$ rpki-client -vvf rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft File: fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft (raw, json) Hash identifier: wYHtWD8p5NHU4/ZvC1uBlKyV6GOcsOGkNhxJxCqat7c= Subject key identifier: EF:2B:A3:DC:7D:9E:CC:EC:05:CD:40:3E:7D:9E:8D:20:F9:82:7C:80 Authority key identifier: 7D:04:51:65:B2:9A:68:AF:CB:8B:A8:15:99:CE:30:67:45:44:FD:8F Certificate issuer: /CN=A91971CB/serialNumber=7D045165B29A68AFCB8BA81599CE30674544FD8F Certificate serial: 0AB5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft Manifest number: 0AB0 Signing time: Mon 06 May 2024 15:27:12 +0000 Manifest this update: Mon 06 May 2024 15:27:12 +0000 Manifest next update: Mon 13 May 2024 15:27:12 +0000 Files and hashes: 1: fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.crl (hash: yWnENQP/RoEwnvjPlx/YpfxU8rP+TkWFXubQZauzLhI=) 2: 99D18D463C0211EAA729693AC4F9AE02.roa (hash: tLtn7CFG0HbQ9XWzYKgOAxAROG1jTzb9mpWP5oMuzzI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.crl rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 15:27:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2741 (0xab5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91971CB/serialNumber=7D045165B29A68AFCB8BA81599CE30674544FD8F Validity Not Before: May 6 15:27:12 2024 GMT Not After : May 13 15:27:12 2024 GMT Subject: CN=6638f6d0-88d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f0:7a:3a:cb:c2:c2:2b:35:ed:32:08:35:c4: 71:e8:3a:ef:05:36:12:c8:65:1c:4c:5c:6a:c8:6a: b2:c1:6e:cf:04:af:38:27:d7:cb:1e:8e:50:bf:a9: 71:4e:28:d3:1c:eb:b8:53:3b:eb:cc:69:ff:45:6a: 5c:45:08:67:28:29:5b:05:57:9a:75:80:b6:23:ee: a6:cb:61:98:ca:e7:a0:7a:7b:6e:fb:f1:40:90:4c: ed:6f:27:49:21:9a:dd:e7:9c:33:83:e7:73:a9:ae: 07:06:da:6e:28:b2:21:98:ce:4c:98:d7:b0:51:c9: 49:66:47:9a:03:70:b3:91:80:1d:24:04:a1:3c:49: d8:a6:6d:c8:29:f6:0c:a9:11:87:04:4f:71:0d:09: 89:06:7d:61:7f:68:d7:7b:59:41:f1:72:1a:99:97: 5a:6b:04:75:16:ba:0d:6f:17:cf:97:dc:ee:2e:f3: 75:f5:28:53:82:76:df:d6:7b:f3:86:bd:52:41:49: 88:1a:e8:4b:e1:13:95:9c:98:2e:a7:bc:5c:47:3f: 4f:ec:03:b0:0a:f2:f6:b7:41:02:45:7b:e5:14:82: 01:2f:1c:00:fb:75:6e:88:d0:6c:f2:a7:4f:28:2d: 39:45:19:29:dd:d7:50:75:72:1f:93:05:89:8b:60: 1b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:2B:A3:DC:7D:9E:CC:EC:05:CD:40:3E:7D:9E:8D:20:F9:82:7C:80 X509v3 Authority Key Identifier: keyid:7D:04:51:65:B2:9A:68:AF:CB:8B:A8:15:99:CE:30:67:45:44:FD:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:c2:19:ba:69:75:64:71:cf:64:b6:c0:25:f9:e6:5c:81:ae: ee:2a:9e:86:11:20:ea:8e:f8:98:3a:53:1c:56:8c:13:75:4e: 24:49:21:84:66:bb:97:fd:17:20:b9:f9:a4:74:72:b4:76:1d: c2:2a:5a:cf:d7:4a:eb:9a:2c:dc:95:11:35:ca:b1:96:11:ad: ad:24:5d:41:bc:84:2f:88:41:75:2c:5a:76:2c:76:e6:1c:12: 7c:e0:28:1a:27:fa:4c:6f:43:7d:06:c9:be:4e:6e:e3:55:ed: 65:ff:c4:e9:87:73:5f:43:c6:63:28:0f:81:b4:6a:fb:56:60: c3:79:0b:d0:f6:2a:c5:69:34:ad:6a:f6:80:a5:a8:89:85:c8: 32:a8:6f:a5:37:b7:ec:fe:79:a1:05:c2:1d:ed:a3:aa:be:e8: d9:6c:22:e7:d6:c5:5a:df:bc:d7:ba:b4:08:9a:a8:53:44:f2: 01:30:6b:a9:59:14:4c:dd:72:00:4d:95:32:32:a4:d1:fc:ab: 8c:83:a2:21:39:84:2f:35:a2:5a:b4:e6:a5:9d:e1:78:f7:ee: 67:fa:9e:8c:62:e7:86:a3:6e:f0:41:9d:d6:ee:cb:e0:52:c4: 7c:8f:e6:db:31:ad:b6:e2:90:db:50:76:e3:7a:85:3d:54:bb: e4:64:05:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcxQ0IxMTAvBgNVBAUTKDdEMDQ1MTY1QjI5QTY4QUZDQjhCQTgxNTk5Q0UzMDY3 NDU0NEZEOEYwHhcNMjQwNTA2MTUyNzEyWhcNMjQwNTEzMTUyNzEyWjAYMRYwFAYD VQQDEw02NjM4ZjZkMC04OGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3PB6OsvCwis17TIINcRx6DrvBTYSyGUcTFxqyGqywW7PBK84J9fLHo5Qv6lx TijTHOu4UzvrzGn/RWpcRQhnKClbBVeadYC2I+6my2GYyuegentu+/FAkEztbydJ IZrd55wzg+dzqa4HBtpuKLIhmM5MmNewUclJZkeaA3CzkYAdJAShPEnYpm3IKfYM qRGHBE9xDQmJBn1hf2jXe1lB8XIamZdaawR1FroNbxfPl9zuLvN19ShTgnbf1nvz hr1SQUmIGuhL4ROVnJgup7xcRz9P7AOwCvL2t0ECRXvlFIIBLxwA+3VuiNBs8qdP KC05RRkp3ddQdXIfkwWJi2Ab1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO8ro9x9 nszsBc1APn2ejSD5gnyAMB8GA1UdIwQYMBaAFH0EUWWymmivy4uoFZnOMGdFRP2P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzFDQi83QTc1MEEwQTJE RDgxMUVBOUMzNTIwNURDNEY5QUUwMi9mUVJSWmJLYWFLX0xpNmdWbWM0d1owVkVf WTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ZRUlJaYkthYUtfTGk2Z1ZtYzR3WjBWRV9ZOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzFDQi83QTc1MEEwQTJERDgxMUVBOUMzNTIwNURDNEY5QUUwMi9mUVJSWmJLYWFL X0xpNmdWbWM0d1owVkVfWTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEwhm6aXVkcc9ktsAl+eZcga7uKp6GESDqjviYOlMcVowTdU4kSSGE ZruX/RcgufmkdHK0dh3CKlrP10rrmizclRE1yrGWEa2tJF1BvIQviEF1LFp2LHbm HBJ84CgaJ/pMb0N9Bsm+Tm7jVe1l/8Tph3NfQ8ZjKA+BtGr7VmDDeQvQ9irFaTSt avaApaiJhcgyqG+lN7fs/nmhBcId7aOqvujZbCLn1sVa37zXurQImqhTRPIBMGup WRRM3XIATZUyMqTR/KuMg6IhOYQvNaJatOalneF49+5n+p6MYueGo27wQZ3W7svg UsR8j+bbMa224pDbUHbjeoU9VLvkZAX0 -----END CERTIFICATE-----Generated at Mon May 6 17:36:16 2024 by rpki-client on console-fra.rpki-client.org