$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft File: -gfo6rqEcKil_kuhPnXZ5f6jOyc.mft (raw, json) Hash identifier: QEutKSm9xToJ6Dl6iwOPh/uT6LfCT8AWrDipRWPAh4A= Subject key identifier: EE:44:9D:DE:09:87:5C:5B:23:3D:55:33:CF:44:3B:88:AD:B5:CB:DC Authority key identifier: FA:07:E8:EA:BA:84:70:A8:A5:FE:4B:A1:3E:75:D9:E5:FE:A3:3B:27 Certificate issuer: /CN=A91F9FA2/serialNumber=FA07E8EABA8470A8A5FE4BA13E75D9E5FEA33B27 Certificate serial: 0900 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft Manifest number: 08FA Signing time: Thu 30 May 2024 21:45:44 +0000 Manifest this update: Thu 30 May 2024 21:45:43 +0000 Manifest next update: Thu 06 Jun 2024 21:45:43 +0000 Files and hashes: 1: -gfo6rqEcKil_kuhPnXZ5f6jOyc.crl (hash: x2tXM+33oljA0NXqJuWO5Mt2moHfT2rEI8YSXeTlZDU=) 2: 0893031C846611EA9B99E043C4F9AE02.roa (hash: +4vEjQDzFMfcTakIiGJFd0hIS0rT096BdM+YIUk8vVM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.crl rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 21:33:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2304 (0x900) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9FA2/serialNumber=FA07E8EABA8470A8A5FE4BA13E75D9E5FEA33B27 Validity Not Before: May 30 21:45:43 2024 GMT Not After : Jun 6 21:45:43 2024 GMT Subject: CN=6658f387-51ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:99:28:44:d5:19:f6:b6:75:f5:ce:28:00:12: d7:97:15:4f:a3:7f:35:8e:98:78:05:30:7b:0a:a5: bd:e0:81:35:8b:5b:13:32:ca:cd:87:c7:b7:66:6d: 2d:6e:c3:0d:7b:ab:e4:a6:3f:d6:a4:78:be:1c:15: b6:4a:85:9c:65:13:e3:a5:f8:47:68:60:56:6f:c5: f2:30:41:35:fb:94:11:0a:9a:22:de:2a:c6:27:6b: 5f:8e:6f:48:57:48:c4:df:20:7e:ec:a0:0f:25:7f: bc:d3:bc:61:5f:35:1f:00:93:37:95:33:e7:3e:91: d3:2a:8c:de:83:25:dd:b4:f9:3b:5b:d6:80:66:ec: 56:58:15:67:72:19:f9:39:a0:16:35:6d:7a:16:e7: fe:e1:e4:2c:24:7e:1c:a9:fb:79:89:62:6f:bd:90: 82:19:a0:b4:59:e5:77:ad:67:b0:07:04:30:cd:07: 09:c6:d8:b2:d6:bc:7e:45:27:e5:14:8a:54:06:93: 33:b5:a2:53:35:0e:8b:78:16:b5:8d:f5:c8:3a:a4: a7:09:ed:24:e5:13:7d:0f:49:e1:7e:b5:fc:8d:96: ba:59:a0:d9:2d:ba:ea:5f:05:58:92:5d:4b:b3:d4: 8a:86:a2:b7:60:f2:52:bd:66:3b:3e:6b:b3:ca:a9: f7:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:44:9D:DE:09:87:5C:5B:23:3D:55:33:CF:44:3B:88:AD:B5:CB:DC X509v3 Authority Key Identifier: keyid:FA:07:E8:EA:BA:84:70:A8:A5:FE:4B:A1:3E:75:D9:E5:FE:A3:3B:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:81:21:e7:0d:4c:71:5e:e7:6e:f1:05:4d:ec:25:aa:ce:1e: c3:90:d4:a1:6d:70:b7:aa:69:06:5d:b4:4c:1b:04:64:14:f4: 5c:9c:92:6a:6b:86:26:dd:33:fb:14:39:54:ea:a2:f5:f1:59: 43:8e:a0:b2:04:b4:15:ce:01:93:fa:41:02:46:84:88:a9:40: f0:4f:bc:30:47:41:96:ac:5c:b6:47:8b:cb:20:a4:c9:9c:c8: e0:c5:cd:dc:18:db:e6:c6:5b:a0:04:f8:bf:92:aa:63:bc:cd: 1a:57:ca:f3:66:15:b0:a5:f2:66:47:40:f6:b1:39:61:55:95: 8b:04:0a:d6:86:02:21:7b:b0:40:ed:91:f7:01:2f:a9:75:94: 2c:e8:85:17:e7:52:5b:59:eb:1a:b4:96:4f:8c:f1:58:ed:2d: 00:38:93:8e:1c:38:7d:52:e9:44:f5:3c:9d:44:e7:ab:9c:c5: 09:5a:11:70:42:d1:d9:8c:af:f2:d6:46:09:f0:2e:01:38:0b: ac:fe:92:ab:2a:c7:43:f2:ae:40:76:9c:b0:02:8c:6d:90:ae: 19:38:c5:f7:33:97:7b:b5:15:03:ca:c5:d6:45:f0:1c:96:5f: aa:09:00:fd:d2:ba:d7:01:6b:81:c5:9a:ae:b5:c3:b6:99:69: 1d:f4:ea:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlGQTIxMTAvBgNVBAUTKEZBMDdFOEVBQkE4NDcwQThBNUZFNEJBMTNFNzVEOUU1 RkVBMzNCMjcwHhcNMjQwNTMwMjE0NTQzWhcNMjQwNjA2MjE0NTQzWjAYMRYwFAYD VQQDEw02NjU4ZjM4Ny01MWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAspkoRNUZ9rZ19c4oABLXlxVPo381jph4BTB7CqW94IE1i1sTMsrNh8e3Zm0t bsMNe6vkpj/WpHi+HBW2SoWcZRPjpfhHaGBWb8XyMEE1+5QRCpoi3irGJ2tfjm9I V0jE3yB+7KAPJX+807xhXzUfAJM3lTPnPpHTKozegyXdtPk7W9aAZuxWWBVnchn5 OaAWNW16Fuf+4eQsJH4cqft5iWJvvZCCGaC0WeV3rWewBwQwzQcJxtiy1rx+RSfl FIpUBpMztaJTNQ6LeBa1jfXIOqSnCe0k5RN9D0nhfrX8jZa6WaDZLbrqXwVYkl1L s9SKhqK3YPJSvWY7Pmuzyqn3mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO5End4J h1xbIz1VM89EO4ittcvcMB8GA1UdIwQYMBaAFPoH6Oq6hHCopf5LoT512eX+ozsn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUZBMi8xQzg4QjAzQTg0 NjQxMUVBQTk5NDE1NDBDNEY5QUUwMi8tZ2ZvNnJxRWNLaWxfa3VoUG5YWjVmNmpP eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1nZm82cnFFY0tpbF9rdWhQblhaNWY2ak95Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUZBMi8xQzg4QjAzQTg0NjQxMUVBQTk5NDE1NDBDNEY5QUUwMi8tZ2ZvNnJxRWNL aWxfa3VoUG5YWjVmNmpPeWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIgSHnDUxxXudu8QVN7CWqzh7DkNShbXC3qmkGXbRMGwRkFPRcnJJq a4Ym3TP7FDlU6qL18VlDjqCyBLQVzgGT+kECRoSIqUDwT7wwR0GWrFy2R4vLIKTJ nMjgxc3cGNvmxlugBPi/kqpjvM0aV8rzZhWwpfJmR0D2sTlhVZWLBArWhgIhe7BA 7ZH3AS+pdZQs6IUX51JbWesatJZPjPFY7S0AOJOOHDh9UulE9TydROernMUJWhFw QtHZjK/y1kYJ8C4BOAus/pKrKsdD8q5AdpywAoxtkK4ZOMX3M5d7tRUDysXWRfAc ll+qCQD90rrXAWuBxZqutcO2mWkd9OoO -----END CERTIFICATE-----Generated at Thu May 30 22:23:45 2024 by rpki-client on console-fra.rpki-client.org