$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.mft File: 4ISfBUORggKxeEROX_IviZ-eMg4.mft (raw, json) Hash identifier: 8ctbfLV4dEdNfANGyE97mGZBRiqBj/493ayU3Y2Ughw= Subject key identifier: 06:F4:75:6A:94:F5:D5:54:EB:15:14:0B:04:0D:CA:0F:CC:57:E4:83 Authority key identifier: E0:84:9F:05:43:91:82:02:B1:78:44:4E:5F:F2:2F:89:9F:9E:32:0E Certificate issuer: /CN=A91F7DBA/serialNumber=E0849F0543918202B178444E5FF22F899F9E320E Certificate serial: 03FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4ISfBUORggKxeEROX_IviZ-eMg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.mft Manifest number: 03F7 Signing time: Sun 19 May 2024 02:11:45 +0000 Manifest this update: Sun 19 May 2024 02:11:44 +0000 Manifest next update: Sun 26 May 2024 02:11:44 +0000 Files and hashes: 1: 4ISfBUORggKxeEROX_IviZ-eMg4.crl (hash: bPbz0dj8e7ln6ZMxAnAiDHTZm2Wgc3fCirfUQME3RUU=) 2: 145F8B6434D211EEA9BD8F64C4F9AE02.roa (hash: za49YiDvakb0KYV2DWPH4yPIuLhotdQStkSPaX9XAfY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.crl rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4ISfBUORggKxeEROX_IviZ-eMg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1019 (0x3fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7DBA/serialNumber=E0849F0543918202B178444E5FF22F899F9E320E Validity Not Before: May 19 02:11:44 2024 GMT Not After : May 26 02:11:44 2024 GMT Subject: CN=66495fe1-ceb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:3a:64:0b:c7:08:54:a5:1b:fc:77:52:b9:c0: da:9a:75:79:12:fa:bc:6d:be:56:fd:29:6a:04:1d: c0:8c:bb:eb:b3:ff:e9:9d:8c:01:be:40:ed:36:3a: ba:ba:d8:41:cd:c6:21:1b:e6:a5:58:09:4b:13:79: b3:9a:c9:b4:42:d7:8f:b5:76:a1:9a:1f:a8:6e:14: be:aa:07:ba:41:df:16:42:73:24:b0:b7:b9:33:fb: ca:f4:d3:0e:46:08:6b:7a:72:1e:0d:a8:ae:7e:03: 2a:49:1b:f1:1b:42:36:af:38:1f:36:c4:3f:92:ed: 05:67:91:da:b5:01:3e:bd:e8:0e:14:ce:0b:3f:8b: 89:b0:69:53:55:8b:14:be:25:3f:3d:0f:f4:db:0f: 65:9c:8c:a2:88:1b:2b:08:4d:ef:45:b2:d4:ab:42: 2f:c9:bd:a4:48:7d:35:ac:a4:be:40:ef:69:5d:dc: 66:5e:53:e2:19:ad:24:b3:74:fc:2d:f1:0c:bc:ed: d0:35:a6:2a:bc:cc:6a:62:65:88:8a:5b:9d:5d:05: 1d:fc:63:00:e0:9d:c4:71:d9:ed:f4:ae:4d:7e:70: 21:43:22:2a:4c:59:ad:ff:7f:1f:98:85:07:46:95: f1:8f:9d:d4:f4:dc:a9:dd:ef:1d:9d:6f:82:66:0d: 94:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:F4:75:6A:94:F5:D5:54:EB:15:14:0B:04:0D:CA:0F:CC:57:E4:83 X509v3 Authority Key Identifier: keyid:E0:84:9F:05:43:91:82:02:B1:78:44:4E:5F:F2:2F:89:9F:9E:32:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4ISfBUORggKxeEROX_IviZ-eMg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:0f:2e:44:64:7e:b4:b8:93:5a:da:68:e9:de:e0:5b:c7:3c: d1:d4:4f:75:64:17:3e:26:03:c3:b7:72:26:4c:1a:46:b4:76: 23:e2:47:4b:16:81:f8:c2:63:60:6b:9e:fe:8e:2c:22:06:e2: b2:8b:2c:81:5c:e9:42:8a:8e:6f:24:76:ac:9e:8c:65:bb:2a: 46:f0:82:1c:6e:20:9b:1f:4c:cf:9b:f2:42:4c:23:3d:d8:40: 29:98:23:d9:d6:cb:08:07:49:79:58:03:e8:91:00:f5:09:53: bb:9e:f5:a4:8a:13:db:2e:4a:60:06:e5:f9:77:22:7d:d7:6d: e4:5e:c8:b2:e6:42:84:33:59:c0:9e:da:90:a9:59:af:fa:c3: 87:bf:6f:2a:71:ca:a1:ec:f8:f9:e8:66:69:48:4e:94:6e:e1: 0c:99:32:42:b1:98:92:7d:28:e1:10:38:67:ab:7f:9d:73:e3: 8c:26:11:bc:9d:6b:ab:7f:31:d6:d5:3d:75:27:b7:5f:b6:d6: 16:36:04:b2:48:b7:2b:70:de:88:98:c8:cf:2c:cd:d7:a0:b9: f8:0f:67:26:78:17:13:61:91:b6:7d:f9:10:3f:f7:97:cd:8b: 57:e1:fb:e8:e7:9a:95:de:af:bc:6e:98:24:98:83:03:43:6c: 0e:9f:ec:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdEQkExMTAvBgNVBAUTKEUwODQ5RjA1NDM5MTgyMDJCMTc4NDQ0RTVGRjIyRjg5 OUY5RTMyMEUwHhcNMjQwNTE5MDIxMTQ0WhcNMjQwNTI2MDIxMTQ0WjAYMRYwFAYD VQQDEw02NjQ5NWZlMS1jZWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzTpkC8cIVKUb/HdSucDamnV5Evq8bb5W/SlqBB3AjLvrs//pnYwBvkDtNjq6 uthBzcYhG+alWAlLE3mzmsm0QtePtXahmh+obhS+qge6Qd8WQnMksLe5M/vK9NMO RghrenIeDaiufgMqSRvxG0I2rzgfNsQ/ku0FZ5HatQE+vegOFM4LP4uJsGlTVYsU viU/PQ/02w9lnIyiiBsrCE3vRbLUq0Ivyb2kSH01rKS+QO9pXdxmXlPiGa0ks3T8 LfEMvO3QNaYqvMxqYmWIiludXQUd/GMA4J3Ecdnt9K5NfnAhQyIqTFmt/38fmIUH RpXxj53U9Nyp3e8dnW+CZg2UfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAb0dWqU 9dVU6xUUCwQNyg/MV+SDMB8GA1UdIwQYMBaAFOCEnwVDkYICsXhETl/yL4mfnjIO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0RCQS8yOEVCNzE0NjJC RDQxMUVDQjBCQURFNThDNEY5QUUwMi80SVNmQlVPUmdnS3hlRVJPWF9JdmlaLWVN ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRJU2ZCVU9SZ2dLeGVFUk9YX0l2aVotZU1nNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG N0RCQS8yOEVCNzE0NjJCRDQxMUVDQjBCQURFNThDNEY5QUUwMi80SVNmQlVPUmdn S3hlRVJPWF9JdmlaLWVNZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZDy5EZH60uJNa2mjp3uBbxzzR1E91ZBc+JgPDt3ImTBpGtHYj4kdL FoH4wmNga57+jiwiBuKyiyyBXOlCio5vJHasnoxluypG8IIcbiCbH0zPm/JCTCM9 2EApmCPZ1ssIB0l5WAPokQD1CVO7nvWkihPbLkpgBuX5dyJ9123kXsiy5kKEM1nA ntqQqVmv+sOHv28qccqh7Pj56GZpSE6UbuEMmTJCsZiSfSjhEDhnq3+dc+OMJhG8 nWurfzHW1T11J7dfttYWNgSySLcrcN6ImMjPLM3XoLn4D2cmeBcTYZG2ffkQP/eX zYtX4fvo55qV3q+8bpgkmIMDQ2wOn+xB -----END CERTIFICATE-----Generated at Sun May 19 02:39:38 2024 by rpki-client on console-fra.rpki-client.org