$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft File: 4vB0KtgKnbsodRhO4N1elN11eEs.mft (raw, json) Hash identifier: kBcI0F6U3fwpMGuJgQa7TszBv3V0Im0U7PdHIVflD1w= Subject key identifier: 39:A3:9A:7E:BB:CB:97:59:57:07:96:0E:DE:3D:3D:AF:A8:44:95:D5 Authority key identifier: E2:F0:74:2A:D8:0A:9D:BB:28:75:18:4E:E0:DD:5E:94:DD:75:78:4B Certificate issuer: /CN=A91C23FE/serialNumber=E2F0742AD80A9DBB2875184EE0DD5E94DD75784B Certificate serial: 1B19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft Manifest number: 1B14 Signing time: Fri 31 May 2024 16:51:50 +0000 Manifest this update: Fri 31 May 2024 16:51:50 +0000 Manifest next update: Fri 07 Jun 2024 16:51:49 +0000 Files and hashes: 1: 4vB0KtgKnbsodRhO4N1elN11eEs.crl (hash: XjpV7MZ0MO5j3sNlammdW4AhZJgPujC80jY1vT2MjZ0=) 2: A88F22ECCC7011ED931BD15FC4F9AE02.roa (hash: PDEUwSOQcUem9pOEH3mBn+X/dWQRklpNIjGaXtrj6R0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.crl rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:47:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6937 (0x1b19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23FE/serialNumber=E2F0742AD80A9DBB2875184EE0DD5E94DD75784B Validity Not Before: May 31 16:51:50 2024 GMT Not After : Jun 7 16:51:49 2024 GMT Subject: CN=665a0026-7376 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ed:b7:c9:ec:f0:4b:53:7a:7f:e2:57:c2:92: 66:0d:7b:9d:1b:f2:68:b9:ec:9a:73:0d:44:fa:00: c9:d5:14:90:a6:80:f3:47:93:b9:12:41:e7:72:48: 2f:84:18:20:a4:1d:ab:8d:66:8f:19:68:bf:57:17: 1a:6e:01:a7:73:9b:48:5a:05:63:8a:95:39:52:b6: 07:e4:fb:6d:81:51:03:19:a8:f5:f2:52:bc:af:58: 44:09:ef:f2:c2:f8:9d:01:39:60:c9:b5:f5:ef:96: 86:f4:f3:9a:94:f2:6b:29:6b:3c:3d:03:9c:9d:d5: 12:48:0f:90:e2:c5:57:43:0d:fa:b4:1c:bf:12:48: d7:18:02:aa:cc:3b:a7:2f:5b:fd:b5:b5:c5:44:a9: b4:21:5f:5b:72:8f:7c:35:ab:00:5e:8f:80:83:2e: cd:4c:01:c1:ac:48:18:03:a6:77:5a:a5:84:34:92: d1:f1:04:30:1f:da:f9:b2:07:91:0c:33:44:d2:64: 55:19:2d:05:ff:b5:1f:9b:9e:36:34:8c:09:d6:81: ab:ed:79:17:9a:0d:f9:b7:ae:01:8b:e6:e1:b8:ff: b1:f3:81:b0:b6:33:3e:c0:26:e5:bc:ab:a7:51:5a: 31:fa:0a:a2:1c:c1:11:88:ba:d8:b2:29:0a:e7:40: 08:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:A3:9A:7E:BB:CB:97:59:57:07:96:0E:DE:3D:3D:AF:A8:44:95:D5 X509v3 Authority Key Identifier: keyid:E2:F0:74:2A:D8:0A:9D:BB:28:75:18:4E:E0:DD:5E:94:DD:75:78:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:91:f7:50:54:74:ba:5e:ae:ec:5c:6c:75:5f:81:0f:46:f6: c6:42:2a:aa:b9:9d:a4:10:b2:08:45:aa:62:e4:1e:d7:77:9f: 1e:3c:aa:36:c5:ce:bb:7c:07:f0:69:ac:65:ac:e3:c9:9e:3e: 28:bc:31:ff:be:42:58:ef:10:33:3f:47:47:0e:8d:52:6e:82: bd:7f:9a:8a:16:fd:0b:6c:f0:4b:04:00:b0:e1:24:c1:ed:cb: bc:9f:43:d6:f6:ff:4e:66:15:57:05:59:22:52:0a:f9:84:f0: 3f:d4:20:17:ac:a2:6d:12:1f:33:f9:ad:f5:c4:a5:5f:3f:8a: 53:3c:41:3d:c9:ed:48:1c:45:eb:9d:c0:89:c7:45:01:63:da: 16:2b:d2:8a:e7:95:30:c0:34:70:d4:7a:bf:0d:60:84:b3:57: e4:8e:04:64:a8:3f:31:e3:39:0e:54:2b:9f:0f:a9:32:96:6a: 0e:fb:3f:7b:9a:59:b6:bc:25:91:9d:8b:5a:ab:11:d7:e9:41: 84:f8:5d:9b:08:37:44:e7:cc:74:ce:a7:6d:38:aa:7c:69:a2: 09:9f:c6:7e:28:35:88:9e:72:a2:d5:2a:20:9c:ea:4f:65:5a: 2c:98:0c:54:ae:c9:c7:0e:20:0c:fc:54:cb:1d:c3:d4:c9:f0: bb:20:79:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGxkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzRkUxMTAvBgNVBAUTKEUyRjA3NDJBRDgwQTlEQkIyODc1MTg0RUUwREQ1RTk0 REQ3NTc4NEIwHhcNMjQwNTMxMTY1MTUwWhcNMjQwNjA3MTY1MTQ5WjAYMRYwFAYD VQQDEw02NjVhMDAyNi03Mzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy+23yezwS1N6f+JXwpJmDXudG/Joueyacw1E+gDJ1RSQpoDzR5O5EkHnckgv hBggpB2rjWaPGWi/VxcabgGnc5tIWgVjipU5UrYH5PttgVEDGaj18lK8r1hECe/y wvidATlgybX175aG9POalPJrKWs8PQOcndUSSA+Q4sVXQw36tBy/EkjXGAKqzDun L1v9tbXFRKm0IV9bco98NasAXo+Agy7NTAHBrEgYA6Z3WqWENJLR8QQwH9r5sgeR DDNE0mRVGS0F/7Ufm542NIwJ1oGr7XkXmg35t64Bi+bhuP+x84GwtjM+wCblvKun UVox+gqiHMERiLrYsikK50AIZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDmjmn67 y5dZVweWDt49Pa+oRJXVMB8GA1UdIwQYMBaAFOLwdCrYCp27KHUYTuDdXpTddXhL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNGRS84MjVDRTlBQUY5 RUIxMUU2QkRFN0E5NjhDNEY5QUUwMi80dkIwS3RnS25ic29kUmhPNE4xZWxOMTFl RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR2QjBLdGdLbmJzb2RSaE80TjFlbE4xMWVFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNGRS84MjVDRTlBQUY5RUIxMUU2QkRFN0E5NjhDNEY5QUUwMi80dkIwS3RnS25i c29kUmhPNE4xZWxOMTFlRXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEkfdQVHS6Xq7sXGx1X4EPRvbGQiqquZ2kELIIRapi5B7Xd58ePKo2 xc67fAfwaaxlrOPJnj4ovDH/vkJY7xAzP0dHDo1SboK9f5qKFv0LbPBLBACw4STB 7cu8n0PW9v9OZhVXBVkiUgr5hPA/1CAXrKJtEh8z+a31xKVfP4pTPEE9ye1IHEXr ncCJx0UBY9oWK9KK55UwwDRw1Hq/DWCEs1fkjgRkqD8x4zkOVCufD6kylmoO+z97 mlm2vCWRnYtaqxHX6UGE+F2bCDdE58x0zqdtOKp8aaIJn8Z+KDWInnKi1SognOpP ZVosmAxUrsnHDiAM/FTLHcPUyfC7IHks -----END CERTIFICATE-----Generated at Fri May 31 17:44:52 2024 by rpki-client on console-fra.rpki-client.org