$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft File: tLEObLONU2XQVOjb6Q808sOIsQw.mft (raw, json) Hash identifier: PTjjCqNaazNJyM5LvcbDBN3oBVzsTHc0tptChL9486M= Subject key identifier: DE:51:E8:3A:9C:8E:D7:98:24:26:B7:7E:2C:E0:8E:86:5C:23:FB:F5 Authority key identifier: B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C Certificate issuer: /CN=A91CE3A3/serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Certificate serial: 0BBB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft Manifest number: 0BA0 Signing time: Sat 18 May 2024 19:22:11 +0000 Manifest this update: Sat 18 May 2024 19:22:11 +0000 Manifest next update: Sat 25 May 2024 19:22:11 +0000 Files and hashes: 1: tLEObLONU2XQVOjb6Q808sOIsQw.crl (hash: /iRM9h8WrrZWyp12dkVNl0MX5gk8tMnlYl9Fi6RwVDM=) 2: 30256B5CF7B911EEAB0C6C36C4F9AE02.roa (hash: qy9NNwAedenzkudqT2ZIz6zLSNmdTgzsSWzNkSNvY6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3003 (0xbbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3A3/serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Validity Not Before: May 18 19:22:11 2024 GMT Not After : May 25 19:22:11 2024 GMT Subject: CN=6648ffe3-72dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:dd:3f:80:7d:fc:a7:16:9a:56:ac:6c:9b:76: 74:93:81:6e:70:cf:9f:24:32:18:5e:43:14:6c:41: 63:82:0a:69:c0:9f:ab:fe:ce:cf:15:87:c5:f7:1a: cd:c4:25:ce:f4:72:67:0c:b5:fb:0b:6a:a7:d7:2d: 36:4e:dd:79:73:0b:1d:8d:56:88:1e:ca:3a:7e:af: c6:18:70:96:24:30:8c:0f:00:9a:70:b3:80:34:c8: d0:1f:3c:4f:67:28:43:6d:22:4d:a0:0e:e1:6c:0a: 22:55:93:19:ef:6e:6e:3d:4e:3a:3b:5c:4d:6f:7f: 0b:15:7f:32:ca:de:5a:b0:1c:c8:cf:19:4a:ee:36: 25:05:83:22:9b:c6:ee:48:79:49:fe:40:9b:33:20: d6:17:96:3e:bf:85:51:77:e0:d2:65:ab:95:04:5f: 3f:9f:aa:2a:ef:d8:8c:3e:db:fd:cc:e3:9a:12:03: cc:06:43:62:9d:b3:c6:36:29:be:69:c0:2d:dd:ac: db:a2:ec:a2:3b:2e:84:0a:03:41:5e:73:2e:95:50: 84:30:0d:3f:ce:e1:74:c0:b4:bb:02:cf:41:56:e6: 40:0a:79:89:2f:b5:4d:e8:b2:75:5b:2c:93:77:0d: 91:2e:59:d1:08:a0:60:f4:b3:6f:57:a3:26:19:28: 0d:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:51:E8:3A:9C:8E:D7:98:24:26:B7:7E:2C:E0:8E:86:5C:23:FB:F5 X509v3 Authority Key Identifier: keyid:B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:c8:25:fb:3b:4b:12:23:ab:cb:52:25:f4:be:6c:c5:29:4e: e3:48:35:32:68:6e:17:12:f8:2d:10:17:f7:0f:64:d7:fe:40: 75:d0:b9:55:c0:00:bb:af:c5:7b:46:39:b8:06:6f:f3:76:35: 5d:ac:a6:b7:a6:8d:cc:6c:9a:2e:05:33:b4:f8:11:56:6f:82: cb:20:1d:5d:7e:9d:3f:0a:93:21:6f:ae:f1:3c:2b:46:e6:df: 23:2d:6a:b7:51:b7:4a:22:91:3b:76:c7:45:b0:95:e0:7e:4d: 50:c5:37:d3:97:4a:a2:85:8c:21:41:1d:09:09:69:95:82:3f: 87:bf:10:dc:5a:94:2e:6f:47:2f:f5:c3:ef:3f:ed:0f:42:c1: bf:53:2a:2e:98:5f:51:d9:0c:c8:5a:a5:ca:bc:ab:3a:e8:c5: b7:84:12:4f:7c:85:bd:d5:43:a7:05:c3:59:b0:2f:70:8f:ce: 6b:76:d9:e3:a6:80:e7:8e:b5:2b:c9:01:aa:9f:fb:a1:68:6a: cd:fc:e1:0a:ba:2f:91:31:e2:41:01:74:e3:b6:84:c2:20:1f: 97:88:b4:38:07:7d:f5:1b:ca:d6:1c:67:51:0e:0d:a2:4a:89: 5f:f5:5e:75:6a:99:9b:f2:63:69:ab:84:94:10:d3:6b:4b:8b: 73:05:a7:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQTMxMTAvBgNVBAUTKEI0QjEwRTZDQjM4RDUzNjVEMDU0RThEQkU5MEYzNEYy QzM4OEIxMEMwHhcNMjQwNTE4MTkyMjExWhcNMjQwNTI1MTkyMjExWjAYMRYwFAYD VQQDEw02NjQ4ZmZlMy03MmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAot0/gH38pxaaVqxsm3Z0k4FucM+fJDIYXkMUbEFjggppwJ+r/s7PFYfF9xrN xCXO9HJnDLX7C2qn1y02Tt15cwsdjVaIHso6fq/GGHCWJDCMDwCacLOANMjQHzxP ZyhDbSJNoA7hbAoiVZMZ725uPU46O1xNb38LFX8yyt5asBzIzxlK7jYlBYMim8bu SHlJ/kCbMyDWF5Y+v4VRd+DSZauVBF8/n6oq79iMPtv9zOOaEgPMBkNinbPGNim+ acAt3azbouyiOy6ECgNBXnMulVCEMA0/zuF0wLS7As9BVuZACnmJL7VN6LJ1WyyT dw2RLlnRCKBg9LNvV6MmGSgNOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN5R6Dqc jteYJCa3fizgjoZcI/v1MB8GA1UdIwQYMBaAFLSxDmyzjVNl0FTo2+kPNPLDiLEM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNBMy8yMDkxREM4RTA1 MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi90TEVPYkxPTlUyWFFWT2piNlE4MDhzT0lz UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMRU9iTE9OVTJYUVZPamI2UTgwOHNPSXNRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTNBMy8yMDkxREM4RTA1MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi90TEVPYkxPTlUy WFFWT2piNlE4MDhzT0lzUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfyCX7O0sSI6vLUiX0vmzFKU7jSDUyaG4XEvgtEBf3D2TX/kB10LlV wAC7r8V7Rjm4Bm/zdjVdrKa3po3MbJouBTO0+BFWb4LLIB1dfp0/CpMhb67xPCtG 5t8jLWq3UbdKIpE7dsdFsJXgfk1QxTfTl0qihYwhQR0JCWmVgj+HvxDcWpQub0cv 9cPvP+0PQsG/UyoumF9R2QzIWqXKvKs66MW3hBJPfIW91UOnBcNZsC9wj85rdtnj poDnjrUryQGqn/uhaGrN/OEKui+RMeJBAXTjtoTCIB+XiLQ4B331G8rWHGdRDg2i Solf9V51apmb8mNpq4SUENNrS4tzBadL -----END CERTIFICATE-----Generated at Sat May 18 19:56:07 2024 by rpki-client on console-fra.rpki-client.org