$ rpki-client -vvf rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft File: 7aOF1FcjseHfKXP2K10jovv9JoY.mft (raw, json) Hash identifier: iN6Xeq8/X1yUWP+v8uU+tAVSr+nKcOnwgByxtWOX5UA= Subject key identifier: AC:48:7F:7F:47:83:D1:F7:EE:B1:A9:FC:5D:D8:C3:93:72:B0:BA:5F Authority key identifier: ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86 Certificate issuer: /CN=A91F147C/serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686 Certificate serial: 01D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft Manifest number: 01D6 Signing time: Sun 19 May 2024 04:21:06 +0000 Manifest this update: Sun 19 May 2024 04:21:05 +0000 Manifest next update: Sun 26 May 2024 04:21:05 +0000 Files and hashes: 1: 7aOF1FcjseHfKXP2K10jovv9JoY.crl (hash: UmIWjqsH3vIPRt0r2+ULXlgrnBdhgCbFr930Ii0RPI4=) 2: F95633FE01EC11ED84469937C4F9AE02.roa (hash: PAgf7XDeffE3KOwuZNUH7PCHSYuNPjMYJulxpgdyLbE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.crl rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 473 (0x1d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F147C/serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686 Validity Not Before: May 19 04:21:05 2024 GMT Not After : May 26 04:21:05 2024 GMT Subject: CN=66497e31-ca24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ca:a3:20:c7:0a:a9:d2:0b:5a:6b:5f:e2:92: d2:00:7c:3a:9f:41:b6:b4:b9:60:0d:4d:e4:09:eb: 6b:f0:8d:05:a6:9f:98:df:e2:ff:b6:97:cb:d7:c5: fb:08:2b:77:33:aa:68:d2:39:c0:f4:d9:cd:5d:b3: 76:65:ef:82:13:1c:47:82:2f:91:54:81:b4:04:8f: 8a:df:09:e0:f6:ee:0e:ab:33:22:9a:15:a5:87:0f: ca:7f:6b:2b:42:0b:08:c0:d5:c0:6c:20:8f:de:21: 9c:8b:dc:ce:f3:3d:a2:be:f7:fc:7f:e7:2b:9b:3d: 27:e9:f2:87:0a:1a:7b:66:fd:8a:97:4f:ad:b7:61: 4f:b7:63:b3:d6:e7:d6:35:dd:40:2e:99:34:b7:02: de:f6:26:b5:3e:05:8f:d2:d7:82:59:26:fb:5f:3d: 55:c7:11:ad:48:5a:c9:f6:b1:49:48:99:3c:d8:06: 9b:41:13:12:c4:5e:28:04:4c:2b:e0:da:d9:f4:36: e1:a9:d7:c6:9d:93:83:bd:21:1c:d3:e9:14:04:a1: bb:70:55:8c:84:e5:d3:01:22:95:b9:84:0c:7e:00: a2:e5:e5:55:40:e3:29:7e:a8:93:98:f6:4b:1c:db: 98:5b:7c:b4:93:de:c4:7f:da:78:04:36:72:ba:16: 02:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:48:7F:7F:47:83:D1:F7:EE:B1:A9:FC:5D:D8:C3:93:72:B0:BA:5F X509v3 Authority Key Identifier: keyid:ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:c3:cf:bd:67:e3:8d:48:02:90:e7:e3:45:bd:e1:61:0c:6d: 31:62:c6:99:1c:a3:56:88:8c:8a:2c:b2:ff:62:5b:57:a9:0b: 49:ee:34:30:ff:a1:0d:2f:f2:c0:78:f8:f3:b5:f1:73:26:99: 9d:d3:ad:52:e0:90:f0:aa:20:09:8f:41:4f:04:62:44:5b:0e: 19:c1:9e:d4:8a:6c:26:7b:af:6e:6e:36:3b:d4:c0:f1:cd:74: 97:d3:b6:4f:66:af:ae:d5:64:11:eb:f0:de:d1:6b:3d:03:07: c2:56:90:ef:d7:c5:c3:43:3c:ac:7b:97:d9:97:b0:22:e7:89: 35:7d:32:c8:d7:7e:49:e8:34:7d:ec:b5:0e:3b:55:d4:2f:1e: 0b:9a:8f:2c:d6:ce:5e:62:f9:10:b3:0f:a4:fc:f4:2b:57:a9: 6d:4b:76:64:62:e4:96:78:6c:5a:3c:40:64:a1:0e:6a:33:4d: 20:00:ce:45:1e:4e:27:b6:a8:c3:c0:84:d2:52:bd:9a:45:fa: ae:2d:eb:3c:20:df:13:34:5b:92:34:88:90:d7:4e:cf:10:a4: 33:87:4b:35:98:8a:0a:70:2d:98:a6:c3:23:e2:36:e4:4b:5b: 66:1b:1b:81:6b:37:84:42:01:2f:75:e1:d4:4d:3b:21:4d:90: c1:33:ec:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE0N0MxMTAvBgNVBAUTKEVEQTM4NUQ0NTcyM0IxRTFERjI5NzNGNjJCNUQyM0Ey RkJGRDI2ODYwHhcNMjQwNTE5MDQyMTA1WhcNMjQwNTI2MDQyMTA1WjAYMRYwFAYD VQQDEw02NjQ5N2UzMS1jYTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMqjIMcKqdILWmtf4pLSAHw6n0G2tLlgDU3kCetr8I0Fpp+Y3+L/tpfL18X7 CCt3M6po0jnA9NnNXbN2Ze+CExxHgi+RVIG0BI+K3wng9u4OqzMimhWlhw/Kf2sr QgsIwNXAbCCP3iGci9zO8z2ivvf8f+crmz0n6fKHChp7Zv2Kl0+tt2FPt2Oz1ufW Nd1ALpk0twLe9ia1PgWP0teCWSb7Xz1VxxGtSFrJ9rFJSJk82AabQRMSxF4oBEwr 4NrZ9DbhqdfGnZODvSEc0+kUBKG7cFWMhOXTASKVuYQMfgCi5eVVQOMpfqiTmPZL HNuYW3y0k97Ef9p4BDZyuhYCDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKxIf39H g9H37rGp/F3Yw5NysLpfMB8GA1UdIwQYMBaAFO2jhdRXI7Hh3ylz9itdI6L7/SaG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTQ3Qy83RTBGNTg3MjAx RTkxMUVEQUY4QkRFMzBDNEY5QUUwMi83YU9GMUZjanNlSGZLWFAySzEwam92djlK b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdhT0YxRmNqc2VIZktYUDJLMTBqb3Z2OUpvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTQ3Qy83RTBGNTg3MjAxRTkxMUVEQUY4QkRFMzBDNEY5QUUwMi83YU9GMUZjanNl SGZLWFAySzEwam92djlKb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByw8+9Z+ONSAKQ5+NFveFhDG0xYsaZHKNWiIyKLLL/YltXqQtJ7jQw /6ENL/LAePjztfFzJpmd061S4JDwqiAJj0FPBGJEWw4ZwZ7Uimwme69ubjY71MDx zXSX07ZPZq+u1WQR6/De0Ws9AwfCVpDv18XDQzyse5fZl7Ai54k1fTLI135J6DR9 7LUOO1XULx4Lmo8s1s5eYvkQsw+k/PQrV6ltS3ZkYuSWeGxaPEBkoQ5qM00gAM5F Hk4ntqjDwITSUr2aRfquLes8IN8TNFuSNIiQ107PEKQzh0s1mIoKcC2YpsMj4jbk S1tmGxuBazeEQgEvdeHUTTshTZDBM+yR -----END CERTIFICATE-----Generated at Sun May 19 04:56:56 2024 by rpki-client on console-fra.rpki-client.org