$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.mft File: 25K4P0wYeDkNakTmrtV6d1ImNRI.mft (raw, json) Hash identifier: 5egXS7Tagm9Pj2BzEKKi6FJy1oP5gT3zD0MrFS+6huo= Subject key identifier: C1:4E:EF:38:88:07:06:12:58:1E:B6:06:D5:6C:1C:23:1C:06:43:4F Authority key identifier: DB:92:B8:3F:4C:18:78:39:0D:6A:44:E6:AE:D5:7A:77:52:26:35:12 Certificate issuer: /CN=A91BBD5B/serialNumber=DB92B83F4C1878390D6A44E6AED57A7752263512 Certificate serial: 1C50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25K4P0wYeDkNakTmrtV6d1ImNRI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.mft Manifest number: 1C46 Signing time: Sat 18 May 2024 16:34:16 +0000 Manifest this update: Sat 18 May 2024 16:34:15 +0000 Manifest next update: Sat 25 May 2024 16:34:15 +0000 Files and hashes: 1: 25K4P0wYeDkNakTmrtV6d1ImNRI.crl (hash: BmaDKgo3l3cz67Y51FoDR9sQUQ5Dkt8i9vB6xQNL/wI=) 2: AB9480A6BB6811E69E8D1212C4F9AE02.roa (hash: rrxARAVhnCadOERHFV09VWaepwpZuOKaQNvTjpcjpF8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.crl rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25K4P0wYeDkNakTmrtV6d1ImNRI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7248 (0x1c50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBD5B/serialNumber=DB92B83F4C1878390D6A44E6AED57A7752263512 Validity Not Before: May 18 16:34:15 2024 GMT Not After : May 25 16:34:15 2024 GMT Subject: CN=6648d888-cc3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:bd:98:1c:81:69:b2:5c:51:5c:44:c6:93:01: c5:05:73:2a:3c:8c:fb:0a:87:46:60:e7:74:c6:4a: 6d:23:03:d8:ef:be:29:c0:6a:d4:07:4e:56:61:68: 58:3e:d1:84:58:36:8e:eb:6c:f5:ea:c7:df:60:67: 54:7b:85:06:67:83:09:04:4f:ee:ae:3b:5b:b7:c8: 28:48:1f:bb:df:c5:2f:30:2d:ca:db:c6:09:ea:38: 8a:dd:60:0a:2d:cc:e0:49:d1:98:91:a2:3d:ea:ab: 68:c9:db:f8:d4:34:14:1b:99:d5:a1:86:37:43:b8: 47:09:ce:36:85:a8:b8:e6:10:b6:17:e3:ca:f8:5c: 30:59:6f:c2:9d:86:72:5e:45:23:b0:29:7c:76:e1: c5:42:08:c5:e2:3b:f0:ac:d6:7c:4e:59:2a:07:cd: 94:ba:16:cc:0b:ba:63:18:18:0b:1a:0a:ce:48:ee: 90:f2:a3:74:20:e9:45:0d:5f:61:29:43:14:ec:61: 3d:13:bb:11:21:6e:1e:b4:22:94:99:db:7e:d4:19: 45:41:04:9e:e6:84:fe:40:d6:d0:25:5f:6a:9b:e1: a8:47:57:14:30:14:ef:0b:c3:cb:7c:d1:8c:9a:c9: 1d:c6:6b:6f:8e:31:1e:52:69:0c:fd:e3:fb:bc:bc: 7f:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:4E:EF:38:88:07:06:12:58:1E:B6:06:D5:6C:1C:23:1C:06:43:4F X509v3 Authority Key Identifier: keyid:DB:92:B8:3F:4C:18:78:39:0D:6A:44:E6:AE:D5:7A:77:52:26:35:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25K4P0wYeDkNakTmrtV6d1ImNRI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:dd:2f:1e:a1:78:0e:d8:45:6d:18:30:32:83:40:db:92:bb: d0:c2:32:e7:11:40:7b:57:64:c2:9c:90:00:b2:17:bc:ef:ce: c5:46:9e:cc:04:8b:0c:f5:44:d6:ab:b1:aa:ae:6c:17:cf:6c: 25:e7:8a:6b:78:1e:11:ee:dc:e1:b9:8d:b9:eb:9b:a6:13:0a: db:22:d1:7a:d5:e4:ca:fb:74:02:56:ff:d0:cb:fc:2d:8b:af: 54:98:58:65:a1:35:77:08:b1:11:8c:0f:b8:28:18:e7:4a:95: 09:20:32:21:c9:28:03:94:6a:6c:43:91:70:4f:5d:dd:33:ea: 0f:0f:41:8b:85:0e:81:59:f2:20:c6:03:ef:3c:9f:6f:9a:33: 62:f1:fe:84:63:fb:28:e6:3a:7a:2e:25:b6:1f:cb:ca:e0:b2: 3c:90:32:17:8b:dc:1a:6e:60:a5:0f:f7:f2:26:31:17:d2:2a: 47:2f:93:fc:08:c5:43:7c:4e:df:7c:1f:cc:fe:89:16:65:89: b1:51:f6:78:94:b4:e1:cc:d7:33:a6:97:69:e6:d5:9d:0c:09: 8d:13:11:83:64:09:6b:2e:9d:77:2f:29:4e:7c:8a:55:87:2c: 4e:65:76:3e:19:22:90:cb:d7:ee:40:7d:15:70:7e:f3:99:71: 47:eb:a2:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHFAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJENUIxMTAvBgNVBAUTKERCOTJCODNGNEMxODc4MzkwRDZBNDRFNkFFRDU3QTc3 NTIyNjM1MTIwHhcNMjQwNTE4MTYzNDE1WhcNMjQwNTI1MTYzNDE1WjAYMRYwFAYD VQQDEw02NjQ4ZDg4OC1jYzNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx72YHIFpslxRXETGkwHFBXMqPIz7CodGYOd0xkptIwPY774pwGrUB05WYWhY PtGEWDaO62z16sffYGdUe4UGZ4MJBE/urjtbt8goSB+738UvMC3K28YJ6jiK3WAK LczgSdGYkaI96qtoydv41DQUG5nVoYY3Q7hHCc42hai45hC2F+PK+FwwWW/CnYZy XkUjsCl8duHFQgjF4jvwrNZ8TlkqB82UuhbMC7pjGBgLGgrOSO6Q8qN0IOlFDV9h KUMU7GE9E7sRIW4etCKUmdt+1BlFQQSe5oT+QNbQJV9qm+GoR1cUMBTvC8PLfNGM mskdxmtvjjEeUmkM/eP7vLx/nQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMFO7ziI BwYSWB62BtVsHCMcBkNPMB8GA1UdIwQYMBaAFNuSuD9MGHg5DWpE5q7VendSJjUS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkQ1Qi8xNzAyRkMzRUJC NjcxMUU2QUUyNDA0MEZDNEY5QUUwMi8yNUs0UDB3WWVEa05ha1RtcnRWNmQxSW1O UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI1SzRQMHdZZURrTmFrVG1ydFY2ZDFJbU5SSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkQ1Qi8xNzAyRkMzRUJCNjcxMUU2QUUyNDA0MEZDNEY5QUUwMi8yNUs0UDB3WWVE a05ha1RtcnRWNmQxSW1OUkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAA3S8eoXgO2EVtGDAyg0DbkrvQwjLnEUB7V2TCnJAAshe8787FRp7M BIsM9UTWq7GqrmwXz2wl54preB4R7tzhuY2565umEwrbItF61eTK+3QCVv/Qy/wt i69UmFhloTV3CLERjA+4KBjnSpUJIDIhySgDlGpsQ5FwT13dM+oPD0GLhQ6BWfIg xgPvPJ9vmjNi8f6EY/so5jp6LiW2H8vK4LI8kDIXi9wabmClD/fyJjEX0ipHL5P8 CMVDfE7ffB/M/okWZYmxUfZ4lLThzNczppdp5tWdDAmNExGDZAlrLp13LylOfIpV hyxOZXY+GSKQy9fuQH0VcH7zmXFH66Lv -----END CERTIFICATE-----Generated at Sat May 18 16:57:54 2024 by rpki-client on console-fra.rpki-client.org