$ rpki-client -vvf rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft File: 52j8yLln1vHIgeDUmgxCCN8H-zc.mft (raw, json) Hash identifier: Y9xzG2HrmHjfJbSHEtJqTouaZFxss8BreKeSIqz4qEo= Subject key identifier: 2B:55:51:D1:73:65:CF:93:D7:20:7E:31:2C:41:18:BA:C8:D7:BA:27 Authority key identifier: E7:68:FC:C8:B9:67:D6:F1:C8:81:E0:D4:9A:0C:42:08:DF:07:FB:37 Certificate issuer: /CN=A914C1AE/serialNumber=E768FCC8B967D6F1C881E0D49A0C4208DF07FB37 Certificate serial: 0295 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft Manifest number: 0291 Signing time: Tue 07 May 2024 03:38:08 +0000 Manifest this update: Tue 07 May 2024 03:38:08 +0000 Manifest next update: Tue 14 May 2024 03:38:08 +0000 Files and hashes: 1: 52j8yLln1vHIgeDUmgxCCN8H-zc.crl (hash: RBmBH3bXZamrfRCDkrhFT/RzMCWnYD6k90ku9Mrd2qM=) 2: 1D3CD16AB67A11ECB02F1D5FC4F9AE02.roa (hash: 5BdvtyqqCFdaLTfK1ujZ27yguBshaWXCsOYoIJ+LAOo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.crl rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 03:38:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 661 (0x295) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C1AE/serialNumber=E768FCC8B967D6F1C881E0D49A0C4208DF07FB37 Validity Not Before: May 7 03:38:08 2024 GMT Not After : May 14 03:38:08 2024 GMT Subject: CN=6639a220-9be0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:49:90:d1:a5:61:11:d7:35:d9:d0:0c:61:21: b9:5c:4c:0d:b0:54:f7:0a:ad:69:f5:19:e8:68:6d: 96:43:08:32:f3:a9:9a:f4:f7:7e:ce:55:f5:82:63: 32:e6:98:b1:a7:4f:5f:43:77:9a:d6:90:68:8e:7d: 7b:da:64:b9:1a:54:e4:e5:62:09:a4:46:d5:10:5e: 91:fa:31:92:30:53:25:84:32:c2:60:8b:c7:fd:06: db:b3:57:af:12:96:7c:7f:19:61:b9:b8:0c:cf:7b: ed:bf:8d:f2:41:a4:47:78:6f:ee:f8:e4:d1:c3:ac: c3:6a:72:ae:8f:9a:9b:1e:1a:bb:9f:47:2c:e5:6b: 1c:f3:df:c1:3d:94:11:0a:fc:b9:b2:5c:56:56:ca: 76:98:7e:76:e9:7b:89:fe:39:1e:58:3c:e1:2c:bb: 95:0e:69:8a:ec:71:9e:ec:e8:13:43:85:fb:a2:d7: 3e:03:17:22:5f:e0:c2:c8:c7:1b:33:a8:1c:2b:60: 28:5a:6b:fe:1c:27:ac:bb:82:4a:3e:b4:7f:d4:5d: f2:5f:96:33:bf:6d:f6:40:78:87:15:4e:aa:d4:22: 4b:81:49:cf:69:48:76:39:0c:7d:83:e5:79:48:d7: 89:ca:14:ec:76:65:39:0d:55:a8:24:de:3f:23:1f: 32:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:55:51:D1:73:65:CF:93:D7:20:7E:31:2C:41:18:BA:C8:D7:BA:27 X509v3 Authority Key Identifier: keyid:E7:68:FC:C8:B9:67:D6:F1:C8:81:E0:D4:9A:0C:42:08:DF:07:FB:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:3b:0b:56:0c:4c:ec:a1:8c:e4:85:80:77:c2:6f:41:19:ae: 2d:6a:01:3d:ec:b9:91:5b:96:c1:47:bb:97:34:9d:6e:a4:fa: f6:2a:2c:76:c4:7a:1c:64:e3:c2:63:82:83:ef:7c:d3:1d:b3: 26:3e:5c:27:6e:17:34:ef:9e:53:bf:1c:7b:68:54:bf:14:d9: d7:b5:d3:97:65:43:2e:89:80:43:7b:81:a9:aa:9f:35:89:a6: b5:e8:d1:34:67:df:37:aa:4c:4d:4b:1e:f1:3f:dc:34:c2:4c: ac:86:3b:17:c2:ed:01:ef:8b:e8:43:4c:d2:53:91:00:41:47: b7:c0:f4:50:57:3f:91:31:a4:b9:d5:ff:8e:65:f3:91:ba:46: 91:fb:f0:64:90:02:dd:10:31:30:ce:43:a3:50:09:49:29:5e: 04:99:45:55:2e:49:3c:be:67:d1:e6:d4:0c:eb:27:77:38:2e: 2a:a6:09:4b:ce:e0:cb:ff:04:d7:c6:6d:1c:92:4d:05:8f:94: 07:79:29:e1:5a:4b:1f:1a:43:a8:08:2b:20:a0:e3:8d:f8:ca: 24:3e:90:4d:2a:ad:e8:aa:98:39:c0:5a:04:ce:59:6b:45:88: 0f:ff:66:26:11:36:06:b1:3d:0a:c7:f5:c4:45:95:95:5b:d7: 9b:50:af:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMxQUUxMTAvBgNVBAUTKEU3NjhGQ0M4Qjk2N0Q2RjFDODgxRTBENDlBMEM0MjA4 REYwN0ZCMzcwHhcNMjQwNTA3MDMzODA4WhcNMjQwNTE0MDMzODA4WjAYMRYwFAYD VQQDEw02NjM5YTIyMC05YmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlUmQ0aVhEdc12dAMYSG5XEwNsFT3Cq1p9RnoaG2WQwgy86ma9Pd+zlX1gmMy 5pixp09fQ3ea1pBojn172mS5GlTk5WIJpEbVEF6R+jGSMFMlhDLCYIvH/Qbbs1ev EpZ8fxlhubgMz3vtv43yQaRHeG/u+OTRw6zDanKuj5qbHhq7n0cs5Wsc89/BPZQR Cvy5slxWVsp2mH526XuJ/jkeWDzhLLuVDmmK7HGe7OgTQ4X7otc+AxciX+DCyMcb M6gcK2AoWmv+HCesu4JKPrR/1F3yX5Yzv232QHiHFU6q1CJLgUnPaUh2OQx9g+V5 SNeJyhTsdmU5DVWoJN4/Ix8y6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCtVUdFz Zc+T1yB+MSxBGLrI17onMB8GA1UdIwQYMBaAFOdo/Mi5Z9bxyIHg1JoMQgjfB/s3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzFBRS81OEQ5OTJERUI2 NzYxMUVDOEY1Mzc4NDdDNEY5QUUwMi81Mmo4eUxsbjF2SElnZURVbWd4Q0NOOEgt emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUyajh5TGxuMXZISWdlRFVtZ3hDQ044SC16Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzFBRS81OEQ5OTJERUI2NzYxMUVDOEY1Mzc4NDdDNEY5QUUwMi81Mmo4eUxsbjF2 SElnZURVbWd4Q0NOOEgtemMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2OwtWDEzsoYzkhYB3wm9BGa4tagE97LmRW5bBR7uXNJ1upPr2Kix2 xHocZOPCY4KD73zTHbMmPlwnbhc0755Tvxx7aFS/FNnXtdOXZUMuiYBDe4Gpqp81 iaa16NE0Z983qkxNSx7xP9w0wkyshjsXwu0B74voQ0zSU5EAQUe3wPRQVz+RMaS5 1f+OZfORukaR+/BkkALdEDEwzkOjUAlJKV4EmUVVLkk8vmfR5tQM6yd3OC4qpglL zuDL/wTXxm0ckk0Fj5QHeSnhWksfGkOoCCsgoOON+MokPpBNKq3oqpg5wFoEzllr RYgP/2YmETYGsT0Kx/XERZWVW9ebUK9O -----END CERTIFICATE-----Generated at Tue May 7 04:34:48 2024 by rpki-client on console-fra.rpki-client.org