$ rpki-client -vvf rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft File: J3d5rGk2otMhSl8XQCE_25JWxqM.mft (raw, json) Hash identifier: JcwQInM5HN9SunF8TAcF9/3FhQ3jXi3TYPElmRmLGXI= Subject key identifier: 7F:6A:C1:E7:14:37:AD:0A:39:13:AC:2D:2C:E6:32:71:84:36:E9:E7 Authority key identifier: 27:77:79:AC:69:36:A2:D3:21:4A:5F:17:40:21:3F:DB:92:56:C6:A3 Certificate issuer: /CN=A91770B7/serialNumber=277779AC6936A2D3214A5F1740213FDB9256C6A3 Certificate serial: 01B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft Manifest number: 01B5 Signing time: Wed 01 May 2024 04:50:14 +0000 Manifest this update: Wed 01 May 2024 04:50:14 +0000 Manifest next update: Wed 08 May 2024 04:50:14 +0000 Files and hashes: 1: J3d5rGk2otMhSl8XQCE_25JWxqM.crl (hash: WhpOckiFz9cCG2IhZElZGsLF+kEoD2n0BUzZLcf8Mcs=) 2: 2841A0CE0BE111ED9E3AA135C4F9AE02.roa (hash: ItHODf/LTjer4aEMy+uXKhQTAYqJmb+1V4ZxxdvfZf8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.crl rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 441 (0x1b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91770B7/serialNumber=277779AC6936A2D3214A5F1740213FDB9256C6A3 Validity Not Before: May 1 04:50:14 2024 GMT Not After : May 8 04:50:14 2024 GMT Subject: CN=6631ca06-a9a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:98:bd:83:39:8e:dd:a7:e5:ed:15:a7:9f:ab: 85:3b:b1:89:33:d8:6f:1f:38:f9:98:0c:d8:66:7e: 72:03:cf:01:65:02:5b:89:93:8f:64:93:ef:23:d1: 46:c6:7e:67:4e:6d:95:0d:93:44:0a:68:9b:b8:12: 80:98:29:3b:8a:ce:90:bb:f8:36:56:13:bf:23:97: 9d:ad:2c:bd:c8:ae:03:18:14:7e:6c:ab:0c:26:78: bb:c1:2f:ca:a5:f5:5d:3e:57:99:a8:a8:4f:a1:d3: 0a:df:99:92:9b:0a:29:2c:03:81:06:b7:25:e2:83: 80:a7:8f:4c:41:1b:4d:71:f3:d6:f7:a7:b5:66:cb: b4:fc:16:18:08:0a:2e:94:27:b0:1e:05:b6:77:6d: 49:e6:f8:4e:6a:1e:f5:df:e1:24:51:bd:e6:69:c1: 36:5c:f1:f2:e2:3a:97:7b:96:9a:a7:0f:c6:bf:fc: 35:3b:16:ed:6f:94:7c:bc:4f:28:b0:90:8f:16:fc: 73:84:7e:95:36:97:b9:aa:3c:14:ae:e4:0e:b8:23: c7:3c:2f:cb:99:5d:29:6f:d8:3f:cc:1a:e3:e1:b2: 71:2e:14:6f:eb:87:fd:7f:2a:8e:e9:2e:6c:34:3c: 29:b5:97:71:da:91:b0:b6:f4:e4:45:cb:d6:9f:35: cd:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:6A:C1:E7:14:37:AD:0A:39:13:AC:2D:2C:E6:32:71:84:36:E9:E7 X509v3 Authority Key Identifier: keyid:27:77:79:AC:69:36:A2:D3:21:4A:5F:17:40:21:3F:DB:92:56:C6:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:8f:aa:3b:38:de:0c:73:e6:3b:b5:ff:09:d5:c9:14:03:fa: 27:88:c4:99:13:a5:48:b3:b8:20:67:c6:13:59:dd:0e:49:ee: 02:dc:0c:72:3c:61:da:43:b6:bd:3d:9e:83:59:8e:38:6a:85: 0e:ab:d2:09:7b:a8:ce:3e:5f:50:3e:41:89:be:df:2e:ad:6a: f8:37:65:62:0a:87:7f:1d:e5:b7:e7:b7:9b:fe:2c:cc:fe:bb: 4b:0a:7f:e3:f3:bb:b0:1e:0a:37:77:57:45:4c:97:c5:bd:f1: e8:b4:df:23:13:dd:8b:96:57:da:e8:6c:61:6d:67:e4:82:7f: 18:46:32:65:ff:51:37:2f:e1:04:9c:0c:4c:52:66:50:4b:84: cf:9f:3c:15:87:c9:19:3c:30:ab:13:1f:e3:69:bd:ad:26:12: a9:15:06:9f:f5:a1:e8:2c:6f:43:06:08:3f:35:ed:90:04:26: 2d:9b:7e:e5:a4:4f:57:8c:66:7a:cd:38:d2:30:1c:5c:6e:ec: 1e:b9:c8:3a:4e:86:cb:d4:13:e6:8d:16:7d:1f:04:84:ab:f2: a9:27:4d:5f:dd:6f:b2:6a:d6:af:0f:c4:95:8b:7a:66:98:f1: 9f:22:44:3e:35:97:5f:ec:98:64:e9:8a:3c:cf:be:c3:8a:5b: 24:44:f9:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcwQjcxMTAvBgNVBAUTKDI3Nzc3OUFDNjkzNkEyRDMyMTRBNUYxNzQwMjEzRkRC OTI1NkM2QTMwHhcNMjQwNTAxMDQ1MDE0WhcNMjQwNTA4MDQ1MDE0WjAYMRYwFAYD VQQDEw02NjMxY2EwNi1hOWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvpi9gzmO3afl7RWnn6uFO7GJM9hvHzj5mAzYZn5yA88BZQJbiZOPZJPvI9FG xn5nTm2VDZNECmibuBKAmCk7is6Qu/g2VhO/I5edrSy9yK4DGBR+bKsMJni7wS/K pfVdPleZqKhPodMK35mSmwopLAOBBrcl4oOAp49MQRtNcfPW96e1Zsu0/BYYCAou lCewHgW2d21J5vhOah713+EkUb3macE2XPHy4jqXe5aapw/Gv/w1Oxbtb5R8vE8o sJCPFvxzhH6VNpe5qjwUruQOuCPHPC/LmV0pb9g/zBrj4bJxLhRv64f9fyqO6S5s NDwptZdx2pGwtvTkRcvWnzXNAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH9qwecU N60KOROsLSzmMnGENunnMB8GA1UdIwQYMBaAFCd3eaxpNqLTIUpfF0AhP9uSVsaj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzBCNy9BNTI2NEVFMDBC REQxMUVEOUFCOUVDMkJDNEY5QUUwMi9KM2Q1ckdrMm90TWhTbDhYUUNFXzI1Sld4 cU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ozZDVyR2syb3RNaFNsOFhRQ0VfMjVKV3hxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzBCNy9BNTI2NEVFMDBCREQxMUVEOUFCOUVDMkJDNEY5QUUwMi9KM2Q1ckdrMm90 TWhTbDhYUUNFXzI1Sld4cU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZj6o7ON4Mc+Y7tf8J1ckUA/oniMSZE6VIs7ggZ8YTWd0OSe4C3Axy PGHaQ7a9PZ6DWY44aoUOq9IJe6jOPl9QPkGJvt8urWr4N2ViCod/HeW357eb/izM /rtLCn/j87uwHgo3d1dFTJfFvfHotN8jE92Lllfa6GxhbWfkgn8YRjJl/1E3L+EE nAxMUmZQS4TPnzwVh8kZPDCrEx/jab2tJhKpFQaf9aHoLG9DBgg/Ne2QBCYtm37l pE9XjGZ6zTjSMBxcbuweucg6TobL1BPmjRZ9HwSEq/KpJ01f3W+yatavD8SVi3pm mPGfIkQ+NZdf7Jhk6Yo8z77DilskRPnW -----END CERTIFICATE-----Generated at Wed May 1 05:59:05 2024 by rpki-client on console-fra.rpki-client.org