$ rpki-client -vvf rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft File: 07yEKALa0i1cMMKCZffRCL1HjnA.mft (raw, json) Hash identifier: ACKJa8LFB9+wF5NjgTpa6TTPJFFXvDs/UzrjwTOJpBs= Subject key identifier: 9B:BB:DF:D9:B5:57:C8:1D:46:3C:F2:E7:3C:8A:90:41:14:B1:C9:95 Authority key identifier: D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70 Certificate issuer: /CN=A91B758E/serialNumber=D3BC842802DAD22D5C30C28265F7D108BD478E70 Certificate serial: 2E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft Manifest number: 2C Signing time: Sun 19 May 2024 08:27:43 +0000 Manifest this update: Sun 19 May 2024 08:27:42 +0000 Manifest next update: Sun 26 May 2024 08:27:42 +0000 Files and hashes: 1: 07yEKALa0i1cMMKCZffRCL1HjnA.crl (hash: lCUUD3kDXwfglz8LftnoEyT2ffF7RsdjxnAC6XXDco8=) 2: 9E0AD9B0D53E11EEA0454A0BC4F9AE02.roa (hash: R7fWNIo1N2lKM0xCDWt1MXlQDp9EYpgL3Lp7EB7mFwI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.crl rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B758E/serialNumber=D3BC842802DAD22D5C30C28265F7D108BD478E70 Validity Not Before: May 19 08:27:42 2024 GMT Not After : May 26 08:27:42 2024 GMT Subject: CN=6649b7fe-8d51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:3e:98:00:e8:ed:28:00:65:1f:16:5d:66:fd: 4e:7b:f1:5f:7c:8a:0c:76:ff:d8:60:e7:bd:b6:5e: 36:53:6d:7d:dc:3f:27:75:09:d3:5a:55:9e:8a:a1: 1b:39:7f:44:1d:cf:4f:0d:1a:85:19:63:6d:88:46: eb:e6:7e:5f:0b:d3:52:92:d2:50:b1:49:e0:6b:e9: 8a:69:67:c3:0a:da:dc:8a:55:52:0f:5b:01:4d:15: da:18:c7:3a:16:1b:25:f7:f5:4c:30:87:37:e5:6a: ce:c2:5b:2d:f3:b9:c5:0e:fe:64:8d:b3:e2:9b:6a: 78:31:4f:83:07:06:9a:ce:bc:c8:f8:19:f7:94:fc: 80:c4:99:36:d1:b6:e1:ad:fb:8d:71:80:00:d0:36: 21:f9:56:cf:8d:5d:55:75:84:ca:1e:16:a8:9e:b6: 87:67:6d:1c:8a:d9:8b:20:0f:90:52:c7:a1:ae:4d: 31:9a:25:38:99:51:e2:9c:89:b5:6b:b1:21:c5:29: c7:59:15:77:2e:e7:8e:5b:1c:98:93:82:f4:69:90: 6a:5f:01:f0:e5:53:e9:3b:87:a2:1a:25:a2:13:08: 4f:44:d8:d7:77:9f:bd:48:07:91:8f:86:25:73:8e: c7:2d:c7:0a:41:b7:c0:0a:8f:52:d7:94:99:bb:0d: 51:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:BB:DF:D9:B5:57:C8:1D:46:3C:F2:E7:3C:8A:90:41:14:B1:C9:95 X509v3 Authority Key Identifier: keyid:D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:ad:93:62:43:35:21:6c:d0:e8:4d:dc:63:2b:30:ba:e8:1d: a2:74:b0:44:78:c6:d3:f8:d6:af:69:a2:72:dd:22:da:16:39: cc:03:3b:3c:45:5f:79:d9:26:09:3c:1f:d1:ad:c6:54:2a:c5: c3:1b:cb:8a:67:92:5e:99:70:11:cd:4d:b8:0d:dc:ca:76:f5: 8b:7d:a0:7f:d0:9d:04:c2:81:f7:33:09:6f:f0:4a:05:82:72: 98:da:a4:ba:52:a6:16:13:7c:a7:dd:66:b1:39:81:15:8a:01: 7f:a7:f5:5a:92:46:ef:04:55:96:ae:c2:70:aa:55:62:24:6a: f7:62:c7:34:4a:e4:ce:3e:9c:ab:23:0f:f6:fe:06:34:b3:95: e1:02:59:74:92:23:95:c3:9e:5d:5e:c7:ed:ee:43:be:34:37: 6a:6a:ee:3c:32:65:82:22:1b:89:2f:c3:28:bb:01:f9:80:01: 8f:fc:be:1f:ae:c6:90:e6:56:81:2e:22:e7:c0:7c:a9:cc:23: a0:3c:0f:2e:4a:3f:d9:ad:49:9e:44:8d:74:a5:25:a2:53:c0: 76:0f:38:90:4d:cb:05:cb:7a:fd:a4:9e:fa:8a:a3:14:5c:fe: ce:c3:38:ec:c0:51:43:49:61:6a:dc:f3:94:01:95:e7:ec:a8: 28:c9:f3:c2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NzU4RTExMC8GA1UEBRMoRDNCQzg0MjgwMkRBRDIyRDVDMzBDMjgyNjVGN0QxMDhC RDQ3OEU3MDAeFw0yNDA1MTkwODI3NDJaFw0yNDA1MjYwODI3NDJaMBgxFjAUBgNV BAMTDTY2NDliN2ZlLThkNTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLPpgA6O0oAGUfFl1m/U578V98igx2/9hg5722XjZTbX3cPyd1CdNaVZ6KoRs5 f0Qdz08NGoUZY22IRuvmfl8L01KS0lCxSeBr6YppZ8MK2tyKVVIPWwFNFdoYxzoW GyX39Uwwhzflas7CWy3zucUO/mSNs+KbangxT4MHBprOvMj4GfeU/IDEmTbRtuGt +41xgADQNiH5Vs+NXVV1hMoeFqietodnbRyK2YsgD5BSx6GuTTGaJTiZUeKcibVr sSHFKcdZFXcu545bHJiTgvRpkGpfAfDlU+k7h6IaJaITCE9E2Nd3n71IB5GPhiVz jsctxwpBt8AKj1LXlJm7DVGHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUm7vf2bVX yB1GPPLnPIqQQRSxyZUwHwYDVR0jBBgwFoAU07yEKALa0i1cMMKCZffRCL1HjnAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3NThFL0RERUM4MTI0RDUz RDExRUU4RjFFOEE4NUM0RjlBRTAyLzA3eUVLQUxhMGkxY01NS0NaZmZSQ0wxSGpu QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMDd5RUtBTGEwaTFjTU1LQ1pmZlJDTDFIam5BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3 NThFL0RERUM4MTI0RDUzRDExRUU4RjFFOEE4NUM0RjlBRTAyLzA3eUVLQUxhMGkx Y01NS0NaZmZSQ0wxSGpuQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALytk2JDNSFs0OhN3GMrMLroHaJ0sER4xtP41q9ponLdItoWOcwDOzxF X3nZJgk8H9GtxlQqxcMby4pnkl6ZcBHNTbgN3Mp29Yt9oH/QnQTCgfczCW/wSgWC cpjapLpSphYTfKfdZrE5gRWKAX+n9VqSRu8EVZauwnCqVWIkavdixzRK5M4+nKsj D/b+BjSzleECWXSSI5XDnl1ex+3uQ740N2pq7jwyZYIiG4kvwyi7AfmAAY/8vh+u xpDmVoEuIufAfKnMI6A8Dy5KP9mtSZ5EjXSlJaJTwHYPOJBNywXLev2knvqKoxRc /s7DOOzAUUNJYWrc85QBlefsqCjJ88I= -----END CERTIFICATE-----Generated at Sun May 19 09:32:18 2024 by rpki-client on console-ams.rpki-client.org