$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7B32/AC36B36851F111EEA7DC2666C4F9AE02/3vCat-atSADQZ9cCq_MCJincVuA.mft File: 3vCat-atSADQZ9cCq_MCJincVuA.mft (raw, json) Hash identifier: Rzn9sPIDkN5MQnuNz4A27l+Lxp2HgsuPuUTKv2gh1DI= Subject key identifier: B5:3B:DA:AF:8A:F7:1D:E4:D9:FE:46:79:E3:40:6F:5A:F9:31:30:6B Authority key identifier: DE:F0:9A:B7:E6:AD:48:00:D0:67:D7:02:AB:F3:02:26:29:DC:56:E0 Certificate issuer: /CN=A91B7B32/serialNumber=DEF09AB7E6AD4800D067D702ABF3022629DC56E0 Certificate serial: 80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3vCat-atSADQZ9cCq_MCJincVuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7B32/AC36B36851F111EEA7DC2666C4F9AE02/3vCat-atSADQZ9cCq_MCJincVuA.mft Manifest number: 7F Signing time: Sun 19 May 2024 07:11:41 +0000 Manifest this update: Sun 19 May 2024 07:11:40 +0000 Manifest next update: Sun 26 May 2024 07:11:40 +0000 Files and hashes: 1: 3vCat-atSADQZ9cCq_MCJincVuA.crl (hash: a2p2Wgj5GaF3dAcDbyxY7REaUUDo5A/bSqK+h8fzV2g=) 2: 2B7210D251F211EEA079D567C4F9AE02.roa (hash: KvEdnnq3HFq4vunynQUD7wXkZ/MimIokMs/RDCsHEcc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7B32/AC36B36851F111EEA7DC2666C4F9AE02/3vCat-atSADQZ9cCq_MCJincVuA.crl rsync://rpki.apnic.net/member_repository/A91B7B32/AC36B36851F111EEA7DC2666C4F9AE02/3vCat-atSADQZ9cCq_MCJincVuA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3vCat-atSADQZ9cCq_MCJincVuA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7B32/serialNumber=DEF09AB7E6AD4800D067D702ABF3022629DC56E0 Validity Not Before: May 19 07:11:40 2024 GMT Not After : May 26 07:11:40 2024 GMT Subject: CN=6649a62c-7b8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7f:b4:8a:05:d9:7c:af:fd:4e:de:11:f0:13: 22:53:ed:b7:e4:e9:34:a3:dc:8d:aa:bf:b2:99:33: 16:df:e9:4f:a9:44:51:44:0e:0a:fd:2d:0b:58:32: 72:94:64:f7:4e:21:67:70:a9:f6:44:b9:0c:88:50: 08:c2:e2:03:2d:e1:a4:ba:a5:a2:95:5d:a8:4a:03: d1:32:29:93:86:f9:3b:b3:23:3b:52:00:00:f4:9c: 64:c0:80:32:69:11:97:a7:67:33:c4:20:69:d5:b8: 6a:a8:4f:f7:1d:c1:23:c0:64:34:b5:50:b1:00:01: f3:d2:d4:45:11:cf:9f:43:31:b8:c9:9e:6d:a7:5d: 5b:4d:68:e9:14:43:0d:cc:98:02:80:36:6b:36:17: c5:f3:fc:bb:87:13:8f:98:66:ff:8b:65:46:f8:f9: 99:38:03:74:bb:2f:fb:3b:00:04:09:36:a9:e8:be: 12:8c:69:00:27:4c:3f:97:db:12:38:ec:c5:bf:9b: 03:b8:c4:70:cc:26:45:af:f2:cf:64:ce:ca:7a:16: e1:16:72:5b:01:58:fb:bf:c8:a4:e3:12:5d:10:f5: d6:db:2d:7e:af:07:00:a0:b9:12:a0:e6:f8:84:62: 54:cb:3a:81:f5:bb:f8:92:d7:97:b5:de:9e:e5:2c: 8a:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:3B:DA:AF:8A:F7:1D:E4:D9:FE:46:79:E3:40:6F:5A:F9:31:30:6B X509v3 Authority Key Identifier: keyid:DE:F0:9A:B7:E6:AD:48:00:D0:67:D7:02:AB:F3:02:26:29:DC:56:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7B32/AC36B36851F111EEA7DC2666C4F9AE02/3vCat-atSADQZ9cCq_MCJincVuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3vCat-atSADQZ9cCq_MCJincVuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7B32/AC36B36851F111EEA7DC2666C4F9AE02/3vCat-atSADQZ9cCq_MCJincVuA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:46:c9:38:d7:06:9a:79:f3:ae:1a:9b:d7:e7:31:9d:c2:e2: 1f:1a:cb:69:ff:44:22:49:fa:1d:d2:dd:f2:6a:41:83:46:44: b0:dd:63:de:13:5d:e2:02:7c:fc:6b:92:b7:fe:9c:d2:06:18: 1a:8c:7a:04:3b:a3:38:db:07:67:80:2b:54:20:82:3a:7c:ce: aa:82:64:8c:ef:1b:ce:ad:4f:e8:f5:c9:77:59:a9:61:a6:0b: 3b:0b:99:d6:79:b3:10:9f:a5:8c:7b:bd:39:c4:6d:d4:a5:60: 36:5e:17:5f:24:e7:f1:92:52:40:48:d4:6f:6b:ce:e2:dc:30: a3:5c:39:2f:c7:a5:5b:df:fe:91:39:cc:0c:cb:36:06:dd:c8: d0:97:4d:b0:3a:91:5d:a0:59:62:17:4c:20:21:48:65:a1:4c: 37:1b:1c:f8:1c:1f:3b:c0:11:e7:bd:b8:a0:c4:82:26:da:d7: 22:23:d8:0e:d7:2d:da:b8:65:d9:1a:37:9f:b4:9e:f9:a3:cb: 08:7b:2f:cd:4d:f0:fe:c8:3e:b0:90:ad:af:dc:7a:cb:43:75: 86:e0:3b:f3:b4:0f:74:3d:8e:27:85:a0:fe:e7:cc:b0:c7:59: 98:24:79:66:95:ef:4d:e4:3f:ec:6f:45:39:be:85:0c:c0:7c: f3:60:fa:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdCMzIxMTAvBgNVBAUTKERFRjA5QUI3RTZBRDQ4MDBEMDY3RDcwMkFCRjMwMjI2 MjlEQzU2RTAwHhcNMjQwNTE5MDcxMTQwWhcNMjQwNTI2MDcxMTQwWjAYMRYwFAYD VQQDEw02NjQ5YTYyYy03YjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3+0igXZfK/9Tt4R8BMiU+235Ok0o9yNqr+ymTMW3+lPqURRRA4K/S0LWDJy lGT3TiFncKn2RLkMiFAIwuIDLeGkuqWilV2oSgPRMimThvk7syM7UgAA9JxkwIAy aRGXp2czxCBp1bhqqE/3HcEjwGQ0tVCxAAHz0tRFEc+fQzG4yZ5tp11bTWjpFEMN zJgCgDZrNhfF8/y7hxOPmGb/i2VG+PmZOAN0uy/7OwAECTap6L4SjGkAJ0w/l9sS OOzFv5sDuMRwzCZFr/LPZM7KehbhFnJbAVj7v8ik4xJdEPXW2y1+rwcAoLkSoOb4 hGJUyzqB9bv4kteXtd6e5SyKbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLU72q+K 9x3k2f5GeeNAb1r5MTBrMB8GA1UdIwQYMBaAFN7wmrfmrUgA0GfXAqvzAiYp3Fbg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0IzMi9BQzM2QjM2ODUx RjExMUVFQTdEQzI2NjZDNEY5QUUwMi8zdkNhdC1hdFNBRFFaOWNDcV9NQ0ppbmNW dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN2Q2F0LWF0U0FEUVo5Y0NxX01DSmluY1Z1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0IzMi9BQzM2QjM2ODUxRjExMUVFQTdEQzI2NjZDNEY5QUUwMi8zdkNhdC1hdFNB RFFaOWNDcV9NQ0ppbmNWdUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdRsk41waaefOuGpvX5zGdwuIfGstp/0QiSfod0t3yakGDRkSw3WPe E13iAnz8a5K3/pzSBhgajHoEO6M42wdngCtUIII6fM6qgmSM7xvOrU/o9cl3Walh pgs7C5nWebMQn6WMe705xG3UpWA2XhdfJOfxklJASNRva87i3DCjXDkvx6Vb3/6R OcwMyzYG3cjQl02wOpFdoFliF0wgIUhloUw3Gxz4HB87wBHnvbigxIIm2tciI9gO 1y3auGXZGjeftJ75o8sIey/NTfD+yD6wkK2v3HrLQ3WG4DvztA90PY4nhaD+58yw x1mYJHlmle9N5D/sb0U5voUMwHzzYPpG -----END CERTIFICATE-----Generated at Sun May 19 07:40:44 2024 by rpki-client on console-fra.rpki-client.org