$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft File: Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft (raw, json) Hash identifier: AaS+H0IEZ5R+sAF1I10VO14HU+iurcUpMG94ackgPPw= Subject key identifier: EB:BD:82:75:6E:58:A8:9E:52:BE:76:FB:6E:77:13:52:12:98:39:AD Authority key identifier: 3D:BD:D7:ED:41:24:80:E9:35:5C:27:F3:C1:13:B5:64:0D:31:86:B3 Certificate issuer: /CN=A91A3399/serialNumber=3DBDD7ED412480E9355C27F3C113B5640D3186B3 Certificate serial: 8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft Manifest number: 82 Signing time: Fri 17 May 2024 07:25:27 +0000 Manifest this update: Fri 17 May 2024 07:25:26 +0000 Manifest next update: Fri 24 May 2024 07:25:26 +0000 Files and hashes: 1: Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl (hash: I80KoGFV1CYu8djRg3FGtV0IULro/K0JNsMvPNotS20=) 2: 553596D65DB511EE841C151FC4F9AE02.roa (hash: v7Dt+vDpE5l+seUqJNghMo9p/KJYaK9+kV/JnepJsag=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 07:25:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3399/serialNumber=3DBDD7ED412480E9355C27F3C113B5640D3186B3 Validity Not Before: May 17 07:25:26 2024 GMT Not After : May 24 07:25:26 2024 GMT Subject: CN=66470666-14f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:fa:e9:9b:f7:74:2c:db:3b:f7:d1:20:16:0a: 0a:8c:37:40:61:aa:f9:2a:41:b0:17:41:e0:b9:db: 29:09:7b:57:71:64:f7:1f:0c:13:ab:33:e5:3d:b0: 68:f2:d9:20:fd:a0:71:64:d5:02:e7:50:66:cb:f4: 3e:77:80:be:cc:48:f8:86:7c:a9:05:3b:48:5f:ed: 1d:c3:ab:ac:58:8c:11:0a:29:40:69:97:dd:f6:1d: cd:83:7d:48:24:00:c9:67:59:fc:61:bd:a7:fa:70: c8:32:f6:bb:c7:9d:e8:7b:eb:7e:33:bb:c7:da:cc: 4e:1d:5b:be:d3:c9:03:cf:5c:ab:b8:ce:9f:bb:f0: 80:b2:a1:ab:f4:87:65:47:37:1b:fd:bf:94:10:6f: 51:b1:8c:fc:52:eb:a6:d4:89:1f:7f:5d:10:c2:14: c6:91:d2:b5:f8:95:fe:eb:47:3f:86:09:3d:a4:18: 89:c8:8f:78:7f:61:17:96:0c:80:f3:38:d1:a8:5a: 07:16:0e:b7:f1:e8:f6:77:34:ab:84:08:29:53:c5: 8b:cd:db:11:b5:07:10:52:16:1e:eb:4f:30:98:6e: 06:9a:1a:56:76:c8:8d:f5:bf:56:78:a6:ab:d5:b5: 25:82:d3:80:34:3d:2a:66:2c:77:7d:1f:4e:13:e7: 01:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:BD:82:75:6E:58:A8:9E:52:BE:76:FB:6E:77:13:52:12:98:39:AD X509v3 Authority Key Identifier: keyid:3D:BD:D7:ED:41:24:80:E9:35:5C:27:F3:C1:13:B5:64:0D:31:86:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:bd:ae:56:2f:6c:c8:7d:c6:6d:c8:50:23:39:c0:47:33:13: de:c7:a9:d6:ca:be:3e:c8:2b:12:48:d2:b1:28:bc:e2:7a:58: 6d:cb:9a:fe:72:77:01:89:5a:d5:cc:0c:7e:71:31:a0:b2:7d: 09:8b:6f:ec:00:4d:d5:cd:5c:01:6d:8d:ec:76:1b:c3:63:af: 26:b6:ff:08:0b:ba:06:7e:f2:4d:1e:02:9d:40:46:c3:52:57: 31:ba:35:c2:85:c9:3e:d5:eb:23:17:0c:51:22:f7:33:fd:93: 9d:d1:48:62:5d:7a:ee:ba:0b:0d:07:82:5e:c3:52:7f:60:eb: 42:a1:68:7b:49:92:ad:17:ce:31:fe:3a:86:f2:da:a5:84:99: da:af:82:01:c7:ee:28:ef:f4:75:f6:77:e7:00:f3:46:ce:7d: 0c:86:8a:07:44:f2:bf:1e:5a:d8:eb:e5:d4:ac:2c:14:4e:88: 70:f7:ab:14:f1:4b:52:3b:26:6c:54:c9:00:9f:4e:1d:dd:e2: e2:54:44:86:4d:5b:40:40:50:5d:8f:63:37:83:2f:93:9b:d1: 2b:06:61:3c:cd:79:bb:5b:f7:9d:01:34:f6:1c:7f:be:8d:e7: cc:2b:f9:40:01:ee:02:0d:96:6f:6b:7c:94:58:b6:8f:a1:e6: 0c:c9:68:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMzOTkxMTAvBgNVBAUTKDNEQkREN0VENDEyNDgwRTkzNTVDMjdGM0MxMTNCNTY0 MEQzMTg2QjMwHhcNMjQwNTE3MDcyNTI2WhcNMjQwNTI0MDcyNTI2WjAYMRYwFAYD VQQDEw02NjQ3MDY2Ni0xNGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyPrpm/d0LNs799EgFgoKjDdAYar5KkGwF0HgudspCXtXcWT3HwwTqzPlPbBo 8tkg/aBxZNUC51Bmy/Q+d4C+zEj4hnypBTtIX+0dw6usWIwRCilAaZfd9h3Ng31I JADJZ1n8Yb2n+nDIMva7x53oe+t+M7vH2sxOHVu+08kDz1yruM6fu/CAsqGr9Idl Rzcb/b+UEG9RsYz8Uuum1Ikff10QwhTGkdK1+JX+60c/hgk9pBiJyI94f2EXlgyA 8zjRqFoHFg638ej2dzSrhAgpU8WLzdsRtQcQUhYe608wmG4GmhpWdsiN9b9WeKar 1bUlgtOAND0qZix3fR9OE+cBkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOu9gnVu WKieUr52+253E1ISmDmtMB8GA1UdIwQYMBaAFD291+1BJIDpNVwn88ETtWQNMYaz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzM5OS9CQTY4QzMyODVD QjgxMUVFODUyM0JDN0FDNEY5QUUwMi9QYjNYN1VFa2dPazFYQ2Z6d1JPMVpBMHho ck0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BiM1g3VUVrZ09rMVhDZnp3Uk8xWkEweGhyTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzM5OS9CQTY4QzMyODVDQjgxMUVFODUyM0JDN0FDNEY5QUUwMi9QYjNYN1VFa2dP azFYQ2Z6d1JPMVpBMHhock0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkva5WL2zIfcZtyFAjOcBHMxPex6nWyr4+yCsSSNKxKLzielhty5r+ cncBiVrVzAx+cTGgsn0Ji2/sAE3VzVwBbY3sdhvDY68mtv8IC7oGfvJNHgKdQEbD UlcxujXChck+1esjFwxRIvcz/ZOd0UhiXXruugsNB4Jew1J/YOtCoWh7SZKtF84x /jqG8tqlhJnar4IBx+4o7/R19nfnAPNGzn0MhooHRPK/HlrY6+XUrCwUTohw96sU 8UtSOyZsVMkAn04d3eLiVESGTVtAQFBdj2M3gy+Tm9ErBmE8zXm7W/edATT2HH++ jefMK/lAAe4CDZZva3yUWLaPoeYMyWjc -----END CERTIFICATE-----Generated at Fri May 17 08:13:53 2024 by rpki-client on console-fra.rpki-client.org