$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEB89/96D3BA5C24ED11EDB8676118C4F9AE02/vRa1ZDKuX0MCXE2hE0U39wTrQJY.mft File: vRa1ZDKuX0MCXE2hE0U39wTrQJY.mft (raw, json) Hash identifier: 3s+cuyJSckSabjnKM7SmDGNx7Fh2cMJKxTPUyTE0Q8Y= Subject key identifier: 60:D0:AF:30:FF:48:A8:71:B0:0B:8B:09:F6:F6:48:35:D5:91:ED:11 Authority key identifier: BD:16:B5:64:32:AE:5F:43:02:5C:4D:A1:13:45:37:F7:04:EB:40:96 Certificate issuer: /CN=A91FEB89/serialNumber=BD16B56432AE5F43025C4DA1134537F704EB4096 Certificate serial: 0185 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vRa1ZDKuX0MCXE2hE0U39wTrQJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEB89/96D3BA5C24ED11EDB8676118C4F9AE02/vRa1ZDKuX0MCXE2hE0U39wTrQJY.mft Manifest number: 017F Signing time: Sun 19 May 2024 04:45:45 +0000 Manifest this update: Sun 19 May 2024 04:45:45 +0000 Manifest next update: Sun 26 May 2024 04:45:45 +0000 Files and hashes: 1: vRa1ZDKuX0MCXE2hE0U39wTrQJY.crl (hash: 2X/XJpCPG6OcEdpR1bAGZkxfYddF9AYgbHN01JdMBcw=) 2: 5706BF6024F111ED84831E21C4F9AE02.roa (hash: IKMSMoP4FZHtjcEKMqFnrIo38xV8+ALkLijv5FtXb3c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEB89/96D3BA5C24ED11EDB8676118C4F9AE02/vRa1ZDKuX0MCXE2hE0U39wTrQJY.crl rsync://rpki.apnic.net/member_repository/A91FEB89/96D3BA5C24ED11EDB8676118C4F9AE02/vRa1ZDKuX0MCXE2hE0U39wTrQJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vRa1ZDKuX0MCXE2hE0U39wTrQJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 389 (0x185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEB89/serialNumber=BD16B56432AE5F43025C4DA1134537F704EB4096 Validity Not Before: May 19 04:45:45 2024 GMT Not After : May 26 04:45:45 2024 GMT Subject: CN=664983f9-23f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:44:07:72:8b:0a:fa:d8:9d:7e:c7:e6:c3:3c: 1e:86:57:8d:a5:22:d1:2b:d0:52:56:bb:1b:02:1e: 55:9e:ba:7d:6c:10:f7:cd:15:9c:6f:a0:da:ed:dc: ed:92:0b:c9:47:89:0f:b4:a3:28:e8:d8:87:b4:0e: 56:ce:e9:1c:a0:03:b1:70:42:56:94:99:48:45:34: 97:8f:12:ac:eb:6b:70:03:66:21:9a:56:e5:48:0f: 5d:d4:c4:e3:3f:be:e8:4a:36:c8:37:62:b7:3e:8a: db:91:ac:e1:bd:fa:1d:9a:1f:19:ca:a5:44:64:66: 6b:be:40:40:8e:7c:8e:77:08:e0:c2:f4:b7:83:b3: 56:7b:21:47:fa:97:0a:81:ce:c3:58:57:c1:42:8b: ea:6a:99:45:70:90:c5:66:f2:fb:90:3c:fd:8e:35: 12:3b:1d:6d:26:9f:f1:f1:f3:f4:a2:9b:0c:6b:bc: 06:1f:0b:6c:19:4c:26:16:82:64:8e:b8:b5:4c:dc: b8:00:1e:0c:4a:2a:ae:aa:1d:7e:f6:16:71:4f:88: 6c:f1:17:ba:ef:f9:b3:bf:cb:d9:67:e0:40:ce:86: 50:ba:93:5f:99:5e:3f:fe:cf:27:4c:b3:c4:fb:59: 06:35:78:a1:28:e7:2e:21:d4:f3:aa:76:dc:c6:f0: a3:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:D0:AF:30:FF:48:A8:71:B0:0B:8B:09:F6:F6:48:35:D5:91:ED:11 X509v3 Authority Key Identifier: keyid:BD:16:B5:64:32:AE:5F:43:02:5C:4D:A1:13:45:37:F7:04:EB:40:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEB89/96D3BA5C24ED11EDB8676118C4F9AE02/vRa1ZDKuX0MCXE2hE0U39wTrQJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vRa1ZDKuX0MCXE2hE0U39wTrQJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEB89/96D3BA5C24ED11EDB8676118C4F9AE02/vRa1ZDKuX0MCXE2hE0U39wTrQJY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:b1:da:7d:54:05:b5:a3:b4:b2:a8:b4:da:bb:60:50:83:30: a0:6f:25:2f:2b:8a:30:05:ed:04:32:50:b2:f8:9d:ba:6b:68: 87:70:93:8c:8b:53:71:c5:3d:8b:0f:23:8c:cd:c9:27:e4:81: 68:93:68:62:cb:ad:f7:7d:11:2f:b1:9f:84:f6:b0:73:69:2b: 09:80:b1:45:3e:b2:95:f5:c2:70:16:c2:9a:5e:93:4e:9f:1a: af:a5:59:55:8a:39:7e:5e:2b:1c:c6:6b:8c:26:46:1d:c4:86: 7e:b2:7c:52:96:04:fe:f8:27:4b:85:0d:23:c2:50:87:32:a7: ac:ae:ce:d8:d0:a7:ec:00:81:7d:19:8f:b1:38:c1:5d:45:40: fd:d9:e2:86:20:a8:62:18:12:7f:09:5b:78:db:98:74:d0:09: 58:02:1f:30:ba:1b:2f:ef:a0:03:fd:e4:20:14:46:9d:12:ef: af:76:c2:c8:56:49:b1:5f:ed:f6:df:14:44:1f:84:4d:ac:df: f5:30:b0:e7:85:bf:45:94:c3:46:79:b8:62:c3:7e:88:e0:ee: f9:c0:5c:1b:91:5d:b1:f8:a0:fa:31:36:1c:21:28:52:e7:ad: 51:87:99:30:2f:e2:e4:cf:d4:f4:b5:88:5e:55:ed:17:90:09: b8:c6:c4:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVCODkxMTAvBgNVBAUTKEJEMTZCNTY0MzJBRTVGNDMwMjVDNERBMTEzNDUzN0Y3 MDRFQjQwOTYwHhcNMjQwNTE5MDQ0NTQ1WhcNMjQwNTI2MDQ0NTQ1WjAYMRYwFAYD VQQDEw02NjQ5ODNmOS0yM2YyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUQHcosK+tidfsfmwzwehleNpSLRK9BSVrsbAh5Vnrp9bBD3zRWcb6Da7dzt kgvJR4kPtKMo6NiHtA5WzukcoAOxcEJWlJlIRTSXjxKs62twA2YhmlblSA9d1MTj P77oSjbIN2K3Porbkazhvfodmh8ZyqVEZGZrvkBAjnyOdwjgwvS3g7NWeyFH+pcK gc7DWFfBQovqaplFcJDFZvL7kDz9jjUSOx1tJp/x8fP0opsMa7wGHwtsGUwmFoJk jri1TNy4AB4MSiquqh1+9hZxT4hs8Re67/mzv8vZZ+BAzoZQupNfmV4//s8nTLPE +1kGNXihKOcuIdTzqnbcxvCjZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGDQrzD/ SKhxsAuLCfb2SDXVke0RMB8GA1UdIwQYMBaAFL0WtWQyrl9DAlxNoRNFN/cE60CW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUI4OS85NkQzQkE1QzI0 RUQxMUVEQjg2NzYxMThDNEY5QUUwMi92UmExWkRLdVgwTUNYRTJoRTBVMzl3VHJR SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZSYTFaREt1WDBNQ1hFMmhFMFUzOXdUclFKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUI4OS85NkQzQkE1QzI0RUQxMUVEQjg2NzYxMThDNEY5QUUwMi92UmExWkRLdVgw TUNYRTJoRTBVMzl3VHJRSlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMsdp9VAW1o7SyqLTau2BQgzCgbyUvK4owBe0EMlCy+J26a2iHcJOM i1NxxT2LDyOMzckn5IFok2hiy633fREvsZ+E9rBzaSsJgLFFPrKV9cJwFsKaXpNO nxqvpVlVijl+XiscxmuMJkYdxIZ+snxSlgT++CdLhQ0jwlCHMqesrs7Y0KfsAIF9 GY+xOMFdRUD92eKGIKhiGBJ/CVt425h00AlYAh8wuhsv76AD/eQgFEadEu+vdsLI VkmxX+323xREH4RNrN/1MLDnhb9FlMNGebhiw36I4O75wFwbkV2x+KD6MTYcIShS 561Rh5kwL+Lkz9T0tYheVe0XkAm4xsQx -----END CERTIFICATE-----Generated at Sun May 19 05:48:52 2024 by rpki-client on console-fra.rpki-client.org