$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.mft File: eFfRGlHcrpwuCIahDOBvVfW4QwA.mft (raw, json) Hash identifier: KXtG0okQWAS/XvzVsNXazowudV1EBAGGHOvP8/6jg8E= Subject key identifier: F2:A1:65:30:16:CA:9B:BF:02:7C:A3:E6:EF:F3:C1:C3:F4:9C:4E:3E Authority key identifier: 78:57:D1:1A:51:DC:AE:9C:2E:08:86:A1:0C:E0:6F:55:F5:B8:43:00 Certificate issuer: /CN=A91A5D8A/serialNumber=7857D11A51DCAE9C2E0886A10CE06F55F5B84300 Certificate serial: 04EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFfRGlHcrpwuCIahDOBvVfW4QwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.mft Manifest number: 04E3 Signing time: Fri 03 May 2024 01:26:52 +0000 Manifest this update: Fri 03 May 2024 01:26:51 +0000 Manifest next update: Fri 10 May 2024 01:26:51 +0000 Files and hashes: 1: eFfRGlHcrpwuCIahDOBvVfW4QwA.crl (hash: XryFtGEMQRr/0d2xbqmyCgN2pGjLztXYypvUKeSeSuQ=) 2: 8183B0FACAF111EBA40AF15BC4F9AE02.roa (hash: XwG0FHSlMJ0rTygHTL6/8gSgzUHSXejVg64oWEJojIA=) 3: 18981398329B11EDB9F09862C4F9AE02.roa (hash: va0dDvMjHYfQf8YH7iN9o7r8RUidDQZSikq8ZnL2A8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.crl rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFfRGlHcrpwuCIahDOBvVfW4QwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 01:26:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1258 (0x4ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5D8A/serialNumber=7857D11A51DCAE9C2E0886A10CE06F55F5B84300 Validity Not Before: May 3 01:26:51 2024 GMT Not After : May 10 01:26:51 2024 GMT Subject: CN=66343d5b-7320 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:59:10:e4:22:da:4a:dd:90:cb:ec:e1:d2:e9: a8:a5:f8:0d:e5:31:7d:81:ed:a8:cf:c5:f3:49:20: 00:5a:16:df:d7:3d:5b:97:d6:fe:83:b6:dd:b8:dc: 59:81:df:bf:79:48:ed:0e:b0:4d:91:58:87:c4:dd: 56:31:76:80:16:c5:23:e3:68:d6:fe:19:33:cb:09: 79:33:71:a9:02:5c:9f:2a:49:61:a9:ed:3e:cf:52: 2b:f3:60:0c:d2:96:7b:0e:27:97:16:78:65:d3:0e: c6:fd:01:f3:8b:ec:6c:96:5b:02:17:99:85:fe:17: 0c:14:fd:f4:01:db:da:b3:7d:7c:d9:0b:89:5a:93: f3:3b:29:14:86:6e:c4:7b:c7:1e:82:f7:a2:fd:7b: b1:6d:be:37:96:63:ee:62:37:3e:ff:39:6e:75:ab: b7:45:2c:e6:71:7a:bb:45:b4:c2:02:a6:f2:27:c1: a6:bb:5b:6a:64:a6:75:b1:38:15:ab:8c:ce:ed:4e: 34:88:a9:61:71:fb:01:d7:b3:07:d1:b7:69:bc:8e: 65:79:8e:b0:1c:97:92:54:2f:87:3d:f5:d1:16:d6: 04:b4:6a:88:06:63:d0:60:d5:39:42:cb:c5:ef:8b: ea:30:55:89:96:78:e5:b7:f7:79:29:c8:59:90:2c: 03:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:A1:65:30:16:CA:9B:BF:02:7C:A3:E6:EF:F3:C1:C3:F4:9C:4E:3E X509v3 Authority Key Identifier: keyid:78:57:D1:1A:51:DC:AE:9C:2E:08:86:A1:0C:E0:6F:55:F5:B8:43:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFfRGlHcrpwuCIahDOBvVfW4QwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:e8:b2:07:95:78:04:cd:fe:32:28:d3:5d:c8:7e:13:ef:95: 55:2f:9c:34:00:bf:b6:ad:5c:77:f9:2b:88:3a:2b:d0:46:e2: 84:a1:5a:ed:6e:d7:0c:cd:05:64:f1:cf:0b:bb:2f:0a:5a:1e: 93:b3:c8:1e:ec:06:03:97:42:ca:6e:97:84:ab:69:72:2a:94: 19:5e:0d:26:b6:7f:ca:75:41:66:bb:b1:0b:20:0e:93:1e:37: 27:2b:07:1d:5a:e7:f1:a2:5f:0b:2d:a5:5d:6f:d8:e5:10:f9: 7a:e9:5f:64:7d:71:10:34:b0:f9:73:4e:d0:eb:40:e9:19:86: c7:67:87:ef:3e:65:91:87:9e:c1:a3:f3:68:59:15:2b:d3:47: 18:27:b6:ca:02:86:9c:ec:a1:c4:22:08:57:ae:ce:e4:6c:36: 07:60:f2:b0:26:3d:c6:d0:e6:63:14:57:03:c8:8e:1c:c9:bf: 3c:73:04:5c:d0:7a:97:48:d3:12:dc:2f:55:48:6c:83:b9:1a: f1:0b:6c:b2:3b:cd:66:96:98:49:33:a1:f8:6c:11:70:30:93: c5:f6:58:45:ea:98:31:d0:fa:fe:79:92:ad:8f:29:69:9f:7e: 8b:2e:4e:d8:f0:29:e4:91:96:7e:e7:4b:8e:16:ae:e6:8a:5d: ef:a9:b6:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVEOEExMTAvBgNVBAUTKDc4NTdEMTFBNTFEQ0FFOUMyRTA4ODZBMTBDRTA2RjU1 RjVCODQzMDAwHhcNMjQwNTAzMDEyNjUxWhcNMjQwNTEwMDEyNjUxWjAYMRYwFAYD VQQDEw02NjM0M2Q1Yi03MzIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqVkQ5CLaSt2Qy+zh0umopfgN5TF9ge2oz8XzSSAAWhbf1z1bl9b+g7bduNxZ gd+/eUjtDrBNkViHxN1WMXaAFsUj42jW/hkzywl5M3GpAlyfKklhqe0+z1Ir82AM 0pZ7DieXFnhl0w7G/QHzi+xsllsCF5mF/hcMFP30Advas3182QuJWpPzOykUhm7E e8cegvei/Xuxbb43lmPuYjc+/zludau3RSzmcXq7RbTCAqbyJ8Gmu1tqZKZ1sTgV q4zO7U40iKlhcfsB17MH0bdpvI5leY6wHJeSVC+HPfXRFtYEtGqIBmPQYNU5QsvF 74vqMFWJlnjlt/d5KchZkCwDtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPKhZTAW ypu/Anyj5u/zwcP0nE4+MB8GA1UdIwQYMBaAFHhX0RpR3K6cLgiGoQzgb1X1uEMA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUQ4QS9CQTJGMUI5QUNB RUUxMUVCQTJGQkQwNTZDNEY5QUUwMi9lRmZSR2xIY3Jwd3VDSWFoRE9CdlZmVzRR d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VGZlJHbEhjcnB3dUNJYWhET0J2VmZXNFF3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUQ4QS9CQTJGMUI5QUNBRUUxMUVCQTJGQkQwNTZDNEY5QUUwMi9lRmZSR2xIY3Jw d3VDSWFoRE9CdlZmVzRRd0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAM6LIHlXgEzf4yKNNdyH4T75VVL5w0AL+2rVx3+SuIOivQRuKEoVrt btcMzQVk8c8Luy8KWh6Ts8ge7AYDl0LKbpeEq2lyKpQZXg0mtn/KdUFmu7ELIA6T HjcnKwcdWufxol8LLaVdb9jlEPl66V9kfXEQNLD5c07Q60DpGYbHZ4fvPmWRh57B o/NoWRUr00cYJ7bKAoac7KHEIghXrs7kbDYHYPKwJj3G0OZjFFcDyI4cyb88cwRc 0HqXSNMS3C9VSGyDuRrxC2yyO81mlphJM6H4bBFwMJPF9lhF6pgx0Pr+eZKtjylp n36LLk7Y8CnkkZZ+50uOFq7mil3vqbam -----END CERTIFICATE-----Generated at Fri May 3 04:45:23 2024 by rpki-client on console-fra.rpki-client.org