$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft File: JD5IKavy-QnBLdoET-XTa4IQU5I.mft (raw, json) Hash identifier: JPqSImCEXuz5vBGgtZnO9fFuufWQdzzCK7czdtsCXgA= Subject key identifier: DD:2E:75:0A:60:3C:49:D4:64:82:27:8D:C8:4D:7B:BA:E9:DB:C1:D0 Authority key identifier: 24:3E:48:29:AB:F2:F9:09:C1:2D:DA:04:4F:E5:D3:6B:82:10:53:92 Certificate issuer: /CN=A91F2152/serialNumber=243E4829ABF2F909C12DDA044FE5D36B82105392 Certificate serial: 0B93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft Manifest number: 0B89 Signing time: Fri 31 May 2024 20:05:41 +0000 Manifest this update: Fri 31 May 2024 20:05:41 +0000 Manifest next update: Fri 07 Jun 2024 20:05:41 +0000 Files and hashes: 1: JD5IKavy-QnBLdoET-XTa4IQU5I.crl (hash: E8FUX3e5A0Lxki6iwHJIWL9GmXH88SBfAxMQu00Lm+A=) 2: 02D73B5ED1A911EC97A6335DC4F9AE02.roa (hash: 5ZODFpuvGOGh3n1/2yQh4kcogA3iU+iI9ADHDF/fOu8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.crl rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 20:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2963 (0xb93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2152/serialNumber=243E4829ABF2F909C12DDA044FE5D36B82105392 Validity Not Before: May 31 20:05:41 2024 GMT Not After : Jun 7 20:05:41 2024 GMT Subject: CN=665a2d95-ea74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:ae:f0:b2:36:fe:50:4c:e6:83:6b:e6:4c:f4: 28:92:ce:f8:e0:74:93:56:90:3e:6b:7a:82:e7:ee: 04:a4:cd:d3:01:a1:66:fe:20:87:4d:40:1e:a0:8a: 1a:45:1a:99:53:f6:9f:d8:e2:97:cd:84:2e:50:f4: 17:1f:b3:25:d2:e5:01:40:72:bf:80:39:fd:f3:16: 8a:d5:d0:18:bb:ab:b6:6f:c6:4c:89:2e:77:f4:a7: fd:e0:e5:cd:05:fe:61:f1:83:a6:2b:b0:04:a4:2c: ff:b2:fb:fb:6d:e5:8d:71:f7:fd:8f:76:31:e6:72: 27:69:bf:87:f9:5e:e4:5b:bf:65:f5:5b:39:ca:8b: c6:3d:18:aa:5a:7d:aa:b2:d2:dc:e9:12:b6:0d:93: 93:8a:b8:45:b3:fc:96:ca:79:0b:66:28:16:64:04: a4:0d:00:97:db:68:e0:77:a7:b5:46:6e:73:31:88: 11:16:32:ae:af:3f:ba:10:1a:c7:05:08:a1:3b:b0: 68:4f:1f:31:fa:6f:33:50:91:c3:76:ba:a4:aa:94: 51:9b:5e:b3:11:cc:bb:75:50:a1:94:f6:81:c7:eb: cf:1a:33:5e:44:e0:c0:b7:4c:4e:d2:5d:7e:ad:62: e3:79:83:99:17:6a:bd:84:a6:41:61:bf:d7:77:aa: 51:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:2E:75:0A:60:3C:49:D4:64:82:27:8D:C8:4D:7B:BA:E9:DB:C1:D0 X509v3 Authority Key Identifier: keyid:24:3E:48:29:AB:F2:F9:09:C1:2D:DA:04:4F:E5:D3:6B:82:10:53:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:62:39:b4:fe:86:d0:94:c7:43:53:9f:60:79:8a:1c:34:8b: 2d:9a:23:71:9a:0b:de:06:3f:11:dd:e8:d6:ac:b1:06:c1:9b: 29:7b:14:fa:25:d3:3d:a1:b5:c0:47:d5:72:9b:47:12:ee:cf: aa:31:53:1c:29:a6:20:2e:5f:0d:cf:42:dc:ba:fd:c9:c1:70: 0b:03:3c:05:bd:67:33:1b:21:87:34:9c:63:2d:ec:65:02:7e: 3e:4b:de:b9:6f:05:66:d6:21:cc:0d:11:97:21:ce:8e:95:a8: e7:53:38:23:c2:29:fe:79:6d:81:39:05:8d:72:43:81:e3:55: 1f:35:70:a4:37:6b:b4:2c:44:4e:ef:eb:9b:34:44:37:59:be: 31:0d:eb:d9:33:e9:d2:8c:5e:b2:14:e4:06:b6:40:07:d5:05: 2c:14:b4:0a:18:f4:95:a0:c6:fc:b6:75:3e:9e:e9:8c:64:6f: fd:75:1e:d0:b7:0a:a7:ec:b8:f5:d7:0f:6f:f8:05:09:bd:2f: dd:56:be:fc:d4:15:bc:3b:f6:5c:70:65:ce:58:4c:bf:f7:31: b5:75:e5:95:d8:0b:95:da:4c:60:5f:2b:d8:bf:1f:fc:b2:e4: c3:44:73:a0:88:ff:53:c6:53:21:cf:78:85:09:d3:5d:9c:00: d8:2d:26:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjIxNTIxMTAvBgNVBAUTKDI0M0U0ODI5QUJGMkY5MDlDMTJEREEwNDRGRTVEMzZC ODIxMDUzOTIwHhcNMjQwNTMxMjAwNTQxWhcNMjQwNjA3MjAwNTQxWjAYMRYwFAYD VQQDEw02NjVhMmQ5NS1lYTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA467wsjb+UEzmg2vmTPQoks744HSTVpA+a3qC5+4EpM3TAaFm/iCHTUAeoIoa RRqZU/af2OKXzYQuUPQXH7Ml0uUBQHK/gDn98xaK1dAYu6u2b8ZMiS539Kf94OXN Bf5h8YOmK7AEpCz/svv7beWNcff9j3Yx5nInab+H+V7kW79l9Vs5yovGPRiqWn2q stLc6RK2DZOTirhFs/yWynkLZigWZASkDQCX22jgd6e1Rm5zMYgRFjKurz+6EBrH BQihO7BoTx8x+m8zUJHDdrqkqpRRm16zEcy7dVChlPaBx+vPGjNeRODAt0xO0l1+ rWLjeYOZF2q9hKZBYb/Xd6pRIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN0udQpg PEnUZIInjchNe7rp28HQMB8GA1UdIwQYMBaAFCQ+SCmr8vkJwS3aBE/l02uCEFOS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjE1Mi9CN0M2QzYwMDA2 RDIxMUVBOEFBQzkzNDRDNEY5QUUwMi9KRDVJS2F2eS1RbkJMZG9FVC1YVGE0SVFV NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pENUlLYXZ5LVFuQkxkb0VULVhUYTRJUVU1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjE1Mi9CN0M2QzYwMDA2RDIxMUVBOEFBQzkzNDRDNEY5QUUwMi9KRDVJS2F2eS1R bkJMZG9FVC1YVGE0SVFVNUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDOYjm0/obQlMdDU59geYocNIstmiNxmgveBj8R3ejWrLEGwZspexT6 JdM9obXAR9Vym0cS7s+qMVMcKaYgLl8Nz0Lcuv3JwXALAzwFvWczGyGHNJxjLexl An4+S965bwVm1iHMDRGXIc6OlajnUzgjwin+eW2BOQWNckOB41UfNXCkN2u0LERO 7+ubNEQ3Wb4xDevZM+nSjF6yFOQGtkAH1QUsFLQKGPSVoMb8tnU+numMZG/9dR7Q twqn7Lj11w9v+AUJvS/dVr781BW8O/ZccGXOWEy/9zG1deWV2AuV2kxgXyvYvx/8 suTDRHOgiP9TxlMhz3iFCdNdnADYLSa3 -----END CERTIFICATE-----Generated at Fri May 31 22:13:12 2024 by rpki-client on console-fra.rpki-client.org