$ rpki-client -vvf rpki.apnic.net/member_repository/A91B653B/29383CDEC20C11EAB812A01AC4F9AE02/vK5XMu8hlzK0msgoTbGBTpLIaxE.mft File: vK5XMu8hlzK0msgoTbGBTpLIaxE.mft (raw, json) Hash identifier: wzJgnUe5skLOZ+qzNUIGraIIt6H+JN9+RU6jT6ExCnY= Subject key identifier: 57:60:86:19:EC:9B:2E:0B:F7:54:D9:E9:BF:0F:18:3F:8A:AE:E3:CA Authority key identifier: BC:AE:57:32:EF:21:97:32:B4:9A:C8:28:4D:B1:81:4E:92:C8:6B:11 Certificate issuer: /CN=A91B653B/serialNumber=BCAE5732EF219732B49AC8284DB1814E92C86B11 Certificate serial: 07B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vK5XMu8hlzK0msgoTbGBTpLIaxE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B653B/29383CDEC20C11EAB812A01AC4F9AE02/vK5XMu8hlzK0msgoTbGBTpLIaxE.mft Manifest number: 07AF Signing time: Sun 28 Apr 2024 22:06:03 +0000 Manifest this update: Sun 28 Apr 2024 22:06:03 +0000 Manifest next update: Sun 05 May 2024 22:06:03 +0000 Files and hashes: 1: vK5XMu8hlzK0msgoTbGBTpLIaxE.crl (hash: bJkz0kIw/3zK0o2iOzNUEeEp+00483wQ0TfwAi/nIzU=) 2: 2015E6B2C66F11EAA0B1B019C4F9AE02.roa (hash: UR1VNNIL2Jtpf585UHu33VQKoA2N0pYarJyInownUiU=) 3: 1F99EBD4C66F11EAA0B1B019C4F9AE02.roa (hash: aS2kJAIgKwjVL628c62JVjCg9McuhuvLe2rzzSlBMa8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B653B/29383CDEC20C11EAB812A01AC4F9AE02/vK5XMu8hlzK0msgoTbGBTpLIaxE.crl rsync://rpki.apnic.net/member_repository/A91B653B/29383CDEC20C11EAB812A01AC4F9AE02/vK5XMu8hlzK0msgoTbGBTpLIaxE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vK5XMu8hlzK0msgoTbGBTpLIaxE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 21:11:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1977 (0x7b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B653B/serialNumber=BCAE5732EF219732B49AC8284DB1814E92C86B11 Validity Not Before: Apr 28 22:06:03 2024 GMT Not After : May 5 22:06:03 2024 GMT Subject: CN=662ec84b-13c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a4:11:47:d0:be:5a:5a:15:02:9f:1d:6f:17: 7c:06:f6:7c:0e:24:4e:da:be:2d:39:83:8f:60:2d: 64:bc:51:98:c6:9a:d7:15:6e:65:23:a8:3b:df:65: ac:f0:19:88:8c:91:93:9b:a9:cb:f7:89:df:3c:a0: e1:77:4c:ee:f0:fe:0e:11:e3:8e:6e:d9:1a:53:bb: 41:f2:78:06:eb:db:cf:1b:2c:e3:a7:ba:97:17:a4: 57:8c:62:4a:b3:56:f5:ae:6a:55:9c:ec:9c:36:3e: 71:28:40:04:d6:b9:86:e7:45:3b:8a:b8:d4:f8:3b: 11:bc:12:ce:4c:a2:a5:45:70:84:0e:41:1d:24:01: 32:e6:9c:03:9e:e4:8c:52:5a:da:55:51:ef:25:7d: 20:50:69:d0:71:31:1a:57:c2:97:a2:23:07:eb:8a: 16:94:c2:c5:92:93:81:61:23:92:f8:6f:28:ee:57: 33:99:87:b7:34:8d:42:90:2e:fc:90:e2:ca:d8:ae: 10:5b:19:e1:23:9e:09:e4:11:a1:30:02:e5:8c:49: 90:f0:b9:e3:fd:b6:6a:79:9e:fe:4a:dc:d2:29:d5: 11:91:92:eb:04:31:12:f0:b2:94:d2:e7:de:e1:2e: ad:1a:cc:24:db:b2:d6:49:79:5a:49:28:1f:20:5b: 2b:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:60:86:19:EC:9B:2E:0B:F7:54:D9:E9:BF:0F:18:3F:8A:AE:E3:CA X509v3 Authority Key Identifier: keyid:BC:AE:57:32:EF:21:97:32:B4:9A:C8:28:4D:B1:81:4E:92:C8:6B:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B653B/29383CDEC20C11EAB812A01AC4F9AE02/vK5XMu8hlzK0msgoTbGBTpLIaxE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vK5XMu8hlzK0msgoTbGBTpLIaxE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B653B/29383CDEC20C11EAB812A01AC4F9AE02/vK5XMu8hlzK0msgoTbGBTpLIaxE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:88:5d:ce:92:a6:8a:13:4f:f1:29:3f:62:f5:28:da:71:c6: 33:56:46:cd:12:2f:18:bc:fd:9a:cb:91:04:00:2f:3e:61:cb: e2:81:5f:0c:84:bd:d0:48:2b:8b:a2:c2:1e:fd:ab:7a:71:2d: 83:db:e0:f5:bf:fe:43:06:da:75:36:20:41:7c:a3:7d:fd:c1: ba:c5:ba:a3:2a:1e:8d:2a:09:9a:dc:40:70:a4:c2:93:10:f7: 07:a4:f7:9a:91:68:6c:1b:3e:3d:c8:66:c5:23:97:8b:c2:df: 88:a8:4f:5f:25:8c:cc:fb:94:a5:a9:93:05:05:40:c6:49:86: d0:07:fc:c9:43:78:85:27:91:4d:fa:1b:69:04:0f:00:9e:66: dc:53:e6:fd:c2:b0:b8:1e:71:d1:96:dd:15:01:c5:10:42:ee: 39:a0:1b:7a:0e:29:aa:ce:de:4c:31:53:62:c5:05:d6:e5:8f: ed:52:be:3d:83:c0:5a:00:02:c5:b7:21:aa:1d:83:21:c7:f5: be:d4:d1:5e:52:9a:9a:58:cf:8c:53:c5:f0:da:1b:48:3c:6a: ba:2f:0e:28:fa:31:6d:11:39:97:e6:d6:e9:44:d0:32:8c:11: de:c3:f0:8f:75:fd:62:da:78:d5:00:dd:f6:a4:10:6b:67:65: 15:b6:87:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1M0IxMTAvBgNVBAUTKEJDQUU1NzMyRUYyMTk3MzJCNDlBQzgyODREQjE4MTRF OTJDODZCMTEwHhcNMjQwNDI4MjIwNjAzWhcNMjQwNTA1MjIwNjAzWjAYMRYwFAYD VQQDEw02NjJlYzg0Yi0xM2M0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzqQRR9C+WloVAp8dbxd8BvZ8DiRO2r4tOYOPYC1kvFGYxprXFW5lI6g732Ws 8BmIjJGTm6nL94nfPKDhd0zu8P4OEeOObtkaU7tB8ngG69vPGyzjp7qXF6RXjGJK s1b1rmpVnOycNj5xKEAE1rmG50U7irjU+DsRvBLOTKKlRXCEDkEdJAEy5pwDnuSM UlraVVHvJX0gUGnQcTEaV8KXoiMH64oWlMLFkpOBYSOS+G8o7lczmYe3NI1CkC78 kOLK2K4QWxnhI54J5BGhMALljEmQ8Lnj/bZqeZ7+StzSKdURkZLrBDES8LKU0ufe 4S6tGswk27LWSXlaSSgfIFsrAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFdghhns my4L91TZ6b8PGD+KruPKMB8GA1UdIwQYMBaAFLyuVzLvIZcytJrIKE2xgU6SyGsR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjUzQi8yOTM4M0NERUMy MEMxMUVBQjgxMkEwMUFDNEY5QUUwMi92SzVYTXU4aGx6SzBtc2dvVGJHQlRwTElh eEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZLNVhNdThobHpLMG1zZ29UYkdCVHBMSWF4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjUzQi8yOTM4M0NERUMyMEMxMUVBQjgxMkEwMUFDNEY5QUUwMi92SzVYTXU4aGx6 SzBtc2dvVGJHQlRwTElheEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMiF3OkqaKE0/xKT9i9SjaccYzVkbNEi8YvP2ay5EEAC8+YcvigV8M hL3QSCuLosIe/at6cS2D2+D1v/5DBtp1NiBBfKN9/cG6xbqjKh6NKgma3EBwpMKT EPcHpPeakWhsGz49yGbFI5eLwt+IqE9fJYzM+5SlqZMFBUDGSYbQB/zJQ3iFJ5FN +htpBA8AnmbcU+b9wrC4HnHRlt0VAcUQQu45oBt6Dimqzt5MMVNixQXW5Y/tUr49 g8BaAALFtyGqHYMhx/W+1NFeUpqaWM+MU8Xw2htIPGq6Lw4o+jFtETmX5tbpRNAy jBHew/CPdf1i2njVAN32pBBrZ2UVtofB -----END CERTIFICATE-----Generated at Mon Apr 29 00:40:48 2024 by rpki-client on console-fra.rpki-client.org