$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE0A0/A425756216A411ED8E37C70CC4F9AE02/Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.mft File: Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.mft (raw, json) Hash identifier: fEWe7MBZhWPSGIMigtJ6UaSUNtzcmPw6Rbl39vbPGeM= Subject key identifier: A1:BC:E6:97:A3:20:AA:1B:65:C2:9A:42:28:29:B2:B8:BF:FF:1D:E7 Authority key identifier: 4A:2F:BB:46:0D:1B:D8:F3:16:F6:64:2D:9E:B5:F4:C3:B2:20:18:9D Certificate issuer: /CN=A91EE0A0/serialNumber=4A2FBB460D1BD8F316F6642D9EB5F4C3B220189D Certificate serial: 01A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE0A0/A425756216A411ED8E37C70CC4F9AE02/Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.mft Manifest number: 01A1 Signing time: Sun 19 May 2024 04:37:54 +0000 Manifest this update: Sun 19 May 2024 04:37:53 +0000 Manifest next update: Sun 26 May 2024 04:37:53 +0000 Files and hashes: 1: Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.crl (hash: w5GrxJ44azdsc6CRjP6DMiBiIXAvc4TtgqYtrLS87/s=) 2: 9682ACDE16A611ED86A3EF0CC4F9AE02.roa (hash: hcM9KSqr5HU++IAMZw2MNtwm3BZkVvg18KaHTZUpx4I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE0A0/A425756216A411ED8E37C70CC4F9AE02/Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.crl rsync://rpki.apnic.net/member_repository/A91EE0A0/A425756216A411ED8E37C70CC4F9AE02/Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 420 (0x1a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE0A0/serialNumber=4A2FBB460D1BD8F316F6642D9EB5F4C3B220189D Validity Not Before: May 19 04:37:53 2024 GMT Not After : May 26 04:37:53 2024 GMT Subject: CN=66498221-a9c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b6:4f:68:9d:81:26:52:4b:ec:7c:76:00:b3: 63:4f:b1:1f:c1:7f:2f:8c:50:b7:31:25:f6:00:02: 94:fd:4d:b5:0f:35:ec:e7:99:19:de:4a:20:26:fd: 61:08:fc:2a:92:54:57:1f:fc:2a:86:58:05:d6:a7: 72:69:75:97:e7:bc:c0:81:88:43:05:71:cd:f8:86: e4:01:3f:94:6a:c8:a6:2e:97:ac:5a:25:92:8f:55: 89:47:69:4b:d7:be:b4:10:a7:37:4c:36:85:aa:ba: fb:93:4b:b4:f3:02:36:a3:92:15:f0:f1:aa:eb:e3: 98:e9:e3:02:69:af:42:fd:14:80:a3:3c:f5:0b:0d: 2e:f3:cd:bc:fa:d8:80:7f:c8:76:70:df:25:2c:f1: 5b:ca:88:2e:d5:c2:63:65:bd:6b:9f:75:80:d7:fb: 6f:44:8f:56:63:f4:12:7f:ed:eb:88:c7:fd:0c:40: 47:67:42:97:01:9a:a9:46:1f:32:e3:ba:9c:94:18: 87:44:da:b6:64:74:6e:47:a0:aa:4b:bf:6b:0b:3f: 66:a5:72:f3:c7:d7:83:f0:f2:6a:50:09:06:d2:eb: 03:8d:fc:b9:55:4f:02:fa:e1:17:a4:a2:84:ff:50: f0:1b:62:7d:57:68:5c:a5:a5:2e:e8:73:ac:a3:ba: b3:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:BC:E6:97:A3:20:AA:1B:65:C2:9A:42:28:29:B2:B8:BF:FF:1D:E7 X509v3 Authority Key Identifier: keyid:4A:2F:BB:46:0D:1B:D8:F3:16:F6:64:2D:9E:B5:F4:C3:B2:20:18:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE0A0/A425756216A411ED8E37C70CC4F9AE02/Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE0A0/A425756216A411ED8E37C70CC4F9AE02/Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:a4:41:1f:34:17:80:9f:68:73:b1:b6:71:56:0d:1f:c6:93: 3f:16:d6:fa:1f:bc:5e:2a:30:98:14:ef:f4:e0:58:d2:68:53: a8:d2:5e:d8:0a:52:7f:9f:47:81:e8:32:8f:a3:1c:cf:59:22: 16:14:00:92:93:4e:f6:68:43:da:94:38:a5:36:75:70:cf:d7: f8:0e:ba:30:91:6d:94:24:10:32:bf:dd:11:13:47:72:24:07: ae:eb:5e:a8:54:e7:2e:82:fa:af:83:0d:86:d7:96:5e:3c:ce: be:f7:ea:28:6b:5a:c9:76:c2:bc:67:f8:63:cd:b2:4b:62:67: f0:45:45:7b:b4:1d:10:41:a4:23:5a:60:59:f1:83:97:a5:d8: 1a:83:89:8c:88:ad:7f:f9:3d:56:6f:0f:ec:7e:c6:2b:c0:ba: a4:48:65:2a:dc:c9:71:63:c9:53:f9:38:07:55:0b:19:3e:eb: 00:9e:ff:fd:b1:b5:e7:0d:50:58:40:ff:43:7b:82:b2:52:fc: b5:ca:6e:8d:fe:a5:8b:7c:d1:59:bd:d8:4b:c9:14:2b:ab:b4: 13:9d:45:48:cd:df:c2:35:18:59:4b:ce:17:4b:e5:64:12:80: 4e:90:82:6e:50:bb:59:8d:3b:27:a5:ad:36:99:01:5f:d2:b0: 6f:9d:d2:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUwQTAxMTAvBgNVBAUTKDRBMkZCQjQ2MEQxQkQ4RjMxNkY2NjQyRDlFQjVGNEMz QjIyMDE4OUQwHhcNMjQwNTE5MDQzNzUzWhcNMjQwNTI2MDQzNzUzWjAYMRYwFAYD VQQDEw02NjQ5ODIyMS1hOWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxLZPaJ2BJlJL7Hx2ALNjT7EfwX8vjFC3MSX2AAKU/U21DzXs55kZ3kogJv1h CPwqklRXH/wqhlgF1qdyaXWX57zAgYhDBXHN+IbkAT+UasimLpesWiWSj1WJR2lL 1760EKc3TDaFqrr7k0u08wI2o5IV8PGq6+OY6eMCaa9C/RSAozz1Cw0u8828+tiA f8h2cN8lLPFbyogu1cJjZb1rn3WA1/tvRI9WY/QSf+3riMf9DEBHZ0KXAZqpRh8y 47qclBiHRNq2ZHRuR6CqS79rCz9mpXLzx9eD8PJqUAkG0usDjfy5VU8C+uEXpKKE /1DwG2J9V2hcpaUu6HOso7qzaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKG85pej IKobZcKaQigpsri//x3nMB8GA1UdIwQYMBaAFEovu0YNG9jzFvZkLZ619MOyIBid MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTBBMC9BNDI1NzU2MjE2 QTQxMUVEOEUzN0M3MENDNEY5QUUwMi9TaS03UmcwYjJQTVc5bVF0bnJYMHc3SWdH SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NpLTdSZzBiMlBNVzltUXRuclgwdzdJZ0dKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTBBMC9BNDI1NzU2MjE2QTQxMUVEOEUzN0M3MENDNEY5QUUwMi9TaS03UmcwYjJQ TVc5bVF0bnJYMHc3SWdHSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+pEEfNBeAn2hzsbZxVg0fxpM/Ftb6H7xeKjCYFO/04FjSaFOo0l7Y ClJ/n0eB6DKPoxzPWSIWFACSk072aEPalDilNnVwz9f4DrowkW2UJBAyv90RE0dy JAeu616oVOcugvqvgw2G15ZePM6+9+ooa1rJdsK8Z/hjzbJLYmfwRUV7tB0QQaQj WmBZ8YOXpdgag4mMiK1/+T1Wbw/sfsYrwLqkSGUq3MlxY8lT+TgHVQsZPusAnv/9 sbXnDVBYQP9De4KyUvy1ym6N/qWLfNFZvdhLyRQrq7QTnUVIzd/CNRhZS84XS+Vk EoBOkIJuULtZjTsnpa02mQFf0rBvndJA -----END CERTIFICATE-----Generated at Sun May 19 05:48:52 2024 by rpki-client on console-fra.rpki-client.org