$ rpki-client -vvf rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft File: cFErPTLQXcMlQemOV1oxxTIHNkg.mft (raw, json) Hash identifier: gfJSzbDn60PAK5x21aFa5n+cQD5Qn4Fmx3X+qcYEbPA= Subject key identifier: 03:13:FF:30:89:6E:13:67:F3:1D:93:8A:52:A1:E6:DD:66:73:13:90 Authority key identifier: 70:51:2B:3D:32:D0:5D:C3:25:41:E9:8E:57:5A:31:C5:32:07:36:48 Certificate issuer: /CN=A918D75D/serialNumber=70512B3D32D05DC32541E98E575A31C532073648 Certificate serial: 053E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFErPTLQXcMlQemOV1oxxTIHNkg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft Manifest number: 053B Signing time: Fri 03 May 2024 01:03:57 +0000 Manifest this update: Fri 03 May 2024 01:03:57 +0000 Manifest next update: Fri 10 May 2024 01:03:57 +0000 Files and hashes: 1: cFErPTLQXcMlQemOV1oxxTIHNkg.crl (hash: sKZNav0Gtm4RSVYDVh+jGxUGGbUfXpjoa+OXHoICpfI=) 2: D0763FECA68A11EB9F23D74FC4F9AE02.roa (hash: 43mQrXDxX9O45FoRil0au5HJr3SgsT1YX0drxBI9ViE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.crl rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFErPTLQXcMlQemOV1oxxTIHNkg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 01:03:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1342 (0x53e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D75D/serialNumber=70512B3D32D05DC32541E98E575A31C532073648 Validity Not Before: May 3 01:03:57 2024 GMT Not After : May 10 01:03:57 2024 GMT Subject: CN=663437fd-ba58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ed:c9:84:7f:91:f5:90:ec:64:3f:46:30:60: 1e:65:d4:d2:fb:24:d9:64:2c:6d:68:5b:e5:b4:9e: 52:c4:67:8c:ee:39:00:e4:9f:3b:f0:15:70:27:f8: 12:75:4d:88:b1:11:02:63:40:19:5d:31:50:00:07: cc:a0:f0:cc:85:83:d3:57:b7:5a:35:88:cb:e8:59: ed:37:33:13:4d:70:a1:b3:4f:8c:00:cd:6e:5a:a7: e9:fb:83:21:8a:f1:d4:35:9e:0a:78:89:4d:78:8e: a6:9a:21:df:45:e1:a3:ab:3d:ba:9e:dc:07:86:28: a6:cf:41:a1:54:c1:c6:26:43:86:ce:80:4e:74:ba: ac:e9:a8:d6:72:55:87:a3:90:9d:9a:48:9f:d8:a9: 5b:e1:40:3f:bc:59:f7:0a:9f:97:74:ef:3b:de:11: 50:00:01:bb:e2:47:8c:90:ac:6c:a5:4e:ca:ad:fd: 5d:d5:b9:8c:37:3b:3e:98:38:1f:81:e1:ee:08:26: 8d:9b:41:2c:1e:97:ef:47:ed:f2:dd:3c:ac:d2:4e: 08:e3:1d:95:30:9c:01:fc:41:1a:f7:59:2d:52:29: 85:f2:c9:b6:ac:c5:fa:0a:c0:40:56:a7:82:32:e3: ff:f2:93:33:20:b6:c7:06:ea:63:42:48:8f:b8:49: a2:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:13:FF:30:89:6E:13:67:F3:1D:93:8A:52:A1:E6:DD:66:73:13:90 X509v3 Authority Key Identifier: keyid:70:51:2B:3D:32:D0:5D:C3:25:41:E9:8E:57:5A:31:C5:32:07:36:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFErPTLQXcMlQemOV1oxxTIHNkg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:e6:a8:75:87:b7:60:66:55:16:22:c7:ed:9f:1d:28:27:33: e8:94:c1:4c:fc:cc:6c:ef:cb:4b:0f:e1:88:19:a9:dd:45:ae: 6b:b0:4a:29:b4:a2:e6:fd:f3:ec:9a:68:2b:f1:43:33:c3:3d: 36:58:85:3e:40:66:a8:1a:62:91:f6:a5:14:cb:65:b2:2e:b2: 2e:0e:29:6f:7b:32:dd:11:d5:74:43:f0:0e:7f:18:95:67:29: e5:fd:a7:74:e8:17:de:48:34:9f:ad:a3:9f:52:79:19:19:44: 84:d6:a9:ba:7b:b7:f9:13:62:0a:7c:91:13:8c:64:d1:f3:12: b9:94:9c:6e:f0:fe:b7:77:cc:cc:95:85:62:c5:0d:2c:c9:4a: a0:ce:15:9b:de:5a:2d:4d:b6:e7:f6:67:3f:ec:6e:1b:08:4e: 4e:f0:cd:39:0b:0c:5a:0a:b2:c9:2f:99:24:0a:43:6c:d1:ec: 01:45:c1:86:3c:98:cf:81:2e:c2:db:7c:7a:24:28:fd:2d:be: 0b:c6:e7:8b:ec:9b:ff:ad:8c:8e:44:13:14:c7:b0:fa:bc:1a: 75:cf:44:81:df:6f:5e:4f:38:a2:cf:a1:6e:95:b1:7b:b7:d5: 6c:f8:8b:bd:aa:23:93:57:2a:ba:84:b1:19:3a:24:72:98:91: e8:e9:96:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ3NUQxMTAvBgNVBAUTKDcwNTEyQjNEMzJEMDVEQzMyNTQxRTk4RTU3NUEzMUM1 MzIwNzM2NDgwHhcNMjQwNTAzMDEwMzU3WhcNMjQwNTEwMDEwMzU3WjAYMRYwFAYD VQQDEw02NjM0MzdmZC1iYTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz+3JhH+R9ZDsZD9GMGAeZdTS+yTZZCxtaFvltJ5SxGeM7jkA5J878BVwJ/gS dU2IsRECY0AZXTFQAAfMoPDMhYPTV7daNYjL6FntNzMTTXChs0+MAM1uWqfp+4Mh ivHUNZ4KeIlNeI6mmiHfReGjqz26ntwHhiimz0GhVMHGJkOGzoBOdLqs6ajWclWH o5Cdmkif2Klb4UA/vFn3Cp+XdO873hFQAAG74keMkKxspU7Krf1d1bmMNzs+mDgf geHuCCaNm0EsHpfvR+3y3Tys0k4I4x2VMJwB/EEa91ktUimF8sm2rMX6CsBAVqeC MuP/8pMzILbHBupjQkiPuEmixwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAMT/zCJ bhNn8x2TilKh5t1mcxOQMB8GA1UdIwQYMBaAFHBRKz0y0F3DJUHpjldaMcUyBzZI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDc1RC83RTI3MkY3Q0E2 ODkxMUVCQTQ0QjAyNEZDNEY5QUUwMi9jRkVyUFRMUVhjTWxRZW1PVjFveHhUSUhO a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NGRXJQVExRWGNNbFFlbU9WMW94eFRJSE5rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDc1RC83RTI3MkY3Q0E2ODkxMUVCQTQ0QjAyNEZDNEY5QUUwMi9jRkVyUFRMUVhj TWxRZW1PVjFveHhUSUhOa2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCi5qh1h7dgZlUWIsftnx0oJzPolMFM/Mxs78tLD+GIGandRa5rsEop tKLm/fPsmmgr8UMzwz02WIU+QGaoGmKR9qUUy2WyLrIuDilvezLdEdV0Q/AOfxiV Zynl/ad06BfeSDSfraOfUnkZGUSE1qm6e7f5E2IKfJETjGTR8xK5lJxu8P63d8zM lYVixQ0syUqgzhWb3lotTbbn9mc/7G4bCE5O8M05CwxaCrLJL5kkCkNs0ewBRcGG PJjPgS7C23x6JCj9Lb4LxueL7Jv/rYyORBMUx7D6vBp1z0SB329eTziiz6FulbF7 t9Vs+Iu9qiOTVyq6hLEZOiRymJHo6ZZq -----END CERTIFICATE-----Generated at Fri May 3 04:45:19 2024 by rpki-client on console-fra.rpki-client.org