$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft File: a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft (raw, json) Hash identifier: N8WGkPckgITmT8W/eEu561s59BDBawGiPnEY8IpWuFo= Subject key identifier: 32:96:DE:4B:76:3B:BB:E1:1C:AF:12:2B:06:3F:14:C3:FD:42:6F:5D Authority key identifier: 6B:56:7C:84:3E:42:52:3E:0E:5B:64:F6:4A:0F:2A:E0:55:17:BB:70 Certificate issuer: /CN=A91EAE3D/serialNumber=6B567C843E42523E0E5B64F64A0F2AE05517BB70 Certificate serial: 13B4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft Manifest number: 13A1 Signing time: Sat 18 May 2024 17:31:37 +0000 Manifest this update: Sat 18 May 2024 17:31:36 +0000 Manifest next update: Sat 25 May 2024 17:31:36 +0000 Files and hashes: 1: a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl (hash: lHTqZ/kU+vGQFOOjVx5URIgRfdnFCjwUnHtdZ96dElo=) 2: F693F2689CB811EB97F77E14C4F9AE02.roa (hash: /f5dzKwWa8mvOs/cB+px+vSnnT+vivJkjy65k2sS3ug=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5044 (0x13b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D/serialNumber=6B567C843E42523E0E5B64F64A0F2AE05517BB70 Validity Not Before: May 18 17:31:36 2024 GMT Not After : May 25 17:31:36 2024 GMT Subject: CN=6648e5f9-bbfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:14:87:f0:0a:8e:1a:9d:9b:b9:38:40:76:a7: ce:ea:2e:89:f4:24:aa:d0:80:41:96:26:2c:1d:79: 60:5e:df:f6:54:3f:6a:b7:0a:0e:a6:83:1f:77:d6: fa:4a:b3:a8:c4:02:95:5b:1e:aa:aa:04:7d:3a:c4: e0:34:04:7e:a3:17:1a:22:a8:5f:84:4e:94:70:26: ff:f0:33:a5:ae:46:fb:57:0a:45:82:00:77:a0:d1: 4c:98:0a:7f:5d:d9:01:6f:4b:cd:6c:3c:c0:d4:d5: 62:a5:93:86:7a:3b:c1:28:67:f0:30:5e:d0:66:97: d0:20:c9:c3:42:8e:94:d0:78:be:7d:c8:4d:66:88: e0:e0:a7:ae:7a:f4:6f:19:2f:80:cd:20:34:84:e1: 1d:db:e7:a7:48:ca:e1:92:4d:65:bb:20:6d:6b:ea: 14:26:1d:0c:ee:32:5f:15:0d:c8:af:4d:7e:4e:f4: 91:77:03:dd:e9:48:44:13:c7:e7:7c:a6:b3:32:d3: c9:b2:fd:79:d6:1e:0e:d7:4e:69:28:2b:66:4c:ed: 67:b1:c7:ab:8b:49:02:0c:4d:73:9d:ab:7f:24:3f: 94:78:89:9d:2d:cb:11:a4:c3:c4:6c:fa:8d:46:10: a1:bc:80:a5:50:01:4f:b4:f9:25:bd:1c:2e:0c:35: 24:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:96:DE:4B:76:3B:BB:E1:1C:AF:12:2B:06:3F:14:C3:FD:42:6F:5D X509v3 Authority Key Identifier: keyid:6B:56:7C:84:3E:42:52:3E:0E:5B:64:F6:4A:0F:2A:E0:55:17:BB:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:ec:97:a9:e8:ef:5b:19:96:8b:f5:68:87:db:30:d2:c7:35: 3b:0e:e1:e6:7c:b3:eb:bc:5e:77:a4:1e:6b:2e:3d:35:56:2e: e4:12:df:fe:c9:45:b2:41:f3:6e:73:a3:ec:82:33:df:6e:72: e4:be:fc:bb:4f:40:8d:59:b8:48:3b:cf:f1:62:9d:12:b0:99: a2:d8:1e:af:78:f6:4a:6f:e6:b6:4e:df:f6:20:c8:7d:67:62: 43:74:5b:39:56:12:7f:63:0d:3d:a6:a7:49:25:49:bf:16:e0: 33:ad:66:a6:76:d5:3c:92:87:bc:de:ef:2f:d3:d0:bc:bc:b1: 44:35:d1:a4:d9:f3:0f:f4:59:61:05:20:2c:08:f7:31:e8:07: 02:df:99:b3:64:27:bb:59:cf:15:bb:13:d3:e6:49:2a:ed:04: 80:21:34:af:ec:fa:3b:c6:0e:d8:99:73:4c:db:49:43:bc:15: a6:f1:20:25:15:1a:c1:52:fe:c2:a7:41:1f:dc:ad:65:b3:e3: d2:41:de:70:aa:7a:25:06:70:8c:7a:db:ed:b1:c5:e3:fe:b0: 6c:30:10:77:07:32:d8:2e:0b:9e:8f:b6:d9:6e:cb:8c:a6:15: f7:be:72:6a:16:8a:90:d8:8f:c1:eb:2d:1b:3b:80:09:6b:02: 9b:e4:1b:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE7QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKDZCNTY3Qzg0M0U0MjUyM0UwRTVCNjRGNjRBMEYyQUUw NTUxN0JCNzAwHhcNMjQwNTE4MTczMTM2WhcNMjQwNTI1MTczMTM2WjAYMRYwFAYD VQQDEw02NjQ4ZTVmOS1iYmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1hSH8AqOGp2buThAdqfO6i6J9CSq0IBBliYsHXlgXt/2VD9qtwoOpoMfd9b6 SrOoxAKVWx6qqgR9OsTgNAR+oxcaIqhfhE6UcCb/8DOlrkb7VwpFggB3oNFMmAp/ XdkBb0vNbDzA1NVipZOGejvBKGfwMF7QZpfQIMnDQo6U0Hi+fchNZojg4KeuevRv GS+AzSA0hOEd2+enSMrhkk1luyBta+oUJh0M7jJfFQ3Ir01+TvSRdwPd6UhEE8fn fKazMtPJsv151h4O105pKCtmTO1nsceri0kCDE1znat/JD+UeImdLcsRpMPEbPqN RhChvIClUAFPtPklvRwuDDUkpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDKW3kt2 O7vhHK8SKwY/FMP9Qm9dMB8GA1UdIwQYMBaAFGtWfIQ+QlI+Dltk9koPKuBVF7tw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC84RUY0MkE0Njc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi9hMVo4aEQ1Q1VqNE9XMlQyU2c4cTRGVVh1 M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ExWjhoRDVDVWo0T1cyVDJTZzhxNEZVWHUzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUUzRC84RUY0MkE0Njc1REUxMUU4QjcwNEEyNDZDNEY5QUUwMi9hMVo4aEQ1Q1Vq NE9XMlQyU2c4cTRGVVh1M0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCN7Jep6O9bGZaL9WiH2zDSxzU7DuHmfLPrvF53pB5rLj01Vi7kEt/+ yUWyQfNuc6PsgjPfbnLkvvy7T0CNWbhIO8/xYp0SsJmi2B6vePZKb+a2Tt/2IMh9 Z2JDdFs5VhJ/Yw09pqdJJUm/FuAzrWamdtU8koe83u8v09C8vLFENdGk2fMP9Flh BSAsCPcx6AcC35mzZCe7Wc8VuxPT5kkq7QSAITSv7Po7xg7YmXNM20lDvBWm8SAl FRrBUv7Cp0Ef3K1ls+PSQd5wqnolBnCMetvtscXj/rBsMBB3BzLYLguej7bZbsuM phX3vnJqFoqQ2I/B6y0bO4AJawKb5BtJ -----END CERTIFICATE-----Generated at Sat May 18 18:12:34 2024 by rpki-client on console-fra.rpki-client.org