$ rpki-client -vvf rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.mft File: I-3rdP0jQOR_AbyL94Q7dpHcBhU.mft (raw, json) Hash identifier: WoqOAxCTIaCp5E2JOoPksrBZMWogRvzZJRCHgm5c6+A= Subject key identifier: 98:A9:96:24:32:87:91:A8:16:74:19:0B:57:24:8B:37:64:68:E7:36 Authority key identifier: 23:ED:EB:74:FD:23:40:E4:7F:01:BC:8B:F7:84:3B:76:91:DC:06:15 Certificate issuer: /CN=A91E22E5/serialNumber=23EDEB74FD2340E47F01BC8BF7843B7691DC0615 Certificate serial: 015A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-3rdP0jQOR_AbyL94Q7dpHcBhU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.mft Manifest number: 0157 Signing time: Sun 19 May 2024 04:52:23 +0000 Manifest this update: Sun 19 May 2024 04:52:23 +0000 Manifest next update: Sun 26 May 2024 04:52:23 +0000 Files and hashes: 1: I-3rdP0jQOR_AbyL94Q7dpHcBhU.crl (hash: TW16FEBPLDNjC2hxXym05XC86WwrYxyHrdWWGW1otO4=) 2: 623705DA339111ED9249064BC4F9AE02.roa (hash: oE8Ftzk8b1pgimy4jf77z4BKi4j6G1jlmkYSbgOmtg8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.crl rsync://rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-3rdP0jQOR_AbyL94Q7dpHcBhU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 346 (0x15a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E22E5/serialNumber=23EDEB74FD2340E47F01BC8BF7843B7691DC0615 Validity Not Before: May 19 04:52:23 2024 GMT Not After : May 26 04:52:23 2024 GMT Subject: CN=66498587-4e03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:52:e6:27:61:c3:a3:cf:c5:fe:d6:33:90:09: b4:c5:c5:af:95:e3:64:5e:ef:98:ce:46:51:ed:93: 68:f8:7c:dd:b5:aa:e1:d0:b3:e4:c3:07:3b:10:a5: 0c:11:c4:c2:9d:fc:63:30:47:5c:6a:7d:fd:db:fc: 2a:26:d3:99:3b:02:fd:d9:95:51:b0:48:57:9b:06: 91:a1:9f:b0:92:a5:58:9e:e7:d1:ab:38:c9:c2:c0: 90:61:6e:90:da:ce:83:db:f1:8e:4d:b6:73:fd:b6: f4:c6:12:9c:ce:9d:31:94:68:21:37:d8:fb:41:57: 03:67:da:e4:4b:1f:69:f1:21:1a:94:ab:ce:d4:c4: e8:75:ae:65:0c:8d:12:ff:05:74:21:ce:b6:02:52: 74:5d:98:20:7c:69:ee:b6:4d:37:2a:3a:d7:86:f0: 0a:3d:0f:e7:71:ea:58:4a:24:bd:ae:8f:ca:73:2a: 8e:07:6f:2c:0d:42:a7:70:af:ed:7c:a8:63:46:49: aa:fa:09:f6:71:ba:e8:bb:c9:5a:ea:2f:02:ac:01: dc:a9:5e:ca:9a:f0:33:42:00:6b:85:6c:70:80:f1: f4:de:22:c1:24:81:fd:63:74:54:2a:cb:f6:74:d6: b7:8d:9f:df:88:63:9b:83:da:05:20:ab:2b:b4:ac: 93:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:A9:96:24:32:87:91:A8:16:74:19:0B:57:24:8B:37:64:68:E7:36 X509v3 Authority Key Identifier: keyid:23:ED:EB:74:FD:23:40:E4:7F:01:BC:8B:F7:84:3B:76:91:DC:06:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-3rdP0jQOR_AbyL94Q7dpHcBhU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:6e:c2:5b:69:d5:75:a4:bf:a7:64:c3:e7:a6:da:66:8a:42: 6a:1d:36:5e:fc:1b:ed:9d:e1:c3:23:77:a8:ae:d2:82:19:bf: 00:70:04:27:26:13:63:be:96:d8:c9:81:ba:92:a3:d7:74:fc: 5c:28:d8:6f:4c:c8:2c:d2:34:84:39:7a:12:07:47:53:b1:23: 0a:3c:83:80:3a:02:ab:6a:26:72:e7:45:1f:bd:4c:41:dd:da: 8d:7e:8a:ae:50:3a:0a:aa:3b:a8:e4:88:0a:75:b5:15:a2:75: fc:f6:cb:49:d9:66:99:f9:f7:2a:77:7b:db:1c:72:bf:50:7c: fb:e0:eb:63:07:43:fb:8d:07:61:b0:76:52:e4:43:6e:80:d4: 42:ab:cb:c6:23:7f:c6:76:2d:e7:6b:85:76:07:3b:49:ba:43: 7d:b1:f8:91:47:b2:f3:10:d1:80:e8:01:ca:e5:99:06:b6:11: 14:db:f4:7a:94:d5:ee:d6:8f:f2:8a:62:f6:0d:95:93:12:6d: 94:aa:be:6a:ce:7f:b6:da:09:46:90:10:d5:1d:f4:09:fb:35: 93:c1:83:e5:25:be:69:64:50:d6:91:c3:e4:36:ea:e6:39:a4: b1:f8:75:22:f9:e7:17:b3:fa:20:4f:83:f1:a7:fb:0c:84:fe: d4:90:7b:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTIyRTUxMTAvBgNVBAUTKDIzRURFQjc0RkQyMzQwRTQ3RjAxQkM4QkY3ODQzQjc2 OTFEQzA2MTUwHhcNMjQwNTE5MDQ1MjIzWhcNMjQwNTI2MDQ1MjIzWjAYMRYwFAYD VQQDEw02NjQ5ODU4Ny00ZTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3lLmJ2HDo8/F/tYzkAm0xcWvleNkXu+YzkZR7ZNo+Hzdtarh0LPkwwc7EKUM EcTCnfxjMEdcan392/wqJtOZOwL92ZVRsEhXmwaRoZ+wkqVYnufRqzjJwsCQYW6Q 2s6D2/GOTbZz/bb0xhKczp0xlGghN9j7QVcDZ9rkSx9p8SEalKvO1MToda5lDI0S /wV0Ic62AlJ0XZggfGnutk03KjrXhvAKPQ/ncepYSiS9ro/KcyqOB28sDUKncK/t fKhjRkmq+gn2cbrou8la6i8CrAHcqV7KmvAzQgBrhWxwgPH03iLBJIH9Y3RUKsv2 dNa3jZ/fiGObg9oFIKsrtKyT8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJipliQy h5GoFnQZC1ckizdkaOc2MB8GA1UdIwQYMBaAFCPt63T9I0DkfwG8i/eEO3aR3AYV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjJFNS9GNUUzNEU2NDMz OEQxMUVEOTdFM0UyNUZDNEY5QUUwMi9JLTNyZFAwalFPUl9BYnlMOTRRN2RwSGNC aFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ktM3JkUDBqUU9SX0FieUw5NFE3ZHBIY0JoVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjJFNS9GNUUzNEU2NDMzOEQxMUVEOTdFM0UyNUZDNEY5QUUwMi9JLTNyZFAwalFP Ul9BYnlMOTRRN2RwSGNCaFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6bsJbadV1pL+nZMPnptpmikJqHTZe/BvtneHDI3eortKCGb8AcAQn JhNjvpbYyYG6kqPXdPxcKNhvTMgs0jSEOXoSB0dTsSMKPIOAOgKraiZy50UfvUxB 3dqNfoquUDoKqjuo5IgKdbUVonX89stJ2WaZ+fcqd3vbHHK/UHz74OtjB0P7jQdh sHZS5ENugNRCq8vGI3/Gdi3na4V2BztJukN9sfiRR7LzENGA6AHK5ZkGthEU2/R6 lNXu1o/yimL2DZWTEm2Uqr5qzn+22glGkBDVHfQJ+zWTwYPlJb5pZFDWkcPkNurm OaSx+HUi+ecXs/ogT4Pxp/sMhP7UkHsO -----END CERTIFICATE-----Generated at Sun May 19 05:48:52 2024 by rpki-client on console-fra.rpki-client.org