$ rpki-client -vvf rpki.apnic.net/member_repository/A91F61DD/7C78E2BC309311ECAB68433FC4F9AE02/FdYNYNak9QCRCZpy4NBe7z6vduk.mft File: FdYNYNak9QCRCZpy4NBe7z6vduk.mft (raw, json) Hash identifier: an74Z09l4lhv7/WsZJezLu9yi4Opvq0+hdcR3OO7LoY= Subject key identifier: 39:CC:7B:EC:7B:90:F1:B0:6B:D9:26:6A:C7:2F:7D:BE:56:79:97:55 Authority key identifier: 15:D6:0D:60:D6:A4:F5:00:91:09:9A:72:E0:D0:5E:EF:3E:AF:76:E9 Certificate issuer: /CN=A91F61DD/serialNumber=15D60D60D6A4F50091099A72E0D05EEF3EAF76E9 Certificate serial: 03F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FdYNYNak9QCRCZpy4NBe7z6vduk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F61DD/7C78E2BC309311ECAB68433FC4F9AE02/FdYNYNak9QCRCZpy4NBe7z6vduk.mft Manifest number: 03F0 Signing time: Sun 19 May 2024 02:15:06 +0000 Manifest this update: Sun 19 May 2024 02:15:05 +0000 Manifest next update: Sun 26 May 2024 02:15:05 +0000 Files and hashes: 1: FdYNYNak9QCRCZpy4NBe7z6vduk.crl (hash: bq7ECueE1Pz8TlFO9s9DoCXZjaHK+sJC4SWq+bd/ogs=) 2: BFEEB5E4309D11ECABBBBF25C4F9AE02.roa (hash: /QVVslrMllSP7F9AmwTYq2wLhlMYkZjpCuxsGXQniMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F61DD/7C78E2BC309311ECAB68433FC4F9AE02/FdYNYNak9QCRCZpy4NBe7z6vduk.crl rsync://rpki.apnic.net/member_repository/A91F61DD/7C78E2BC309311ECAB68433FC4F9AE02/FdYNYNak9QCRCZpy4NBe7z6vduk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FdYNYNak9QCRCZpy4NBe7z6vduk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1015 (0x3f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F61DD/serialNumber=15D60D60D6A4F50091099A72E0D05EEF3EAF76E9 Validity Not Before: May 19 02:15:05 2024 GMT Not After : May 26 02:15:05 2024 GMT Subject: CN=664960a9-2a13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:0b:17:ec:f2:34:4a:da:34:97:44:a4:11:ac: 70:80:8e:fd:68:07:a1:15:e5:01:1f:f4:4b:74:e1: 31:ae:fd:3c:6e:3e:a6:75:86:3d:40:ad:42:68:e9: 6e:68:d0:d3:18:3a:32:de:7e:d0:38:ef:78:36:98: 5c:83:80:4a:6e:bb:fb:de:93:da:61:c3:d7:05:f8: e7:0a:fe:53:de:53:99:39:b8:0b:fb:ce:7e:e5:12: d0:0d:f6:0c:e4:e6:d8:75:90:fe:e8:20:16:ae:9f: cb:3a:5f:0f:8e:8f:bf:1d:3e:cd:9f:7c:95:3e:1a: 22:30:02:f9:50:01:c8:b0:2f:18:ba:69:18:05:b3: 46:0e:aa:e2:c7:57:f1:1e:c9:3a:ca:79:d8:ca:b5: d7:c1:ae:e9:7a:0e:5b:0f:40:25:d0:c7:19:3d:75: a6:5f:b3:de:7d:0c:36:8e:ac:92:31:13:4e:59:ac: 0c:23:9b:cb:f9:f2:88:74:28:73:45:b2:a9:f4:0f: 09:1a:b7:e0:7a:6f:83:4b:2a:c8:7a:ec:b5:4b:01: bf:d1:04:ab:bd:83:56:b7:f2:c5:f8:75:70:76:ec: d0:cb:d1:19:e0:3b:34:84:90:9b:5e:26:cf:08:56: 51:76:a2:54:fc:fb:2f:1d:4d:33:00:2d:9c:5e:62: 21:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:CC:7B:EC:7B:90:F1:B0:6B:D9:26:6A:C7:2F:7D:BE:56:79:97:55 X509v3 Authority Key Identifier: keyid:15:D6:0D:60:D6:A4:F5:00:91:09:9A:72:E0:D0:5E:EF:3E:AF:76:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F61DD/7C78E2BC309311ECAB68433FC4F9AE02/FdYNYNak9QCRCZpy4NBe7z6vduk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FdYNYNak9QCRCZpy4NBe7z6vduk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F61DD/7C78E2BC309311ECAB68433FC4F9AE02/FdYNYNak9QCRCZpy4NBe7z6vduk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:2a:77:7c:47:87:39:70:c4:dd:7e:23:bc:84:64:10:4e:b4: 8d:01:f7:ba:f3:b7:be:3a:23:c6:4f:37:2a:14:15:88:0a:42: df:03:75:f1:11:c8:98:14:5d:39:6f:d6:c5:5e:9b:74:15:18: 70:85:51:69:45:14:3c:b4:73:c4:8b:42:fb:4d:42:cc:b3:e1: 3e:25:1a:f6:81:99:a2:a4:a7:f0:c9:c1:72:37:23:ad:07:46: 80:7a:12:76:aa:3b:02:d2:ea:c0:6b:bc:b6:73:19:9a:7b:ab: a0:b3:2c:8c:69:78:5d:29:79:b0:7d:af:13:3e:6a:f1:d1:9c: 6a:e7:d9:11:6c:8e:67:4f:87:e3:56:b3:c2:f2:8f:51:bb:2e: 88:ac:de:16:c1:4a:4f:19:74:7b:a7:5b:78:99:6a:96:24:6f: 73:67:37:db:04:11:b3:ea:dd:b3:0f:b3:ad:6e:9e:b9:82:3b: 2e:38:26:69:83:d8:33:4c:29:d1:7f:30:49:7c:56:dc:31:d7: 3e:2c:59:78:3d:7b:88:69:93:a1:77:c1:62:cc:be:c8:b3:9d: 60:3d:61:c2:19:54:6a:38:68:d2:22:3c:a5:22:8b:39:09:9f: 09:71:a4:88:35:e3:6b:40:0d:84:c0:5b:fd:f1:18:18:55:d2: e2:ab:cf:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYxREQxMTAvBgNVBAUTKDE1RDYwRDYwRDZBNEY1MDA5MTA5OUE3MkUwRDA1RUVG M0VBRjc2RTkwHhcNMjQwNTE5MDIxNTA1WhcNMjQwNTI2MDIxNTA1WjAYMRYwFAYD VQQDEw02NjQ5NjBhOS0yYTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7QsX7PI0Sto0l0SkEaxwgI79aAehFeUBH/RLdOExrv08bj6mdYY9QK1CaOlu aNDTGDoy3n7QOO94Nphcg4BKbrv73pPaYcPXBfjnCv5T3lOZObgL+85+5RLQDfYM 5ObYdZD+6CAWrp/LOl8Pjo+/HT7Nn3yVPhoiMAL5UAHIsC8YumkYBbNGDqrix1fx Hsk6ynnYyrXXwa7peg5bD0Al0McZPXWmX7PefQw2jqySMRNOWawMI5vL+fKIdChz RbKp9A8JGrfgem+DSyrIeuy1SwG/0QSrvYNWt/LF+HVwduzQy9EZ4Ds0hJCbXibP CFZRdqJU/PsvHU0zAC2cXmIhrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDnMe+x7 kPGwa9kmascvfb5WeZdVMB8GA1UdIwQYMBaAFBXWDWDWpPUAkQmacuDQXu8+r3bp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjFERC83Qzc4RTJCQzMw OTMxMUVDQUI2ODQzM0ZDNEY5QUUwMi9GZFlOWU5hazlRQ1JDWnB5NE5CZTd6NnZk dWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZkWU5ZTmFrOVFDUkNacHk0TkJlN3o2dmR1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjFERC83Qzc4RTJCQzMwOTMxMUVDQUI2ODQzM0ZDNEY5QUUwMi9GZFlOWU5hazlR Q1JDWnB5NE5CZTd6NnZkdWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTKnd8R4c5cMTdfiO8hGQQTrSNAfe687e+OiPGTzcqFBWICkLfA3Xx EciYFF05b9bFXpt0FRhwhVFpRRQ8tHPEi0L7TULMs+E+JRr2gZmipKfwycFyNyOt B0aAehJ2qjsC0urAa7y2cxmae6ugsyyMaXhdKXmwfa8TPmrx0Zxq59kRbI5nT4fj VrPC8o9Ruy6IrN4WwUpPGXR7p1t4mWqWJG9zZzfbBBGz6t2zD7Otbp65gjsuOCZp g9gzTCnRfzBJfFbcMdc+LFl4PXuIaZOhd8FizL7Is51gPWHCGVRqOGjSIjylIos5 CZ8JcaSINeNrQA2EwFv98RgYVdLiq895 -----END CERTIFICATE-----Generated at Sun May 19 03:14:50 2024 by rpki-client on console-fra.rpki-client.org