1:49:1C:0C:87:DD:94:5D:E3:D3:9B:89 Authority key identifier: DA:03:54:FB:38:1F:45:21:C1:0B:16:3E:CB:D2:2A:08:3F:B7:A2:6C Certificate issuer: /CN=A91B2CDA/serialNumber=DA0354FB381F4521C10B163ECBD22A083FB7A26C Certificate serial: 1526 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gNU-zgfRSHBCxY-y9IqCD-3omw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft Manifest number: 1516 Signing time: Sat 18 May 2024 17:20:33 +0000 Manifest this update: Sat 18 May 2024 17:20:33 +0000 Manifest next update: Sat 25 May 2024 17:20:33 +0000 Files and hashes: 1: 2gNU-zgfRSHBCxY-y9IqCD-3omw.crl (hash: 4AseJQ+sWkrwH667haAsuykDwgEyo8JHPaFqYu/s/pA=) 2: 7F3ED5DE9C4411ECBD85CE4FC4F9AE02.roa (hash: oNHAY+RH8azs+WtnEjYSGA9lvHIaeiPbqTK24H6N+nw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.crl rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gNU-zgfRSHBCxY-y9IqCD-3omw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5414 (0x1526) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2CDA/serialNumber=DA0354FB381F4521C10B163ECBD22A083FB7A26C Validity Not Before: May 18 17:20:33 2024 GMT Not After : May 25 17:20:33 2024 GMT Subject: CN=6648e361-5acf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:8a:63:cd:98:8b:9a:a9:93:33:e6:e5:1d:21: 6f:e0:5a:07:17:84:d2:75:61:83:22:f6:3e:06:b5: 3c:be:ab:f6:31:75:c0:55:a0:3e:c6:29:9d:8c:70: e4:f7:da:bc:9c:ee:48:19:29:fd:40:04:c3:1e:1e: 97:db:57:47:c0:c8:55:1f:cf:0c:2d:af:dc:8e:5c: 22:7b:c4:6c:3c:f8:68:58:ba:75:96:8c:f6:2a:c0: fa:83:86:d1:c3:69:62:53:a5:c2:ef:c6:a4:a3:0f: 06:55:cc:b2:b6:2d:14:ed:23:53:74:f6:8f:a3:22: 8b:d6:5b:09:29:fb:58:b2:b4:5d:cb:d7:85:1e:95: 70:07:93:25:8c:17:2c:22:e3:84:8f:b6:ad:b9:b6: a1:2e:f0:ad:ce:9d:39:76:82:c8:39:68:73:da:7e: 86:7c:3b:bc:e6:50:bb:ec:51:d7:08:0e:bd:07:4f: 50:de:12:c2:d7:cb:d0:b0:51:d7:91:7b:e3:69:cd: 59:08:0b:db:a7:19:d8:bf:ed:da:b8:f7:fc:ed:4c: 29:1c:fe:d9:0d:64:a2:3d:12:3b:52:cb:28:62:3c: e3:4f:03:cb:97:68:ce:d0:a6:b2:e4:e8:5d:b0:b1: d3:15:1c:ad:88:07:ba:a7:cd:2b:2a:4b:e5:5c:87: e4:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:40:3D:A3:7B:63:0C:02:C1:49:1C:0C:87:DD:94:5D:E3:D3:9B:89 X509v3 Authority Key Identifier: keyid:DA:03:54:FB:38:1F:45:21:C1:0B:16:3E:CB:D2:2A:08:3F:B7:A2:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gNU-zgfRSHBCxY-y9IqCD-3omw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:da:56:18:49:84:b7:1c:53:1d:c8:d2:0b:93:40:fe:61:a4: 75:9b:14:2b:03:da:ae:24:02:71:46:52:15:c5:5b:2d:1a:7f: ba:72:f6:c7:43:c4:82:be:c9:92:bb:b2:36:7f:f3:1f:f6:18: db:78:c2:d7:9b:9a:87:cb:10:4a:11:a9:c0:1f:2f:63:cf:e1: 62:48:ad:b8:81:f7:aa:8d:2f:2a:e1:f8:54:ac:4c:96:6f:22: 85:d1:ce:5c:2c:39:ef:b7:e9:41:46:6c:e6:78:fd:16:84:c6: f6:6b:49:cf:75:5e:62:ac:3c:de:db:9d:30:6c:c8:6f:f7:71: c3:40:02:e1:c0:7d:90:98:a2:ca:23:2d:12:55:52:bd:05:33: 81:41:8d:e6:6d:e4:71:be:9f:10:42:6c:7e:94:2c:ac:5f:2f: bd:17:ca:96:58:16:dc:ea:50:ce:88:71:58:4b:d9:ba:ab:8f: 21:58:5f:74:83:16:35:8f:a4:71:d7:7c:4e:ba:80:00:e7:9a: 4f:27:7c:80:95:f3:1a:2f:12:da:ae:19:da:15:87:c4:9e:1e: cb:be:8b:fb:ed:aa:86:96:c0:6d:1d:19:0e:6a:2b:88:6d:11: a8:9d:2b:ec:1f:a9:e5:10:cc:03:b6:42:69:22:ce:32:be:68: 66:30:6a:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJDREExMTAvBgNVBAUTKERBMDM1NEZCMzgxRjQ1MjFDMTBCMTYzRUNCRDIyQTA4 M0ZCN0EyNkMwHhcNMjQwNTE4MTcyMDMzWhcNMjQwNTI1MTcyMDMzWjAYMRYwFAYD VQQDEw02NjQ4ZTM2MS01YWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyopjzZiLmqmTM+blHSFv4FoHF4TSdWGDIvY+BrU8vqv2MXXAVaA+ximdjHDk 99q8nO5IGSn9QATDHh6X21dHwMhVH88MLa/cjlwie8RsPPhoWLp1loz2KsD6g4bR w2liU6XC78akow8GVcyyti0U7SNTdPaPoyKL1lsJKftYsrRdy9eFHpVwB5MljBcs IuOEj7atubahLvCtzp05doLIOWhz2n6GfDu85lC77FHXCA69B09Q3hLC18vQsFHX kXvjac1ZCAvbpxnYv+3auPf87UwpHP7ZDWSiPRI7UssoYjzjTwPLl2jO0Kay5Ohd sLHTFRytiAe6p80rKkvlXIfk8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOVAPaN7 YwwCwUkcDIfdlF3j05uJMB8GA1UdIwQYMBaAFNoDVPs4H0UhwQsWPsvSKgg/t6Js MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkNEQS9GNEUyQkFCODI1 QzMxMUU4QTA3MTRBMzRDNEY5QUUwMi8yZ05VLXpnZlJTSEJDeFkteTlJcUNELTNv bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnTlUtemdmUlNIQkN4WS15OUlxQ0QtM29tdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MkNEQS9GNEUyQkFCODI1QzMxMUU4QTA3MTRBMzRDNEY5QUUwMi8yZ05VLXpnZlJT SEJDeFkteTlJcUNELTNvbXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCt2lYYSYS3HFMdyNILk0D+YaR1mxQrA9quJAJxRlIVxVstGn+6cvbH Q8SCvsmSu7I2f/Mf9hjbeMLXm5qHyxBKEanAHy9jz+FiSK24gfeqjS8q4fhUrEyW byKF0c5cLDnvt+lBRmzmeP0WhMb2a0nPdV5irDze250wbMhv93HDQALhwH2QmKLK Iy0SVVK9BTOBQY3mbeRxvp8QQmx+lCysXy+9F8qWWBbc6lDOiHFYS9m6q48hWF90 gxY1j6Rx13xOuoAA55pPJ3yAlfMaLxLarhnaFYfEnh7Lvov77aqGlsBtHRkOaiuI bRGonSvsH6nlEMwDtkJpIs4yvmhmMGr9 -----END CERTIFICATE-----Generated at Sat May 18 18:12:33 2024 by rpki-client on console-fra.rpki-client.org