$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft File: Df2AHulmIu0X31XXqqZMce_5t70.mft (raw, json) Hash identifier: ++vyIX257+hZl2YrF/TXJPCJOJzGtADfdkxP9ODpt6Q= Subject key identifier: 11:3C:1F:BA:BE:77:16:51:44:B1:EA:2F:F4:7C:32:B8:A1:73:94:D7 Authority key identifier: 0D:FD:80:1E:E9:66:22:ED:17:DF:55:D7:AA:A6:4C:71:EF:F9:B7:BD Certificate issuer: /CN=A91F4E89/serialNumber=0DFD801EE96622ED17DF55D7AAA64C71EFF9B7BD Certificate serial: 0AC1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft Manifest number: 0ABC Signing time: Sat 18 May 2024 20:07:24 +0000 Manifest this update: Sat 18 May 2024 20:07:24 +0000 Manifest next update: Sat 25 May 2024 20:07:24 +0000 Files and hashes: 1: Df2AHulmIu0X31XXqqZMce_5t70.crl (hash: u2nhsWpn2zlgMv0EvUqtAo0+4FWAMBV8CRZa70cVG08=) 2: 72F52C962AF511EA8C989441C4F9AE02.roa (hash: mNsfVlUdSNKkq52L+MBYvDx8ykV4jZ5oquFR9uSMYKo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.crl rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2753 (0xac1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4E89/serialNumber=0DFD801EE96622ED17DF55D7AAA64C71EFF9B7BD Validity Not Before: May 18 20:07:24 2024 GMT Not After : May 25 20:07:24 2024 GMT Subject: CN=66490a7c-265f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:37:22:f4:da:6f:e3:bc:08:a3:84:15:ee:a3: c9:8b:f5:91:b6:2e:a0:86:87:03:98:97:26:63:bf: 91:11:95:a1:cb:ed:39:d7:45:fb:a5:86:78:4d:a9: da:2e:6a:38:4f:de:2f:dc:68:b5:7b:e3:c2:58:26: 5a:4d:ec:8d:22:23:fa:31:cf:fd:1c:e3:9c:68:35: 2e:82:ef:33:5a:91:0f:51:e8:97:2d:14:92:45:83: b1:45:14:fb:c8:8c:2d:c2:4f:b9:9a:7d:37:a3:bd: 46:f6:fc:a1:63:7f:a4:5e:db:f6:98:1f:4c:cb:6e: 8f:f9:b5:14:a7:ae:dc:4e:0a:d7:a6:4e:c6:73:3e: 14:46:a4:20:a4:cb:03:f8:2a:d7:43:10:1d:ec:23: 2d:c9:3a:81:1d:81:3a:67:fc:54:35:10:1b:43:8a: 94:84:33:a9:e1:8b:7a:90:9e:a6:d4:a3:b7:b3:07: 91:b8:7f:71:6e:e8:88:a7:b2:c8:9c:59:49:7b:9b: 4a:d4:05:7f:b5:7a:eb:f1:74:3d:08:cb:11:0b:4f: 8b:d3:31:59:8b:46:f6:74:c9:c6:f1:94:a5:02:0b: 82:07:ce:ce:21:87:92:9f:42:3a:d1:61:98:e9:95: 97:6a:fb:7c:dc:20:ee:46:d9:bb:1f:a5:32:4e:91: fb:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:3C:1F:BA:BE:77:16:51:44:B1:EA:2F:F4:7C:32:B8:A1:73:94:D7 X509v3 Authority Key Identifier: keyid:0D:FD:80:1E:E9:66:22:ED:17:DF:55:D7:AA:A6:4C:71:EF:F9:B7:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:20:41:c7:71:57:97:58:a5:96:ec:63:d3:27:18:4a:36:af: d5:27:1b:68:fd:71:92:73:8c:b2:96:e4:87:f5:13:34:46:a3: bc:35:3b:7c:92:0e:2f:99:00:7e:97:69:6d:ee:eb:8f:f3:ac: 67:58:2c:55:ac:a0:43:88:23:fe:c1:c2:76:3a:10:43:79:3f: 6f:5a:17:1a:c4:83:38:e7:1e:0f:68:5b:87:a0:73:60:81:16: 4f:c5:07:1d:c7:a5:76:79:c0:a0:64:3a:4d:07:43:70:28:93: da:3b:3d:46:48:09:fe:66:ab:f5:8f:85:67:52:30:6a:68:94: 3b:dd:1d:e9:c8:53:86:04:64:8e:5b:fb:b8:97:bf:f2:91:25: ee:52:a6:e7:e1:46:93:83:12:45:8c:c2:39:a0:9b:08:e0:9a: 42:94:93:dc:aa:a3:10:e0:b4:b0:07:af:b5:e9:82:c9:d7:14: 1d:72:14:66:9f:25:06:43:2f:7a:62:ee:e9:e4:d4:1b:a4:85: b7:b9:03:b4:58:00:42:19:ab:c8:8a:0f:89:ff:c5:45:b2:a6: 52:47:d2:32:79:53:08:18:70:2b:be:c1:2a:9e:9a:8d:a6:b0: a3:fd:59:55:e1:47:2a:14:d3:48:1a:34:6e:c4:72:1e:16:d3: 1e:78:d9:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCsEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRFODkxMTAvBgNVBAUTKDBERkQ4MDFFRTk2NjIyRUQxN0RGNTVEN0FBQTY0Qzcx RUZGOUI3QkQwHhcNMjQwNTE4MjAwNzI0WhcNMjQwNTI1MjAwNzI0WjAYMRYwFAYD VQQDEw02NjQ5MGE3Yy0yNjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzTci9Npv47wIo4QV7qPJi/WRti6ghocDmJcmY7+REZWhy+0510X7pYZ4Tana Lmo4T94v3Gi1e+PCWCZaTeyNIiP6Mc/9HOOcaDUugu8zWpEPUeiXLRSSRYOxRRT7 yIwtwk+5mn03o71G9vyhY3+kXtv2mB9My26P+bUUp67cTgrXpk7Gcz4URqQgpMsD +CrXQxAd7CMtyTqBHYE6Z/xUNRAbQ4qUhDOp4Yt6kJ6m1KO3sweRuH9xbuiIp7LI nFlJe5tK1AV/tXrr8XQ9CMsRC0+L0zFZi0b2dMnG8ZSlAguCB87OIYeSn0I60WGY 6ZWXavt83CDuRtm7H6UyTpH7cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBE8H7q+ dxZRRLHqL/R8Mrihc5TXMB8GA1UdIwQYMBaAFA39gB7pZiLtF99V16qmTHHv+be9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEU4OS9DNTMzRDcyNDJB RjQxMUVBQTQ4RjE1NDFDNEY5QUUwMi9EZjJBSHVsbUl1MFgzMVhYcXFaTWNlXzV0 NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RmMkFIdWxtSXUwWDMxWFhxcVpNY2VfNXQ3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEU4OS9DNTMzRDcyNDJBRjQxMUVBQTQ4RjE1NDFDNEY5QUUwMi9EZjJBSHVsbUl1 MFgzMVhYcXFaTWNlXzV0NzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRIEHHcVeXWKWW7GPTJxhKNq/VJxto/XGSc4yyluSH9RM0RqO8NTt8 kg4vmQB+l2lt7uuP86xnWCxVrKBDiCP+wcJ2OhBDeT9vWhcaxIM45x4PaFuHoHNg gRZPxQcdx6V2ecCgZDpNB0NwKJPaOz1GSAn+Zqv1j4VnUjBqaJQ73R3pyFOGBGSO W/u4l7/ykSXuUqbn4UaTgxJFjMI5oJsI4JpClJPcqqMQ4LSwB6+16YLJ1xQdchRm nyUGQy96Yu7p5NQbpIW3uQO0WABCGavIig+J/8VFsqZSR9IyeVMIGHArvsEqnpqN prCj/VlV4UcqFNNIGjRuxHIeFtMeeNno -----END CERTIFICATE-----Generated at Sat May 18 20:48:21 2024 by rpki-client on console-fra.rpki-client.org