$ rpki-client -vvf rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft File: bGgIQDgcHvMtPI2786zECCz2pbM.mft (raw, json) Hash identifier: RN3f7WwGhT7t8j5aYKvjnBLDwO5D8RzbR1t88efNZBE= Subject key identifier: D8:DC:B6:C5:B0:4A:80:E6:4D:9B:15:4D:F5:F2:43:52:5B:F7:8A:DA Authority key identifier: 6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 Certificate issuer: /CN=A91E734C/serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Certificate serial: 0969 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft Manifest number: 094E Signing time: Tue 30 Apr 2024 21:25:45 +0000 Manifest this update: Tue 30 Apr 2024 21:25:44 +0000 Manifest next update: Tue 07 May 2024 21:25:44 +0000 Files and hashes: 1: bGgIQDgcHvMtPI2786zECCz2pbM.crl (hash: XZXpwhQZNPTFnrskbbP2FI1OcbKArk0ilfY1ewRuw5U=) 2: A32546F8A3DB11EA98BC5D48C4F9AE02.roa (hash: 1clJlOZM8oS6uj6S/tJNTJIPq9IsyLwsmMNQrfRkWRI=) 3: 2131145E9E4C11EABF30421BC4F9AE02.roa (hash: TPzeQS2bK+HgnD2Ywg81GgKCXNRcrpJV4c4y6kOHkiI=) 4: A3D50B2EA3DB11EA98BC5D48C4F9AE02.roa (hash: p+JIQBFEOgYXDXUyhadg34/LgK5/3/gHTYuz5O7OCcg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 21:25:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2409 (0x969) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E734C/serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Validity Not Before: Apr 30 21:25:44 2024 GMT Not After : May 7 21:25:44 2024 GMT Subject: CN=663161d8-4891 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:62:43:6f:34:ac:ee:03:bf:1e:9b:4e:0c:7e: 0c:1f:26:2e:78:2f:36:b1:9f:66:96:2d:48:09:04: 2a:57:22:b5:fc:d8:ca:59:ca:14:64:5e:6c:aa:8c: ce:5f:e9:95:55:43:15:71:34:a0:a1:ba:fa:ca:8a: f9:f7:07:2b:e6:30:35:82:02:90:e1:3d:b3:58:b3: 69:f1:05:8b:97:ec:5e:bd:90:22:a9:c7:a0:30:5e: 19:3b:41:00:a3:a7:ba:ce:d2:ca:df:e6:38:1d:52: 07:4e:60:cc:5a:5d:f2:17:55:a9:5a:b9:18:1b:bb: f9:eb:c9:d4:b0:2e:30:63:0c:1a:93:c0:a1:12:91: 81:35:e6:53:9f:68:8b:fa:e9:83:f1:2a:b9:09:72: bb:7f:51:e9:d8:45:34:a1:56:1a:16:f6:0a:e9:e6: 2a:9e:14:81:8f:19:5b:60:1e:e0:de:3a:6d:69:31: c9:6b:f3:b5:81:58:2a:a1:48:0a:6a:0c:78:ba:22: a8:30:87:bb:8e:a1:4d:2a:45:45:71:2e:c1:6e:df: f9:d0:07:f8:ec:0e:b6:52:b4:42:da:d9:67:25:36: fc:a4:db:37:6b:d9:02:76:b3:b4:95:75:ad:75:3d: 3b:a6:4f:60:f2:4a:4d:70:92:27:a1:f4:39:3a:e4: 65:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:DC:B6:C5:B0:4A:80:E6:4D:9B:15:4D:F5:F2:43:52:5B:F7:8A:DA X509v3 Authority Key Identifier: keyid:6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:fd:ed:71:47:fd:ec:ad:f2:63:f1:dc:0a:57:7a:41:d8:2e: 7e:7e:75:3f:ad:a6:f2:eb:98:5d:84:57:34:92:0f:ca:f9:03: 24:8a:58:ce:87:9b:00:ea:51:f7:91:09:76:87:db:81:bb:27: 63:1b:3c:c0:f9:23:00:57:70:de:3b:71:ea:75:fb:2b:95:0c: 73:b0:81:bd:fa:d2:6a:03:e0:3d:a3:cf:ba:0e:40:b9:a5:3f: f9:c0:a4:8e:ec:7d:5a:00:a8:52:98:d7:f2:a7:6b:6f:1f:76: d1:6a:86:70:2c:e3:dc:21:21:b0:4a:3a:20:01:9f:79:57:e4: 0c:9d:bc:bc:4f:ed:a5:ea:c5:35:7c:fb:8c:8b:07:43:a3:64: 62:1b:bf:17:cc:ee:9f:98:5b:dd:4b:97:14:af:52:3c:54:a5: c8:9c:a1:2d:c0:86:b2:fa:45:82:06:07:2f:3b:45:4e:72:e4: d1:8e:1b:fa:07:de:8e:d6:8a:cd:3a:10:85:ae:0a:43:6c:dd: fb:8c:b4:13:43:4a:ee:2d:3e:6a:88:75:83:c6:99:a9:77:78: 52:73:eb:29:a6:db:de:ba:75:68:03:b7:76:d9:c7:83:ec:f7: a7:cb:60:27:9a:f6:b8:ec:14:c6:38:76:5d:1d:9f:4a:6a:ff: 0a:4b:ef:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTczNEMxMTAvBgNVBAUTKDZDNjgwODQwMzgxQzFFRjMyRDNDOERCQkYzQUNDNDA4 MkNGNkE1QjMwHhcNMjQwNDMwMjEyNTQ0WhcNMjQwNTA3MjEyNTQ0WjAYMRYwFAYD VQQDEw02NjMxNjFkOC00ODkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4mJDbzSs7gO/HptODH4MHyYueC82sZ9mli1ICQQqVyK1/NjKWcoUZF5sqozO X+mVVUMVcTSgobr6yor59wcr5jA1ggKQ4T2zWLNp8QWLl+xevZAiqcegMF4ZO0EA o6e6ztLK3+Y4HVIHTmDMWl3yF1WpWrkYG7v568nUsC4wYwwak8ChEpGBNeZTn2iL +umD8Sq5CXK7f1Hp2EU0oVYaFvYK6eYqnhSBjxlbYB7g3jptaTHJa/O1gVgqoUgK agx4uiKoMIe7jqFNKkVFcS7Bbt/50Af47A62UrRC2tlnJTb8pNs3a9kCdrO0lXWt dT07pk9g8kpNcJInofQ5OuRlOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNjctsWw SoDmTZsVTfXyQ1Jb94raMB8GA1UdIwQYMBaAFGxoCEA4HB7zLTyNu/OsxAgs9qWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzM0Qy9BNzMyMzVFQzcz QzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2TXRQSTI3ODZ6RUNDejJw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JHZ0lRRGdjSHZNdFBJMjc4NnpFQ0N6MnBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzM0Qy9BNzMyMzVFQzczQzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2 TXRQSTI3ODZ6RUNDejJwYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCx/e1xR/3srfJj8dwKV3pB2C5+fnU/raby65hdhFc0kg/K+QMkiljO h5sA6lH3kQl2h9uBuydjGzzA+SMAV3DeO3HqdfsrlQxzsIG9+tJqA+A9o8+6DkC5 pT/5wKSO7H1aAKhSmNfyp2tvH3bRaoZwLOPcISGwSjogAZ95V+QMnby8T+2l6sU1 fPuMiwdDo2RiG78XzO6fmFvdS5cUr1I8VKXInKEtwIay+kWCBgcvO0VOcuTRjhv6 B96O1orNOhCFrgpDbN37jLQTQ0ruLT5qiHWDxpmpd3hSc+spptveunVoA7d22ceD 7Peny2Anmva47BTGOHZdHZ9Kav8KS++W -----END CERTIFICATE-----Generated at Tue Apr 30 22:56:20 2024 by rpki-client on console-fra.rpki-client.org