$ rpki-client -vvf rpki.apnic.net/member_repository/A91185B8/D9BF4394BE3111EDB4FF7D34C4F9AE02/owBvXZI9TJzDuBs4ocpnEnR9RAY.mft File: owBvXZI9TJzDuBs4ocpnEnR9RAY.mft (raw, json) Hash identifier: vSA9+gQunHtsEzoeh77b1i9WWFizgE32iZToDyJWgRc= Subject key identifier: 69:88:B5:7B:5D:58:24:BE:C2:6C:ED:B3:B3:4E:5E:E7:2D:DA:3C:EB Authority key identifier: A3:00:6F:5D:92:3D:4C:9C:C3:B8:1B:38:A1:CA:67:12:74:7D:44:06 Certificate issuer: /CN=A91185B8/serialNumber=A3006F5D923D4C9CC3B81B38A1CA6712747D4406 Certificate serial: DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/owBvXZI9TJzDuBs4ocpnEnR9RAY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91185B8/D9BF4394BE3111EDB4FF7D34C4F9AE02/owBvXZI9TJzDuBs4ocpnEnR9RAY.mft Manifest number: DB Signing time: Fri 03 May 2024 06:06:06 +0000 Manifest this update: Fri 03 May 2024 06:06:05 +0000 Manifest next update: Fri 10 May 2024 06:06:05 +0000 Files and hashes: 1: owBvXZI9TJzDuBs4ocpnEnR9RAY.crl (hash: 0oXQ0BUztAW8+0r1q41AUJbX4WkiCwHTAMH/KFGnElc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91185B8/D9BF4394BE3111EDB4FF7D34C4F9AE02/owBvXZI9TJzDuBs4ocpnEnR9RAY.crl rsync://rpki.apnic.net/member_repository/A91185B8/D9BF4394BE3111EDB4FF7D34C4F9AE02/owBvXZI9TJzDuBs4ocpnEnR9RAY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/owBvXZI9TJzDuBs4ocpnEnR9RAY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 06:06:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91185B8/serialNumber=A3006F5D923D4C9CC3B81B38A1CA6712747D4406 Validity Not Before: May 3 06:06:05 2024 GMT Not After : May 10 06:06:05 2024 GMT Subject: CN=66347ece-125e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:2a:b1:30:0a:52:cf:1b:ca:be:b6:93:27:a5: aa:2e:aa:c5:42:98:ae:24:a2:2e:8b:20:d4:a2:48: eb:b8:e6:01:7c:61:d5:15:f4:ff:4e:1a:80:9d:f0: e4:76:aa:de:af:6f:36:44:34:a7:01:5a:5d:3a:1c: 17:08:84:3f:30:4d:80:af:04:d3:0c:d6:be:cf:b5: 7b:1a:c0:55:fe:b6:e0:f0:aa:7c:47:7b:32:fb:b7: 95:95:3f:6b:21:d9:db:e1:f9:3a:c8:b7:f3:f4:27: ea:8d:01:5d:f8:ce:f3:71:a1:e1:21:9b:a9:aa:1b: d1:4a:d1:a6:60:26:2a:78:ee:b5:24:e4:c5:80:7f: 24:3d:97:98:03:21:d1:77:18:25:3d:96:4a:e7:44: b0:b0:71:82:d7:80:e1:11:dc:61:31:8c:f0:61:87: f5:ed:63:93:f6:43:61:46:91:1d:50:ee:62:3e:07: 67:1e:ae:6d:1f:58:46:c7:cb:45:3b:df:e5:47:36: b2:18:35:c4:d0:b1:e1:4c:fa:a8:98:87:1b:30:55: 68:8a:ec:2b:2b:c6:40:89:05:56:31:cd:d9:dd:99: dc:2c:66:26:ff:ea:9c:21:4f:8c:b0:22:18:1b:82: 47:f3:91:f4:d0:41:74:1c:12:48:cf:08:ec:31:a5: 83:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:88:B5:7B:5D:58:24:BE:C2:6C:ED:B3:B3:4E:5E:E7:2D:DA:3C:EB X509v3 Authority Key Identifier: keyid:A3:00:6F:5D:92:3D:4C:9C:C3:B8:1B:38:A1:CA:67:12:74:7D:44:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91185B8/D9BF4394BE3111EDB4FF7D34C4F9AE02/owBvXZI9TJzDuBs4ocpnEnR9RAY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/owBvXZI9TJzDuBs4ocpnEnR9RAY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91185B8/D9BF4394BE3111EDB4FF7D34C4F9AE02/owBvXZI9TJzDuBs4ocpnEnR9RAY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:2a:79:77:33:bb:35:2c:c9:b4:6a:a9:70:ba:34:29:ff:0a: 7f:a7:3b:4e:d0:ef:5c:11:87:c5:14:ca:59:b5:29:78:48:6e: ee:c4:a0:26:a9:88:1f:51:42:82:e7:26:f6:4b:10:a0:dd:13: 56:98:8b:14:32:ee:73:7d:64:81:40:4c:07:e9:63:5d:e0:af: ae:cf:91:56:66:43:e0:70:c5:a5:36:98:6e:d6:90:9d:64:99: e4:82:f2:3a:87:82:62:ac:de:83:ad:9e:9f:52:15:71:f0:e8: 14:a4:2b:38:e8:d8:28:62:0d:2c:e1:24:8c:b0:ce:aa:f0:e8: bf:0a:72:56:ea:da:78:38:ca:43:1b:cb:d4:36:c5:75:f1:ec: aa:14:40:d4:27:c0:f6:00:97:f0:b1:31:e1:23:13:f0:0d:5c: cd:39:63:ca:52:1b:81:4a:bc:a3:2d:8b:46:b3:9b:b1:67:4c: 15:ee:b1:09:7a:81:ec:f8:e3:87:0f:4a:05:5a:2c:ec:d1:08: 8c:0f:26:29:27:a5:3b:f2:6a:77:23:dd:56:01:b8:78:a9:2a: d2:09:96:b0:a4:20:af:78:14:d8:7c:f0:69:bb:15:c3:ea:3b: 05:ca:c4:33:32:2a:95:8c:8e:31:c9:23:48:5a:35:b1:6d:18: 13:4e:ce:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg1QjgxMTAvBgNVBAUTKEEzMDA2RjVEOTIzRDRDOUNDM0I4MUIzOEExQ0E2NzEy NzQ3RDQ0MDYwHhcNMjQwNTAzMDYwNjA1WhcNMjQwNTEwMDYwNjA1WjAYMRYwFAYD VQQDEw02NjM0N2VjZS0xMjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1SqxMApSzxvKvraTJ6WqLqrFQpiuJKIuiyDUokjruOYBfGHVFfT/ThqAnfDk dqrer282RDSnAVpdOhwXCIQ/ME2ArwTTDNa+z7V7GsBV/rbg8Kp8R3sy+7eVlT9r Idnb4fk6yLfz9CfqjQFd+M7zcaHhIZupqhvRStGmYCYqeO61JOTFgH8kPZeYAyHR dxglPZZK50SwsHGC14DhEdxhMYzwYYf17WOT9kNhRpEdUO5iPgdnHq5tH1hGx8tF O9/lRzayGDXE0LHhTPqomIcbMFVoiuwrK8ZAiQVWMc3Z3ZncLGYm/+qcIU+MsCIY G4JH85H00EF0HBJIzwjsMaWDQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGmItXtd WCS+wmzts7NOXuct2jzrMB8GA1UdIwQYMBaAFKMAb12SPUycw7gbOKHKZxJ0fUQG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODVCOC9EOUJGNDM5NEJF MzExMUVEQjRGRjdEMzRDNEY5QUUwMi9vd0J2WFpJOVRKekR1QnM0b2NwbkVuUjlS QVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL293QnZYWkk5VEp6RHVCczRvY3BuRW5SOVJBWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODVCOC9EOUJGNDM5NEJFMzExMUVEQjRGRjdEMzRDNEY5QUUwMi9vd0J2WFpJOVRK ekR1QnM0b2NwbkVuUjlSQVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYKnl3M7s1LMm0aqlwujQp/wp/pztO0O9cEYfFFMpZtSl4SG7uxKAm qYgfUUKC5yb2SxCg3RNWmIsUMu5zfWSBQEwH6WNd4K+uz5FWZkPgcMWlNphu1pCd ZJnkgvI6h4JirN6DrZ6fUhVx8OgUpCs46NgoYg0s4SSMsM6q8Oi/CnJW6tp4OMpD G8vUNsV18eyqFEDUJ8D2AJfwsTHhIxPwDVzNOWPKUhuBSryjLYtGs5uxZ0wV7rEJ eoHs+OOHD0oFWizs0QiMDyYpJ6U78mp3I91WAbh4qSrSCZawpCCveBTYfPBpuxXD 6jsFysQzMiqVjI4xySNIWjWxbRgTTs7B -----END CERTIFICATE-----Generated at Fri May 3 09:08:45 2024 by rpki-client on console-fra.rpki-client.org