$ rpki-client -vvf rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft File: JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft (raw, json) Hash identifier: xgzvo4iYDntDZ1oS4RrKmkQKk4KrPawhsp++Gc8L72g= Subject key identifier: 77:61:8B:9F:86:8A:6E:0F:2A:F6:37:C3:2E:F8:FD:31:1B:9F:C1:C3 Authority key identifier: 24:3D:92:43:7C:E2:30:50:3E:54:8E:FD:29:3C:2A:63:81:B5:C4:26 Certificate issuer: /CN=A91523C5/serialNumber=243D92437CE230503E548EFD293C2A6381B5C426 Certificate serial: 0D46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft Manifest number: 0D3C Signing time: Sun 28 Apr 2024 18:39:37 +0000 Manifest this update: Sun 28 Apr 2024 18:39:36 +0000 Manifest next update: Sun 05 May 2024 18:39:36 +0000 Files and hashes: 1: JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl (hash: fp9KElk+HB15ucRxStfU6sRcxaPpWTwigoFjKB7pbl8=) 2: 72D9F434AD2411E98D9E935AC4F9AE02.roa (hash: zKxP5VFtHCRy0JiVu3mKaiT0ToLV7OxR+IDhqx/RqV0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 18:39:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3398 (0xd46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91523C5/serialNumber=243D92437CE230503E548EFD293C2A6381B5C426 Validity Not Before: Apr 28 18:39:36 2024 GMT Not After : May 5 18:39:36 2024 GMT Subject: CN=662e97e8-40a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:6f:ac:f6:e0:7d:11:5b:ad:2c:b3:80:cf:d4: 87:cc:b9:13:b7:ac:a6:cb:9e:c8:d0:df:86:43:92: 18:69:e0:3f:94:23:ea:a6:0f:7e:dc:c5:56:c2:9f: bf:d4:06:6e:a9:ac:46:ea:1e:59:61:05:37:f9:9a: bc:4a:66:4e:b0:b4:45:95:45:99:52:56:78:78:74: 38:80:85:ff:24:f4:cc:ca:4f:5d:be:8c:e7:d0:ae: d9:42:31:9a:14:de:6c:d3:35:69:00:64:d2:f8:0a: 5b:59:ec:35:b2:02:de:bf:5a:f8:40:84:77:69:4d: 18:3c:4d:97:97:22:ac:ee:5e:78:0e:e6:9e:2d:26: 1c:60:c9:1e:5d:9a:78:6b:9b:a7:c8:35:66:46:85: d7:fb:a9:77:6b:d8:6a:4c:e7:d4:b5:8c:81:a5:c7: 63:ee:48:4c:3f:4b:32:1c:8a:e6:86:09:7a:6b:ff: bd:eb:cb:a0:f8:5f:03:08:62:e1:25:7d:cc:a7:41: 8f:49:08:f4:4b:67:d0:aa:22:2f:c6:7a:d0:40:55: 0b:23:00:47:4c:42:ac:e6:d4:2b:c6:79:e0:f6:8b: e8:63:c6:0b:63:39:29:25:b9:a0:13:f7:87:fd:ca: 19:9d:42:af:c9:c0:be:b8:ed:04:ea:bf:99:8a:c3: a6:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:61:8B:9F:86:8A:6E:0F:2A:F6:37:C3:2E:F8:FD:31:1B:9F:C1:C3 X509v3 Authority Key Identifier: keyid:24:3D:92:43:7C:E2:30:50:3E:54:8E:FD:29:3C:2A:63:81:B5:C4:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:e5:ec:76:5b:53:d6:70:79:d2:22:a8:8d:86:da:49:ae:03: f5:c7:d9:6b:a2:51:08:1e:69:dd:53:dd:dd:41:7f:e7:03:c3: 4a:85:06:0e:38:ee:0a:68:65:8b:bb:52:83:73:06:02:5f:48: 5f:4a:21:21:09:09:a7:1b:d2:c8:51:0e:e4:7c:6b:23:0e:2b: f7:cc:85:6a:af:ac:48:7a:14:4f:50:27:c1:dc:f8:3f:ca:ef: d2:28:2a:c9:cb:b5:c5:06:c3:03:f0:32:7a:b1:82:85:ab:42: d6:da:e7:68:35:1c:71:44:92:d5:08:7a:40:b2:d0:77:79:35: aa:d2:17:82:f0:82:9c:f7:ab:39:f1:dc:47:ff:97:08:6c:9b: 6a:56:77:da:82:20:e7:95:52:12:67:c6:c3:a7:e9:b1:6f:a6: a3:c8:4b:b5:45:85:98:df:67:a5:5a:3a:33:d2:b8:38:52:5c: cd:f7:c8:95:cc:53:95:db:cf:9a:71:7c:bf:b8:26:57:46:7e: 1c:b4:70:14:1f:0d:0e:5a:32:ab:a6:8f:f6:2d:11:1c:97:0e: 57:b1:70:ce:7a:98:2a:5f:96:f4:7d:42:92:9a:51:c9:d9:ed: 53:3a:41:ee:de:69:c1:54:a7:5d:4c:9b:09:a9:da:7b:5d:70: ac:83:22:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTIzQzUxMTAvBgNVBAUTKDI0M0Q5MjQzN0NFMjMwNTAzRTU0OEVGRDI5M0MyQTYz ODFCNUM0MjYwHhcNMjQwNDI4MTgzOTM2WhcNMjQwNTA1MTgzOTM2WjAYMRYwFAYD VQQDEw02NjJlOTdlOC00MGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzW+s9uB9EVutLLOAz9SHzLkTt6ymy57I0N+GQ5IYaeA/lCPqpg9+3MVWwp+/ 1AZuqaxG6h5ZYQU3+Zq8SmZOsLRFlUWZUlZ4eHQ4gIX/JPTMyk9dvozn0K7ZQjGa FN5s0zVpAGTS+ApbWew1sgLev1r4QIR3aU0YPE2XlyKs7l54DuaeLSYcYMkeXZp4 a5unyDVmRoXX+6l3a9hqTOfUtYyBpcdj7khMP0syHIrmhgl6a/+968ug+F8DCGLh JX3Mp0GPSQj0S2fQqiIvxnrQQFULIwBHTEKs5tQrxnng9ovoY8YLYzkpJbmgE/eH /coZnUKvycC+uO0E6r+ZisOm2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHdhi5+G im4PKvY3wy74/TEbn8HDMB8GA1UdIwQYMBaAFCQ9kkN84jBQPlSO/Sk8KmOBtcQm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjNDNS8wMzY2RDdBRUFD RTExMUU5QkZBNTY0MjNDNEY5QUUwMi9KRDJTUTN6aU1GQS1WSTc5S1R3cVk0RzF4 Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pEMlNRM3ppTUZBLVZJNzlLVHdxWTRHMXhDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjNDNS8wMzY2RDdBRUFDRTExMUU5QkZBNTY0MjNDNEY5QUUwMi9KRDJTUTN6aU1G QS1WSTc5S1R3cVk0RzF4Q1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAy5ex2W1PWcHnSIqiNhtpJrgP1x9lrolEIHmndU93dQX/nA8NKhQYO OO4KaGWLu1KDcwYCX0hfSiEhCQmnG9LIUQ7kfGsjDiv3zIVqr6xIehRPUCfB3Pg/ yu/SKCrJy7XFBsMD8DJ6sYKFq0LW2udoNRxxRJLVCHpAstB3eTWq0heC8IKc96s5 8dxH/5cIbJtqVnfagiDnlVISZ8bDp+mxb6ajyEu1RYWY32elWjoz0rg4UlzN98iV zFOV28+acXy/uCZXRn4ctHAUHw0OWjKrpo/2LREclw5XsXDOepgqX5b0fUKSmlHJ 2e1TOkHu3mnBVKddTJsJqdp7XXCsgyJ1 -----END CERTIFICATE-----Generated at Sun Apr 28 19:59:03 2024 by rpki-client on console-fra.rpki-client.org