$ rpki-client -vvf rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/5NzsWVobtnOJciNlasY5uVNS3XM.mft File: 5NzsWVobtnOJciNlasY5uVNS3XM.mft (raw, json) Hash identifier: HOzbQwAIuHYyE8yZen9bXvguOq6/Dj63HUMvPPsBEv8= Subject key identifier: EB:E3:E0:2F:94:80:93:76:AA:36:B5:0A:63:71:6D:2E:55:5C:FE:28 Authority key identifier: E4:DC:EC:59:5A:1B:B6:73:89:72:23:65:6A:C6:39:B9:53:52:DD:73 Certificate issuer: /CN=A91D604E/serialNumber=E4DCEC595A1BB673897223656AC639B95352DD73 Certificate serial: 0BE8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NzsWVobtnOJciNlasY5uVNS3XM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/5NzsWVobtnOJciNlasY5uVNS3XM.mft Manifest number: 0BDD Signing time: Sat 18 May 2024 19:06:08 +0000 Manifest this update: Sat 18 May 2024 19:06:08 +0000 Manifest next update: Sat 25 May 2024 19:06:08 +0000 Files and hashes: 1: 5NzsWVobtnOJciNlasY5uVNS3XM.crl (hash: GbVfQ4uRwowSaW23ZkwQgbmN7q169vIW3EquKZ0DVEg=) 2: 6D038264CA7111EDB1BB3134C4F9AE02.roa (hash: 2E8/AWLpy77125ZL0KO5JRYgnp8VfhvABCC3aZVqCdM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/5NzsWVobtnOJciNlasY5uVNS3XM.crl rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/5NzsWVobtnOJciNlasY5uVNS3XM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NzsWVobtnOJciNlasY5uVNS3XM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3048 (0xbe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D604E/serialNumber=E4DCEC595A1BB673897223656AC639B95352DD73 Validity Not Before: May 18 19:06:08 2024 GMT Not After : May 25 19:06:08 2024 GMT Subject: CN=6648fc20-3397 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ce:40:34:83:a4:25:ff:05:95:e1:aa:fe:8c: a0:70:b5:8c:60:58:09:27:8e:5c:82:dd:9e:f5:31: 8c:d9:52:b2:80:f5:0e:26:d7:f6:24:da:cf:0b:03: c2:f2:19:75:87:68:f3:13:c6:e2:1b:af:3e:26:61: de:82:10:37:e8:ff:3a:b5:df:7c:76:02:3f:cd:cf: 18:4a:bf:32:a0:58:95:39:f3:33:97:32:16:2f:0e: 94:0c:ba:cb:f4:6b:64:c3:d6:e2:bd:80:0c:a1:3c: b9:80:7b:af:9d:21:5d:42:76:39:10:cb:29:53:1e: a2:c8:3c:6c:83:25:ec:8c:7a:48:fe:ac:a6:a7:2f: 0e:6a:52:93:7e:34:55:9f:ca:1b:19:32:9d:58:0b: 7c:03:83:c8:15:d2:37:99:b8:e2:e9:fd:e1:19:cc: a2:d3:d3:fd:5a:0f:de:76:bf:53:76:ba:d6:ee:21: 0e:9f:c3:99:dc:22:d7:62:00:b4:37:ee:5e:c0:73: 1d:0a:e5:c7:bb:19:42:78:96:3e:82:01:1e:80:c9: 93:6c:6d:28:9f:3c:18:0f:e2:f3:01:df:36:43:bc: 43:b0:1e:20:fd:5e:bc:77:c4:5a:f4:b7:8e:43:fe: 7d:c0:c5:b8:bc:86:52:63:a3:5a:06:27:01:43:c6: fc:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:E3:E0:2F:94:80:93:76:AA:36:B5:0A:63:71:6D:2E:55:5C:FE:28 X509v3 Authority Key Identifier: keyid:E4:DC:EC:59:5A:1B:B6:73:89:72:23:65:6A:C6:39:B9:53:52:DD:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/5NzsWVobtnOJciNlasY5uVNS3XM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NzsWVobtnOJciNlasY5uVNS3XM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/5NzsWVobtnOJciNlasY5uVNS3XM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:41:dc:41:fa:8d:1f:67:73:41:71:76:a8:6f:23:6d:72:17: 6a:0e:2d:1b:fb:c7:d9:19:54:7c:e2:fd:3a:bb:54:46:78:8a: 3c:22:4a:5c:10:d8:96:5c:81:78:ae:b5:ae:ac:8d:32:0f:03: 03:39:a1:1f:fc:73:ea:d2:52:19:15:cf:54:c8:18:1c:e3:5e: 45:bf:3e:a2:ad:f9:b8:90:18:e6:cb:0e:cb:63:f1:de:ab:fa: 44:bf:2f:c5:ea:a2:d3:85:32:5a:fa:57:ca:ca:19:c0:39:bd: 37:a8:1a:30:93:c2:15:01:6c:dd:cc:cc:af:a0:e0:40:88:5e: ac:20:3f:fd:b6:89:b2:58:9a:b6:d9:ef:84:d9:67:34:a5:d8: c7:4d:df:df:93:29:44:1e:5c:70:4d:5f:3f:43:fc:7f:6e:6c: 0e:4d:3a:40:7d:3a:da:d3:b3:f6:0b:50:40:1f:b2:11:3c:49: 7c:12:48:67:1f:80:ac:68:7c:1f:af:11:26:d2:5b:ec:d8:9a: ab:21:e2:ed:0c:f2:5a:7e:42:bc:78:59:b1:68:ab:b1:41:bb: 52:11:c2:0e:7b:1e:60:1c:7b:fc:14:55:d6:f7:34:02:03:f5: e1:1d:05:62:e7:c7:db:dc:41:e1:9a:ae:ad:c1:f5:b6:75:21: 4e:6c:33:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYwNEUxMTAvBgNVBAUTKEU0RENFQzU5NUExQkI2NzM4OTcyMjM2NTZBQzYzOUI5 NTM1MkRENzMwHhcNMjQwNTE4MTkwNjA4WhcNMjQwNTI1MTkwNjA4WjAYMRYwFAYD VQQDEw02NjQ4ZmMyMC0zMzk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs85ANIOkJf8FleGq/oygcLWMYFgJJ45cgt2e9TGM2VKygPUOJtf2JNrPCwPC 8hl1h2jzE8biG68+JmHeghA36P86td98dgI/zc8YSr8yoFiVOfMzlzIWLw6UDLrL 9Gtkw9bivYAMoTy5gHuvnSFdQnY5EMspUx6iyDxsgyXsjHpI/qympy8OalKTfjRV n8obGTKdWAt8A4PIFdI3mbji6f3hGcyi09P9Wg/edr9TdrrW7iEOn8OZ3CLXYgC0 N+5ewHMdCuXHuxlCeJY+ggEegMmTbG0onzwYD+LzAd82Q7xDsB4g/V68d8Ra9LeO Q/59wMW4vIZSY6NaBicBQ8b84wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOvj4C+U gJN2qja1CmNxbS5VXP4oMB8GA1UdIwQYMBaAFOTc7FlaG7ZziXIjZWrGOblTUt1z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjA0RS85MUI1QzBDMEY0 RUQxMUU5OENCRkEwMTNDNEY5QUUwMi81TnpzV1ZvYnRuT0pjaU5sYXNZNXVWTlMz WE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVOenNXVm9idG5PSmNpTmxhc1k1dVZOUzNYTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjA0RS85MUI1QzBDMEY0RUQxMUU5OENCRkEwMTNDNEY5QUUwMi81TnpzV1ZvYnRu T0pjaU5sYXNZNXVWTlMzWE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcQdxB+o0fZ3NBcXaobyNtchdqDi0b+8fZGVR84v06u1RGeIo8Ikpc ENiWXIF4rrWurI0yDwMDOaEf/HPq0lIZFc9UyBgc415Fvz6irfm4kBjmyw7LY/He q/pEvy/F6qLThTJa+lfKyhnAOb03qBowk8IVAWzdzMyvoOBAiF6sID/9tomyWJq2 2e+E2Wc0pdjHTd/fkylEHlxwTV8/Q/x/bmwOTTpAfTra07P2C1BAH7IRPEl8Ekhn H4CsaHwfrxEm0lvs2JqrIeLtDPJafkK8eFmxaKuxQbtSEcIOex5gHHv8FFXW9zQC A/XhHQVi58fb3EHhmq6twfW2dSFObDMp -----END CERTIFICATE-----Generated at Sat May 18 19:56:07 2024 by rpki-client on console-fra.rpki-client.org