$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft File: J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft (raw, json) Hash identifier: v8LOy8MFW3FYnTxw9uA6iKnMfaMO5/IYFdV+ihHJt8c= Subject key identifier: 0D:6F:3A:0D:8D:41:C5:5F:98:1D:41:1F:91:2C:E5:3B:D2:89:A6:A9 Authority key identifier: 27:B2:E6:62:91:48:22:13:6B:09:62:DB:B5:BA:44:7C:25:3F:52:1B Certificate issuer: /CN=A91BBCAF/serialNumber=27B2E662914822136B0962DBB5BA447C253F521B Certificate serial: 7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft Manifest number: 7A Signing time: Fri 31 May 2024 08:16:02 +0000 Manifest this update: Fri 31 May 2024 08:16:02 +0000 Manifest next update: Fri 07 Jun 2024 08:16:02 +0000 Files and hashes: 1: J7LmYpFIIhNrCWLbtbpEfCU_Uhs.crl (hash: NpJrYqo5cUP4GnWj4Ql8YFHFmT+5+D0kzfXyS7lMaXk=) 2: D2FA5DBE6C1E11EEBB9EAB7AC4F9AE02.roa (hash: bTfweIvY+y3ZMZkCz6Q+cwWd3fi+pjSC/fbiiQ6DHT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.crl rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 07:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBCAF/serialNumber=27B2E662914822136B0962DBB5BA447C253F521B Validity Not Before: May 31 08:16:02 2024 GMT Not After : Jun 7 08:16:02 2024 GMT Subject: CN=66598742-5e07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:1d:fd:58:eb:a2:9f:6e:a1:7b:db:7d:1d:07: a0:28:57:b2:b4:d6:2a:51:a6:ab:f8:b8:04:f9:6c: 6f:8d:8f:f1:5f:ff:59:6c:a8:ec:9a:77:6c:b8:4a: 75:cc:c9:87:4a:f9:7c:c1:0e:a4:1f:9c:3e:03:c5: 34:5f:77:f6:88:19:13:ea:8f:00:b8:fb:52:cb:df: f3:3c:ab:d6:19:25:6d:9f:e4:39:35:4f:54:fc:e9: 94:cc:17:05:75:c0:be:c0:51:37:de:a9:3f:f1:ed: 42:2b:3a:ef:56:e5:a3:42:9f:65:3d:08:af:0d:5a: 16:1f:07:26:a5:87:35:de:3c:e7:84:aa:fd:5b:71: 52:d9:3e:32:84:94:7b:c7:2a:39:e6:ef:8e:6a:66: 82:f1:9e:7a:97:ce:6c:d9:e3:6d:6a:05:b5:fe:d7: de:c4:38:47:15:37:1e:d1:17:da:08:e2:90:8a:0b: 64:13:71:79:af:ef:34:15:29:0f:56:97:38:23:c7: af:16:24:63:55:76:be:bd:f6:97:63:eb:fe:d5:57: 09:6f:43:fe:e3:8a:ea:fa:ca:a6:0d:2b:4a:e8:46: ee:3e:a1:6a:65:77:b7:23:c7:a3:6b:7d:e6:cc:a2: 22:a5:7d:b8:1f:a5:5c:50:aa:42:e0:de:79:fd:e5: a6:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:6F:3A:0D:8D:41:C5:5F:98:1D:41:1F:91:2C:E5:3B:D2:89:A6:A9 X509v3 Authority Key Identifier: keyid:27:B2:E6:62:91:48:22:13:6B:09:62:DB:B5:BA:44:7C:25:3F:52:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:7b:d5:1b:99:75:64:c4:60:6b:c9:c7:9b:38:63:a7:60:30: fa:f2:4b:53:db:13:c6:5a:c8:d3:dd:68:de:80:2e:83:3d:3d: 7c:5e:9c:67:5a:16:18:fa:71:0e:54:9d:b6:74:0d:64:f6:0a: 50:fa:17:35:9c:66:55:c4:2e:16:2c:d6:b8:66:b1:85:62:87: db:de:e5:cd:0c:d4:4a:b4:d1:e4:e1:b5:57:d5:de:36:2e:aa: d4:9d:0d:e8:51:4f:db:3a:db:51:d8:76:2e:eb:be:68:06:57: ac:bb:1e:ce:22:42:e9:e4:7a:6e:d8:80:93:8d:03:46:61:78: ea:7b:33:a8:50:ff:da:11:74:99:f5:d7:60:c2:6a:c2:0c:79: c4:e3:53:a6:b8:d7:0c:b7:a8:20:1c:85:f0:fe:98:5b:70:98: 73:2e:58:28:21:c1:aa:7c:4c:26:17:14:1a:57:74:54:f2:ef: 15:e0:e9:08:8b:10:23:c7:2f:75:c7:8a:e4:b3:01:fe:0e:65: e2:f1:0e:a3:c8:2d:08:e0:a6:c3:95:3f:74:0a:87:84:54:e8: 1c:0a:ea:5b:fd:fc:0e:4c:0b:0a:5a:e2:ae:c2:a9:cf:f4:80: ec:73:6b:99:2c:2e:ea:48:c4:e3:4c:1e:ab:4b:d5:ae:0c:a0: 53:b5:83:75 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QkNBRjExMC8GA1UEBRMoMjdCMkU2NjI5MTQ4MjIxMzZCMDk2MkRCQjVCQTQ0N0My NTNGNTIxQjAeFw0yNDA1MzEwODE2MDJaFw0yNDA2MDcwODE2MDJaMBgxFjAUBgNV BAMTDTY2NTk4NzQyLTVlMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUHf1Y66KfbqF7230dB6AoV7K01ipRpqv4uAT5bG+Nj/Ff/1lsqOyad2y4SnXM yYdK+XzBDqQfnD4DxTRfd/aIGRPqjwC4+1LL3/M8q9YZJW2f5Dk1T1T86ZTMFwV1 wL7AUTfeqT/x7UIrOu9W5aNCn2U9CK8NWhYfByalhzXePOeEqv1bcVLZPjKElHvH Kjnm745qZoLxnnqXzmzZ421qBbX+197EOEcVNx7RF9oI4pCKC2QTcXmv7zQVKQ9W lzgjx68WJGNVdr699pdj6/7VVwlvQ/7jiur6yqYNK0roRu4+oWpld7cjx6NrfebM oiKlfbgfpVxQqkLg3nn95aa9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDW86DY1B xV+YHUEfkSzlO9KJpqkwHwYDVR0jBBgwFoAUJ7LmYpFIIhNrCWLbtbpEfCU/Uhsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCQ0FGLzBGNjE4ODZBNkIz MjExRUU5QjUyMjA1M0M0RjlBRTAyL0o3TG1ZcEZJSWhOckNXTGJ0YnBFZkNVX1Vo cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSjdMbVlwRklJaE5yQ1dMYnRicEVmQ1VfVWhzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJC Q0FGLzBGNjE4ODZBNkIzMjExRUU5QjUyMjA1M0M0RjlBRTAyL0o3TG1ZcEZJSWhO ckNXTGJ0YnBFZkNVX1Vocy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJN71RuZdWTEYGvJx5s4Y6dgMPryS1PbE8ZayNPdaN6ALoM9PXxenGda Fhj6cQ5UnbZ0DWT2ClD6FzWcZlXELhYs1rhmsYVih9ve5c0M1Eq00eThtVfV3jYu qtSdDehRT9s621HYdi7rvmgGV6y7Hs4iQunkem7YgJONA0ZheOp7M6hQ/9oRdJn1 12DCasIMecTjU6a41wy3qCAchfD+mFtwmHMuWCghwap8TCYXFBpXdFTy7xXg6QiL ECPHL3XHiuSzAf4OZeLxDqPILQjgpsOVP3QKh4RU6BwK6lv9/A5MCwpa4q7Cqc/0 gOxza5ksLupIxONMHqtL1a4MoFO1g3U= -----END CERTIFICATE-----Generated at Fri May 31 10:42:51 2024 by rpki-client on console-fra.rpki-client.org