$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft File: akXWGoN3DJDQWMdBUx2NnGtnk1o.mft (raw, json) Hash identifier: 1TajAoXTbwGT5bjRk5riwqaRU2Jdmd22xBtjzA3gQ3Q= Subject key identifier: 7B:8F:14:3F:B3:08:22:E5:28:B8:DD:8B:84:D7:3F:43:BD:05:83:E1 Authority key identifier: 6A:45:D6:1A:83:77:0C:90:D0:58:C7:41:53:1D:8D:9C:6B:67:93:5A Certificate issuer: /CN=A91D1AC7/serialNumber=6A45D61A83770C90D058C741531D8D9C6B67935A Certificate serial: 097F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft Manifest number: 096B Signing time: Sat 18 May 2024 21:01:21 +0000 Manifest this update: Sat 18 May 2024 21:01:20 +0000 Manifest next update: Sat 25 May 2024 21:01:20 +0000 Files and hashes: 1: akXWGoN3DJDQWMdBUx2NnGtnk1o.crl (hash: dYvxtjY0/sbswsdePHHTMwTtxDAFUdP/DOjbniPloVQ=) 2: 57C25DB2E42811EA881AB667C4F9AE02.roa (hash: ciI39fi2c3oXroOIDaWusfSq44fRwlz++9AgtGTTQ/A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.crl rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2431 (0x97f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1AC7/serialNumber=6A45D61A83770C90D058C741531D8D9C6B67935A Validity Not Before: May 18 21:01:20 2024 GMT Not After : May 25 21:01:20 2024 GMT Subject: CN=66491720-a127 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:d7:82:b0:e5:ec:4a:27:63:bf:10:8b:5d:ae: d3:5e:89:f7:8d:aa:87:7f:7b:9a:01:b0:13:02:c0: 7e:4d:b7:a0:31:f1:7c:27:e1:e4:1b:b8:d4:87:f4: 8c:39:cf:86:c5:5e:54:9e:d6:90:48:88:8a:1b:6c: 0b:c4:9e:f6:21:09:27:31:8a:d0:16:03:43:7d:e9: 9f:82:1c:18:96:0b:36:25:96:4c:2b:b8:25:bd:32: 1f:a3:f0:0c:9a:4f:75:aa:56:a7:f7:86:39:ee:29: 70:a0:93:e2:65:06:b2:81:bd:a6:0f:23:c7:6b:33: 72:16:af:17:26:12:e1:ed:df:f9:e6:80:bb:e2:06: 7c:7e:a7:c5:b6:c5:5b:30:60:2d:26:f2:a8:a3:60: ce:44:93:99:5a:f2:2c:f5:75:b2:f0:86:c0:da:d3: 2d:d1:07:90:36:00:3e:44:b3:ac:53:17:f4:5b:ba: fb:0f:e3:80:0d:5a:bb:b5:1f:c1:42:88:d8:7d:8a: 7e:fc:3e:42:9d:8e:ed:4f:28:e7:a9:cb:5f:0e:4c: a4:e4:e9:3f:77:55:40:cf:02:da:56:2f:cf:50:a9: ff:77:7c:f8:e1:39:d5:5a:02:1e:fb:ab:5b:a5:e2: 6d:5f:a4:ee:fe:97:b7:e8:ce:12:71:55:97:bb:8a: 45:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:8F:14:3F:B3:08:22:E5:28:B8:DD:8B:84:D7:3F:43:BD:05:83:E1 X509v3 Authority Key Identifier: keyid:6A:45:D6:1A:83:77:0C:90:D0:58:C7:41:53:1D:8D:9C:6B:67:93:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:d7:28:29:b7:08:0b:8f:4a:e7:9a:05:e0:44:a4:82:2e:6c: b6:83:38:f6:28:40:a5:e0:4a:c5:6a:d2:64:41:ab:61:f8:76: b8:c0:e2:8d:41:e7:9a:b6:2b:25:59:e9:c9:8d:c7:51:6e:45: 84:36:d6:94:8f:7f:2e:3c:ff:87:e0:d8:3b:b1:27:41:fc:7b: 7a:de:42:d6:85:fd:6a:21:4a:10:9e:c8:f7:34:30:46:17:f4: 16:01:99:02:ce:04:75:08:05:c4:45:2e:de:c1:e4:5f:ca:3d: 86:67:41:9c:eb:ab:93:53:e7:e4:1d:2e:49:a0:a7:36:b3:6b: ba:73:64:37:38:65:31:0a:4f:96:e6:b3:c8:06:e3:17:04:b8: 28:b4:4b:58:54:5c:1b:07:3a:08:77:57:96:35:c0:d5:b0:ce: e3:d0:49:f6:34:db:2c:5e:4a:15:d8:e6:18:c5:07:7f:1d:67: 3b:47:aa:90:0c:7c:6b:e9:54:d1:d1:c3:9e:9e:11:1c:44:84: 93:1e:dd:0f:d0:e8:e4:d1:4c:9a:b5:8a:a1:ab:69:8b:f2:9e: 33:27:b6:c7:3b:c7:9c:53:1c:d3:c8:ff:c9:28:b7:7c:75:f9: 7d:fe:bb:17:48:4d:4d:f5:69:07:49:b7:69:6b:b2:1e:50:f9: cc:c4:a3:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFBQzcxMTAvBgNVBAUTKDZBNDVENjFBODM3NzBDOTBEMDU4Qzc0MTUzMUQ4RDlD NkI2NzkzNUEwHhcNMjQwNTE4MjEwMTIwWhcNMjQwNTI1MjEwMTIwWjAYMRYwFAYD VQQDEw02NjQ5MTcyMC1hMTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA09eCsOXsSidjvxCLXa7TXon3jaqHf3uaAbATAsB+TbegMfF8J+HkG7jUh/SM Oc+GxV5UntaQSIiKG2wLxJ72IQknMYrQFgNDfemfghwYlgs2JZZMK7glvTIfo/AM mk91qlan94Y57ilwoJPiZQaygb2mDyPHazNyFq8XJhLh7d/55oC74gZ8fqfFtsVb MGAtJvKoo2DORJOZWvIs9XWy8IbA2tMt0QeQNgA+RLOsUxf0W7r7D+OADVq7tR/B QojYfYp+/D5CnY7tTyjnqctfDkyk5Ok/d1VAzwLaVi/PUKn/d3z44TnVWgIe+6tb peJtX6Tu/pe36M4ScVWXu4pFjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHuPFD+z CCLlKLjdi4TXP0O9BYPhMB8GA1UdIwQYMBaAFGpF1hqDdwyQ0FjHQVMdjZxrZ5Na MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUFDNy84MUE0QzRENjZF NDMxMUVBOTQ5RDk5MjJDNEY5QUUwMi9ha1hXR29OM0RKRFFXTWRCVXgyTm5HdG5r MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FrWFdHb04zREpEUVdNZEJVeDJObkd0bmsxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUFDNy84MUE0QzRENjZFNDMxMUVBOTQ5RDk5MjJDNEY5QUUwMi9ha1hXR29OM0RK RFFXTWRCVXgyTm5HdG5rMW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCC1ygptwgLj0rnmgXgRKSCLmy2gzj2KECl4ErFatJkQath+Ha4wOKN QeeatislWenJjcdRbkWENtaUj38uPP+H4Ng7sSdB/Ht63kLWhf1qIUoQnsj3NDBG F/QWAZkCzgR1CAXERS7eweRfyj2GZ0Gc66uTU+fkHS5JoKc2s2u6c2Q3OGUxCk+W 5rPIBuMXBLgotEtYVFwbBzoId1eWNcDVsM7j0En2NNssXkoV2OYYxQd/HWc7R6qQ DHxr6VTR0cOenhEcRISTHt0P0Ojk0UyatYqhq2mL8p4zJ7bHO8ecUxzTyP/JKLd8 dfl9/rsXSE1N9WkHSbdpa7IeUPnMxKM2 -----END CERTIFICATE-----Generated at Sat May 18 21:24:23 2024 by rpki-client on console-fra.rpki-client.org