$ rpki-client -vvf rpki.apnic.net/member_repository/A91602BE/38218332A21D11E99C9DC77DC4F9AE02/F_lRhEBRRIyJBhQEz7QequBHOno.mft File: F_lRhEBRRIyJBhQEz7QequBHOno.mft (raw, json) Hash identifier: YEEvAWG3ECz2oUZSCfVk9gaZw4yeYDkLP4Ap0H2SkTA= Subject key identifier: E0:04:5A:ED:8A:BD:E8:A3:2A:7B:D9:8C:78:A0:70:63:42:F6:3C:79 Authority key identifier: 17:F9:51:84:40:51:44:8C:89:06:14:04:CF:B4:1E:AA:E0:47:3A:7A Certificate issuer: /CN=A91602BE/serialNumber=17F951844051448C89061404CFB41EAAE0473A7A Certificate serial: 0D90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F_lRhEBRRIyJBhQEz7QequBHOno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91602BE/38218332A21D11E99C9DC77DC4F9AE02/F_lRhEBRRIyJBhQEz7QequBHOno.mft Manifest number: 0D7E Signing time: Tue 30 Apr 2024 18:52:37 +0000 Manifest this update: Tue 30 Apr 2024 18:52:36 +0000 Manifest next update: Tue 07 May 2024 18:52:36 +0000 Files and hashes: 1: F_lRhEBRRIyJBhQEz7QequBHOno.crl (hash: t4JjNfOF7xyd/9v5ymhUVGXkJkwFJ1JxVNtB/mZh91U=) 2: 2A00F51ACDC411EBA2B42F4FC4F9AE02.roa (hash: ++G/F+Ju6AF3FX4wXdMvAYNt02d1NK+Z51nDXZBl5jo=) 3: 17A3A4D8C98611E9AC175947C4F9AE02.roa (hash: AKxNurzM1xAwUrb36jFvjKVvg5QaA9UU2hF5r3BYTK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91602BE/38218332A21D11E99C9DC77DC4F9AE02/F_lRhEBRRIyJBhQEz7QequBHOno.crl rsync://rpki.apnic.net/member_repository/A91602BE/38218332A21D11E99C9DC77DC4F9AE02/F_lRhEBRRIyJBhQEz7QequBHOno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F_lRhEBRRIyJBhQEz7QequBHOno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 18:52:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3472 (0xd90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91602BE/serialNumber=17F951844051448C89061404CFB41EAAE0473A7A Validity Not Before: Apr 30 18:52:36 2024 GMT Not After : May 7 18:52:36 2024 GMT Subject: CN=66313df4-7e74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:8e:25:ca:88:e8:df:6b:62:63:fe:7a:74:aa: 45:ce:ce:50:87:de:d5:02:c5:2e:21:73:67:52:24: 62:bb:a1:83:a7:fe:7a:11:d2:3b:45:1e:46:af:e3: b8:16:a0:2f:cf:27:45:71:11:f8:b8:39:b2:e9:8e: 0e:63:19:53:81:b3:7a:cf:c4:3b:57:22:da:30:25: 5c:b8:5a:18:76:c5:f6:31:8c:6e:3f:ae:b5:94:e1: 71:39:3b:66:29:64:5e:4d:33:9c:e8:88:56:ab:a4: 28:53:f0:96:4a:2c:ba:e6:c5:9c:48:03:5a:71:63: 43:23:a5:67:61:c5:bc:45:96:37:ee:bb:a2:87:b0: 2a:36:b7:ab:6a:a2:98:e3:27:13:59:85:9a:6b:7e: e1:c7:26:e6:6c:ac:1b:02:fd:15:c8:99:32:f0:91: 5c:15:e3:71:d2:5d:de:ae:95:cd:10:cd:82:20:88: 72:57:17:ea:b5:ff:94:66:23:a3:7a:f2:14:fe:63: cc:e7:ee:38:6e:08:c4:ab:39:57:f3:77:5e:e3:ac: 10:8d:a1:1d:ed:14:9a:ea:8c:37:dc:d7:81:c1:94: c2:f6:df:1a:45:a2:4b:a7:99:5e:47:b4:56:d6:5c: 54:d9:f1:b6:42:70:f3:1b:a3:6a:4a:3f:a3:a1:20: f6:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:04:5A:ED:8A:BD:E8:A3:2A:7B:D9:8C:78:A0:70:63:42:F6:3C:79 X509v3 Authority Key Identifier: keyid:17:F9:51:84:40:51:44:8C:89:06:14:04:CF:B4:1E:AA:E0:47:3A:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91602BE/38218332A21D11E99C9DC77DC4F9AE02/F_lRhEBRRIyJBhQEz7QequBHOno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F_lRhEBRRIyJBhQEz7QequBHOno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91602BE/38218332A21D11E99C9DC77DC4F9AE02/F_lRhEBRRIyJBhQEz7QequBHOno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:68:a5:cd:70:71:42:01:82:a1:7a:db:52:28:ae:a4:f3:ce: 75:2d:00:64:98:e2:f1:aa:d8:22:72:7d:eb:94:d8:e6:65:2e: 0f:e0:93:10:44:03:09:f3:d7:81:cd:be:6a:4a:49:22:6c:9e: c9:4f:74:cf:7f:4c:6b:4e:cd:43:ff:b3:b1:f2:4a:c7:7c:6d: 20:96:8a:80:f5:ef:ff:c7:a8:d0:f4:d5:00:18:7b:6b:cb:c2: 7e:4b:be:dd:fd:9a:ca:71:93:01:b6:fe:a3:47:29:93:ce:48: 07:99:ac:6b:ac:b2:fd:a9:53:7b:be:c7:2b:72:4a:ca:15:6f: d9:0a:81:29:20:3b:37:fc:29:f3:4b:6c:d3:85:d1:22:57:ba: cb:af:41:3e:4b:3c:a8:e2:2f:b7:c7:21:4d:ac:10:8d:42:07: 65:77:fc:7c:a4:5e:3b:b6:61:36:2d:5f:fb:e2:62:a2:24:0a: 5a:f8:78:28:73:f0:27:1c:f8:05:ac:fe:68:43:01:9a:85:e2: ac:31:ef:9a:d5:29:ae:c8:eb:87:f9:3f:d0:0a:1d:85:bf:1b: 0b:12:2d:12:a9:28:de:e9:e1:32:a4:3d:f8:0b:3f:b1:27:61: 19:58:50:df:9b:7b:46:8f:f1:90:a8:d6:12:b0:ef:91:25:09: 31:04:d7:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyQkUxMTAvBgNVBAUTKDE3Rjk1MTg0NDA1MTQ0OEM4OTA2MTQwNENGQjQxRUFB RTA0NzNBN0EwHhcNMjQwNDMwMTg1MjM2WhcNMjQwNTA3MTg1MjM2WjAYMRYwFAYD VQQDEw02NjMxM2RmNC03ZTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuY4lyojo32tiY/56dKpFzs5Qh97VAsUuIXNnUiRiu6GDp/56EdI7RR5Gr+O4 FqAvzydFcRH4uDmy6Y4OYxlTgbN6z8Q7VyLaMCVcuFoYdsX2MYxuP661lOFxOTtm KWReTTOc6IhWq6QoU/CWSiy65sWcSANacWNDI6VnYcW8RZY37ruih7AqNreraqKY 4ycTWYWaa37hxybmbKwbAv0VyJky8JFcFeNx0l3erpXNEM2CIIhyVxfqtf+UZiOj evIU/mPM5+44bgjEqzlX83de46wQjaEd7RSa6ow33NeBwZTC9t8aRaJLp5leR7RW 1lxU2fG2QnDzG6NqSj+joSD2VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOAEWu2K veijKnvZjHigcGNC9jx5MB8GA1UdIwQYMBaAFBf5UYRAUUSMiQYUBM+0HqrgRzp6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDJCRS8zODIxODMzMkEy MUQxMUU5OUM5REM3N0RDNEY5QUUwMi9GX2xSaEVCUlJJeUpCaFFFejdRZXF1QkhP bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZfbFJoRUJSUkl5SkJoUUV6N1FlcXVCSE9uby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDJCRS8zODIxODMzMkEyMUQxMUU5OUM5REM3N0RDNEY5QUUwMi9GX2xSaEVCUlJJ eUpCaFFFejdRZXF1QkhPbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqaKXNcHFCAYKhettSKK6k8851LQBkmOLxqtgicn3rlNjmZS4P4JMQ RAMJ89eBzb5qSkkibJ7JT3TPf0xrTs1D/7Ox8krHfG0gloqA9e//x6jQ9NUAGHtr y8J+S77d/ZrKcZMBtv6jRymTzkgHmaxrrLL9qVN7vscrckrKFW/ZCoEpIDs3/Cnz S2zThdEiV7rLr0E+Szyo4i+3xyFNrBCNQgdld/x8pF47tmE2LV/74mKiJApa+Hgo c/AnHPgFrP5oQwGaheKsMe+a1SmuyOuH+T/QCh2FvxsLEi0SqSje6eEypD34Cz+x J2EZWFDfm3tGj/GQqNYSsO+RJQkxBNe7 -----END CERTIFICATE-----Generated at Tue Apr 30 21:37:58 2024 by rpki-client on console-fra.rpki-client.org