$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/w-IA1ABdmiPkv66uDtty6kPx0JY.mft File: w-IA1ABdmiPkv66uDtty6kPx0JY.mft (raw, json) Hash identifier: YzX7sTH+NHoG+CQ9VtWiNBaw+oP9FDEKgIGxL2b0Ewk= Subject key identifier: B8:EA:38:E0:56:8E:A6:91:1F:DB:43:5E:0E:A1:8E:44:17:1D:BA:64 Authority key identifier: C3:E2:00:D4:00:5D:9A:23:E4:BF:AE:AE:0E:DB:72:EA:43:F1:D0:96 Certificate issuer: /CN=A91CD1A2/serialNumber=C3E200D4005D9A23E4BFAEAE0EDB72EA43F1D096 Certificate serial: 34 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w-IA1ABdmiPkv66uDtty6kPx0JY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/w-IA1ABdmiPkv66uDtty6kPx0JY.mft Manifest number: 33 Signing time: Sun 19 May 2024 07:56:19 +0000 Manifest this update: Sun 19 May 2024 07:56:19 +0000 Manifest next update: Sun 26 May 2024 07:56:19 +0000 Files and hashes: 1: w-IA1ABdmiPkv66uDtty6kPx0JY.crl (hash: xVZSXcN2xLCk4RzoFEXFUJstCpZLY31SDThgZixsRag=) 2: C19C2720CA2711EE82C12B0CC4F9AE02.roa (hash: zjsazWNafZr4Urf7JOyGpbhKqI60wPZIbo5OkTF5OsI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/w-IA1ABdmiPkv66uDtty6kPx0JY.crl rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/w-IA1ABdmiPkv66uDtty6kPx0JY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w-IA1ABdmiPkv66uDtty6kPx0JY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD1A2/serialNumber=C3E200D4005D9A23E4BFAEAE0EDB72EA43F1D096 Validity Not Before: May 19 07:56:19 2024 GMT Not After : May 26 07:56:19 2024 GMT Subject: CN=6649b0a3-d6b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b6:30:cf:40:93:92:7a:db:3d:45:73:ee:5e: b0:b7:a0:cd:4c:31:7a:ca:91:f6:31:05:b3:fc:23: dd:3c:73:4f:42:70:56:95:5b:35:90:0c:d6:d7:f2: e3:c3:61:be:4b:e4:16:92:12:56:48:9f:17:81:60: 60:25:52:5b:59:6e:ad:6b:95:b4:e8:ae:43:0a:6f: a1:25:96:1f:6e:38:ff:88:9d:d7:30:dc:3e:7d:62: ab:99:da:6b:8c:c5:14:f9:b7:ef:b3:74:5a:c7:34: 88:20:24:0a:49:59:16:a8:73:d8:03:c1:d5:30:87: dc:90:c1:7f:a2:17:69:be:8f:85:af:30:40:46:fc: e4:a3:d2:fd:a8:98:7f:39:5a:60:96:a9:ca:ee:d3: 1f:31:45:93:72:20:4f:8f:91:d5:6f:b4:02:5e:37: 22:37:24:5b:e5:a2:2f:6e:d0:b2:e1:ad:2d:34:cb: 9a:29:75:43:05:5d:ae:1a:82:cd:ac:e4:96:9f:a6: 27:6c:2b:30:e4:eb:48:43:ae:25:b5:b5:1f:34:14: f0:d6:06:47:02:3f:8c:a1:2b:01:9e:97:f4:29:a6: 06:28:ae:74:f3:d9:1f:71:be:d5:e9:09:97:b5:39: e0:ff:11:9c:9f:f0:2e:dc:99:05:9f:03:20:99:c0: 80:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:EA:38:E0:56:8E:A6:91:1F:DB:43:5E:0E:A1:8E:44:17:1D:BA:64 X509v3 Authority Key Identifier: keyid:C3:E2:00:D4:00:5D:9A:23:E4:BF:AE:AE:0E:DB:72:EA:43:F1:D0:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/w-IA1ABdmiPkv66uDtty6kPx0JY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w-IA1ABdmiPkv66uDtty6kPx0JY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/w-IA1ABdmiPkv66uDtty6kPx0JY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:ca:95:bc:24:b0:16:4a:95:7f:dd:b5:b6:4c:08:3f:a1:48: d1:42:80:ec:a1:bb:07:19:61:09:8e:89:fa:91:13:a6:77:30: 2c:2b:ad:38:b7:76:88:bd:60:58:02:71:b2:d3:5e:01:86:17: d9:94:44:12:fb:54:e8:16:59:6c:20:f2:49:65:24:52:e3:2a: 97:b1:13:12:68:9d:e2:ae:66:8c:72:36:3b:d2:85:34:2e:20: 27:f9:c2:70:11:f7:27:64:b6:68:7a:22:ab:23:30:62:bf:72: 5f:bf:2e:04:61:01:fc:66:e2:07:e3:0d:2c:c7:88:48:77:d0: a7:8c:20:3c:e9:cd:6f:23:7c:d9:59:0c:8e:bb:0b:8d:17:bb: c7:9c:07:ab:02:14:50:0f:e2:f6:df:3d:73:11:37:4f:ac:2f: fc:e2:7d:1e:4c:30:46:80:c8:3d:38:40:12:50:b8:6b:e9:3c: ba:5c:b2:65:82:1e:75:6a:93:ea:1e:6f:ab:19:ef:a3:4b:ff: 4c:6e:1c:7c:28:00:e8:8b:56:c3:b2:f7:8d:a9:96:01:53:f8: 53:87:c8:38:5a:87:48:a1:70:ce:9e:f8:a9:74:65:eb:9c:c0: 8a:2b:c4:b6:dd:12:71:34:9c:94:5e:96:bc:fe:26:84:b9:e4: f2:de:ea:f7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RDFBMjExMC8GA1UEBRMoQzNFMjAwRDQwMDVEOUEyM0U0QkZBRUFFMEVEQjcyRUE0 M0YxRDA5NjAeFw0yNDA1MTkwNzU2MTlaFw0yNDA1MjYwNzU2MTlaMBgxFjAUBgNV BAMTDTY2NDliMGEzLWQ2YjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBtjDPQJOSets9RXPuXrC3oM1MMXrKkfYxBbP8I908c09CcFaVWzWQDNbX8uPD Yb5L5BaSElZInxeBYGAlUltZbq1rlbTorkMKb6Ellh9uOP+Indcw3D59YquZ2muM xRT5t++zdFrHNIggJApJWRaoc9gDwdUwh9yQwX+iF2m+j4WvMEBG/OSj0v2omH85 WmCWqcru0x8xRZNyIE+PkdVvtAJeNyI3JFvloi9u0LLhrS00y5opdUMFXa4ags2s 5JafpidsKzDk60hDriW1tR80FPDWBkcCP4yhKwGel/QppgYornTz2R9xvtXpCZe1 OeD/EZyf8C7cmQWfAyCZwIBRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUuOo44FaO ppEf20NeDqGORBcdumQwHwYDVR0jBBgwFoAUw+IA1ABdmiPkv66uDtty6kPx0JYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNEMUEyLzFBMUUzREU0QzlG QTExRUU4M0Y1QjAyOUM0RjlBRTAyL3ctSUExQUJkbWlQa3Y2NnVEdHR5NmtQeDBK WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdy1JQTFBQmRtaVBrdjY2dUR0dHk2a1B4MEpZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNE MUEyLzFBMUUzREU0QzlGQTExRUU4M0Y1QjAyOUM0RjlBRTAyL3ctSUExQUJkbWlQ a3Y2NnVEdHR5NmtQeDBKWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEfKlbwksBZKlX/dtbZMCD+hSNFCgOyhuwcZYQmOifqRE6Z3MCwrrTi3 doi9YFgCcbLTXgGGF9mURBL7VOgWWWwg8kllJFLjKpexExJoneKuZoxyNjvShTQu ICf5wnAR9ydktmh6IqsjMGK/cl+/LgRhAfxm4gfjDSzHiEh30KeMIDzpzW8jfNlZ DI67C40Xu8ecB6sCFFAP4vbfPXMRN0+sL/zifR5MMEaAyD04QBJQuGvpPLpcsmWC HnVqk+oeb6sZ76NL/0xuHHwoAOiLVsOy942plgFT+FOHyDhah0ihcM6e+Kl0Zeuc wIorxLbdEnE0nJRelrz+JoS55PLe6vc= -----END CERTIFICATE-----Generated at Sun May 19 08:26:44 2024 by rpki-client on console-fra.rpki-client.org