$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA0F9/FCAA2C001DA811E2B0E2CAA308B02CD2/nDt48kQmDsRjG6DfYZRgi3Gof0g.mft File: nDt48kQmDsRjG6DfYZRgi3Gof0g.mft (raw, json) Hash identifier: Wb7rOFRfE1uNk8qGKcZmZghhPS6aVtBXgx5Q3ITDUC4= Subject key identifier: 37:86:D4:56:D2:E3:1B:8E:24:A1:ED:B1:8B:33:3E:E4:FE:F0:B1:BE Authority key identifier: 9C:3B:78:F2:44:26:0E:C4:63:1B:A0:DF:61:94:60:8B:71:A8:7F:48 Certificate issuer: /CN=A91BA0F9/serialNumber=9C3B78F244260EC4631BA0DF6194608B71A87F48 Certificate serial: 33C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nDt48kQmDsRjG6DfYZRgi3Gof0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA0F9/FCAA2C001DA811E2B0E2CAA308B02CD2/nDt48kQmDsRjG6DfYZRgi3Gof0g.mft Manifest number: 4F55 Signing time: Sat 18 May 2024 15:29:35 +0000 Manifest this update: Sat 18 May 2024 15:29:34 +0000 Manifest next update: Sat 25 May 2024 15:29:34 +0000 Files and hashes: 1: nDt48kQmDsRjG6DfYZRgi3Gof0g.crl (hash: uWR9+X0sKrfl8/tlYkTdWTG5KDrJyawlJo4p7jwLX5o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA0F9/FCAA2C001DA811E2B0E2CAA308B02CD2/nDt48kQmDsRjG6DfYZRgi3Gof0g.crl rsync://rpki.apnic.net/member_repository/A91BA0F9/FCAA2C001DA811E2B0E2CAA308B02CD2/nDt48kQmDsRjG6DfYZRgi3Gof0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nDt48kQmDsRjG6DfYZRgi3Gof0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13248 (0x33c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA0F9/serialNumber=9C3B78F244260EC4631BA0DF6194608B71A87F48 Validity Not Before: May 18 15:29:34 2024 GMT Not After : May 25 15:29:34 2024 GMT Subject: CN=6648c95f-73ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:db:ba:fd:af:ca:d8:6f:8f:92:57:31:be:99: 99:28:ed:8a:b5:14:38:6e:03:cf:a2:66:1a:ad:f0: 87:3e:ff:09:7a:3d:f6:2a:04:77:6f:e9:4b:34:21: 05:3a:18:4a:a6:e4:f7:db:3b:97:22:77:c2:2e:96: 69:58:b4:a0:88:bf:f3:3f:fe:98:06:43:84:a5:2c: 63:16:3d:b8:90:b4:c3:75:f7:ac:de:7b:f3:5d:16: a3:5b:d7:b2:c7:24:13:d1:3b:9c:b5:a4:34:a4:e4: ec:96:b8:1c:fb:ac:cf:2c:cc:48:dd:3c:8d:b0:7c: f2:e8:c6:60:90:e3:c2:6e:dd:8a:a2:08:f1:00:3b: 5f:34:55:f2:f4:87:02:cd:de:47:64:26:36:40:6c: 98:49:37:ba:fd:29:e4:91:08:15:66:f0:ab:0e:91: 30:92:f2:fc:82:bb:16:7f:5c:ad:d4:ee:7f:e6:30: a0:20:27:bb:be:89:9f:49:34:d1:b9:63:f5:f4:13: 1e:19:42:ce:26:e4:07:8d:5a:3c:20:61:d3:84:1a: b7:9b:86:58:22:f7:88:cc:2e:7c:18:04:91:cf:b0: 58:ab:db:e3:dd:71:51:e3:74:53:ee:78:7b:14:8e: d4:b0:69:95:95:b4:e5:2e:75:d9:e6:46:63:83:06: 0f:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:86:D4:56:D2:E3:1B:8E:24:A1:ED:B1:8B:33:3E:E4:FE:F0:B1:BE X509v3 Authority Key Identifier: keyid:9C:3B:78:F2:44:26:0E:C4:63:1B:A0:DF:61:94:60:8B:71:A8:7F:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA0F9/FCAA2C001DA811E2B0E2CAA308B02CD2/nDt48kQmDsRjG6DfYZRgi3Gof0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nDt48kQmDsRjG6DfYZRgi3Gof0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA0F9/FCAA2C001DA811E2B0E2CAA308B02CD2/nDt48kQmDsRjG6DfYZRgi3Gof0g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:81:0c:5f:0b:b5:4b:62:aa:91:a4:b9:7b:e1:9d:10:d3:60: 65:1e:9c:4a:83:e7:25:ce:84:ae:d2:d8:33:2e:c3:a4:7e:1d: 60:1f:d7:3b:74:59:60:2b:c0:86:b7:79:5a:4a:53:a3:34:78: 81:25:df:9c:48:2f:88:20:ce:44:d1:d0:ce:f6:42:3e:8d:fb: 82:ec:dc:ab:5f:ea:67:dc:ec:d0:7b:30:e5:8b:cd:02:0e:ba: 3a:9f:dc:6f:03:ac:b7:3a:02:f5:02:50:81:28:98:ae:77:e0: 57:f7:f3:4c:32:90:ec:cf:ab:e1:1c:c1:f9:81:37:f0:76:7f: fa:a8:80:a2:4e:ea:86:ea:78:95:77:d5:4c:db:76:2f:96:b5: 49:6e:70:ce:f0:ba:99:75:2d:95:c2:f0:6f:03:68:0c:20:7a: b7:7b:76:40:26:a3:38:0a:17:cd:f3:0f:aa:13:9c:53:12:0d: 80:74:2b:f2:94:c9:94:bd:d8:ed:3b:38:6f:48:56:1b:16:7b: 91:9d:ac:ee:4b:bc:89:95:98:bb:7a:dd:8f:c7:6e:26:35:cf: 05:41:be:88:55:aa:46:8d:62:32:49:40:20:b3:af:cd:e8:0f: 33:0a:da:93:34:c2:90:d1:b9:ea:07:e0:c6:fa:ff:df:4a:f7: 93:ca:46:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEwRjkxMTAvBgNVBAUTKDlDM0I3OEYyNDQyNjBFQzQ2MzFCQTBERjYxOTQ2MDhC NzFBODdGNDgwHhcNMjQwNTE4MTUyOTM0WhcNMjQwNTI1MTUyOTM0WjAYMRYwFAYD VQQDEw02NjQ4Yzk1Zi03M2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwdu6/a/K2G+PklcxvpmZKO2KtRQ4bgPPomYarfCHPv8Jej32KgR3b+lLNCEF OhhKpuT32zuXInfCLpZpWLSgiL/zP/6YBkOEpSxjFj24kLTDdfes3nvzXRajW9ey xyQT0TuctaQ0pOTslrgc+6zPLMxI3TyNsHzy6MZgkOPCbt2KogjxADtfNFXy9IcC zd5HZCY2QGyYSTe6/SnkkQgVZvCrDpEwkvL8grsWf1yt1O5/5jCgICe7vomfSTTR uWP19BMeGULOJuQHjVo8IGHThBq3m4ZYIveIzC58GASRz7BYq9vj3XFR43RT7nh7 FI7UsGmVlbTlLnXZ5kZjgwYPKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDeG1FbS 4xuOJKHtsYszPuT+8LG+MB8GA1UdIwQYMBaAFJw7ePJEJg7EYxug32GUYItxqH9I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTBGOS9GQ0FBMkMwMDFE QTgxMUUyQjBFMkNBQTMwOEIwMkNEMi9uRHQ0OGtRbURzUmpHNkRmWVpSZ2kzR29m MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25EdDQ4a1FtRHNSakc2RGZZWlJnaTNHb2YwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTBGOS9GQ0FBMkMwMDFEQTgxMUUyQjBFMkNBQTMwOEIwMkNEMi9uRHQ0OGtRbURz UmpHNkRmWVpSZ2kzR29mMGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQgQxfC7VLYqqRpLl74Z0Q02BlHpxKg+clzoSu0tgzLsOkfh1gH9c7 dFlgK8CGt3laSlOjNHiBJd+cSC+IIM5E0dDO9kI+jfuC7NyrX+pn3OzQezDli80C Dro6n9xvA6y3OgL1AlCBKJiud+BX9/NMMpDsz6vhHMH5gTfwdn/6qICiTuqG6niV d9VM23YvlrVJbnDO8LqZdS2VwvBvA2gMIHq3e3ZAJqM4ChfN8w+qE5xTEg2AdCvy lMmUvdjtOzhvSFYbFnuRnazuS7yJlZi7et2Px24mNc8FQb6IVapGjWIySUAgs6/N 6A8zCtqTNMKQ0bnqB+DG+v/fSveTykZY -----END CERTIFICATE-----Generated at Sat May 18 16:20:16 2024 by rpki-client on console-fra.rpki-client.org