$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft File: IrGnF151_9hHOR8sLpZl5O7ht0I.mft (raw, json) Hash identifier: nAjVw0jINd6VELw8q8iYl8OjN7OK0UMvFPuM3yJFuag= Subject key identifier: EB:18:93:ED:49:F8:14:28:62:FB:AE:92:09:5C:8A:19:1A:F4:E9:D9 Authority key identifier: 22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 Certificate issuer: /CN=A91E57DC/serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Certificate serial: 103C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft Manifest number: 1020 Signing time: Sat 18 May 2024 18:00:39 +0000 Manifest this update: Sat 18 May 2024 18:00:38 +0000 Manifest next update: Sat 25 May 2024 18:00:38 +0000 Files and hashes: 1: IrGnF151_9hHOR8sLpZl5O7ht0I.crl (hash: YjAZTS4Xcgpt5c39UJiZOesKqsmsY5xqtECzpLwmb+8=) 2: 13D21C6EFEBA11ED9D83553FC4F9AE02.roa (hash: r+D93hp7rhoCWl0RjXcOFWA7GJmeyzAs1dX6WsQydZM=) 3: A9204F96917F11EDA5B26357C4F9AE02.roa (hash: tWTho3aXOfmUFjTTDFR6B98CoHeEv+Tq3wQD28el+4I=) 4: E7E7C9B0F64C11EEAAB16676C4F9AE02.roa (hash: hwcueF9v15oMbI9IHUw/SqBGEIMvaJvy9HHWzqUwqto=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4156 (0x103c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57DC/serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Validity Not Before: May 18 18:00:38 2024 GMT Not After : May 25 18:00:38 2024 GMT Subject: CN=6648ecc7-d863 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e6:ac:4b:3c:99:a2:4c:35:c5:28:01:65:ba: 12:fc:62:86:5f:15:72:46:5b:e7:75:3f:7b:81:9c: 64:a7:19:4e:61:36:84:b5:df:87:49:09:ed:7b:3c: e0:df:c5:d4:83:3f:a2:ef:b4:27:87:e0:4a:2a:6f: 37:5d:49:7d:cd:a7:12:a4:2f:d3:4f:cb:a0:53:2d: 57:fc:8d:a3:3b:30:00:73:eb:40:d1:45:b0:8f:bf: d0:e0:60:eb:7d:d8:6f:fc:6a:d0:2c:09:a9:c0:d7: 90:47:11:1d:95:bc:c9:74:d0:fd:fa:f1:df:04:5b: 7e:98:5a:b1:82:43:74:9c:53:71:6b:0a:ed:59:20: c0:3a:ba:fa:02:86:49:6f:e0:37:76:8a:2e:17:1d: 69:48:45:33:a2:03:3d:94:80:a0:20:9b:47:3a:3d: 82:37:2f:0b:ca:e8:bc:88:85:49:ef:dd:f5:58:e5: 45:60:f6:e1:67:8d:25:2e:6d:65:d0:0d:5f:7f:a1: c4:d8:f6:ba:9f:be:30:5f:ab:31:a2:71:e0:a1:a1: 4d:83:e9:30:2f:8b:e6:18:16:30:4b:37:c8:60:62: a0:f7:1e:c3:df:52:2c:6b:5b:d1:6e:f2:2d:80:53: b9:2b:c9:46:23:9f:6b:6b:a3:95:aa:4e:19:f5:89: d4:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:18:93:ED:49:F8:14:28:62:FB:AE:92:09:5C:8A:19:1A:F4:E9:D9 X509v3 Authority Key Identifier: keyid:22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:bb:66:84:87:f9:9b:a6:19:f8:2c:27:7a:7e:cb:47:1b:c3: 54:36:d2:83:30:45:9e:46:98:aa:75:6b:d2:68:e4:32:8a:a7: 52:5f:58:cc:12:de:82:d8:75:20:1e:38:bc:8a:1f:aa:26:a1: b3:f7:bf:00:8a:dc:16:b4:01:bf:fb:18:95:a3:ad:71:cf:8c: 79:4c:3b:ce:54:18:40:04:01:44:20:22:cc:af:52:d4:90:42: 4e:1e:a0:1a:35:77:10:d5:de:a4:0e:86:78:d1:8c:d1:a8:c5: 38:68:29:9b:1d:0f:d3:c9:ef:2b:f6:ef:66:01:da:8c:47:67: 70:1c:72:3d:33:03:92:09:1a:09:38:a1:8e:75:7a:9d:30:14: e6:cf:a1:6f:30:3c:fa:c5:26:b4:0e:29:4b:6b:2b:0f:a7:be: 90:70:12:43:7e:37:7f:55:01:ab:69:ba:17:97:7f:1d:a1:95: 38:71:1d:c2:ee:52:fa:f4:b1:68:66:63:ca:3e:11:5b:f7:ee: ca:e8:3b:85:45:c9:dd:cb:80:e7:71:8c:63:7b:00:dd:88:26: a9:f0:d5:ca:17:38:b1:c2:60:4a:60:76:5e:1b:4c:f4:69:de: 65:77:4f:c6:77:b8:29:cf:dd:42:98:04:73:fe:b0:54:f9:c3: 29:22:b3:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEDwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU3REMxMTAvBgNVBAUTKDIyQjFBNzE3NUU3NUZGRDg0NzM5MUYyQzJFOTY2NUU0 RUVFMUI3NDIwHhcNMjQwNTE4MTgwMDM4WhcNMjQwNTI1MTgwMDM4WjAYMRYwFAYD VQQDEw02NjQ4ZWNjNy1kODYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0OasSzyZokw1xSgBZboS/GKGXxVyRlvndT97gZxkpxlOYTaEtd+HSQntezzg 38XUgz+i77Qnh+BKKm83XUl9zacSpC/TT8ugUy1X/I2jOzAAc+tA0UWwj7/Q4GDr fdhv/GrQLAmpwNeQRxEdlbzJdND9+vHfBFt+mFqxgkN0nFNxawrtWSDAOrr6AoZJ b+A3doouFx1pSEUzogM9lICgIJtHOj2CNy8Lyui8iIVJ7931WOVFYPbhZ40lLm1l 0A1ff6HE2Pa6n74wX6sxonHgoaFNg+kwL4vmGBYwSzfIYGKg9x7D31Isa1vRbvIt gFO5K8lGI59ra6OVqk4Z9YnUSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOsYk+1J +BQoYvuukglcihka9OnZMB8GA1UdIwQYMBaAFCKxpxdedf/YRzkfLC6WZeTu4bdC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTdEQy8zNUY3OTg2NjFG MDExMUU5QjFBQTk0MzZDNEY5QUUwMi9JckduRjE1MV85aEhPUjhzTHBabDVPN2h0 MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lyR25GMTUxXzloSE9SOHNMcFpsNU83aHQwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTdEQy8zNUY3OTg2NjFGMDExMUU5QjFBQTk0MzZDNEY5QUUwMi9JckduRjE1MV85 aEhPUjhzTHBabDVPN2h0MEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAu2aEh/mbphn4LCd6fstHG8NUNtKDMEWeRpiqdWvSaOQyiqdSX1jM Et6C2HUgHji8ih+qJqGz978AitwWtAG/+xiVo61xz4x5TDvOVBhABAFEICLMr1LU kEJOHqAaNXcQ1d6kDoZ40YzRqMU4aCmbHQ/Tye8r9u9mAdqMR2dwHHI9MwOSCRoJ OKGOdXqdMBTmz6FvMDz6xSa0DilLaysPp76QcBJDfjd/VQGraboXl38doZU4cR3C 7lL69LFoZmPKPhFb9+7K6DuFRcndy4DncYxjewDdiCap8NXKFzixwmBKYHZeG0z0 ad5ld0/Gd7gpz91CmARz/rBU+cMpIrMT -----END CERTIFICATE-----Generated at Sat May 18 18:46:47 2024 by rpki-client on console-fra.rpki-client.org