$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft File: tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft (raw, json) Hash identifier: 8/TQdFXntVXNCREk/4zFSYp0vDvdQ+j7BwPjgHTKxZk= Subject key identifier: 11:B4:2A:C7:98:E0:70:40:87:60:DA:08:D3:B5:D2:AB:D0:5B:D7:F9 Authority key identifier: B6:20:A9:C4:96:37:66:CC:3C:58:06:06:94:92:2E:9F:67:88:11:DE Certificate issuer: /CN=A91FD38A/serialNumber=B620A9C4963766CC3C58060694922E9F678811DE Certificate serial: 0B87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tiCpxJY3Zsw8WAYGlJIun2eIEd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft Manifest number: 0B7F Signing time: Sat 18 May 2024 19:25:08 +0000 Manifest this update: Sat 18 May 2024 19:25:08 +0000 Manifest next update: Sat 25 May 2024 19:25:08 +0000 Files and hashes: 1: tiCpxJY3Zsw8WAYGlJIun2eIEd4.crl (hash: e3HwCxBQ3bBKZbYvWDa/sV6pPzVGCTmPp1WUhkZc5j4=) 2: AA5D86B2381311EA998E103FC4F9AE02.roa (hash: IMXg+e7lIl/+YhIBBHrlvZcdovKUHcbEwD83DK84h1A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.crl rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tiCpxJY3Zsw8WAYGlJIun2eIEd4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2951 (0xb87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD38A/serialNumber=B620A9C4963766CC3C58060694922E9F678811DE Validity Not Before: May 18 19:25:08 2024 GMT Not After : May 25 19:25:08 2024 GMT Subject: CN=66490094-94e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:25:30:bd:91:ce:31:93:4d:e4:28:0f:5f:5b: 88:98:d4:87:5b:db:fe:44:e5:3f:c6:19:b3:f2:51: 51:7f:99:9f:dc:5d:15:fc:7f:55:8b:33:15:df:92: 82:ce:92:01:4f:c4:1f:4e:45:f4:14:04:2b:36:54: 05:53:94:53:63:1e:a2:c0:03:63:34:aa:c2:20:75: cf:28:de:42:49:4b:47:51:3b:30:50:36:d1:73:a9: 9d:15:f0:48:44:42:48:5e:2a:d0:ac:58:1d:dd:97: 7a:f6:b6:8b:92:0a:47:84:b1:92:ea:b9:f4:0d:88: 6b:37:68:72:73:82:a4:21:ee:cc:81:89:ef:06:36: 04:72:79:c1:3c:da:b7:a2:1c:34:a7:64:1c:76:13: 49:9f:13:f3:02:83:17:a6:24:e9:f8:90:64:65:16: 6a:0f:59:42:a9:dc:dc:40:9a:33:09:b2:df:95:39: ff:65:d9:6c:7b:05:45:1f:86:1a:59:ee:12:c6:80: 19:d6:d4:24:e2:bc:f2:5a:80:8b:95:de:a4:ea:54: 02:89:67:94:0a:77:97:00:d2:69:57:00:91:a8:09: b7:89:40:ce:b2:d5:86:e8:45:ed:4a:25:00:97:71: 69:0c:6a:1c:f3:ff:de:98:95:3d:e4:ce:ce:98:9d: 64:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:B4:2A:C7:98:E0:70:40:87:60:DA:08:D3:B5:D2:AB:D0:5B:D7:F9 X509v3 Authority Key Identifier: keyid:B6:20:A9:C4:96:37:66:CC:3C:58:06:06:94:92:2E:9F:67:88:11:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tiCpxJY3Zsw8WAYGlJIun2eIEd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:dd:58:e3:fd:7f:25:55:3e:de:dc:c1:1e:3e:5c:8e:f6:6b: 6e:3a:c3:4d:5d:1f:72:af:75:6f:6e:20:45:d2:e8:62:f1:c2: 2e:4c:5f:e8:b1:1c:81:e8:ca:96:95:3f:11:01:cb:24:65:e1: b7:43:6f:b9:c4:0e:43:72:2a:da:57:71:e1:a4:e1:8a:3c:62: 84:15:0e:7a:5a:e7:f1:76:bb:4a:e3:47:63:d8:03:f6:e3:94: ff:68:f1:60:9d:03:ca:76:3e:01:fd:c5:cb:23:06:92:06:ef: 61:13:40:d5:3d:eb:cd:bc:ed:1c:2a:d7:fe:f6:26:37:26:c0: 74:67:98:c6:b3:a8:8c:8a:78:9e:24:d2:07:a0:c5:c9:06:c8: a2:3f:01:cd:e6:93:00:54:25:23:cc:c6:31:d9:11:95:c9:02: 0c:e1:eb:30:5a:c8:9f:6f:18:c0:9c:23:4e:4d:d5:a3:e2:0f: bb:5b:93:df:c6:cd:4a:4f:dd:ef:f1:77:a4:31:a0:76:48:aa: 71:55:e6:dd:80:4f:3c:f5:db:10:d9:b4:54:6b:78:4f:07:23: 32:50:34:c9:39:bf:6a:34:68:a9:e0:16:f3:67:54:b0:5f:b3: ce:e0:e8:10:88:c8:e4:f7:9a:50:73:63:18:b1:46:dc:65:dd: d2:47:b7:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQzOEExMTAvBgNVBAUTKEI2MjBBOUM0OTYzNzY2Q0MzQzU4MDYwNjk0OTIyRTlG Njc4ODExREUwHhcNMjQwNTE4MTkyNTA4WhcNMjQwNTI1MTkyNTA4WjAYMRYwFAYD VQQDEw02NjQ5MDA5NC05NGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1SUwvZHOMZNN5CgPX1uImNSHW9v+ROU/xhmz8lFRf5mf3F0V/H9VizMV35KC zpIBT8QfTkX0FAQrNlQFU5RTYx6iwANjNKrCIHXPKN5CSUtHUTswUDbRc6mdFfBI REJIXirQrFgd3Zd69raLkgpHhLGS6rn0DYhrN2hyc4KkIe7MgYnvBjYEcnnBPNq3 ohw0p2QcdhNJnxPzAoMXpiTp+JBkZRZqD1lCqdzcQJozCbLflTn/ZdlsewVFH4Ya We4SxoAZ1tQk4rzyWoCLld6k6lQCiWeUCneXANJpVwCRqAm3iUDOstWG6EXtSiUA l3FpDGoc8//emJU95M7OmJ1kFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBG0KseY 4HBAh2DaCNO10qvQW9f5MB8GA1UdIwQYMBaAFLYgqcSWN2bMPFgGBpSSLp9niBHe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDM4QS85QUVGMTdCRTA1 RjQxMUVBODg2QTNDMjNDNEY5QUUwMi90aUNweEpZM1pzdzhXQVlHbEpJdW4yZUlF ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RpQ3B4SlkzWnN3OFdBWUdsSkl1bjJlSUVkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDM4QS85QUVGMTdCRTA1RjQxMUVBODg2QTNDMjNDNEY5QUUwMi90aUNweEpZM1pz dzhXQVlHbEpJdW4yZUlFZDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCT3Vjj/X8lVT7e3MEePlyO9mtuOsNNXR9yr3VvbiBF0uhi8cIuTF/o sRyB6MqWlT8RAcskZeG3Q2+5xA5DciraV3HhpOGKPGKEFQ56WufxdrtK40dj2AP2 45T/aPFgnQPKdj4B/cXLIwaSBu9hE0DVPevNvO0cKtf+9iY3JsB0Z5jGs6iMinie JNIHoMXJBsiiPwHN5pMAVCUjzMYx2RGVyQIM4eswWsifbxjAnCNOTdWj4g+7W5Pf xs1KT93v8XekMaB2SKpxVebdgE889dsQ2bRUa3hPByMyUDTJOb9qNGip4BbzZ1Sw X7PO4OgQiMjk95pQc2MYsUbcZd3SR7dz -----END CERTIFICATE-----Generated at Sat May 18 19:56:08 2024 by rpki-client on console-fra.rpki-client.org