$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft File: 3W8BT4rUXahdDhbys3aHZ5REhbM.mft (raw, json) Hash identifier: eFKLMlA4GR3+Vfk4FZJdTbFu7nMzhw4BL5DGVBD6Vyo= Subject key identifier: 4F:01:15:89:BA:98:A3:B0:05:C3:5C:26:2E:B2:FD:EE:BD:7C:B7:87 Authority key identifier: DD:6F:01:4F:8A:D4:5D:A8:5D:0E:16:F2:B3:76:87:67:94:44:85:B3 Certificate issuer: /CN=A91E8458/serialNumber=DD6F014F8AD45DA85D0E16F2B3768767944485B3 Certificate serial: 070B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft Manifest number: 0706 Signing time: Sat 18 May 2024 22:39:32 +0000 Manifest this update: Sat 18 May 2024 22:39:31 +0000 Manifest next update: Sat 25 May 2024 22:39:31 +0000 Files and hashes: 1: 3W8BT4rUXahdDhbys3aHZ5REhbM.crl (hash: neY100tCmrPG9XsvTtHLw+YHLBOBoHVOaFqEATIzzJw=) 2: FAE7339CF7B911EA91318653C4F9AE02.roa (hash: Zo13ZbklXiV5KnDTyJL8a80G8CmYR1LoLevv07Onz6c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.crl rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1803 (0x70b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8458/serialNumber=DD6F014F8AD45DA85D0E16F2B3768767944485B3 Validity Not Before: May 18 22:39:31 2024 GMT Not After : May 25 22:39:31 2024 GMT Subject: CN=66492e24-2883 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:62:b8:b1:cd:20:1f:1a:2d:31:95:14:86:80: c8:7b:5a:4f:fa:26:4a:9d:ad:8d:17:45:8c:51:cc: d5:1e:ff:a0:15:1e:47:0c:29:9b:3a:8e:d8:45:82: fc:d5:82:da:99:a8:69:be:f3:70:a0:39:c9:df:49: 70:35:5d:8c:34:3b:80:29:6f:a7:f8:8f:f7:2d:c5: fc:fc:e8:aa:cf:b5:43:e6:70:1b:a3:57:19:37:3f: 3d:87:bc:4a:ef:71:b9:02:de:0f:a1:b2:6b:f2:e9: e2:ee:e1:ad:cf:d4:52:a5:f5:f0:c4:1b:44:69:4e: d8:fe:1e:4a:28:e2:83:73:2d:98:12:b5:51:a0:32: ac:f0:dc:a3:ed:29:1f:f2:6e:30:61:a7:18:85:71: a4:e6:d6:c6:e7:23:e2:ba:d8:6b:7b:1e:6b:35:45: 29:1b:5e:fd:eb:6e:4d:5c:69:69:ce:7f:b1:fc:c4: 95:bd:84:2b:53:88:d3:6e:88:83:c8:99:0d:a0:bd: dc:f6:f4:71:a0:f0:b7:3f:9f:aa:aa:47:a1:ed:ad: c8:5c:7b:59:e7:a9:e5:a1:f8:1c:9a:34:eb:27:2f: e3:f2:17:97:92:6c:18:86:3a:f2:66:9b:4f:ee:94: 89:ea:1e:1f:af:de:54:d5:4c:6b:5b:76:82:15:b8: 9e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:01:15:89:BA:98:A3:B0:05:C3:5C:26:2E:B2:FD:EE:BD:7C:B7:87 X509v3 Authority Key Identifier: keyid:DD:6F:01:4F:8A:D4:5D:A8:5D:0E:16:F2:B3:76:87:67:94:44:85:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:98:8b:f0:d7:ac:e7:b7:1f:98:22:be:07:0e:a4:5a:74:8f: 5a:61:67:7e:1f:f5:82:8e:7b:cb:f5:fa:53:7e:4b:51:bc:54: 2d:61:d0:6a:4a:7b:9c:0a:26:92:3e:78:ab:a5:1f:2b:35:27: 91:5a:02:82:3d:4c:5e:30:91:c7:b3:7f:26:6f:46:e4:b1:4f: 60:11:e2:71:96:c4:6c:e3:17:d5:9f:5c:19:a8:72:71:9f:46: 35:c9:d4:ba:c2:eb:2e:ba:63:19:b9:45:3a:89:b2:54:82:ae: 6b:d0:e3:36:ad:7b:e2:a6:1d:50:42:6d:4a:42:29:04:e2:cf: e0:99:4f:ac:ee:9b:68:b1:eb:f1:fb:19:6d:0c:d5:89:01:3b: 12:4b:8c:cd:58:73:da:d4:09:f1:2c:d8:0d:44:45:46:ef:5f: 7a:3e:3f:34:01:25:3c:dd:22:c1:54:4c:3d:e0:32:4c:06:e1: 03:72:3d:a9:00:11:d8:68:a7:4f:d1:87:46:d1:3a:c4:cf:78: 4d:8a:59:9e:98:72:a2:45:17:9d:5f:c2:7b:bd:7a:89:60:2f: cc:9f:a1:6e:7d:01:75:05:5b:dd:7f:52:44:13:29:17:e7:9e: 65:a1:cd:0c:c0:1b:84:34:96:2f:2c:67:23:0c:01:f4:3e:0f: 7d:cf:29:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg0NTgxMTAvBgNVBAUTKERENkYwMTRGOEFENDVEQTg1RDBFMTZGMkIzNzY4NzY3 OTQ0NDg1QjMwHhcNMjQwNTE4MjIzOTMxWhcNMjQwNTI1MjIzOTMxWjAYMRYwFAYD VQQDEw02NjQ5MmUyNC0yODgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtGK4sc0gHxotMZUUhoDIe1pP+iZKna2NF0WMUczVHv+gFR5HDCmbOo7YRYL8 1YLamahpvvNwoDnJ30lwNV2MNDuAKW+n+I/3LcX8/Oiqz7VD5nAbo1cZNz89h7xK 73G5At4PobJr8uni7uGtz9RSpfXwxBtEaU7Y/h5KKOKDcy2YErVRoDKs8Nyj7Skf 8m4wYacYhXGk5tbG5yPiuthrex5rNUUpG179625NXGlpzn+x/MSVvYQrU4jTboiD yJkNoL3c9vRxoPC3P5+qqkeh7a3IXHtZ56nlofgcmjTrJy/j8heXkmwYhjryZptP 7pSJ6h4fr95U1UxrW3aCFbie9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE8BFYm6 mKOwBcNcJi6y/e69fLeHMB8GA1UdIwQYMBaAFN1vAU+K1F2oXQ4W8rN2h2eURIWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODQ1OC9GOEFGMTIwMkY2 MTUxMUVBODM3NzAwNkNDNEY5QUUwMi8zVzhCVDRyVVhhaGREaGJ5czNhSFo1UkVo Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNXOEJUNHJVWGFoZERoYnlzM2FIWjVSRWhiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODQ1OC9GOEFGMTIwMkY2MTUxMUVBODM3NzAwNkNDNEY5QUUwMi8zVzhCVDRyVVhh aGREaGJ5czNhSFo1UkVoYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzmIvw16zntx+YIr4HDqRadI9aYWd+H/WCjnvL9fpTfktRvFQtYdBq SnucCiaSPnirpR8rNSeRWgKCPUxeMJHHs38mb0bksU9gEeJxlsRs4xfVn1wZqHJx n0Y1ydS6wusuumMZuUU6ibJUgq5r0OM2rXviph1QQm1KQikE4s/gmU+s7ptosevx +xltDNWJATsSS4zNWHPa1AnxLNgNREVG7196Pj80ASU83SLBVEw94DJMBuEDcj2p ABHYaKdP0YdG0TrEz3hNilmemHKiRRedX8J7vXqJYC/Mn6FufQF1BVvdf1JEEykX 555loc0MwBuENJYvLGcjDAH0Pg99zynV -----END CERTIFICATE-----Generated at Sun May 19 00:16:20 2024 by rpki-client on console-fra.rpki-client.org