$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.mft File: ABc0faPzW3U5Ub30sbB_dh49nr8.mft (raw, json) Hash identifier: 2+EfoKYSS66/HXeKy1SY0NPpkNh2TwlP21sw4KMwLJs= Subject key identifier: 95:F9:22:36:CE:EB:02:D1:F4:5F:85:6A:8C:97:B3:A9:EF:FB:CD:C9 Authority key identifier: 00:17:34:7D:A3:F3:5B:75:39:51:BD:F4:B1:B0:7F:76:1E:3D:9E:BF Certificate issuer: /CN=A91E0AAD/serialNumber=0017347DA3F35B753951BDF4B1B07F761E3D9EBF Certificate serial: 033D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ABc0faPzW3U5Ub30sbB_dh49nr8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.mft Manifest number: 0337 Signing time: Sun 19 May 2024 02:59:58 +0000 Manifest this update: Sun 19 May 2024 02:59:58 +0000 Manifest next update: Sun 26 May 2024 02:59:58 +0000 Files and hashes: 1: ABc0faPzW3U5Ub30sbB_dh49nr8.crl (hash: vGvPWwAkFoSXLDJtjM5O1HfWhqrQwu3ZxDeCeNBd+cA=) 2: 0BE6F39E79E611EC99DA1B51C4F9AE02.roa (hash: MrNZ6F/Tz/6S7L1UD5UnXWJFM1u5sMiA1hmNIcsx/UM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.crl rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ABc0faPzW3U5Ub30sbB_dh49nr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 829 (0x33d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0AAD/serialNumber=0017347DA3F35B753951BDF4B1B07F761E3D9EBF Validity Not Before: May 19 02:59:58 2024 GMT Not After : May 26 02:59:58 2024 GMT Subject: CN=66496b2e-5478 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:a5:2b:eb:05:14:f8:54:12:53:c5:f1:b1:d7: 1e:9a:3c:45:18:a5:02:db:d0:58:b6:d5:55:b5:d4: 5a:51:d6:ff:ca:2b:c9:f7:c1:09:67:0a:13:0e:18: 39:33:e8:0e:a6:e8:c0:36:b3:21:7b:d7:07:f8:79: c5:85:de:9f:b4:2d:89:ab:c0:b0:e3:15:ea:c0:33: 7f:25:80:98:bb:07:cc:ae:7f:11:85:cb:fd:27:59: 21:14:81:9a:ca:ba:d3:8a:b9:f3:f1:04:f8:9b:62: de:af:69:38:25:88:cc:0c:b6:e5:8f:1b:81:e7:63: c8:d4:8e:f2:ca:6f:aa:b9:f3:be:62:a5:e1:77:e4: 76:ae:8c:9d:a5:7e:7d:eb:8e:0b:40:bb:f2:6a:12: 92:21:44:cf:ae:12:33:86:46:2c:ec:6d:48:5b:9b: de:48:ba:9f:99:1f:33:9d:5f:48:2f:5a:6f:72:4e: bb:d4:8a:78:20:27:e1:00:46:d0:15:19:f3:bc:0f: 5c:1c:ea:34:cf:1d:26:11:16:23:15:12:b0:69:7b: 6b:4c:5c:64:0f:7b:fa:f2:aa:f1:36:ad:7c:85:b8: a2:16:1d:a1:8c:e4:b5:30:75:32:be:2a:a2:1d:5a: da:fb:7a:a7:b0:1f:ea:33:ca:65:2a:e8:6c:fe:e6: 9a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:F9:22:36:CE:EB:02:D1:F4:5F:85:6A:8C:97:B3:A9:EF:FB:CD:C9 X509v3 Authority Key Identifier: keyid:00:17:34:7D:A3:F3:5B:75:39:51:BD:F4:B1:B0:7F:76:1E:3D:9E:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ABc0faPzW3U5Ub30sbB_dh49nr8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:c9:d6:00:cb:27:4b:e5:03:47:83:3b:55:18:a8:68:34:31: 54:e6:a0:82:16:84:45:04:49:7a:32:c7:7f:52:9f:9b:c4:90: 28:1f:95:99:aa:40:b7:79:c5:d9:d1:55:88:db:90:a7:b3:ac: 39:06:eb:98:f9:b6:1c:56:f6:16:8f:cc:a5:3e:8f:eb:54:53: aa:f3:b9:37:02:14:76:b2:89:07:c4:db:e6:56:37:39:da:bf: 81:c4:c4:48:3f:0b:0d:46:7f:5b:2d:d6:8a:b5:b4:c4:a3:33: 8e:de:77:86:58:f5:4a:a0:71:ec:c3:05:a2:58:7a:0d:12:97: e1:d8:df:8d:e9:a7:49:79:95:f3:d2:c8:de:f6:f3:69:cd:7f: e7:26:0a:43:c4:63:a4:ff:34:e1:3e:b1:e9:87:4d:43:be:0e: 5a:81:ba:a6:46:8f:9f:28:46:c3:c2:5c:ca:d1:0b:a5:5e:1c: ae:bc:df:6c:23:ff:57:c0:02:11:4a:17:7c:35:fa:cc:f1:04: 53:c0:0c:9e:6d:01:75:b3:c2:a3:0c:d7:31:a6:50:be:99:f4: 8e:25:5f:24:7f:d8:6d:23:f5:93:88:b5:02:b6:e3:ce:4d:3d: 03:f8:95:cd:52:6c:10:84:f2:93:bf:9c:54:0d:8c:98:b5:cd: 8d:91:ac:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAz0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBBQUQxMTAvBgNVBAUTKDAwMTczNDdEQTNGMzVCNzUzOTUxQkRGNEIxQjA3Rjc2 MUUzRDlFQkYwHhcNMjQwNTE5MDI1OTU4WhcNMjQwNTI2MDI1OTU4WjAYMRYwFAYD VQQDEw02NjQ5NmIyZS01NDc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5aUr6wUU+FQSU8XxsdcemjxFGKUC29BYttVVtdRaUdb/yivJ98EJZwoTDhg5 M+gOpujANrMhe9cH+HnFhd6ftC2Jq8Cw4xXqwDN/JYCYuwfMrn8Rhcv9J1khFIGa yrrTirnz8QT4m2Ler2k4JYjMDLbljxuB52PI1I7yym+qufO+YqXhd+R2roydpX59 644LQLvyahKSIUTPrhIzhkYs7G1IW5veSLqfmR8znV9IL1pvck671Ip4ICfhAEbQ FRnzvA9cHOo0zx0mERYjFRKwaXtrTFxkD3v68qrxNq18hbiiFh2hjOS1MHUyviqi HVra+3qnsB/qM8plKuhs/uaa1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJX5IjbO 6wLR9F+FaoyXs6nv+83JMB8GA1UdIwQYMBaAFAAXNH2j81t1OVG99LGwf3YePZ6/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEFBRC8wREU1QjQwRTc5 RTIxMUVDQjUwMTMxNDhDNEY5QUUwMi9BQmMwZmFQelczVTVVYjMwc2JCX2RoNDlu cjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FCYzBmYVB6VzNVNVViMzBzYkJfZGg0OW5yOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEFBRC8wREU1QjQwRTc5RTIxMUVDQjUwMTMxNDhDNEY5QUUwMi9BQmMwZmFQelcz VTVVYjMwc2JCX2RoNDlucjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXydYAyydL5QNHgztVGKhoNDFU5qCCFoRFBEl6Msd/Up+bxJAoH5WZ qkC3ecXZ0VWI25Cns6w5BuuY+bYcVvYWj8ylPo/rVFOq87k3AhR2sokHxNvmVjc5 2r+BxMRIPwsNRn9bLdaKtbTEozOO3neGWPVKoHHswwWiWHoNEpfh2N+N6adJeZXz 0sje9vNpzX/nJgpDxGOk/zThPrHph01Dvg5agbqmRo+fKEbDwlzK0QulXhyuvN9s I/9XwAIRShd8NfrM8QRTwAyebQF1s8KjDNcxplC+mfSOJV8kf9htI/WTiLUCtuPO TT0D+JXNUmwQhPKTv5xUDYyYtc2Nkaz4 -----END CERTIFICATE-----Generated at Sun May 19 03:48:52 2024 by rpki-client on console-fra.rpki-client.org