$ rpki-client -vvf rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.mft File: fDPCHh829n5MagTrI5AZrXcryyo.mft (raw, json) Hash identifier: AXsBAno59C+/bFFHHB1v3t/SVhP4Ta9tboCQiY6Zbgg= Subject key identifier: 1D:66:E9:D5:7B:C8:D3:3C:41:22:3B:4F:95:01:04:11:25:FB:48:ED Authority key identifier: 7C:33:C2:1E:1F:36:F6:7E:4C:6A:04:EB:23:90:19:AD:77:2B:CB:2A Certificate issuer: /CN=A91836C4/serialNumber=7C33C21E1F36F67E4C6A04EB239019AD772BCB2A Certificate serial: F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fDPCHh829n5MagTrI5AZrXcryyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.mft Manifest number: F6 Signing time: Fri 03 May 2024 05:45:26 +0000 Manifest this update: Fri 03 May 2024 05:45:25 +0000 Manifest next update: Fri 10 May 2024 05:45:25 +0000 Files and hashes: 1: fDPCHh829n5MagTrI5AZrXcryyo.crl (hash: dcBtYmZ1yd8MmimPEtp0pshzkO1xTWHHTizw8aJ4xZk=) 2: 37A0ACFC8FCD11EDB4772D55C4F9AE02.roa (hash: duo+Tr9ExND317n6ueK2nntCbyUHaVQEXgOHrLPTcf0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.crl rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fDPCHh829n5MagTrI5AZrXcryyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 248 (0xf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91836C4/serialNumber=7C33C21E1F36F67E4C6A04EB239019AD772BCB2A Validity Not Before: May 3 05:45:25 2024 GMT Not After : May 10 05:45:25 2024 GMT Subject: CN=663479f5-2313 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:5c:8d:27:45:f0:6a:f3:7c:46:11:14:20:8b: b0:17:e2:15:df:a6:b8:82:4e:20:3c:86:75:88:31: 6e:35:73:f5:4a:09:5a:43:60:05:87:66:49:f1:fb: 7b:4e:d0:fe:a8:0d:0d:d1:1b:7e:e2:68:ef:4c:f3: 6e:24:fd:84:92:99:eb:d0:86:2e:b6:df:9d:91:8b: 06:ae:e3:47:51:2d:3a:97:86:40:97:84:0d:d9:1a: 5a:eb:13:d2:7f:58:58:9e:02:be:71:b9:6b:dc:29: 0a:49:9e:83:68:32:8a:b5:33:28:f1:a9:6a:bb:65: 9e:53:77:92:f3:c6:bd:e2:f3:42:a5:92:98:ba:08: 7b:32:92:c7:ff:ff:24:68:e4:18:53:8e:52:75:45: fa:85:df:ff:10:c2:9c:e1:96:fc:5f:53:39:1e:fd: f8:19:dc:11:15:e6:80:ea:0b:e8:70:a4:46:c3:ba: 34:1f:6e:be:2d:eb:91:f9:56:d8:27:7d:ce:96:cf: 4a:65:23:65:4a:8f:69:c6:70:56:3d:31:4f:c6:7a: 73:4c:3b:52:3d:d0:68:d2:05:b7:9d:8f:42:92:f3: 84:79:da:dc:8f:08:58:c9:8d:b5:13:82:66:d3:c4: 23:d7:cd:e3:6b:26:1a:2b:4c:22:6c:e8:f7:ce:f2: c3:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:66:E9:D5:7B:C8:D3:3C:41:22:3B:4F:95:01:04:11:25:FB:48:ED X509v3 Authority Key Identifier: keyid:7C:33:C2:1E:1F:36:F6:7E:4C:6A:04:EB:23:90:19:AD:77:2B:CB:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fDPCHh829n5MagTrI5AZrXcryyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:ac:ae:d7:37:99:d6:ea:eb:0d:1c:5e:25:9a:08:7a:b2:ef: b6:d4:50:6b:fa:cc:b9:d6:f3:c2:e5:80:83:87:1e:00:19:a9: 52:7b:a0:d0:4a:5d:74:07:b9:cf:34:1c:a1:8b:9d:0f:9b:be: 8c:de:15:d6:80:be:aa:36:37:fc:d6:66:b3:bb:77:07:4a:0d: 9d:6d:2a:d6:d6:56:4d:65:75:eb:71:f2:59:15:8e:72:23:38: 60:a0:5a:d4:11:39:9d:89:1f:b4:a7:ec:09:5e:b2:11:e7:fe: 9f:a3:ff:67:63:d4:94:1a:d4:f4:ca:9a:58:af:19:a9:3b:18: 6a:83:1c:14:8f:57:aa:90:c1:e3:a2:3b:ef:2e:5e:c4:6f:19: 0d:5d:03:8e:f9:14:a4:fe:ac:97:71:de:6d:44:c0:a9:ad:2d: 5b:5f:22:1b:af:74:34:d6:89:9a:46:44:16:d9:bf:2d:d6:d2: 8c:3a:a7:14:47:e0:42:cd:5d:aa:1b:a6:b6:ba:f6:89:9f:2f: 24:13:0d:c5:4f:b7:5e:41:29:52:fd:0a:a3:0e:f4:71:8e:7a: 57:e6:b4:c0:27:13:9a:2f:18:94:66:47:56:74:6a:c3:c8:9f: 55:b3:ec:0a:93:fc:cd:fd:68:3a:67:a3:3e:6c:37:72:22:e9: 39:f7:38:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM2QzQxMTAvBgNVBAUTKDdDMzNDMjFFMUYzNkY2N0U0QzZBMDRFQjIzOTAxOUFE NzcyQkNCMkEwHhcNMjQwNTAzMDU0NTI1WhcNMjQwNTEwMDU0NTI1WjAYMRYwFAYD VQQDEw02NjM0NzlmNS0yMzEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5VyNJ0XwavN8RhEUIIuwF+IV36a4gk4gPIZ1iDFuNXP1SglaQ2AFh2ZJ8ft7 TtD+qA0N0Rt+4mjvTPNuJP2Ekpnr0IYutt+dkYsGruNHUS06l4ZAl4QN2Rpa6xPS f1hYngK+cblr3CkKSZ6DaDKKtTMo8alqu2WeU3eS88a94vNCpZKYugh7MpLH//8k aOQYU45SdUX6hd//EMKc4Zb8X1M5Hv34GdwRFeaA6gvocKRGw7o0H26+LeuR+VbY J33Ols9KZSNlSo9pxnBWPTFPxnpzTDtSPdBo0gW3nY9CkvOEedrcjwhYyY21E4Jm 08Qj183jayYaK0wibOj3zvLDEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB1m6dV7 yNM8QSI7T5UBBBEl+0jtMB8GA1UdIwQYMBaAFHwzwh4fNvZ+TGoE6yOQGa13K8sq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MzZDNC85RDRCMTA2ODhG Q0ExMUVEQjc5MTEyNTRDNEY5QUUwMi9mRFBDSGg4MjluNU1hZ1RySTVBWnJYY3J5 eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZEUENIaDgyOW41TWFnVHJJNUFaclhjcnl5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MzZDNC85RDRCMTA2ODhGQ0ExMUVEQjc5MTEyNTRDNEY5QUUwMi9mRFBDSGg4Mjlu NU1hZ1RySTVBWnJYY3J5eW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5rK7XN5nW6usNHF4lmgh6su+21FBr+sy51vPC5YCDhx4AGalSe6DQ Sl10B7nPNByhi50Pm76M3hXWgL6qNjf81mazu3cHSg2dbSrW1lZNZXXrcfJZFY5y IzhgoFrUETmdiR+0p+wJXrIR5/6fo/9nY9SUGtT0yppYrxmpOxhqgxwUj1eqkMHj ojvvLl7EbxkNXQOO+RSk/qyXcd5tRMCprS1bXyIbr3Q01omaRkQW2b8t1tKMOqcU R+BCzV2qG6a2uvaJny8kEw3FT7deQSlS/QqjDvRxjnpX5rTAJxOaLxiUZkdWdGrD yJ9Vs+wKk/zN/Wg6Z6M+bDdyIuk59zil -----END CERTIFICATE-----Generated at Fri May 3 06:28:42 2024 by rpki-client on console-fra.rpki-client.org