$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft File: RITQfaaNUwUM3PaxPAwFReZFfOU.mft (raw, json) Hash identifier: wnLOsofd1DPyiLpSAPXyXdLmaAIkU5FeyLQXdTnVVFs= Subject key identifier: 49:BF:6F:81:52:3B:15:19:90:38:9C:13:64:B8:1E:DF:68:90:50:F1 Authority key identifier: 44:84:D0:7D:A6:8D:53:05:0C:DC:F6:B1:3C:0C:05:45:E6:45:7C:E5 Certificate issuer: /CN=A91B5CEA/serialNumber=4484D07DA68D53050CDCF6B13C0C0545E6457CE5 Certificate serial: 0125 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft Manifest number: 0123 Signing time: Sat 01 Jun 2024 06:27:19 +0000 Manifest this update: Sat 01 Jun 2024 06:27:19 +0000 Manifest next update: Sat 08 Jun 2024 06:27:19 +0000 Files and hashes: 1: RITQfaaNUwUM3PaxPAwFReZFfOU.crl (hash: Fu+KgLQWCb4VX7AkvYSV0ZcQ71Y3qY+JK7dJkide7eE=) 2: B3795CBC64F211ED9AEC046FC4F9AE02.roa (hash: xE/xZa6TYzKjMLhAvEDRO+yMvL872xJ1e6xs+4CgEjM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.crl rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:24:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 293 (0x125) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5CEA/serialNumber=4484D07DA68D53050CDCF6B13C0C0545E6457CE5 Validity Not Before: Jun 1 06:27:19 2024 GMT Not After : Jun 8 06:27:19 2024 GMT Subject: CN=665abf47-fd09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:26:a5:a9:e6:e7:3b:3a:10:b3:c3:46:8b:d6: bf:dd:ac:86:d3:7f:35:ee:41:c4:db:0b:06:54:b6: a1:68:5f:59:1d:a7:20:71:d9:f6:b8:f0:fc:9f:4a: 19:af:9a:f5:69:e4:79:06:22:8e:27:7a:06:13:9a: 0d:84:3e:2f:85:73:19:19:e2:f4:37:7b:65:c5:a0: e9:44:64:48:4f:9b:4e:6a:4f:de:f0:3e:2e:b8:0d: 60:41:ce:6b:54:bf:81:6c:3c:c0:d8:15:81:d8:78: dc:88:f8:44:91:ba:54:89:c8:4e:40:bc:e7:30:28: b8:56:7a:9c:b1:d4:a0:26:48:68:a9:50:04:bf:47: 80:3f:be:0f:a6:07:7d:7a:46:0a:84:3e:91:ad:f5: 70:13:34:6f:20:e6:5b:e6:71:41:16:24:cd:1e:15: cf:f1:7a:21:53:9d:7f:6e:35:8d:8d:bc:3d:d0:69: 4e:a5:a5:29:61:20:3b:8a:24:24:b9:15:6f:34:9f: c1:56:35:64:e4:34:57:ce:d9:c8:ee:4f:83:42:ff: 64:79:f7:46:18:42:14:54:14:b7:1f:ff:d9:4c:1e: c2:b3:d3:61:b8:28:d5:ad:11:eb:0f:aa:e9:0e:fc: ff:69:5a:05:51:e4:53:23:20:0c:73:20:0f:b2:9d: f9:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:BF:6F:81:52:3B:15:19:90:38:9C:13:64:B8:1E:DF:68:90:50:F1 X509v3 Authority Key Identifier: keyid:44:84:D0:7D:A6:8D:53:05:0C:DC:F6:B1:3C:0C:05:45:E6:45:7C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:36:67:60:59:c0:d4:41:f8:35:f7:65:dc:d8:30:bd:75:18: 59:99:02:cc:65:0b:10:6f:7c:37:2b:0c:70:fe:2b:e7:b2:2a: e4:37:23:4c:89:e1:a4:07:4b:78:d7:d9:eb:2c:96:7c:6f:52: d5:55:da:aa:11:76:0d:c6:ad:a2:90:75:40:83:47:39:26:f3: 7c:c7:49:ac:f2:8e:41:ff:da:01:1d:7a:4a:e0:8c:9b:a0:41: 1b:62:6a:07:5b:86:8a:fa:10:d1:db:93:4b:bf:1e:77:c7:6d: 4d:2e:87:63:a9:87:e7:5f:54:6b:30:8c:e4:7f:b0:37:f9:2d: 49:11:29:66:45:45:eb:ef:5e:da:71:ea:e7:ed:b2:40:5e:7a: 7b:15:74:0b:3b:44:91:cc:46:97:dd:b6:31:42:9e:3f:d0:54: 8e:7f:7d:7d:18:20:87:e1:3b:60:7e:23:1f:87:12:d1:63:ff: e9:97:8b:6e:67:3c:95:aa:95:70:16:f8:06:78:ac:3a:5a:4a: d1:f5:3e:28:c5:fe:81:f1:0a:c3:e7:29:0a:88:71:a2:d3:df: 7e:e7:2a:ac:c6:46:78:a1:fc:c3:17:13:fc:d9:eb:9e:71:69: d8:e9:e0:46:79:2a:4a:9f:9f:38:04:c0:9d:89:42:7a:81:41: 14:0c:c2:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDRUExMTAvBgNVBAUTKDQ0ODREMDdEQTY4RDUzMDUwQ0RDRjZCMTNDMEMwNTQ1 RTY0NTdDRTUwHhcNMjQwNjAxMDYyNzE5WhcNMjQwNjA4MDYyNzE5WjAYMRYwFAYD VQQDEw02NjVhYmY0Ny1mZDA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqCalqebnOzoQs8NGi9a/3ayG03817kHE2wsGVLahaF9ZHacgcdn2uPD8n0oZ r5r1aeR5BiKOJ3oGE5oNhD4vhXMZGeL0N3tlxaDpRGRIT5tOak/e8D4uuA1gQc5r VL+BbDzA2BWB2HjciPhEkbpUichOQLznMCi4VnqcsdSgJkhoqVAEv0eAP74Ppgd9 ekYKhD6RrfVwEzRvIOZb5nFBFiTNHhXP8XohU51/bjWNjbw90GlOpaUpYSA7iiQk uRVvNJ/BVjVk5DRXztnI7k+DQv9kefdGGEIUVBS3H//ZTB7Cs9NhuCjVrRHrD6rp Dvz/aVoFUeRTIyAMcyAPsp35/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEm/b4FS OxUZkDicE2S4Ht9okFDxMB8GA1UdIwQYMBaAFESE0H2mjVMFDNz2sTwMBUXmRXzl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUNFQS8xRjYzQTU2ODY0 RUUxMUVEQTRBMzQ1MTNDNEY5QUUwMi9SSVRRZmFhTlV3VU0zUGF4UEF3RlJlWkZm T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1JJVFFmYWFOVXdVTTNQYXhQQXdGUmVaRmZPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUNFQS8xRjYzQTU2ODY0RUUxMUVEQTRBMzQ1MTNDNEY5QUUwMi9SSVRRZmFhTlV3 VU0zUGF4UEF3RlJlWkZmT1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcNmdgWcDUQfg192Xc2DC9dRhZmQLMZQsQb3w3Kwxw/ivnsirkNyNM ieGkB0t419nrLJZ8b1LVVdqqEXYNxq2ikHVAg0c5JvN8x0ms8o5B/9oBHXpK4Iyb oEEbYmoHW4aK+hDR25NLvx53x21NLodjqYfnX1RrMIzkf7A3+S1JESlmRUXr717a cern7bJAXnp7FXQLO0SRzEaX3bYxQp4/0FSOf319GCCH4TtgfiMfhxLRY//pl4tu ZzyVqpVwFvgGeKw6WkrR9T4oxf6B8QrD5ykKiHGi099+5yqsxkZ4ofzDFxP82eue cWnY6eBGeSpKn584BMCdiUJ6gUEUDMIB -----END CERTIFICATE-----Generated at Sat Jun 1 07:09:20 2024 by rpki-client on console-fra.rpki-client.org