$ rpki-client -vvf rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft File: A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft (raw, json) Hash identifier: DMdYHZxv6hDxZU4fqQgbN1n0qHL4eVaNmPXS0vTGFes= Subject key identifier: EC:83:62:B3:2D:5E:B8:C8:47:A4:B5:9B:A8:43:6E:D4:9E:D5:6E:9B Authority key identifier: 03:77:B9:3C:91:FD:AF:46:9A:59:1B:4C:52:D2:4C:B1:55:5D:2B:D4 Certificate issuer: /CN=A91822BF/serialNumber=0377B93C91FDAF469A591B4C52D24CB1555D2BD4 Certificate serial: 0B0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft Manifest number: 0B08 Signing time: Mon 06 May 2024 19:59:45 +0000 Manifest this update: Mon 06 May 2024 19:59:45 +0000 Manifest next update: Mon 13 May 2024 19:59:45 +0000 Files and hashes: 1: A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl (hash: DVGPfPc2DgjVcfQ58gdglkId/edF9PoVc/u8tf1LBjk=) 2: 37EA3E261ADC11EA8EB46F37C4F9AE02.roa (hash: 3wfHJkQJq7BbqeUmywofZ0MsnnQpJ3mY5CnT0Sqh690=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 19:59:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2830 (0xb0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91822BF/serialNumber=0377B93C91FDAF469A591B4C52D24CB1555D2BD4 Validity Not Before: May 6 19:59:45 2024 GMT Not After : May 13 19:59:45 2024 GMT Subject: CN=663936b1-401c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ef:f0:b1:7f:0c:e6:b2:80:e2:3e:96:06:50: af:09:60:a0:a4:1f:d7:42:35:00:98:c9:f8:50:59: 6f:c5:c6:b5:5b:a2:d3:74:72:01:16:67:7a:c7:d3: b5:32:b9:9d:47:ff:e9:99:89:07:c1:12:e8:14:17: 3a:e4:a4:7a:b2:5c:cf:8b:b1:ca:d3:25:1f:35:c2: ce:bf:d9:b6:42:c2:4e:a0:bf:8c:89:4d:18:4f:63: 5c:65:b1:6f:75:ff:1f:97:67:37:a9:cc:f8:3d:d4: 86:99:5a:57:18:2a:11:7a:75:a9:d0:88:0d:cf:4d: ad:43:32:e4:91:05:02:b3:71:5d:12:4b:92:fa:3d: 56:cc:3c:9e:5b:8c:d3:8c:88:87:5e:62:73:14:b3: 26:f2:7e:02:00:dc:97:93:2c:8f:45:9b:9c:44:fb: 2a:77:60:f4:a5:04:d2:8d:c8:f9:d7:ee:e8:7b:78: b2:15:2d:08:4c:63:57:18:3e:ee:68:42:17:cb:95: f3:e0:ec:1f:76:3d:3c:56:d2:34:c4:35:53:7c:fd: b7:91:50:5a:66:ed:cd:1e:c1:c6:91:54:7b:c7:11: 38:ba:11:c9:bf:b0:28:d5:da:62:b6:0a:d3:e5:69: 6c:16:4e:0d:df:73:f3:a8:bb:d2:a1:fe:a9:90:6e: ac:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:83:62:B3:2D:5E:B8:C8:47:A4:B5:9B:A8:43:6E:D4:9E:D5:6E:9B X509v3 Authority Key Identifier: keyid:03:77:B9:3C:91:FD:AF:46:9A:59:1B:4C:52:D2:4C:B1:55:5D:2B:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:fd:37:f6:52:24:3d:fe:22:63:96:ca:87:a7:3a:55:3b:0b: 81:13:b7:a6:7d:41:4d:bd:f5:67:f1:a5:ec:03:0b:e7:b9:af: 78:49:75:c5:62:66:73:57:aa:1f:f3:9a:1b:46:34:56:6b:ed: 66:cc:31:45:36:b1:d6:da:45:d7:11:8e:ab:2d:43:8a:8b:55: bb:1a:9d:85:b1:b3:81:db:56:ec:53:22:3a:cf:bb:a9:3d:39: 4c:43:53:34:46:a1:62:9c:44:49:21:ad:06:d2:fb:34:8d:2a: 4e:84:5c:4f:91:0f:0a:88:d3:85:47:b7:70:d1:88:1b:5c:70: 2a:9e:87:04:2e:20:ad:a8:4c:ed:cd:b8:39:af:71:4f:1d:db: 3d:b1:25:ba:4b:48:02:5f:f9:48:07:02:56:b7:ab:f6:6a:61: f6:83:13:95:0f:48:a0:1f:85:22:a6:d7:a9:da:03:36:4f:2b: b1:0c:d3:fc:17:4d:f8:86:bc:9f:dc:57:d1:a6:e7:7a:21:01: 43:61:7d:02:f0:a8:4f:37:e0:cb:0e:0b:a1:f1:61:49:63:71: eb:c2:32:87:88:e4:45:8b:e4:9d:6e:53:32:a5:77:d6:b1:6d: 8b:0a:d0:6a:fa:6c:c2:8c:f0:5e:ee:3f:43:63:b2:ec:fd:ad: c5:44:e0:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCw4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIyQkYxMTAvBgNVBAUTKDAzNzdCOTNDOTFGREFGNDY5QTU5MUI0QzUyRDI0Q0Ix NTU1RDJCRDQwHhcNMjQwNTA2MTk1OTQ1WhcNMjQwNTEzMTk1OTQ1WjAYMRYwFAYD VQQDEw02NjM5MzZiMS00MDFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp+/wsX8M5rKA4j6WBlCvCWCgpB/XQjUAmMn4UFlvxca1W6LTdHIBFmd6x9O1 MrmdR//pmYkHwRLoFBc65KR6slzPi7HK0yUfNcLOv9m2QsJOoL+MiU0YT2NcZbFv df8fl2c3qcz4PdSGmVpXGCoRenWp0IgNz02tQzLkkQUCs3FdEkuS+j1WzDyeW4zT jIiHXmJzFLMm8n4CANyXkyyPRZucRPsqd2D0pQTSjcj51+7oe3iyFS0ITGNXGD7u aEIXy5Xz4Owfdj08VtI0xDVTfP23kVBaZu3NHsHGkVR7xxE4uhHJv7Ao1dpitgrT 5WlsFk4N33PzqLvSof6pkG6s5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOyDYrMt XrjIR6S1m6hDbtSe1W6bMB8GA1UdIwQYMBaAFAN3uTyR/a9GmlkbTFLSTLFVXSvU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjJCRi8xMDM5QkM0MDFB REIxMUVBQUEzQTgyMzVDNEY5QUUwMi9BM2U1UEpIOXIwYWFXUnRNVXRKTXNWVmRL OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EzZTVQSkg5cjBhYVdSdE1VdEpNc1ZWZEs5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjJCRi8xMDM5QkM0MDFBREIxMUVBQUEzQTgyMzVDNEY5QUUwMi9BM2U1UEpIOXIw YWFXUnRNVXRKTXNWVmRLOVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAD/Tf2UiQ9/iJjlsqHpzpVOwuBE7emfUFNvfVn8aXsAwvnua94SXXF YmZzV6of85obRjRWa+1mzDFFNrHW2kXXEY6rLUOKi1W7Gp2FsbOB21bsUyI6z7up PTlMQ1M0RqFinERJIa0G0vs0jSpOhFxPkQ8KiNOFR7dw0YgbXHAqnocELiCtqEzt zbg5r3FPHds9sSW6S0gCX/lIBwJWt6v2amH2gxOVD0igH4Uiptep2gM2TyuxDNP8 F034hryf3FfRpud6IQFDYX0C8KhPN+DLDguh8WFJY3HrwjKHiORFi+SdblMypXfW sW2LCtBq+mzCjPBe7j9DY7Ls/a3FROBt -----END CERTIFICATE-----Generated at Mon May 6 23:05:43 2024 by rpki-client on console-fra.rpki-client.org