$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft File: phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft (raw, json) Hash identifier: pKNIyMc6kWxM3zqWHeY2Y4R8dqJ2VpWQoF5zVjta6ow= Subject key identifier: 50:58:0A:C8:58:7B:95:C0:A1:9A:94:D3:81:DF:D1:9D:05:6E:1B:43 Authority key identifier: A6:15:07:80:E0:BA:11:EA:0A:DC:43:4A:ED:38:3C:8B:82:A8:96:1D Certificate issuer: /CN=A91D1623/serialNumber=A6150780E0BA11EA0ADC434AED383C8B82A8961D Certificate serial: AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft Manifest number: AC Signing time: Sun 19 May 2024 06:39:25 +0000 Manifest this update: Sun 19 May 2024 06:39:24 +0000 Manifest next update: Sun 26 May 2024 06:39:24 +0000 Files and hashes: 1: phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl (hash: k8251dJV/FYNJ6Vy69foaNaC/bOU52kFRhvywxJ7YGg=) 2: 7C9E449814B311EEB9CD302AC4F9AE02.roa (hash: rBY3R/UnH6DV5KIvAk4nsAXD/4omLd0+tPwk5aX7Vf8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 175 (0xaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1623/serialNumber=A6150780E0BA11EA0ADC434AED383C8B82A8961D Validity Not Before: May 19 06:39:24 2024 GMT Not After : May 26 06:39:24 2024 GMT Subject: CN=66499e9c-6680 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:55:f7:d9:16:a9:3b:7b:d8:1d:80:ec:7b:a7: 1d:41:7f:ea:55:2e:6d:dc:2a:cf:08:21:73:6b:f7: 9c:2d:26:2c:f3:b7:6f:af:de:12:55:b8:bc:ee:92: c7:1b:aa:40:67:c2:b7:04:9e:42:89:38:0d:ea:92: 7f:67:e9:df:60:a8:94:62:1c:4a:20:86:ed:5d:3a: 29:35:59:b1:fd:91:32:b4:81:2e:cd:5f:8a:33:9d: ac:a6:26:35:2d:8a:12:7a:2d:cb:8b:17:f4:96:5d: 4d:d4:87:b1:5c:c6:e7:d9:45:c5:94:ab:37:8f:55: 45:21:47:b3:9c:e3:53:b3:ac:7d:c7:3e:ee:c6:16: e3:11:f9:d3:1d:7d:de:10:ba:e3:da:20:40:e5:e9: 41:72:b1:7c:50:7a:e8:7f:df:0e:68:ea:2f:4e:50: 2e:10:5b:cf:e6:8f:0f:d0:33:70:7f:14:02:d7:ad: 4b:83:7a:82:e8:b1:e2:28:a1:14:da:00:d8:52:72: 41:16:eb:d7:61:c4:51:e3:c7:e4:fd:2b:1b:9a:19: 43:1e:61:76:1b:1d:bc:26:59:05:07:41:83:39:7f: 64:48:f1:85:a7:5f:1a:12:14:1c:ac:eb:87:1f:fb: a8:73:ad:e1:9e:7d:77:dd:78:7f:18:22:73:98:f3: 4a:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:58:0A:C8:58:7B:95:C0:A1:9A:94:D3:81:DF:D1:9D:05:6E:1B:43 X509v3 Authority Key Identifier: keyid:A6:15:07:80:E0:BA:11:EA:0A:DC:43:4A:ED:38:3C:8B:82:A8:96:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:b5:99:81:54:9e:87:2b:dc:2a:58:7f:55:cb:53:dc:92:25: 84:c4:44:c1:0f:72:24:6c:ef:70:59:05:43:16:15:e9:20:83: 90:45:bf:a4:6a:44:ac:70:f3:35:7c:09:a4:2a:87:2e:57:82: 4b:20:6a:08:39:35:9d:9b:b0:20:ec:1b:ad:04:3e:98:cc:05: fa:57:e5:a8:e0:59:2f:cc:7c:a1:64:04:7b:d8:2b:48:88:1a: 06:f7:23:05:cf:5f:15:d6:7c:84:e1:7c:50:5d:2a:b9:da:0b: 2f:2b:72:b2:4d:3d:7f:68:0b:45:39:6b:08:46:29:fc:41:ba: 63:ec:2c:d6:08:96:10:23:5e:7d:ec:e8:5c:f5:a8:f5:dc:11: ca:13:d9:88:84:14:2a:30:db:28:4d:17:1e:72:2c:39:50:1b: a1:dd:96:ff:9c:73:62:e1:db:e8:84:9e:6d:61:56:6f:75:2c: b3:45:64:40:c8:d2:9d:fd:ea:90:72:02:db:c9:f4:28:59:91: 9e:7d:9f:21:09:8e:fd:08:94:a2:79:74:9d:22:3f:e6:b0:ff: b5:70:86:a7:49:90:de:dc:97:2b:2f:f1:85:02:2e:cf:e3:d8: 35:fd:4b:c7:af:eb:1a:6e:dc:b3:80:c5:2a:95:2f:94:89:68: fc:c0:4f:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2MjMxMTAvBgNVBAUTKEE2MTUwNzgwRTBCQTExRUEwQURDNDM0QUVEMzgzQzhC ODJBODk2MUQwHhcNMjQwNTE5MDYzOTI0WhcNMjQwNTI2MDYzOTI0WjAYMRYwFAYD VQQDEw02NjQ5OWU5Yy02NjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA01X32RapO3vYHYDse6cdQX/qVS5t3CrPCCFza/ecLSYs87dvr94SVbi87pLH G6pAZ8K3BJ5CiTgN6pJ/Z+nfYKiUYhxKIIbtXTopNVmx/ZEytIEuzV+KM52spiY1 LYoSei3Lixf0ll1N1IexXMbn2UXFlKs3j1VFIUeznONTs6x9xz7uxhbjEfnTHX3e ELrj2iBA5elBcrF8UHrof98OaOovTlAuEFvP5o8P0DNwfxQC161Lg3qC6LHiKKEU 2gDYUnJBFuvXYcRR48fk/SsbmhlDHmF2Gx28JlkFB0GDOX9kSPGFp18aEhQcrOuH H/uoc63hnn133Xh/GCJzmPNKVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFBYCshY e5XAoZqU04Hf0Z0FbhtDMB8GA1UdIwQYMBaAFKYVB4DguhHqCtxDSu04PIuCqJYd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTYyMy80MTA3MzVDQTE0 OUExMUVFQURGMUM2MTBDNEY5QUUwMi9waFVIZ09DNkVlb0szRU5LN1RnOGk0S29s aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BoVUhnT0M2RWVvSzNFTks3VGc4aTRLb2xoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTYyMy80MTA3MzVDQTE0OUExMUVFQURGMUM2MTBDNEY5QUUwMi9waFVIZ09DNkVl b0szRU5LN1RnOGk0S29saDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEtZmBVJ6HK9wqWH9Vy1PckiWExETBD3IkbO9wWQVDFhXpIIOQRb+k akSscPM1fAmkKocuV4JLIGoIOTWdm7Ag7ButBD6YzAX6V+Wo4FkvzHyhZAR72CtI iBoG9yMFz18V1nyE4XxQXSq52gsvK3KyTT1/aAtFOWsIRin8Qbpj7CzWCJYQI159 7Ohc9aj13BHKE9mIhBQqMNsoTRceciw5UBuh3Zb/nHNi4dvohJ5tYVZvdSyzRWRA yNKd/eqQcgLbyfQoWZGefZ8hCY79CJSieXSdIj/msP+1cIanSZDe3JcrL/GFAi7P 49g1/UvHr+sabtyzgMUqlS+UiWj8wE9K -----END CERTIFICATE-----Generated at Sun May 19 07:40:45 2024 by rpki-client on console-fra.rpki-client.org