$ rpki-client -vvf rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft File: vNzosG8FliNAMAycR0e1olGiGcQ.mft (raw, json) Hash identifier: hE5OUkYYqv1eCEhUCKoC7jWFDi/7IRXSw+acSJ7aMFQ= Subject key identifier: 92:A4:27:DC:15:DA:DD:A4:65:1A:01:C7:1A:61:A9:8F:33:E2:C8:3C Authority key identifier: BC:DC:E8:B0:6F:05:96:23:40:30:0C:9C:47:47:B5:A2:51:A2:19:C4 Certificate issuer: /CN=A91C65E8/serialNumber=BCDCE8B06F05962340300C9C4747B5A251A219C4 Certificate serial: 33E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft Manifest number: 33D4 Signing time: Sat 18 May 2024 15:03:30 +0000 Manifest this update: Sat 18 May 2024 15:03:30 +0000 Manifest next update: Sat 25 May 2024 15:03:30 +0000 Files and hashes: 1: vNzosG8FliNAMAycR0e1olGiGcQ.crl (hash: poRWreUhtbY7v1WPWNnatZZgtYxiGBkoLdhaazgHIyY=) 2: 3FEFA562483D11EC82E81112C4F9AE02.roa (hash: QNA9/itvhv9mObBs9bYBHmVetm3GHmSDFhk30Zk39c4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.crl rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13283 (0x33e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C65E8/serialNumber=BCDCE8B06F05962340300C9C4747B5A251A219C4 Validity Not Before: May 18 15:03:30 2024 GMT Not After : May 25 15:03:30 2024 GMT Subject: CN=6648c342-df5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:e9:db:14:df:4b:c8:a2:89:9d:6c:85:8d:69: 66:ff:cb:31:92:04:34:42:a4:ad:c4:30:1f:cd:74: d0:e7:3c:f6:4f:47:42:07:f9:2d:22:2c:1b:ea:0c: 67:29:c5:d8:64:31:a1:e8:55:7b:ea:f9:b3:76:6f: 4b:2d:c5:58:2f:f1:6e:26:99:41:c8:99:7a:22:2b: 22:37:9e:a6:9a:e4:00:f8:49:c9:96:ac:de:01:f2: 10:a2:d5:6b:e4:81:1e:9d:22:3a:61:6f:67:57:a2: e5:b5:72:b5:c9:72:00:b1:97:6d:5e:f0:f7:9d:ed: 4c:31:f5:b3:aa:ad:3e:ba:dc:48:19:14:67:f0:90: a3:2f:97:9e:08:86:f2:e6:5a:bc:a5:0e:62:28:ef: 1a:80:ff:82:85:75:8e:0d:b3:4b:dd:d0:53:1e:7a: 13:87:54:46:b4:3a:8d:6f:fe:59:96:92:8f:cb:a8: 3d:c3:dd:94:0c:45:ac:b0:ae:57:5f:45:e3:93:a9: 57:b9:e2:e3:d5:45:f9:c5:29:ca:22:99:fa:3c:9d: 92:f3:77:da:f4:38:ff:00:fc:bc:54:bb:e7:61:ed: e7:e5:3f:0b:de:98:e6:f9:7f:01:9c:d8:9c:d4:61: 23:89:f7:d3:ce:ff:7a:55:62:f4:42:87:f9:67:f1: 0c:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:A4:27:DC:15:DA:DD:A4:65:1A:01:C7:1A:61:A9:8F:33:E2:C8:3C X509v3 Authority Key Identifier: keyid:BC:DC:E8:B0:6F:05:96:23:40:30:0C:9C:47:47:B5:A2:51:A2:19:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:83:4d:59:34:89:3b:31:32:82:5b:9f:a9:a8:2d:43:65:e9: 62:83:7b:a4:af:ca:89:93:7a:d2:b3:20:75:0c:19:fe:4e:f4: c9:1d:1e:9a:3b:4c:51:97:82:7d:63:00:de:19:ed:d8:06:dc: bb:cf:d2:0d:38:8b:80:b0:ce:14:23:1e:cd:28:ee:d3:2f:1b: a3:21:13:67:1e:40:58:c9:f5:19:34:2f:a5:c9:82:bd:c2:f5: bd:4e:70:4a:67:88:25:47:19:a2:26:93:fe:17:fa:bf:28:a7: e2:53:71:1c:d9:b8:d3:5f:ac:08:2c:d5:49:68:90:06:4f:af: d0:6f:68:cb:2d:a0:9a:48:52:8e:d7:03:66:6e:4a:81:38:00: 15:f5:40:8a:38:33:a9:3a:07:00:08:11:98:4b:70:b8:90:26: 0b:11:fd:55:6e:7a:9f:0f:7c:a0:5a:3b:c2:99:b4:8c:41:36: 1e:31:e6:30:4d:37:79:f4:ee:6f:0b:63:e4:76:84:37:cc:0b: e7:78:67:f5:78:b1:fe:44:da:e7:ac:94:ec:b1:b8:01:84:8a: 50:db:3e:90:23:21:a3:19:4c:d7:8a:c6:f6:d8:4f:47:25:4d: 74:5d:3c:e8:e2:d1:cc:3f:6d:29:70:90:7a:8c:fc:59:9d:3b: cb:39:85:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM+MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY1RTgxMTAvBgNVBAUTKEJDRENFOEIwNkYwNTk2MjM0MDMwMEM5QzQ3NDdCNUEy NTFBMjE5QzQwHhcNMjQwNTE4MTUwMzMwWhcNMjQwNTI1MTUwMzMwWjAYMRYwFAYD VQQDEw02NjQ4YzM0Mi1kZjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6unbFN9LyKKJnWyFjWlm/8sxkgQ0QqStxDAfzXTQ5zz2T0dCB/ktIiwb6gxn KcXYZDGh6FV76vmzdm9LLcVYL/FuJplByJl6IisiN56mmuQA+EnJlqzeAfIQotVr 5IEenSI6YW9nV6LltXK1yXIAsZdtXvD3ne1MMfWzqq0+utxIGRRn8JCjL5eeCIby 5lq8pQ5iKO8agP+ChXWODbNL3dBTHnoTh1RGtDqNb/5ZlpKPy6g9w92UDEWssK5X X0Xjk6lXueLj1UX5xSnKIpn6PJ2S83fa9Dj/APy8VLvnYe3n5T8L3pjm+X8BnNic 1GEjiffTzv96VWL0Qof5Z/EMtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJKkJ9wV 2t2kZRoBxxphqY8z4sg8MB8GA1UdIwQYMBaAFLzc6LBvBZYjQDAMnEdHtaJRohnE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjVFOC9BMUYyM0E2NDFE OTkxMUUyOTVFQjUyODYwOEIwMkNEMi92Tnpvc0c4RmxpTkFNQXljUjBlMW9sR2lH Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZOem9zRzhGbGlOQU1BeWNSMGUxb2xHaUdjUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjVFOC9BMUYyM0E2NDFEOTkxMUUyOTVFQjUyODYwOEIwMkNEMi92Tnpvc0c4Rmxp TkFNQXljUjBlMW9sR2lHY1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQg01ZNIk7MTKCW5+pqC1DZelig3ukr8qJk3rSsyB1DBn+TvTJHR6a O0xRl4J9YwDeGe3YBty7z9INOIuAsM4UIx7NKO7TLxujIRNnHkBYyfUZNC+lyYK9 wvW9TnBKZ4glRxmiJpP+F/q/KKfiU3Ec2bjTX6wILNVJaJAGT6/Qb2jLLaCaSFKO 1wNmbkqBOAAV9UCKODOpOgcACBGYS3C4kCYLEf1VbnqfD3ygWjvCmbSMQTYeMeYw TTd59O5vC2PkdoQ3zAvneGf1eLH+RNrnrJTssbgBhIpQ2z6QIyGjGUzXisb22E9H JU10XTzo4tHMP20pcJB6jPxZnTvLOYVP -----END CERTIFICATE-----Generated at Sat May 18 16:20:16 2024 by rpki-client on console-fra.rpki-client.org