$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF73C/ED068BB8A49111EAB257942DC4F9AE02/wKVDSTesKQBoKRal--4VQ84LCKc.mft File: wKVDSTesKQBoKRal--4VQ84LCKc.mft (raw, json) Hash identifier: SrXzSc83DYpXcb4OG+YStkkM3pWIsUdR4k/GosEpOnI= Subject key identifier: 23:1D:66:B2:BF:FE:70:68:41:F3:3C:94:90:DA:9D:40:AC:A3:65:30 Authority key identifier: C0:A5:43:49:37:AC:29:00:68:29:16:A5:FB:EE:15:43:CE:0B:08:A7 Certificate issuer: /CN=A91EF73C/serialNumber=C0A5434937AC2900682916A5FBEE1543CE0B08A7 Certificate serial: 0867 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wKVDSTesKQBoKRal--4VQ84LCKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF73C/ED068BB8A49111EAB257942DC4F9AE02/wKVDSTesKQBoKRal--4VQ84LCKc.mft Manifest number: 084F Signing time: Sat 18 May 2024 21:40:24 +0000 Manifest this update: Sat 18 May 2024 21:40:23 +0000 Manifest next update: Sat 25 May 2024 21:40:23 +0000 Files and hashes: 1: wKVDSTesKQBoKRal--4VQ84LCKc.crl (hash: RJiy3jSsfLrCAWv8d1OwREHSpElSIeE2IASak1Rc63A=) 2: 8B3FB092C2AC11EAB23E1C3AC4F9AE02.roa (hash: 17hpvxMSjtQePmhVyR39FiPD8SMvOv4PQNceC7ad9jo=) 3: 87A141747A5511EBA4258A7DC4F9AE02.roa (hash: DLgk/aAbys+BHUbM00Kk8wdZoY7yynf+AIo3v9dwEog=) 4: 8BD44914C2AC11EAB23E1C3AC4F9AE02.roa (hash: TSg3FcqUe8p3xEuIzBsr4QB4/ANA6z6swx+zkWjwaK0=) 5: FCA6CE3221DE11EBA27D251CC4F9AE02.roa (hash: 3Dik/OvnzaDMWKCwltL+C4K5s3w3EsfYVOeWUSSaqfM=) 6: FD55206821DE11EBA27D251CC4F9AE02.roa (hash: 2Hr6PLVOg0G2Zq+jyMRiF2YFY0RnBVvMSLchOJswLI8=) 7: 6B641F14232411EB87A6CB0DC4F9AE02.roa (hash: HHF+6q1D+r8lGLgsseh0sJDPUPIkzAO0xFWeHRcJmzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF73C/ED068BB8A49111EAB257942DC4F9AE02/wKVDSTesKQBoKRal--4VQ84LCKc.crl rsync://rpki.apnic.net/member_repository/A91EF73C/ED068BB8A49111EAB257942DC4F9AE02/wKVDSTesKQBoKRal--4VQ84LCKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wKVDSTesKQBoKRal--4VQ84LCKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2151 (0x867) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF73C/serialNumber=C0A5434937AC2900682916A5FBEE1543CE0B08A7 Validity Not Before: May 18 21:40:23 2024 GMT Not After : May 25 21:40:23 2024 GMT Subject: CN=66492047-853e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a0:60:40:48:e9:c3:25:a0:e2:ab:3c:08:8e: 4b:5b:2d:04:2c:39:4f:3e:4c:fb:58:aa:01:a0:98: eb:89:ed:8d:23:cd:f3:d0:60:be:47:f1:f2:3b:a4: 41:fc:16:f1:cc:95:66:75:48:3a:21:4c:ea:e0:9d: 87:2e:b0:61:ac:06:dd:d0:58:91:b4:6c:3e:95:3a: 39:33:14:71:05:ab:2a:e1:19:0d:60:d1:c9:2c:32: 5f:78:0b:ab:25:c6:40:9d:16:64:66:3d:c2:00:1c: 94:c9:42:69:51:48:77:9c:6d:29:03:16:2b:a2:89: a0:33:3e:eb:bb:a2:7b:7a:3a:07:68:f5:ee:35:6a: f2:90:47:22:fd:4c:1d:8c:e3:01:27:43:71:96:23: 96:e2:a1:a8:02:d6:aa:7f:0f:17:ba:83:f4:cb:0c: 3b:4e:5b:d0:17:d6:51:a4:2b:3b:ae:e6:ae:40:4a: ca:71:7b:09:3b:5d:14:d9:6f:1d:18:41:9a:d9:c3: 10:4a:e8:89:b5:05:39:b9:27:10:20:9a:fa:02:9c: f2:ef:17:10:41:67:d4:28:80:cb:10:83:ef:b7:ce: b5:df:86:10:51:78:86:19:21:92:21:c6:80:41:08: 05:29:e6:15:12:4f:13:08:75:2c:73:c7:a5:46:c8: b2:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:1D:66:B2:BF:FE:70:68:41:F3:3C:94:90:DA:9D:40:AC:A3:65:30 X509v3 Authority Key Identifier: keyid:C0:A5:43:49:37:AC:29:00:68:29:16:A5:FB:EE:15:43:CE:0B:08:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF73C/ED068BB8A49111EAB257942DC4F9AE02/wKVDSTesKQBoKRal--4VQ84LCKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wKVDSTesKQBoKRal--4VQ84LCKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF73C/ED068BB8A49111EAB257942DC4F9AE02/wKVDSTesKQBoKRal--4VQ84LCKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:43:0c:85:b8:14:4c:53:64:e5:ce:b1:83:3b:0a:6c:bc:13: c9:87:62:3c:c2:f9:44:b9:88:39:ff:0b:10:fe:1b:92:8e:8b: 64:f2:a0:63:d8:58:35:b4:3e:1f:ec:74:b0:98:ef:b5:3c:1f: 4a:3b:80:69:07:0d:fb:a3:3e:a2:61:74:25:9d:30:16:25:62: 40:b5:a0:bf:93:4e:1e:94:02:54:db:4f:89:db:5d:3d:dc:ed: 78:65:8f:d0:f1:3c:d3:f2:8f:ee:af:cc:87:a9:23:62:86:8b: a3:de:4d:d2:3c:e7:1e:cc:31:65:90:de:62:50:54:eb:6d:ab: f2:5d:66:9e:18:20:04:2a:4b:21:06:bd:18:cf:60:52:e0:cf: 76:d7:5b:45:be:1b:60:a9:71:1d:2b:eb:7d:e2:7f:d0:f4:fc: bd:71:18:31:6f:3b:4e:cb:bd:57:2c:92:62:30:bd:34:82:d0: 2d:f4:db:57:d2:b2:43:57:39:b8:b4:71:1e:8a:04:6b:24:44: 97:8d:c4:56:58:a5:b2:ea:94:da:e2:3a:d8:93:18:f4:38:39: 70:78:c1:6f:51:8c:11:a2:e9:b9:56:e9:c2:2a:01:57:9b:60: 00:d1:02:10:97:02:f0:30:50:3d:25:e7:c2:00:b2:da:18:6b: b4:95:4b:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY3M0MxMTAvBgNVBAUTKEMwQTU0MzQ5MzdBQzI5MDA2ODI5MTZBNUZCRUUxNTQz Q0UwQjA4QTcwHhcNMjQwNTE4MjE0MDIzWhcNMjQwNTI1MjE0MDIzWjAYMRYwFAYD VQQDEw02NjQ5MjA0Ny04NTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtaBgQEjpwyWg4qs8CI5LWy0ELDlPPkz7WKoBoJjrie2NI83z0GC+R/HyO6RB /BbxzJVmdUg6IUzq4J2HLrBhrAbd0FiRtGw+lTo5MxRxBasq4RkNYNHJLDJfeAur JcZAnRZkZj3CAByUyUJpUUh3nG0pAxYroomgMz7ru6J7ejoHaPXuNWrykEci/Uwd jOMBJ0NxliOW4qGoAtaqfw8XuoP0yww7TlvQF9ZRpCs7ruauQErKcXsJO10U2W8d GEGa2cMQSuiJtQU5uScQIJr6Apzy7xcQQWfUKIDLEIPvt86134YQUXiGGSGSIcaA QQgFKeYVEk8TCHUsc8elRsiyPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCMdZrK/ /nBoQfM8lJDanUCso2UwMB8GA1UdIwQYMBaAFMClQ0k3rCkAaCkWpfvuFUPOCwin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjczQy9FRDA2OEJCOEE0 OTExMUVBQjI1Nzk0MkRDNEY5QUUwMi93S1ZEU1Rlc0tRQm9LUmFsLS00VlE4NExD S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dLVkRTVGVzS1FCb0tSYWwtLTRWUTg0TENLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjczQy9FRDA2OEJCOEE0OTExMUVBQjI1Nzk0MkRDNEY5QUUwMi93S1ZEU1Rlc0tR Qm9LUmFsLS00VlE4NExDS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWQwyFuBRMU2TlzrGDOwpsvBPJh2I8wvlEuYg5/wsQ/huSjotk8qBj 2Fg1tD4f7HSwmO+1PB9KO4BpBw37oz6iYXQlnTAWJWJAtaC/k04elAJU20+J2109 3O14ZY/Q8TzT8o/ur8yHqSNihouj3k3SPOcezDFlkN5iUFTrbavyXWaeGCAEKksh Br0Yz2BS4M9211tFvhtgqXEdK+t94n/Q9Py9cRgxbztOy71XLJJiML00gtAt9NtX 0rJDVzm4tHEeigRrJESXjcRWWKWy6pTa4jrYkxj0ODlweMFvUYwRoum5VunCKgFX m2AA0QIQlwLwMFA9JefCALLaGGu0lUv0 -----END CERTIFICATE-----Generated at Sun May 19 00:16:20 2024 by rpki-client on console-fra.rpki-client.org