$ rpki-client -vvf rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft File: fnHZ0UYSF7D4LAexXE8CnyZySYo.mft (raw, json) Hash identifier: BeeFxcLvmRNJXMFgdv20VZnoejMPHakfVMDfjpQ/5+4= Subject key identifier: 68:A4:61:5A:F4:6A:82:92:94:ED:9A:77:08:00:2B:6D:FC:D6:9B:CA Authority key identifier: 7E:71:D9:D1:46:12:17:B0:F8:2C:07:B1:5C:4F:02:9F:26:72:49:8A Certificate issuer: /CN=A91A11A1/serialNumber=7E71D9D1461217B0F82C07B15C4F029F2672498A Certificate serial: 4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft Manifest number: 46 Signing time: Wed 15 May 2024 08:13:36 +0000 Manifest this update: Wed 15 May 2024 08:13:35 +0000 Manifest next update: Wed 22 May 2024 08:13:35 +0000 Files and hashes: 1: fnHZ0UYSF7D4LAexXE8CnyZySYo.crl (hash: dHKoFRh4ZiRctRWylmbXyTKizRd3OlavhZdS7HWi/zk=) 2: FA66BA00BD1311EEBC015623C4F9AE02.roa (hash: Tr07Jkq8xxw+uZG0G+8jBmz6MYSCwDd06M+QKliHJIg=) 3: F57B503EB05F11EEB6F38532C4F9AE02.roa (hash: kjJmASdgXrmJAlRBxTl6SHlsuwolFlHVI2hZf8lqvLA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.crl rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:13:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A11A1/serialNumber=7E71D9D1461217B0F82C07B15C4F029F2672498A Validity Not Before: May 15 08:13:35 2024 GMT Not After : May 22 08:13:35 2024 GMT Subject: CN=66446eaf-eb74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:9d:2b:fa:54:bc:0e:70:17:ae:47:2d:6a:10: ce:4b:b3:a0:e8:72:b2:55:b5:4b:6c:47:5c:dc:f9: 7f:62:6a:30:80:31:15:42:15:92:dc:57:dc:67:12: 24:2a:8d:46:07:c2:04:22:1c:41:d4:ae:5b:e5:4a: 5e:c2:f1:d1:1e:d4:f8:77:60:c2:23:23:aa:9e:9c: 18:3e:b2:76:70:17:51:3f:12:24:ba:0e:7e:90:4b: b3:64:2a:9a:df:75:10:52:a8:c3:11:a6:c4:10:72: 88:84:ee:3b:74:9f:42:16:28:4e:62:ef:38:41:04: 42:d3:dd:e0:4c:30:ae:d6:c2:1b:a9:20:ad:8f:9f: 5b:11:2c:1c:1c:80:0f:4b:30:f4:d1:35:5a:eb:de: 87:b0:d3:c9:6e:11:07:99:a1:36:09:98:f8:cf:23: b8:d8:17:8b:3d:2d:8f:dc:76:f9:36:63:a0:d2:bd: 29:84:a2:2e:c7:99:43:cb:04:97:40:c9:db:2a:e1: f2:d1:3e:ac:d6:c2:e0:2e:19:0f:e3:89:86:26:6d: 26:53:1c:e2:0b:70:83:25:8f:93:71:11:f3:35:fe: e7:7f:da:3c:70:17:6b:05:f8:22:1c:00:55:03:44: 79:a9:f7:36:c1:dd:2f:15:91:e2:34:49:36:96:12: d2:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:A4:61:5A:F4:6A:82:92:94:ED:9A:77:08:00:2B:6D:FC:D6:9B:CA X509v3 Authority Key Identifier: keyid:7E:71:D9:D1:46:12:17:B0:F8:2C:07:B1:5C:4F:02:9F:26:72:49:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:96:1f:61:95:a9:97:e4:e1:96:98:1c:18:7d:0c:74:68:1a: 4b:1b:a1:c3:f7:84:5b:9f:27:a3:79:10:df:1e:8f:39:a9:8f: 48:9e:eb:b4:ae:57:61:d1:32:f5:91:70:23:66:ba:72:ab:fe: 42:5b:84:74:3b:41:3c:62:a7:1b:a4:85:bb:12:d7:fa:b4:52: 6d:e6:67:28:f8:75:b6:17:8b:44:01:fe:75:01:9c:ce:04:89: 7a:c6:79:93:98:61:d1:9d:17:77:96:e2:99:9a:cd:db:bd:b6: 6a:19:2f:5f:82:38:c5:15:41:ff:20:b7:c6:ec:dc:09:53:31: 99:52:3a:1f:4d:b8:86:cd:1b:07:87:37:93:1a:61:d2:a6:32: d8:ac:69:48:1e:0e:9c:07:3b:f2:69:8a:d9:d4:b0:78:39:fa: c4:e3:dc:0a:89:0b:d9:ba:87:0b:33:84:2c:52:d9:01:62:8e: e3:7a:42:a1:5f:94:ac:4f:b6:84:cf:10:bc:d0:aa:42:cf:cd: 1c:73:55:f8:4f:44:ba:36:16:02:47:71:d8:a4:b1:e3:f4:09: 0a:e9:ed:ba:9c:7f:de:3e:f5:ad:a1:5c:04:0f:49:c5:48:24: 38:0b:c3:30:1e:b8:95:bf:58:47:ac:73:5b:9f:f1:96:23:79: ff:76:74:0e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MTFBMTExMC8GA1UEBRMoN0U3MUQ5RDE0NjEyMTdCMEY4MkMwN0IxNUM0RjAyOUYy NjcyNDk4QTAeFw0yNDA1MTUwODEzMzVaFw0yNDA1MjIwODEzMzVaMBgxFjAUBgNV BAMTDTY2NDQ2ZWFmLWViNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKnSv6VLwOcBeuRy1qEM5Ls6DocrJVtUtsR1zc+X9iajCAMRVCFZLcV9xnEiQq jUYHwgQiHEHUrlvlSl7C8dEe1Ph3YMIjI6qenBg+snZwF1E/EiS6Dn6QS7NkKprf dRBSqMMRpsQQcoiE7jt0n0IWKE5i7zhBBELT3eBMMK7WwhupIK2Pn1sRLBwcgA9L MPTRNVrr3oew08luEQeZoTYJmPjPI7jYF4s9LY/cdvk2Y6DSvSmEoi7HmUPLBJdA ydsq4fLRPqzWwuAuGQ/jiYYmbSZTHOILcIMlj5NxEfM1/ud/2jxwF2sF+CIcAFUD RHmp9zbB3S8VkeI0STaWEtKhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUaKRhWvRq gpKU7Zp3CAArbfzWm8owHwYDVR0jBBgwFoAUfnHZ0UYSF7D4LAexXE8CnyZySYow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUExMUExL0E5QjczQ0E4QjA1 RjExRUU5OUM2NTQ3N0M0RjlBRTAyL2ZuSFowVVlTRjdENExBZXhYRThDbnlaeVNZ by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZm5IWjBVWVNGN0Q0TEFleFhFOENueVp5U1lvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEx MUExL0E5QjczQ0E4QjA1RjExRUU5OUM2NTQ3N0M0RjlBRTAyL2ZuSFowVVlTRjdE NExBZXhYRThDbnlaeVNZby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD2WH2GVqZfk4ZaYHBh9DHRoGksbocP3hFufJ6N5EN8ejzmpj0ie67Su V2HRMvWRcCNmunKr/kJbhHQ7QTxipxukhbsS1/q0Um3mZyj4dbYXi0QB/nUBnM4E iXrGeZOYYdGdF3eW4pmazdu9tmoZL1+COMUVQf8gt8bs3AlTMZlSOh9NuIbNGweH N5MaYdKmMtisaUgeDpwHO/JpitnUsHg5+sTj3AqJC9m6hwszhCxS2QFijuN6QqFf lKxPtoTPELzQqkLPzRxzVfhPRLo2FgJHcdikseP0CQrp7bqcf94+9a2hXAQPScVI JDgLwzAeuJW/WEesc1uf8ZYjef92dA4= -----END CERTIFICATE-----Generated at Wed May 15 09:04:42 2024 by rpki-client on console-ams.rpki-client.org