$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft File: g71HreMCJZx1jHTIMLKebzpXc9s.mft (raw, json) Hash identifier: 1d3rLgnM6H2QXgEMFTcX9AazEXro89He2D01r5pbgz0= Subject key identifier: 83:56:4D:B9:32:B0:1F:75:46:ED:90:5A:8C:17:FB:31:85:E8:95:B1 Authority key identifier: 83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB Certificate issuer: /CN=A91EC7F2/serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Certificate serial: 1108 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft Manifest number: 10F5 Signing time: Sat 04 May 2024 18:00:23 +0000 Manifest this update: Sat 04 May 2024 18:00:22 +0000 Manifest next update: Sat 11 May 2024 18:00:22 +0000 Files and hashes: 1: g71HreMCJZx1jHTIMLKebzpXc9s.crl (hash: G2NqeVIaZ0o9QD6ScUQ+MoLvvsGxj3cU7GiyTkqh+mk=) 2: 9D003F28621711E9B8C69E15C4F9AE02.roa (hash: +qzrDfAGqrBXPR4GW3URsuXk+ocd3F55wGBo2/SuR6s=) 3: 09F041C675FB11EAB470A130C4F9AE02.roa (hash: 01auJBJrZO7TjesFidqSxu496IEavKsZQTauOd7GJVY=) 4: 9C7048DC621711E9B8C69E15C4F9AE02.roa (hash: neFrRdXondY1UocQ1N6J4fJgOamyQktDZJKHpIdzFAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4360 (0x1108) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC7F2/serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Validity Not Before: May 4 18:00:22 2024 GMT Not After : May 11 18:00:22 2024 GMT Subject: CN=663677b7-3204 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:94:78:2f:87:92:4a:71:f0:66:ab:f4:26:4b: b4:a0:6b:64:71:d2:60:b5:cd:0e:39:a4:f2:c1:46: 64:96:10:2c:c0:33:37:2a:09:7e:e0:4b:6c:54:ba: e7:61:08:ca:07:55:7c:5c:26:0d:71:c9:82:12:21: 59:d1:db:ef:eb:70:d9:05:5a:d7:15:e0:2e:85:e5: da:d5:81:b9:02:c6:b5:47:48:b5:e1:4c:0b:45:8c: d8:0e:2b:e3:e5:31:c2:0a:55:89:95:40:e2:45:76: 28:9c:48:7d:63:09:51:fb:08:d8:ff:42:5b:e5:eb: 00:7c:eb:d6:26:2f:3d:9d:bd:2c:9b:81:1d:97:2f: 49:16:56:66:4a:00:06:6e:ec:c5:0b:80:86:3e:10: 4b:86:5e:13:72:c2:14:f4:fb:07:48:19:ad:48:ee: 01:a7:65:c2:d7:9b:3d:aa:54:ef:43:04:b5:02:ea: 6a:25:8f:6a:2d:d6:d9:01:33:5a:bd:8c:8a:67:42: 5f:db:00:9c:0d:39:a8:4e:c2:de:8b:87:2f:38:14: 06:20:ea:71:8a:02:6f:51:9a:81:0b:ef:70:bb:d2: 1f:5d:8b:21:18:90:ee:25:a4:17:84:a8:ec:e7:d1: c2:e6:21:11:01:41:73:3b:94:3b:8e:3c:d6:ba:72: 0b:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:56:4D:B9:32:B0:1F:75:46:ED:90:5A:8C:17:FB:31:85:E8:95:B1 X509v3 Authority Key Identifier: keyid:83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:11:8a:9c:42:7f:3d:77:ec:01:f5:66:5e:70:03:dc:2c:0a: c4:f7:06:bf:4e:23:b4:8b:2a:4f:d4:93:bf:56:85:1d:0c:aa: f6:de:8c:db:a9:eb:fb:0b:db:55:ad:ab:12:1e:08:a3:01:43: c4:5c:0c:51:d1:09:04:01:94:a4:61:33:43:2f:06:55:31:c7: 8e:47:70:e3:49:91:b6:34:91:a4:e0:e1:83:21:a7:9d:02:6b: af:84:da:16:63:01:c7:64:35:3c:0e:c8:5e:0f:d0:f1:45:5b: 3f:5b:dd:27:ef:32:95:0f:d9:e3:9a:33:ee:dd:3d:57:f0:f9: c4:f3:a9:92:fe:a9:0f:e6:f6:53:9d:57:24:e9:48:8d:7a:56: be:37:7d:6a:78:0f:49:3e:fc:1d:69:5a:74:b0:5c:28:a6:52: 79:c1:17:bb:a6:4b:6e:47:ad:4e:0a:ed:53:36:bb:1e:11:14: e8:cf:e8:5d:1f:d2:98:59:9f:f0:b8:93:21:c0:66:4c:7a:48: 52:2c:e0:7a:a3:1f:74:2a:6e:3d:f2:eb:7d:9c:fe:3d:db:2d: fe:4f:53:a7:c7:73:1b:9d:b4:45:25:0c:b1:85:41:57:23:66: 45:66:dd:3f:ca:3e:89:a5:bc:79:8a:b2:e4:93:08:82:5d:b3: 25:4e:ed:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM3RjIxMTAvBgNVBAUTKDgzQkQ0N0FERTMwMjI1OUM3NThDNzRDODMwQjI5RTZG M0E1NzczREIwHhcNMjQwNTA0MTgwMDIyWhcNMjQwNTExMTgwMDIyWjAYMRYwFAYD VQQDEw02NjM2NzdiNy0zMjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnJR4L4eSSnHwZqv0Jku0oGtkcdJgtc0OOaTywUZklhAswDM3Kgl+4EtsVLrn YQjKB1V8XCYNccmCEiFZ0dvv63DZBVrXFeAuheXa1YG5Asa1R0i14UwLRYzYDivj 5THCClWJlUDiRXYonEh9YwlR+wjY/0Jb5esAfOvWJi89nb0sm4Edly9JFlZmSgAG buzFC4CGPhBLhl4TcsIU9PsHSBmtSO4Bp2XC15s9qlTvQwS1AupqJY9qLdbZATNa vYyKZ0Jf2wCcDTmoTsLei4cvOBQGIOpxigJvUZqBC+9wu9IfXYshGJDuJaQXhKjs 59HC5iERAUFzO5Q7jjzWunIL6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFINWTbky sB91Ru2QWowX+zGF6JWxMB8GA1UdIwQYMBaAFIO9R63jAiWcdYx0yDCynm86V3Pb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzdGMi80OEVGRDE3Q0Yx QTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0paeDFqSFRJTUxLZWJ6cFhj OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3MUhyZU1DSlp4MWpIVElNTEtlYnpwWGM5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzdGMi80OEVGRDE3Q0YxQTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0pa eDFqSFRJTUxLZWJ6cFhjOXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8EYqcQn89d+wB9WZecAPcLArE9wa/TiO0iypP1JO/VoUdDKr23ozb qev7C9tVrasSHgijAUPEXAxR0QkEAZSkYTNDLwZVMceOR3DjSZG2NJGk4OGDIaed AmuvhNoWYwHHZDU8DsheD9DxRVs/W90n7zKVD9njmjPu3T1X8PnE86mS/qkP5vZT nVck6UiNela+N31qeA9JPvwdaVp0sFwoplJ5wRe7pktuR61OCu1TNrseERToz+hd H9KYWZ/wuJMhwGZMekhSLOB6ox90Km498ut9nP492y3+T1Onx3MbnbRFJQyxhUFX I2ZFZt0/yj6Jpbx5irLkkwiCXbMlTu3z -----END CERTIFICATE-----Generated at Sat May 4 19:58:45 2024 by rpki-client on console-ams.rpki-client.org