$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft File: i0b6Eepu4jUJnkhDPIJJehl7nXw.mft (raw, json) Hash identifier: o+I7+ciOifM+jlAX+5FfBaSbcl1xoEjgF8wQZ6/YhpE= Subject key identifier: 72:A0:AA:52:99:DC:E4:34:DA:AF:E9:76:B9:FB:2C:7A:E7:18:91:B2 Authority key identifier: 8B:46:FA:11:EA:6E:E2:35:09:9E:48:43:3C:82:49:7A:19:7B:9D:7C Certificate issuer: /CN=A91FB03A/serialNumber=8B46FA11EA6EE235099E48433C82497A197B9D7C Certificate serial: 0151 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0b6Eepu4jUJnkhDPIJJehl7nXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft Manifest number: 0149 Signing time: Sun 19 May 2024 04:55:49 +0000 Manifest this update: Sun 19 May 2024 04:55:48 +0000 Manifest next update: Sun 26 May 2024 04:55:48 +0000 Files and hashes: 1: i0b6Eepu4jUJnkhDPIJJehl7nXw.crl (hash: 3w3L0qVLey2/sSY6FuMQoKGgwoEZKbSUd+FNuhZWa9g=) 2: 0B3B85D63A1B11EDAE662B14C4F9AE02.roa (hash: GQNwSDUwzmX4l5wsYUCHS1XYZfJoT7fdlpD23IsAxJ8=) 3: 0BF33B7C3A1B11EDAE662B14C4F9AE02.roa (hash: Eo0BohzaoHsq9WS4rYAJO6lxA8uatGkVav6XDwgjJJA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.crl rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0b6Eepu4jUJnkhDPIJJehl7nXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 337 (0x151) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB03A/serialNumber=8B46FA11EA6EE235099E48433C82497A197B9D7C Validity Not Before: May 19 04:55:48 2024 GMT Not After : May 26 04:55:48 2024 GMT Subject: CN=66498654-4e13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:40:f9:88:e3:88:c5:d0:9a:c3:c8:9b:41:bf: 55:0f:3f:9c:04:b2:4b:fd:2d:5d:b4:0c:28:b1:df: 88:71:22:78:c0:88:d4:a9:f5:94:38:ea:f9:30:77: 78:2f:29:83:08:79:dc:f5:ba:34:4b:6b:60:85:c6: cd:f6:3f:ad:b6:53:dd:f6:be:e9:34:1c:dc:e5:0d: 2d:f5:92:54:84:4b:14:52:07:31:31:39:ec:a1:ef: e7:cd:da:6d:40:d6:17:c3:29:e5:6e:cb:ff:4a:c5: 10:8f:1b:f5:2a:bf:52:6c:fc:a8:57:b6:e8:74:8e: cf:b1:c6:dd:b1:3e:29:92:0e:50:3d:84:f9:bf:76: 3e:0f:6d:80:92:cf:85:15:15:d1:58:a9:0b:71:a1: 65:df:d0:ae:da:db:0f:e0:c6:68:75:ec:fd:d1:42: 38:aa:79:f0:dc:77:91:49:d7:c8:62:89:a2:cf:0b: 2f:a7:cc:d0:f6:61:e0:4b:e6:af:92:69:c8:99:2a: 2b:3b:88:73:f8:cb:b4:a8:e4:35:11:55:39:8b:76: d9:c9:1d:38:09:6e:5f:61:b6:e1:2b:c3:ca:b0:b3: 35:30:85:5a:ee:4a:83:43:5b:c2:fa:fe:60:6d:ce: 86:69:1c:74:05:ab:50:3a:61:4a:db:d9:19:b6:4d: 60:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:A0:AA:52:99:DC:E4:34:DA:AF:E9:76:B9:FB:2C:7A:E7:18:91:B2 X509v3 Authority Key Identifier: keyid:8B:46:FA:11:EA:6E:E2:35:09:9E:48:43:3C:82:49:7A:19:7B:9D:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0b6Eepu4jUJnkhDPIJJehl7nXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:f0:2b:f8:48:44:d4:c1:e2:e1:dc:7a:cf:21:6c:59:17:f1: a3:49:50:a9:f7:91:d8:d5:bb:9e:ac:b6:24:57:45:7d:19:74: 98:f3:fb:72:72:44:cc:8a:fe:63:28:58:58:7f:b9:f0:bb:2a: 5b:4c:a2:cd:62:4d:92:44:ba:65:b9:2b:ef:dc:3c:43:84:cc: 4f:9f:c5:1d:2f:c7:b8:4d:32:2f:01:dd:5a:31:be:12:87:15: 26:43:4e:62:83:7c:8f:f9:a6:72:24:0a:1c:cb:bc:6a:95:13: 9c:dc:2b:9a:87:78:e5:21:07:eb:79:f7:86:93:02:bb:13:1b: ce:35:dd:8d:be:db:32:e1:ea:cc:cd:73:33:72:74:af:fb:10: 74:04:b1:bb:a3:e5:97:20:c8:d7:22:5c:1f:83:fe:73:cb:6d: a2:bf:b6:84:c6:2f:97:06:da:90:87:68:21:a3:2f:4a:40:f9: 6d:d6:59:bc:fb:2a:32:8c:f4:1e:5b:22:97:5a:24:6a:51:d1: a4:bc:7e:6c:bc:ab:2f:02:29:9e:06:93:da:6e:36:30:a2:aa: fc:b3:62:3b:77:35:1c:fe:04:73:06:53:47:bb:ad:5f:2c:35: 41:87:a3:17:7d:96:75:88:93:ce:7a:84:17:3f:95:71:07:37: fd:7c:88:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkIwM0ExMTAvBgNVBAUTKDhCNDZGQTExRUE2RUUyMzUwOTlFNDg0MzNDODI0OTdB MTk3QjlEN0MwHhcNMjQwNTE5MDQ1NTQ4WhcNMjQwNTI2MDQ1NTQ4WjAYMRYwFAYD VQQDEw02NjQ5ODY1NC00ZTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3UD5iOOIxdCaw8ibQb9VDz+cBLJL/S1dtAwosd+IcSJ4wIjUqfWUOOr5MHd4 LymDCHnc9bo0S2tghcbN9j+ttlPd9r7pNBzc5Q0t9ZJUhEsUUgcxMTnsoe/nzdpt QNYXwynlbsv/SsUQjxv1Kr9SbPyoV7bodI7PscbdsT4pkg5QPYT5v3Y+D22Aks+F FRXRWKkLcaFl39Cu2tsP4MZodez90UI4qnnw3HeRSdfIYomizwsvp8zQ9mHgS+av kmnImSorO4hz+Mu0qOQ1EVU5i3bZyR04CW5fYbbhK8PKsLM1MIVa7kqDQ1vC+v5g bc6GaRx0BatQOmFK29kZtk1g1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHKgqlKZ 3OQ02q/pdrn7LHrnGJGyMB8GA1UdIwQYMBaAFItG+hHqbuI1CZ5IQzyCSXoZe518 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjAzQS9ERkM2OEQ2NDNB MTYxMUVEOTE1MkJGMEVDNEY5QUUwMi9pMGI2RWVwdTRqVUpua2hEUElKSmVobDdu WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2kwYjZFZXB1NGpVSm5raERQSUpKZWhsN25Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjAzQS9ERkM2OEQ2NDNBMTYxMUVEOTE1MkJGMEVDNEY5QUUwMi9pMGI2RWVwdTRq VUpua2hEUElKSmVobDduWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCh8Cv4SETUweLh3HrPIWxZF/GjSVCp95HY1buerLYkV0V9GXSY8/ty ckTMiv5jKFhYf7nwuypbTKLNYk2SRLpluSvv3DxDhMxPn8UdL8e4TTIvAd1aMb4S hxUmQ05ig3yP+aZyJAocy7xqlROc3Cuah3jlIQfrefeGkwK7ExvONd2Nvtsy4erM zXMzcnSv+xB0BLG7o+WXIMjXIlwfg/5zy22iv7aExi+XBtqQh2ghoy9KQPlt1lm8 +yoyjPQeWyKXWiRqUdGkvH5svKsvAimeBpPabjYwoqr8s2I7dzUc/gRzBlNHu61f LDVBh6MXfZZ1iJPOeoQXP5VxBzf9fIg0 -----END CERTIFICATE-----Generated at Sun May 19 05:48:52 2024 by rpki-client on console-fra.rpki-client.org