$ rpki-client -vvf rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft File: 2kcELjdqlHP8Dt_IRFc53RMorg4.mft (raw, json) Hash identifier: dxZ0rX4Aim1Bt9A4XQyQxg32cbxONNv0duYMn//cCGU= Subject key identifier: B4:58:C2:10:5E:FF:57:D8:0A:28:3F:85:DE:5F:C1:8C:D9:D6:21:D7 Authority key identifier: DA:47:04:2E:37:6A:94:73:FC:0E:DF:C8:44:57:39:DD:13:28:AE:0E Certificate issuer: /CN=A9191DF4/serialNumber=DA47042E376A9473FC0EDFC8445739DD1328AE0E Certificate serial: 0D3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft Manifest number: 0D25 Signing time: Tue 30 Apr 2024 19:00:26 +0000 Manifest this update: Tue 30 Apr 2024 19:00:25 +0000 Manifest next update: Tue 07 May 2024 19:00:25 +0000 Files and hashes: 1: 2kcELjdqlHP8Dt_IRFc53RMorg4.crl (hash: kPMGmvj+OZf3GrwPdml5wIAgATMvWK2QrL+EFZE3D0I=) 2: B5D4A156598B11EC82C8685CC4F9AE02.roa (hash: BtADpiN2r28LwuzuFtY1buKE64kecqHpJMmSGQzD4H8=) 3: B922DB22E84211EA918B8F09C4F9AE02.roa (hash: yLvGyACsB34NRyI2k2GHL5SXqTtVlrRhq3Bg9IMAB4U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.crl rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 19:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3386 (0xd3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191DF4/serialNumber=DA47042E376A9473FC0EDFC8445739DD1328AE0E Validity Not Before: Apr 30 19:00:25 2024 GMT Not After : May 7 19:00:25 2024 GMT Subject: CN=66313fca-db53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b7:85:d5:cd:91:db:6c:3f:14:b6:0b:da:cd: 5b:85:eb:1f:00:b7:62:3d:12:1f:a3:ca:73:3c:ce: de:81:b0:a2:4d:4c:5a:f7:f0:af:47:e3:ef:ea:e1: d1:38:92:06:42:8f:20:cd:f5:ce:12:a8:e6:a1:85: 30:c8:51:e6:d8:27:c8:41:76:86:33:19:ca:9b:77: 6e:31:2b:d2:e1:0d:62:cc:01:bb:73:1e:0c:a1:97: 55:cb:fe:a9:d0:ca:a0:4a:c5:c7:ce:eb:5b:b4:fa: 89:09:25:f3:9c:41:24:5a:a2:a7:12:e0:50:3a:46: 49:b4:19:cc:e4:38:74:20:10:f2:a9:21:8f:de:48: 55:d6:08:37:d5:65:6c:d6:37:75:cf:33:3b:bf:29: 9c:23:84:08:98:b0:db:d8:40:82:63:f5:99:5d:c3: 6a:e5:79:4b:75:b4:60:af:9a:f4:91:37:4d:86:08: f4:fa:f3:cf:a8:b9:e2:3c:ed:f5:34:67:f2:21:30: 17:89:bc:1b:79:60:e4:40:a0:c2:65:94:06:2f:66: 37:e3:e1:2b:5c:10:25:76:71:bf:71:86:73:f7:df: 3e:ae:f6:82:6d:e7:21:07:ab:02:3e:87:16:18:45: cb:11:8d:b3:c5:17:d8:ab:fb:db:f4:68:c0:bb:10: a7:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:58:C2:10:5E:FF:57:D8:0A:28:3F:85:DE:5F:C1:8C:D9:D6:21:D7 X509v3 Authority Key Identifier: keyid:DA:47:04:2E:37:6A:94:73:FC:0E:DF:C8:44:57:39:DD:13:28:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:8a:73:4f:41:55:44:58:51:79:79:c1:85:cb:1a:26:e1:1b: 7d:96:a4:0b:fa:d7:99:45:e2:53:23:45:08:c8:e0:2d:a1:e4: bf:fa:ac:2c:e4:60:dd:65:77:85:82:cc:28:94:d5:20:1d:47: a3:ed:75:fa:c7:23:82:b6:6f:86:0f:2f:8a:23:47:7e:29:03: 94:83:e4:4b:02:47:d5:21:92:bd:da:70:df:3c:34:e1:3c:fd: ca:11:9a:9d:ba:60:19:72:e1:94:d8:9b:d6:b2:51:e9:89:96: fb:2a:79:f9:2e:f0:b5:52:ec:10:5f:08:bf:4a:e1:06:78:f2: e2:21:83:6f:27:a9:89:04:d6:f5:ff:02:91:7c:92:34:7c:fa: c6:93:b5:51:6a:95:a5:6c:58:a4:28:30:68:f0:74:c2:9d:36: d9:f5:cf:38:62:9d:5d:61:36:7f:80:e7:04:6a:10:b4:78:38: 0c:fc:46:ae:29:44:8f:a4:b8:7a:d0:fe:ce:85:31:7d:c6:98: c7:62:da:f5:79:e6:33:1e:aa:c8:55:e1:bd:c1:d7:dc:30:4f: 6b:34:0d:27:0a:2f:7b:25:f2:78:fc:45:ed:e0:aa:9b:64:8f: 0f:87:04:ba:7e:18:43:46:1a:f2:9d:53:ba:79:55:e6:d2:38: fc:5a:f8:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDTowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFERjQxMTAvBgNVBAUTKERBNDcwNDJFMzc2QTk0NzNGQzBFREZDODQ0NTczOURE MTMyOEFFMEUwHhcNMjQwNDMwMTkwMDI1WhcNMjQwNTA3MTkwMDI1WjAYMRYwFAYD VQQDEw02NjMxM2ZjYS1kYjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0LeF1c2R22w/FLYL2s1bhesfALdiPRIfo8pzPM7egbCiTUxa9/CvR+Pv6uHR OJIGQo8gzfXOEqjmoYUwyFHm2CfIQXaGMxnKm3duMSvS4Q1izAG7cx4MoZdVy/6p 0MqgSsXHzutbtPqJCSXznEEkWqKnEuBQOkZJtBnM5Dh0IBDyqSGP3khV1gg31WVs 1jd1zzM7vymcI4QImLDb2ECCY/WZXcNq5XlLdbRgr5r0kTdNhgj0+vPPqLniPO31 NGfyITAXibwbeWDkQKDCZZQGL2Y34+ErXBAldnG/cYZz998+rvaCbechB6sCPocW GEXLEY2zxRfYq/vb9GjAuxCnxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLRYwhBe /1fYCig/hd5fwYzZ1iHXMB8GA1UdIwQYMBaAFNpHBC43apRz/A7fyERXOd0TKK4O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MURGNC9GNDFEMUMxOEIz OEUxMUU5ODYyODJCNzNDNEY5QUUwMi8ya2NFTGpkcWxIUDhEdF9JUkZjNTNSTW9y ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrY0VMamRxbEhQOER0X0lSRmM1M1JNb3JnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MURGNC9GNDFEMUMxOEIzOEUxMUU5ODYyODJCNzNDNEY5QUUwMi8ya2NFTGpkcWxI UDhEdF9JUkZjNTNSTW9yZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjinNPQVVEWFF5ecGFyxom4Rt9lqQL+teZReJTI0UIyOAtoeS/+qws 5GDdZXeFgswolNUgHUej7XX6xyOCtm+GDy+KI0d+KQOUg+RLAkfVIZK92nDfPDTh PP3KEZqdumAZcuGU2JvWslHpiZb7Knn5LvC1UuwQXwi/SuEGePLiIYNvJ6mJBNb1 /wKRfJI0fPrGk7VRapWlbFikKDBo8HTCnTbZ9c84Yp1dYTZ/gOcEahC0eDgM/Eau KUSPpLh60P7OhTF9xpjHYtr1eeYzHqrIVeG9wdfcME9rNA0nCi97JfJ4/EXt4Kqb ZI8PhwS6fhhDRhrynVO6eVXm0jj8WvjI -----END CERTIFICATE-----Generated at Tue Apr 30 21:38:01 2024 by rpki-client on console-fra.rpki-client.org