$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft File: rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft (raw, json) Hash identifier: iX8GR6LD8wVQSBjzJfADv8cZJ9vUVIq/AN1+JCdOp6M= Subject key identifier: 84:01:E8:51:94:22:0E:2A:10:8C:B6:DB:39:05:45:20:47:75:00:EF Authority key identifier: AD:CD:5A:4D:B5:99:C7:1A:ED:93:D0:96:AB:14:CA:FA:08:15:E6:17 Certificate issuer: /CN=A91E1498/serialNumber=ADCD5A4DB599C71AED93D096AB14CAFA0815E617 Certificate serial: 2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rc1aTbWZxxrtk9CWqxTK-ggV5hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft Manifest number: 2A Signing time: Sun 19 May 2024 08:31:52 +0000 Manifest this update: Sun 19 May 2024 08:31:51 +0000 Manifest next update: Sun 26 May 2024 08:31:51 +0000 Files and hashes: 1: rc1aTbWZxxrtk9CWqxTK-ggV5hc.crl (hash: TRw/8/83UQCpTJ9n1W3i+I5STBLN8yCkYhLF+a6XOcU=) 2: 6C523164E03F11EE87838439C4F9AE02.roa (hash: mv/1q1fWNxrhkEN9Y113u0N7l2VES4hsApUz5cCFDX8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.crl rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rc1aTbWZxxrtk9CWqxTK-ggV5hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1498/serialNumber=ADCD5A4DB599C71AED93D096AB14CAFA0815E617 Validity Not Before: May 19 08:31:51 2024 GMT Not After : May 26 08:31:51 2024 GMT Subject: CN=6649b8f7-6444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:7c:ac:99:b9:eb:66:b0:db:ca:a7:cb:52:16: 2e:b3:3b:1b:fa:e7:f5:6d:38:61:50:64:ee:a3:e6: d0:2d:21:5b:99:7c:78:e9:9c:ed:4d:bb:13:33:ca: 4c:98:60:4a:85:0a:eb:ac:9a:89:e7:66:17:f0:be: c6:1c:25:de:c8:ff:85:2c:b4:3d:70:05:8a:23:9a: 7f:c8:01:9d:f4:ac:86:2d:14:9f:60:d5:e9:cd:e4: 5f:b9:2c:cb:34:4f:9c:f2:ee:61:bc:f1:ae:1b:dc: da:8c:35:bd:ae:e6:0f:39:0d:86:3c:71:f9:73:d5: 1b:b2:ee:48:1e:a5:cd:31:38:f0:7b:87:af:02:e3: d0:2c:31:4b:49:60:26:cf:27:88:ab:c1:6f:7e:23: 3e:62:8a:b9:d4:60:45:86:9a:d9:7b:bf:f8:8d:e6: 26:a5:22:bd:93:dc:35:98:13:f0:62:43:b0:ed:8e: 88:50:95:68:4d:22:46:95:da:7f:1e:d3:c5:f6:d9: 0d:e8:33:63:25:76:65:b7:9d:bc:9e:a2:b0:80:6b: 0b:cb:0b:b9:81:87:4b:ec:b0:db:2e:a2:a9:64:5c: a3:fd:8f:a0:a8:ed:c9:d8:18:5a:2d:67:47:2f:94: ba:6e:41:23:d7:34:a2:8d:d7:4c:bd:74:47:26:a2: 22:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:01:E8:51:94:22:0E:2A:10:8C:B6:DB:39:05:45:20:47:75:00:EF X509v3 Authority Key Identifier: keyid:AD:CD:5A:4D:B5:99:C7:1A:ED:93:D0:96:AB:14:CA:FA:08:15:E6:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rc1aTbWZxxrtk9CWqxTK-ggV5hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:92:a0:20:da:8e:b4:39:d2:c3:83:41:e5:8f:fd:37:b9:51: 5f:a8:c8:56:20:27:7b:ae:ba:2c:11:28:c0:d3:3d:d2:9a:b6: 31:55:3b:ce:ca:ac:b3:c3:2b:7c:bc:7f:80:9b:ed:f3:3b:bb: 7c:15:f3:37:e7:34:d0:4a:d9:72:2e:8e:65:21:d4:d5:b4:7b: d9:ae:e6:e2:8e:29:17:cf:80:42:ec:e4:f8:3c:89:2d:a4:c0: 0c:c4:1a:6e:e7:0f:88:50:3e:0c:d2:0e:cb:4b:0a:a5:cf:a9: 7a:f9:65:aa:61:d5:2c:a1:3e:fc:8a:ec:fb:64:2b:0c:4b:8c: dd:2c:0c:41:83:ac:d5:82:a1:04:e4:60:14:e6:5f:ec:be:15: b5:92:6c:02:58:be:15:36:5f:d6:a7:7c:ca:76:6c:69:d6:3c: a9:ee:de:74:2f:ef:d2:98:ba:a3:27:5c:24:23:b3:f4:2e:3f: 88:df:d5:03:c5:12:d0:18:93:25:5d:32:36:02:55:c2:c3:23: bd:48:49:d4:62:73:9f:18:2a:91:c6:92:d1:46:5c:5c:a4:59: e1:b7:dc:74:b9:d3:b9:4c:49:92:fe:fa:a0:60:c3:40:33:83: c3:76:eb:9f:75:16:0a:15:86:f3:17:19:69:f6:d9:35:3f:08: 15:9c:58:6a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MTQ5ODExMC8GA1UEBRMoQURDRDVBNERCNTk5QzcxQUVEOTNEMDk2QUIxNENBRkEw ODE1RTYxNzAeFw0yNDA1MTkwODMxNTFaFw0yNDA1MjYwODMxNTFaMBgxFjAUBgNV BAMTDTY2NDliOGY3LTY0NDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDhfKyZuetmsNvKp8tSFi6zOxv65/VtOGFQZO6j5tAtIVuZfHjpnO1NuxMzykyY YEqFCuusmonnZhfwvsYcJd7I/4UstD1wBYojmn/IAZ30rIYtFJ9g1enN5F+5LMs0 T5zy7mG88a4b3NqMNb2u5g85DYY8cflz1Ruy7kgepc0xOPB7h68C49AsMUtJYCbP J4irwW9+Iz5iirnUYEWGmtl7v/iN5ialIr2T3DWYE/BiQ7DtjohQlWhNIkaV2n8e 08X22Q3oM2MldmW3nbyeorCAawvLC7mBh0vssNsuoqlkXKP9j6Co7cnYGFotZ0cv lLpuQSPXNKKN10y9dEcmoiIpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUhAHoUZQi DioQjLbbOQVFIEd1AO8wHwYDVR0jBBgwFoAUrc1aTbWZxxrtk9CWqxTK+ggV5hcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUxNDk4L0IzQzhBOTdDREZC NTExRUVCN0FEOEYyRUM0RjlBRTAyL3JjMWFUYldaeHhydGs5Q1dxeFRLLWdnVjVo Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcmMxYVRiV1p4eHJ0azlDV3F4VEstZ2dWNWhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUx NDk4L0IzQzhBOTdDREZCNTExRUVCN0FEOEYyRUM0RjlBRTAyL3JjMWFUYldaeHhy dGs5Q1dxeFRLLWdnVjVoYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALKSoCDajrQ50sODQeWP/Te5UV+oyFYgJ3uuuiwRKMDTPdKatjFVO87K rLPDK3y8f4Cb7fM7u3wV8zfnNNBK2XIujmUh1NW0e9mu5uKOKRfPgELs5Pg8iS2k wAzEGm7nD4hQPgzSDstLCqXPqXr5Zaph1SyhPvyK7PtkKwxLjN0sDEGDrNWCoQTk YBTmX+y+FbWSbAJYvhU2X9anfMp2bGnWPKnu3nQv79KYuqMnXCQjs/QuP4jf1QPF EtAYkyVdMjYCVcLDI71ISdRic58YKpHGktFGXFykWeG33HS507lMSZL++qBgw0Az g8N26591FgoVhvMXGWn22TU/CBWcWGo= -----END CERTIFICATE-----Generated at Sun May 19 09:04:14 2024 by rpki-client on console-fra.rpki-client.org