$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.mft File: SUICsDHp9CdkMVegbvqkwHDH8-0.mft (raw, json) Hash identifier: t8pT3LQKlIOW18yH+SWKtDmVhZRVo7w3LBF7+FLMvvY= Subject key identifier: 32:47:2C:3B:D2:D8:EC:FA:70:84:AA:85:13:F3:9C:87:DB:D4:64:B5 Authority key identifier: 49:42:02:B0:31:E9:F4:27:64:31:57:A0:6E:FA:A4:C0:70:C7:F3:ED Certificate issuer: /CN=A91C0C9B/serialNumber=494202B031E9F427643157A06EFAA4C070C7F3ED Certificate serial: 040C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUICsDHp9CdkMVegbvqkwHDH8-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.mft Manifest number: 03F7 Signing time: Fri 17 May 2024 02:26:18 +0000 Manifest this update: Fri 17 May 2024 02:26:18 +0000 Manifest next update: Fri 24 May 2024 02:26:18 +0000 Files and hashes: 1: SUICsDHp9CdkMVegbvqkwHDH8-0.crl (hash: TDx+4KYl1sLqrVyu9VsLc13L29K1PS5w5xeCwfhYkB4=) 2: A042865C3DB211EE9EB40D3DC4F9AE02.roa (hash: tDeyIgXlklGW3pJmET16atIMTs5ZNSXZiS4Qu8O2/uk=) 3: B1FD800CF32111EEB820DB5BC4F9AE02.roa (hash: 0nblzfNtNJ2NHVNu2q9tSBAuPPx6fqsAaXu/4C5VXV8=) 4: E1B834D0F5D911EE878F7B7CC4F9AE02.roa (hash: k+hacjAYVrhX3ftaQwG4lnlx2me9wypnqwgDY2p+z4M=) 5: 242EC19CCA6C11EEA57DF83EC4F9AE02.roa (hash: MZ9ynyjMMoyvdxohWqs56RTkpoXleK9tjEewKQ85xAA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.crl rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUICsDHp9CdkMVegbvqkwHDH8-0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:26:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1036 (0x40c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C9B/serialNumber=494202B031E9F427643157A06EFAA4C070C7F3ED Validity Not Before: May 17 02:26:18 2024 GMT Not After : May 24 02:26:18 2024 GMT Subject: CN=6646c04a-e93c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:22:0e:3b:be:db:d7:67:21:e3:50:c6:a5:45: af:dc:80:a6:dd:65:a9:b0:6b:9b:27:6d:58:75:78: e3:d7:03:26:08:7a:82:6b:a4:c4:b9:02:e4:b0:ce: 07:39:95:84:9e:a2:34:c2:77:d0:43:04:cb:a2:67: c4:3b:27:d5:4f:df:d0:3e:20:2b:73:37:e2:dc:0f: 76:66:5c:9d:5b:31:6b:35:9d:60:c2:59:d8:97:c3: 13:0b:79:41:c9:2e:0d:26:e9:6a:38:0c:bf:88:e6: 66:ea:a2:3f:41:c9:00:f2:23:42:ea:fc:d6:fb:88: c3:fd:e0:27:b3:d0:82:5a:36:68:46:e3:cc:46:21: b6:f7:17:32:b3:be:20:55:c6:28:51:83:e6:83:3a: 53:b4:07:b9:f9:7d:40:15:2c:31:35:f4:1c:e0:3a: ed:f1:05:8c:d8:69:51:ae:66:2c:46:cc:96:35:4c: 0d:87:04:94:4c:ad:7d:81:0a:39:cf:61:b2:2b:0a: 52:43:c8:9d:b0:ef:01:06:e2:14:be:df:cf:54:e1: 03:c2:10:68:46:f1:ff:7a:c8:1f:dc:0e:cd:bc:f0: 42:c9:75:a8:9e:1e:6b:ec:63:53:4c:01:1f:9a:53: a8:e7:6e:09:13:f1:04:0d:7e:1c:19:12:c2:bc:69: 59:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:47:2C:3B:D2:D8:EC:FA:70:84:AA:85:13:F3:9C:87:DB:D4:64:B5 X509v3 Authority Key Identifier: keyid:49:42:02:B0:31:E9:F4:27:64:31:57:A0:6E:FA:A4:C0:70:C7:F3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUICsDHp9CdkMVegbvqkwHDH8-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:9e:24:42:ae:3b:68:3a:f3:6f:e9:9a:24:aa:c8:df:1d:f0: 10:52:8f:49:4c:59:c5:ec:93:ea:c8:2f:9e:01:04:1e:50:b9: ab:e2:a4:1d:f8:92:13:bf:4c:84:41:c8:d7:3a:20:ba:7e:12: 1b:a9:a5:d6:d9:59:9e:5f:76:54:fd:74:fa:3f:ad:35:95:70: f7:41:01:9c:a0:29:10:25:4c:76:29:67:0c:22:72:77:4d:91: 29:28:0a:96:66:78:72:93:6e:98:11:54:b1:e9:95:57:79:42: 58:a7:f8:31:b7:3f:d4:7e:de:09:19:77:16:9f:12:50:c8:d8: 38:d6:57:6b:c6:ed:a2:51:64:9a:68:59:a8:38:5c:e7:d7:1e: 44:94:4e:61:88:a7:56:dd:01:ef:80:a1:c3:17:b4:a1:9d:8f: 1e:c9:0d:a3:f4:d0:0c:81:3d:1d:39:ff:fb:20:49:fb:90:22: 44:97:92:4f:e0:dd:02:f3:fa:f7:b7:d2:34:f1:60:35:9c:b9: cb:6e:d3:1e:f4:93:51:e9:08:54:22:2e:e8:8b:19:60:8b:d3: 95:a0:8b:29:38:14:e1:67:46:9e:8e:f7:d3:2c:6d:95:bf:90: ee:f0:36:41:7f:60:63:1a:dc:98:0b:fe:12:0d:37:df:31:1f: 8b:ca:83:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDOUIxMTAvBgNVBAUTKDQ5NDIwMkIwMzFFOUY0Mjc2NDMxNTdBMDZFRkFBNEMw NzBDN0YzRUQwHhcNMjQwNTE3MDIyNjE4WhcNMjQwNTI0MDIyNjE4WjAYMRYwFAYD VQQDEw02NjQ2YzA0YS1lOTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoSIOO77b12ch41DGpUWv3ICm3WWpsGubJ21YdXjj1wMmCHqCa6TEuQLksM4H OZWEnqI0wnfQQwTLomfEOyfVT9/QPiArczfi3A92ZlydWzFrNZ1gwlnYl8MTC3lB yS4NJulqOAy/iOZm6qI/QckA8iNC6vzW+4jD/eAns9CCWjZoRuPMRiG29xcys74g VcYoUYPmgzpTtAe5+X1AFSwxNfQc4Drt8QWM2GlRrmYsRsyWNUwNhwSUTK19gQo5 z2GyKwpSQ8idsO8BBuIUvt/PVOEDwhBoRvH/esgf3A7NvPBCyXWonh5r7GNTTAEf mlOo524JE/EEDX4cGRLCvGlZbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDJHLDvS 2Oz6cISqhRPznIfb1GS1MB8GA1UdIwQYMBaAFElCArAx6fQnZDFXoG76pMBwx/Pt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEM5Qi9BNDZFOTg5QTMy MkIxMUVDOTdGOENGN0NDNEY5QUUwMi9TVUlDc0RIcDlDZGtNVmVnYnZxa3dIREg4 LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NVSUNzREhwOUNka01WZWdidnFrd0hESDgtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEM5Qi9BNDZFOTg5QTMyMkIxMUVDOTdGOENGN0NDNEY5QUUwMi9TVUlDc0RIcDlD ZGtNVmVnYnZxa3dIREg4LTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeniRCrjtoOvNv6ZokqsjfHfAQUo9JTFnF7JPqyC+eAQQeULmr4qQd +JITv0yEQcjXOiC6fhIbqaXW2VmeX3ZU/XT6P601lXD3QQGcoCkQJUx2KWcMInJ3 TZEpKAqWZnhyk26YEVSx6ZVXeUJYp/gxtz/Uft4JGXcWnxJQyNg41ldrxu2iUWSa aFmoOFzn1x5ElE5hiKdW3QHvgKHDF7ShnY8eyQ2j9NAMgT0dOf/7IEn7kCJEl5JP 4N0C8/r3t9I08WA1nLnLbtMe9JNR6QhUIi7oixlgi9OVoIspOBThZ0aejvfTLG2V v5Du8DZBf2BjGtyYC/4SDTffMR+LyoM8 -----END CERTIFICATE-----Generated at Fri May 17 03:17:00 2024 by rpki-client on console-fra.rpki-client.org