$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft File: 2j9P_11GRonTiYj1-yL2VVCz7_g.mft (raw, json) Hash identifier: 9EJA7RgkINQX9Itml1OD/j8cVgUnv/VzmCp1CR0kE7c= Subject key identifier: 07:90:44:86:2E:17:7E:F0:7A:F4:92:EB:D6:B9:C3:B8:20:13:B7:CB Authority key identifier: DA:3F:4F:FF:5D:46:46:89:D3:89:88:F5:FB:22:F6:55:50:B3:EF:F8 Certificate issuer: /CN=A91A3FFF/serialNumber=DA3F4FFF5D464689D38988F5FB22F65550B3EFF8 Certificate serial: 03A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft Manifest number: 039C Signing time: Wed 01 May 2024 02:53:51 +0000 Manifest this update: Wed 01 May 2024 02:53:50 +0000 Manifest next update: Wed 08 May 2024 02:53:50 +0000 Files and hashes: 1: 2j9P_11GRonTiYj1-yL2VVCz7_g.crl (hash: C42UM0VO3zlTW/ruCivY7RkocEBk6PvjMWrIkBNxMSI=) 2: 952AA4424DAF11EC86ED5273C4F9AE02.roa (hash: +TpU5TRfCsufE/KvXGI1kBxMNH/PxOfCX96zRiJORNM=) 3: AC63C4A4A62E11ECBDD6843FC4F9AE02.roa (hash: Bknqy8vDNEwulHKsHfY2Ejxd2DlHR35GwlVtw8qa37E=) 4: 75426BC6A8C511EC8F560C42C4F9AE02.roa (hash: 96lEWStK+SJeyg1XqxzLRitWujEScstwoVayQazju6E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.crl rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 02:39:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 933 (0x3a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3FFF/serialNumber=DA3F4FFF5D464689D38988F5FB22F65550B3EFF8 Validity Not Before: May 1 02:53:50 2024 GMT Not After : May 8 02:53:50 2024 GMT Subject: CN=6631aebf-0869 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:4d:6a:82:dd:b4:ac:48:b4:79:cd:9e:ff:52: a3:f9:19:48:b4:8d:54:2a:35:ce:22:cd:57:61:c5: ff:58:4e:05:53:b5:a4:99:95:cc:df:c1:76:d0:92: ee:99:d0:8c:27:89:b1:bc:e2:ca:28:0a:a3:d8:fc: ba:44:ec:d6:33:f0:91:21:38:d4:05:ef:bb:57:5d: 8c:db:d1:bb:98:b3:2f:a8:97:43:4b:80:68:2f:9f: 79:ee:63:f2:62:1a:5f:b7:3e:e5:48:16:a5:1a:d2: 9a:08:10:70:4c:2a:5c:1f:a3:51:cf:b6:33:26:a1: 5c:01:05:9a:6e:8b:82:59:21:ae:6c:52:64:50:69: b2:71:c1:6e:bc:76:79:30:0b:7a:cc:10:6f:04:ec: 98:63:72:aa:79:2b:ff:00:15:88:69:f5:37:88:88: 6b:ce:4e:c4:6a:9c:6b:02:7a:b5:c5:8c:46:b5:d5: f2:16:7e:55:c6:76:ae:5e:77:be:70:b4:87:c6:fb: 50:d1:5c:73:fc:13:54:14:c5:07:14:59:27:53:90: fa:86:85:c9:cd:f3:fa:5b:fc:a0:74:ba:1f:76:b7: 82:94:8b:c0:d8:1f:b1:cf:d1:2a:42:19:d1:41:1d: d1:d3:aa:a0:15:29:25:42:65:8a:b0:1b:08:64:f5: 8e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:90:44:86:2E:17:7E:F0:7A:F4:92:EB:D6:B9:C3:B8:20:13:B7:CB X509v3 Authority Key Identifier: keyid:DA:3F:4F:FF:5D:46:46:89:D3:89:88:F5:FB:22:F6:55:50:B3:EF:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:bd:73:ca:e2:05:e7:b6:d6:d8:1b:44:5d:37:67:23:fd:dd: 67:e1:c7:b2:bb:1b:36:12:ca:76:d2:45:58:ec:b8:83:85:0a: c2:1c:61:4a:bd:35:db:39:8e:68:b5:55:3a:25:6c:41:8c:7a: b1:f8:2a:a6:71:73:14:34:f9:56:e0:4d:59:fd:5b:c7:df:6f: 1c:b8:ea:e2:ba:0d:29:80:1f:0e:04:0b:fa:dd:3a:32:03:60: 69:5f:25:af:38:e3:a1:25:ce:40:94:a0:02:bd:fc:2d:82:6a: 10:e5:b4:5d:1f:ae:98:2f:28:d5:21:a4:15:4a:38:9f:61:1c: 01:c2:fb:33:7c:50:1c:a5:b9:52:96:83:84:c5:ff:a5:ef:70: 30:e1:c2:51:14:4a:f7:a7:3d:55:44:d8:4b:96:35:09:35:67: 35:8a:0e:c4:53:ee:db:8c:a1:2b:55:b6:2a:9f:45:8f:19:19: 67:e0:84:d8:21:dd:0f:e7:55:83:8b:fc:9f:bc:d5:b6:c4:b4: f2:61:93:76:38:4f:47:53:e7:95:35:b9:e6:4e:2b:b9:5b:e9: 36:e6:be:c2:52:cf:32:49:a8:18:84:4d:af:56:c8:3a:d6:c5: 8a:22:52:c9:db:32:ab:d0:3f:5d:86:b4:42:61:e7:1a:d8:62: 72:21:7e:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNGRkYxMTAvBgNVBAUTKERBM0Y0RkZGNUQ0NjQ2ODlEMzg5ODhGNUZCMjJGNjU1 NTBCM0VGRjgwHhcNMjQwNTAxMDI1MzUwWhcNMjQwNTA4MDI1MzUwWjAYMRYwFAYD VQQDEw02NjMxYWViZi0wODY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoE1qgt20rEi0ec2e/1Kj+RlItI1UKjXOIs1XYcX/WE4FU7WkmZXM38F20JLu mdCMJ4mxvOLKKAqj2Py6ROzWM/CRITjUBe+7V12M29G7mLMvqJdDS4BoL5957mPy Yhpftz7lSBalGtKaCBBwTCpcH6NRz7YzJqFcAQWabouCWSGubFJkUGmyccFuvHZ5 MAt6zBBvBOyYY3KqeSv/ABWIafU3iIhrzk7EapxrAnq1xYxGtdXyFn5VxnauXne+ cLSHxvtQ0Vxz/BNUFMUHFFknU5D6hoXJzfP6W/ygdLofdreClIvA2B+xz9EqQhnR QR3R06qgFSklQmWKsBsIZPWOdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAeQRIYu F37wevSS69a5w7ggE7fLMB8GA1UdIwQYMBaAFNo/T/9dRkaJ04mI9fsi9lVQs+/4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0ZGRi84MkFEMzc3QTRE QUIxMUVDOTIxNEY1MjFDNEY5QUUwMi8yajlQXzExR1JvblRpWWoxLXlMMlZWQ3o3 X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJqOVBfMTFHUm9uVGlZajEteUwyVlZDejdfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0ZGRi84MkFEMzc3QTREQUIxMUVDOTIxNEY1MjFDNEY5QUUwMi8yajlQXzExR1Jv blRpWWoxLXlMMlZWQ3o3X2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjvXPK4gXnttbYG0RdN2cj/d1n4ceyuxs2Esp20kVY7LiDhQrCHGFK vTXbOY5otVU6JWxBjHqx+CqmcXMUNPlW4E1Z/VvH328cuOriug0pgB8OBAv63Toy A2BpXyWvOOOhJc5AlKACvfwtgmoQ5bRdH66YLyjVIaQVSjifYRwBwvszfFAcpblS loOExf+l73Aw4cJRFEr3pz1VRNhLljUJNWc1ig7EU+7bjKErVbYqn0WPGRln4ITY Id0P51WDi/yfvNW2xLTyYZN2OE9HU+eVNbnmTiu5W+k25r7CUs8ySagYhE2vVsg6 1sWKIlLJ2zKr0D9dhrRCYeca2GJyIX5U -----END CERTIFICATE-----Generated at Wed May 1 03:20:34 2024 by rpki-client on console-fra.rpki-client.org