$ rpki-client -vvf rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft File: 2RBlAbU10PfK1XyOenR8oGnQTVk.mft (raw, json) Hash identifier: EfXEpNY6R19fIDuUjegLcRoVyZlHWv2QlxzCfsnNpmo= Subject key identifier: C4:6D:21:FF:FB:3F:08:9C:F5:94:B4:44:25:93:89:D1:6D:94:86:C8 Authority key identifier: D9:10:65:01:B5:35:D0:F7:CA:D5:7C:8E:7A:74:7C:A0:69:D0:4D:59 Certificate issuer: /CN=A916FACB/serialNumber=D9106501B535D0F7CAD57C8E7A747CA069D04D59 Certificate serial: 02ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2RBlAbU10PfK1XyOenR8oGnQTVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft Manifest number: 02EA Signing time: Wed 01 May 2024 03:35:27 +0000 Manifest this update: Wed 01 May 2024 03:35:27 +0000 Manifest next update: Wed 08 May 2024 03:35:27 +0000 Files and hashes: 1: 2RBlAbU10PfK1XyOenR8oGnQTVk.crl (hash: n5JHd3Pb5xQwc/k1O3TX75qV6i32M0VTGW72D0unq9Q=) 2: 97D35382924311EC927C972FC4F9AE02.roa (hash: T7ZKyg9ZQs7UBfFtzhidJlbPJJuQY3xnnVMdulYDZMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.crl rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2RBlAbU10PfK1XyOenR8oGnQTVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:35:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 749 (0x2ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916FACB/serialNumber=D9106501B535D0F7CAD57C8E7A747CA069D04D59 Validity Not Before: May 1 03:35:27 2024 GMT Not After : May 8 03:35:27 2024 GMT Subject: CN=6631b87f-66b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:c8:7c:c3:7f:82:bf:c2:4e:e1:73:7b:2e:04: 31:65:bc:19:71:f3:86:85:13:e7:3f:b1:5b:a0:46: 23:6b:81:b8:a1:0b:72:1c:9f:a3:55:eb:49:cb:92: f7:34:5f:22:e0:33:e7:3c:a8:56:99:8d:9c:96:a2: 1e:b3:98:b1:5c:d9:00:a7:3b:18:55:fa:98:e9:1c: 7c:c7:6a:d2:7c:98:69:1d:e1:7d:21:71:6b:09:4c: 9d:d3:37:05:a6:aa:86:80:e5:d5:a0:e8:d8:81:06: b1:9c:ef:6c:5c:da:62:49:58:d0:61:ba:ac:c1:fc: 59:e8:50:0b:2d:c7:8c:59:48:e7:d1:9b:b6:e8:3e: 9d:fc:44:6a:b2:e8:7d:fe:ed:3c:16:89:28:6c:65: c1:41:b0:b7:46:58:24:76:7a:17:1b:82:28:92:7e: 2b:59:5f:6c:81:f2:77:57:3a:dd:3c:5b:ec:4f:52: 2d:9f:47:d9:67:5d:27:5e:da:34:fb:30:2b:38:51: d4:70:67:46:3d:1c:f0:d3:8c:0c:58:97:34:c3:4d: 85:9c:4c:6d:7e:f1:d1:55:07:47:64:8c:4e:6d:0e: a6:01:e0:7f:b8:a3:78:eb:b6:6e:d7:f4:4a:a8:b5: 6c:96:bd:52:1a:ff:46:24:48:d8:8b:0c:82:3f:17: 50:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:6D:21:FF:FB:3F:08:9C:F5:94:B4:44:25:93:89:D1:6D:94:86:C8 X509v3 Authority Key Identifier: keyid:D9:10:65:01:B5:35:D0:F7:CA:D5:7C:8E:7A:74:7C:A0:69:D0:4D:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2RBlAbU10PfK1XyOenR8oGnQTVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:68:fb:b5:af:52:51:e7:4f:71:51:ba:e5:bb:ad:97:c0:98: 7f:f9:d0:f1:bd:a6:16:59:0e:ac:aa:e9:d3:9f:1e:24:35:ed: 55:f4:fc:e2:ef:cd:83:a6:89:74:c7:45:d5:cf:ab:43:4f:48: b0:b2:05:24:2d:26:1a:14:13:bb:d1:54:d5:46:69:c4:eb:26: 19:8b:b6:dd:15:9d:56:7a:f8:83:3d:f9:40:01:fe:c3:49:6b: 23:dc:d3:f7:2e:6a:10:d1:96:f7:ac:51:99:4c:8f:f4:95:8c: 8f:5c:d3:a7:66:83:bb:d2:3c:46:f4:c9:ba:99:d5:2b:36:87: bb:a6:76:f7:2d:17:d2:10:90:5f:8a:c3:fe:14:32:2b:33:54: ca:55:c7:d5:1d:71:4c:e3:ea:d6:18:4f:81:c4:04:97:ca:49: 62:e5:d4:c1:4f:6a:0f:90:76:e1:4a:1b:2d:63:bf:03:c1:7a: 5c:73:83:3c:f8:f3:3b:8f:3d:ab:0a:3f:77:00:51:c2:fb:16: 50:03:69:7c:e9:66:be:bf:6c:48:15:d5:98:ab:a4:c4:38:47: e5:b4:36:5e:b6:62:d7:4e:e4:ec:a9:99:c5:d1:28:c9:e5:d6: bd:db:92:28:00:ea:0d:af:43:1d:58:1f:51:61:c8:d9:b2:d7: bb:77:20:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAu0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkZBQ0IxMTAvBgNVBAUTKEQ5MTA2NTAxQjUzNUQwRjdDQUQ1N0M4RTdBNzQ3Q0Ew NjlEMDRENTkwHhcNMjQwNTAxMDMzNTI3WhcNMjQwNTA4MDMzNTI3WjAYMRYwFAYD VQQDEw02NjMxYjg3Zi02NmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAosh8w3+Cv8JO4XN7LgQxZbwZcfOGhRPnP7FboEYja4G4oQtyHJ+jVetJy5L3 NF8i4DPnPKhWmY2clqIes5ixXNkApzsYVfqY6Rx8x2rSfJhpHeF9IXFrCUyd0zcF pqqGgOXVoOjYgQaxnO9sXNpiSVjQYbqswfxZ6FALLceMWUjn0Zu26D6d/ERqsuh9 /u08FokobGXBQbC3RlgkdnoXG4Iokn4rWV9sgfJ3VzrdPFvsT1Itn0fZZ10nXto0 +zArOFHUcGdGPRzw04wMWJc0w02FnExtfvHRVQdHZIxObQ6mAeB/uKN467Zu1/RK qLVslr1SGv9GJEjYiwyCPxdQPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMRtIf/7 Pwic9ZS0RCWTidFtlIbIMB8GA1UdIwQYMBaAFNkQZQG1NdD3ytV8jnp0fKBp0E1Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RkFDQi9GNTU5OEQwODky NDAxMUVDQkVENERBMkNDNEY5QUUwMi8yUkJsQWJVMTBQZksxWHlPZW5SOG9HblFU VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJSQmxBYlUxMFBmSzFYeU9lblI4b0duUVRWay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RkFDQi9GNTU5OEQwODkyNDAxMUVDQkVENERBMkNDNEY5QUUwMi8yUkJsQWJVMTBQ ZksxWHlPZW5SOG9HblFUVmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvaPu1r1JR509xUbrlu62XwJh/+dDxvaYWWQ6squnTnx4kNe1V9Pzi 782Dpol0x0XVz6tDT0iwsgUkLSYaFBO70VTVRmnE6yYZi7bdFZ1WeviDPflAAf7D SWsj3NP3LmoQ0Zb3rFGZTI/0lYyPXNOnZoO70jxG9Mm6mdUrNoe7pnb3LRfSEJBf isP+FDIrM1TKVcfVHXFM4+rWGE+BxASXykli5dTBT2oPkHbhShstY78DwXpcc4M8 +PM7jz2rCj93AFHC+xZQA2l86Wa+v2xIFdWYq6TEOEfltDZetmLXTuTsqZnF0SjJ 5da925IoAOoNr0MdWB9RYcjZste7dyCG -----END CERTIFICATE-----Generated at Wed May 1 05:59:05 2024 by rpki-client on console-fra.rpki-client.org