$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft File: D429p9DJoeyhlFxhtykg9aoOlGc.mft (raw, json) Hash identifier: 8/2hmryU24qws4KTQSv5Q1OroYQh8G77SC5CQRtJ8QE= Subject key identifier: 29:68:CB:04:65:B7:EA:07:83:46:CF:B6:AE:B1:4B:51:5F:CB:33:96 Authority key identifier: 0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 Certificate issuer: /CN=A91FAF20/serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Certificate serial: 1B28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft Manifest number: 1B19 Signing time: Sat 18 May 2024 16:39:46 +0000 Manifest this update: Sat 18 May 2024 16:39:45 +0000 Manifest next update: Sat 25 May 2024 16:39:45 +0000 Files and hashes: 1: D429p9DJoeyhlFxhtykg9aoOlGc.crl (hash: 2apqnkrvtPZcpF+1G6KR0WskEg1oM3VZB/1OPvSezfc=) 2: D59EA6F4F5C611E6A4FFEF0AC4F9AE02.roa (hash: hRTHvov5kcr4ci8mlf/+s2ablUrnizRu5Hp+fPVJPyU=) 3: C3ACDB568E9311E9AA8A2877C4F9AE02.roa (hash: e+nnHqsSXjcst0jgKsFSCtqmvZobXZzEGEA8nesrhMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6952 (0x1b28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAF20/serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Validity Not Before: May 18 16:39:45 2024 GMT Not After : May 25 16:39:45 2024 GMT Subject: CN=6648d9d1-8e8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:c7:4d:74:13:bb:9c:f1:e6:5b:09:e3:4e:eb: 22:f1:da:d5:6c:9d:54:3d:4b:06:5c:16:aa:ca:d0: 2a:fb:db:06:ce:cd:df:ea:d5:53:4c:53:1a:a2:72: 63:85:2c:a6:c8:38:7d:a5:e7:16:55:b4:75:96:dd: 38:1b:7f:48:92:91:f4:8e:be:cd:32:dd:8d:16:1e: 48:7f:ad:d5:c1:db:af:80:46:f3:06:6d:45:51:88: da:4d:ab:6b:9a:2c:e1:1e:20:64:2a:36:2f:17:fd: a6:43:6e:1c:76:33:5b:6b:2b:e0:b0:65:d7:91:e4: bf:4c:aa:c6:f2:0e:13:cf:a4:a3:9b:65:0d:74:92: db:3f:2a:34:ec:e6:50:70:c8:bf:29:e7:af:e2:a7: fc:d0:a5:27:6c:e6:32:2b:57:a4:83:8c:80:af:de: b8:05:cd:02:0a:d7:1a:75:01:57:0f:c3:6c:a9:43: 9e:a1:0b:3c:7b:79:6f:70:2f:04:b6:4e:54:f8:dc: c2:a4:0e:51:3d:e1:bc:30:aa:49:19:f6:79:73:98: 32:0f:30:48:eb:30:28:e4:37:e1:f7:92:1d:99:ce: cd:b9:39:d8:9f:3f:68:78:e8:05:2f:62:40:91:f5: b8:87:7d:5e:41:b2:33:aa:71:a5:29:22:39:3f:d6: 0d:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:68:CB:04:65:B7:EA:07:83:46:CF:B6:AE:B1:4B:51:5F:CB:33:96 X509v3 Authority Key Identifier: keyid:0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:4b:99:dd:3b:83:c6:15:a0:95:11:dc:55:ef:ff:d7:79:19: 09:d0:f9:29:a9:89:15:1f:75:0d:08:18:d7:9f:a8:9c:6e:9b: ae:30:70:6f:65:7c:bd:c0:4e:56:4b:29:24:ae:e6:27:71:50: 54:98:a1:03:57:fd:ae:c8:54:1f:5b:4b:c6:10:85:49:94:4c: c9:cf:aa:ed:a9:6c:9e:fc:17:a4:3e:79:ee:8e:4f:f3:62:c7: b1:ea:ac:a7:6b:cb:33:ac:c7:ef:54:66:76:23:40:48:6a:ec: fa:0b:ec:68:dc:d8:f0:d2:09:5a:da:5e:ba:0f:5b:e6:5b:03: 08:e8:ba:37:0c:47:cc:59:a3:9a:7f:a5:2c:76:e8:60:f2:a1: 14:f4:84:93:ba:79:95:32:3e:82:27:4f:8c:15:65:85:1d:27: ac:8b:05:4e:f4:ba:11:19:d6:f1:6f:f9:89:91:60:40:6a:0a: ed:54:73:5a:36:06:6c:39:35:15:88:be:f7:2f:7e:14:b5:83: a4:8c:6e:74:05:c0:5e:42:03:90:52:ce:25:56:6a:47:07:4e: fc:45:a8:85:9e:17:a4:99:55:bc:75:46:a8:02:9a:58:8b:81: 34:ca:00:93:3c:24:20:82:50:b2:33:fd:ae:80:a6:fc:ad:03: 93:5a:e7:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGygwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGMjAxMTAvBgNVBAUTKDBGOERCREE3RDBDOUExRUNBMTk0NUM2MUI3MjkyMEY1 QUEwRTk0NjcwHhcNMjQwNTE4MTYzOTQ1WhcNMjQwNTI1MTYzOTQ1WjAYMRYwFAYD VQQDEw02NjQ4ZDlkMS04ZThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3sdNdBO7nPHmWwnjTusi8drVbJ1UPUsGXBaqytAq+9sGzs3f6tVTTFMaonJj hSymyDh9pecWVbR1lt04G39IkpH0jr7NMt2NFh5If63VwduvgEbzBm1FUYjaTatr mizhHiBkKjYvF/2mQ24cdjNbayvgsGXXkeS/TKrG8g4Tz6Sjm2UNdJLbPyo07OZQ cMi/Keev4qf80KUnbOYyK1ekg4yAr964Bc0CCtcadQFXD8NsqUOeoQs8e3lvcC8E tk5U+NzCpA5RPeG8MKpJGfZ5c5gyDzBI6zAo5Dfh95Idmc7NuTnYnz9oeOgFL2JA kfW4h31eQbIzqnGlKSI5P9YN6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCloywRl t+oHg0bPtq6xS1FfyzOWMB8GA1UdIwQYMBaAFA+NvafQyaHsoZRcYbcpIPWqDpRn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUYyMC82NUE5QTI0MkY1 QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9leWhsRnhodHlrZzlhb09s R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q0MjlwOURKb2V5aGxGeGh0eWtnOWFvT2xHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUYyMC82NUE5QTI0MkY1QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9l eWhsRnhodHlrZzlhb09sR2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRS5ndO4PGFaCVEdxV7//XeRkJ0PkpqYkVH3UNCBjXn6icbpuuMHBv ZXy9wE5WSykkruYncVBUmKEDV/2uyFQfW0vGEIVJlEzJz6rtqWye/BekPnnujk/z Ysex6qyna8szrMfvVGZ2I0BIauz6C+xo3Njw0gla2l66D1vmWwMI6Lo3DEfMWaOa f6Usduhg8qEU9ISTunmVMj6CJ0+MFWWFHSesiwVO9LoRGdbxb/mJkWBAagrtVHNa NgZsOTUViL73L34UtYOkjG50BcBeQgOQUs4lVmpHB078RaiFnhekmVW8dUaoAppY i4E0ygCTPCQgglCyM/2ugKb8rQOTWuf2 -----END CERTIFICATE-----Generated at Sat May 18 17:37:34 2024 by rpki-client on console-fra.rpki-client.org