$ rpki-client -vvf rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft File: fT3bIK_-cUyPNUllHB7oD1VgEbg.mft (raw, json) Hash identifier: 2W3GIoPHClpyhF091/fcSYr3zq4oLB8O+UKeWh6UfzY= Subject key identifier: 97:C1:B7:D0:FD:77:3C:14:31:7B:BA:EB:44:7A:B0:5D:D7:07:1D:29 Authority key identifier: 7D:3D:DB:20:AF:FE:71:4C:8F:35:49:65:1C:1E:E8:0F:55:60:11:B8 Certificate issuer: /CN=A91319EA/serialNumber=7D3DDB20AFFE714C8F3549651C1EE80F556011B8 Certificate serial: 01E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft Manifest number: 01E1 Signing time: Wed 01 May 2024 04:35:53 +0000 Manifest this update: Wed 01 May 2024 04:35:53 +0000 Manifest next update: Wed 08 May 2024 04:35:53 +0000 Files and hashes: 1: fT3bIK_-cUyPNUllHB7oD1VgEbg.crl (hash: 5Mu5gTFUU77z3NpOXunux3vAZVSN93PU1CLxwaGu8Tc=) 2: BFD5E8EAF8EB11EC9C39C677C4F9AE02.roa (hash: Q+NKrAzESXHJCR6Zu13d/jraaQiKVKDvUkNBf3H3a5Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.crl rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 483 (0x1e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91319EA/serialNumber=7D3DDB20AFFE714C8F3549651C1EE80F556011B8 Validity Not Before: May 1 04:35:53 2024 GMT Not After : May 8 04:35:53 2024 GMT Subject: CN=6631c6a9-e5b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:3f:1d:02:a7:61:24:15:5e:67:e5:91:e0:69: 69:3f:a6:74:ac:96:7f:65:0a:35:97:3a:77:a7:8a: 41:b7:f2:fa:11:80:05:2b:c2:a0:fd:79:17:8f:43: 80:48:cf:a3:50:13:71:c8:8e:eb:d2:27:6e:64:e2: 17:24:45:ff:a5:95:b1:8c:b7:90:5c:13:e8:62:a8: cc:09:67:75:a9:03:71:96:e8:d8:c6:f0:57:e0:ea: 69:a3:6d:04:54:19:1f:49:6a:f6:28:e7:01:05:f9: 52:98:dc:ad:26:e4:8f:fa:21:a6:f4:e1:c0:74:be: cd:91:10:d3:36:8a:df:76:55:a3:93:09:5f:f0:00: 3e:5d:01:73:1b:c0:0f:8a:0d:6d:c3:1d:de:ee:13: 4e:ac:10:dc:31:b9:44:3b:38:68:81:01:3c:01:b1: 45:a4:fb:9e:e8:ef:4d:37:bf:26:f7:36:85:a3:1a: 81:28:d2:14:c6:5f:0c:8f:e8:00:9c:8e:f7:53:6e: cb:8b:cb:20:cd:9d:67:e9:05:6a:c9:71:2a:9f:49: 19:89:c9:04:2f:15:b4:4d:28:93:35:3a:4a:02:bc: 40:95:c4:81:09:7e:87:ca:4a:7d:7e:f5:70:a7:c7: 8d:4a:df:fd:88:04:a9:cc:dd:28:84:b8:ce:91:c4: 0e:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:C1:B7:D0:FD:77:3C:14:31:7B:BA:EB:44:7A:B0:5D:D7:07:1D:29 X509v3 Authority Key Identifier: keyid:7D:3D:DB:20:AF:FE:71:4C:8F:35:49:65:1C:1E:E8:0F:55:60:11:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:71:d7:34:1b:54:f7:34:da:d6:79:86:9d:da:e8:ca:56:2b: 66:69:c2:73:6b:44:02:cf:80:8e:5f:24:1e:46:f7:f2:03:68: a5:f5:2a:8c:d2:7d:f1:a8:00:79:a7:bf:8d:b1:ea:22:b6:f2: a7:81:69:6b:c7:08:31:70:0f:5c:90:b3:fc:ba:47:eb:11:5b: 93:03:d2:62:09:d1:8e:60:ae:08:a3:0b:15:ba:79:2c:13:f1: d2:d0:18:33:f0:00:57:67:a5:06:51:8e:6a:d6:cd:b2:5d:0a: 06:95:8a:d7:27:39:a6:0f:c2:9a:6b:46:85:2a:0e:bf:01:a6: a4:7a:3a:51:98:79:9f:b1:14:f7:77:8a:3f:ce:26:c2:1f:72: bb:78:e9:7c:5f:db:b8:e0:8d:aa:7c:82:f3:db:f3:73:eb:12: af:c8:69:f9:f3:be:40:e4:7e:1d:19:88:cf:f0:bb:30:65:82: 42:69:e8:77:f1:6e:0d:90:d2:1d:54:0b:6a:1a:af:4d:22:82: d2:b7:6b:58:11:d1:17:19:9f:fe:23:57:6b:ea:75:4c:05:3d: 78:a5:8f:00:6d:eb:c0:48:f1:0c:35:aa:c9:23:b7:e3:41:e5: dc:f7:18:cf:17:c5:68:11:49:92:4d:b4:f4:29:df:40:87:a1: b3:4f:8e:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE5RUExMTAvBgNVBAUTKDdEM0REQjIwQUZGRTcxNEM4RjM1NDk2NTFDMUVFODBG NTU2MDExQjgwHhcNMjQwNTAxMDQzNTUzWhcNMjQwNTA4MDQzNTUzWjAYMRYwFAYD VQQDEw02NjMxYzZhOS1lNWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4D8dAqdhJBVeZ+WR4GlpP6Z0rJZ/ZQo1lzp3p4pBt/L6EYAFK8Kg/XkXj0OA SM+jUBNxyI7r0iduZOIXJEX/pZWxjLeQXBPoYqjMCWd1qQNxlujYxvBX4Oppo20E VBkfSWr2KOcBBflSmNytJuSP+iGm9OHAdL7NkRDTNorfdlWjkwlf8AA+XQFzG8AP ig1twx3e7hNOrBDcMblEOzhogQE8AbFFpPue6O9NN78m9zaFoxqBKNIUxl8Mj+gA nI73U27Li8sgzZ1n6QVqyXEqn0kZickELxW0TSiTNTpKArxAlcSBCX6Hykp9fvVw p8eNSt/9iASpzN0ohLjOkcQOlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJfBt9D9 dzwUMXu660R6sF3XBx0pMB8GA1UdIwQYMBaAFH092yCv/nFMjzVJZRwe6A9VYBG4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTlFQS9EMjZDNDEyOEY4 RTgxMUVDOEI1NzcyNzFDNEY5QUUwMi9mVDNiSUtfLWNVeVBOVWxsSEI3b0QxVmdF YmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZUM2JJS18tY1V5UE5VbGxIQjdvRDFWZ0ViZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTlFQS9EMjZDNDEyOEY4RTgxMUVDOEI1NzcyNzFDNEY5QUUwMi9mVDNiSUtfLWNV eVBOVWxsSEI3b0QxVmdFYmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACcdc0G1T3NNrWeYad2ujKVitmacJza0QCz4COXyQeRvfyA2il9SqM 0n3xqAB5p7+NseoitvKngWlrxwgxcA9ckLP8ukfrEVuTA9JiCdGOYK4IowsVunks E/HS0Bgz8ABXZ6UGUY5q1s2yXQoGlYrXJzmmD8Kaa0aFKg6/AaakejpRmHmfsRT3 d4o/zibCH3K7eOl8X9u44I2qfILz2/Nz6xKvyGn5875A5H4dGYjP8LswZYJCaeh3 8W4NkNIdVAtqGq9NIoLSt2tYEdEXGZ/+I1dr6nVMBT14pY8AbevASPEMNarJI7fj QeXc9xjPF8VoEUmSTbT0Kd9Ah6GzT46p -----END CERTIFICATE-----Generated at Wed May 1 05:58:59 2024 by rpki-client on console-fra.rpki-client.org