$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft File: up0rragmh4TwCuhYcC744p5ytLw.mft (raw, json) Hash identifier: QHQBcVOK8r/jwaKgL6uI40BhXiIEPefkzOalIpz4RwI= Subject key identifier: 9E:7A:2D:C5:5B:47:16:AC:8C:11:4F:DD:0C:19:01:C8:ED:B1:75:43 Authority key identifier: BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC Certificate issuer: /CN=A91A9EE2/serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Certificate serial: 33DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft Manifest number: 33CE Signing time: Sat 04 May 2024 14:32:44 +0000 Manifest this update: Sat 04 May 2024 14:32:44 +0000 Manifest next update: Sat 11 May 2024 14:32:44 +0000 Files and hashes: 1: up0rragmh4TwCuhYcC744p5ytLw.crl (hash: Rb7SsxjrT3m5YSK8JYCEfP4e00JUppM8xkh2as2dZQ4=) 2: 58D5764A683311ECB9C17757C4F9AE02.roa (hash: CO44ykdfCTQ7Mv5nVqTIPuTfPATeSesiwshtkZkvJFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:32:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13279 (0x33df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9EE2/serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Validity Not Before: May 4 14:32:44 2024 GMT Not After : May 11 14:32:44 2024 GMT Subject: CN=6636470c-9f8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:d9:a2:ae:e9:6a:d4:12:c5:5f:aa:07:cb:49: 0f:97:26:28:0b:f9:a2:f7:da:21:73:5f:c7:eb:e8: b5:63:51:64:1d:5a:c5:61:58:71:d2:e1:5e:5e:c4: 99:a6:e2:14:6d:6e:f2:c4:32:04:03:56:7d:25:30: 51:96:a2:10:83:ee:44:a4:ca:b7:96:97:67:26:04: e2:26:59:98:0d:75:71:86:7d:7a:89:5d:df:a6:76: bb:8f:5a:8b:f7:dc:6f:97:b2:ad:ad:53:b4:4b:96: e4:e0:51:45:a7:f8:70:f6:3e:aa:bb:30:cb:d6:65: ed:32:36:59:ff:62:ba:9f:2c:2a:13:67:6e:31:e6: 17:1f:e6:51:f5:22:63:9b:05:1c:fb:07:03:31:16: 4a:06:6a:df:53:3d:f4:f7:0e:58:3d:7a:b3:4d:3c: c8:06:65:c4:11:11:5e:73:ec:d7:d0:f1:9b:f9:e5: 8c:9d:8b:20:d6:70:44:89:df:fa:6e:ef:d5:51:50: a6:50:95:ac:5f:d4:cf:68:e7:f1:62:f5:35:1b:a9: 39:2b:b3:f1:b4:16:f3:39:74:10:f2:23:86:19:df: 3b:7d:f6:18:23:d1:b0:55:80:c7:69:72:26:2e:85: cd:ae:fc:d5:04:e2:7a:f9:40:e5:07:69:fb:59:c5: e4:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:7A:2D:C5:5B:47:16:AC:8C:11:4F:DD:0C:19:01:C8:ED:B1:75:43 X509v3 Authority Key Identifier: keyid:BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:31:e5:4d:0c:5a:0f:3e:f5:f4:fb:8a:4a:d3:0a:56:e3:9b: 45:7c:9f:aa:bb:5c:9f:b2:a9:4e:0f:07:e3:d9:55:eb:cc:53: eb:ed:10:23:98:f3:c0:70:2a:ab:a0:36:f3:3c:64:ee:41:b3: 39:59:65:df:28:9d:20:c0:24:bd:fa:d8:e6:72:47:67:d5:e8: 3c:5b:b7:4e:90:22:c6:cc:d3:bd:03:17:0d:c0:47:80:29:26: 15:e4:66:2e:b8:29:db:bc:bb:9a:d6:71:5a:5a:de:a7:9a:df: 8b:1d:1a:28:a8:54:ec:44:b8:f3:a5:6e:81:c8:0f:4a:97:89: c1:3f:7f:db:4e:24:5b:17:48:de:0d:73:d8:0c:39:58:68:b2: be:91:c4:4d:5e:b1:3f:a5:14:58:ba:c6:5d:9b:c9:c6:3f:c2: 96:8e:8b:9a:60:cd:cd:6d:60:60:a1:0c:ba:53:cd:04:69:a5: ab:3a:02:79:e5:c5:82:5e:20:05:f0:70:2f:72:85:6b:96:01: 4f:c7:ed:71:03:22:f2:96:b7:09:3d:fe:8c:79:9d:b5:03:3a: 88:89:b7:f4:98:80:5e:b9:59:68:98:92:dc:67:b2:f7:04:48: 37:29:03:44:61:1e:d8:46:c8:57:6f:70:2c:f5:80:ae:91:ed: be:29:a6:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlFRTIxMTAvBgNVBAUTKEJBOUQyQkFEQTgyNjg3ODRGMDBBRTg1ODcwMkVGOEUy OUU3MkI0QkMwHhcNMjQwNTA0MTQzMjQ0WhcNMjQwNTExMTQzMjQ0WjAYMRYwFAYD VQQDEw02NjM2NDcwYy05ZjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAltmirulq1BLFX6oHy0kPlyYoC/mi99ohc1/H6+i1Y1FkHVrFYVhx0uFeXsSZ puIUbW7yxDIEA1Z9JTBRlqIQg+5EpMq3lpdnJgTiJlmYDXVxhn16iV3fpna7j1qL 99xvl7KtrVO0S5bk4FFFp/hw9j6quzDL1mXtMjZZ/2K6nywqE2duMeYXH+ZR9SJj mwUc+wcDMRZKBmrfUz309w5YPXqzTTzIBmXEERFec+zX0PGb+eWMnYsg1nBEid/6 bu/VUVCmUJWsX9TPaOfxYvU1G6k5K7PxtBbzOXQQ8iOGGd87ffYYI9GwVYDHaXIm LoXNrvzVBOJ6+UDlB2n7WcXk2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ56LcVb RxasjBFP3QwZAcjtsXVDMB8GA1UdIwQYMBaAFLqdK62oJoeE8AroWHAu+OKecrS8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUVFMi82NDMyNEREODFE ODgxMUUyQkRFRjE0RTEwOEIwMkNEMi91cDBycmFnbWg0VHdDdWhZY0M3NDRwNXl0 THcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwMHJyYWdtaDRUd0N1aFljQzc0NHA1eXRMdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUVFMi82NDMyNEREODFEODgxMUUyQkRFRjE0RTEwOEIwMkNEMi91cDBycmFnbWg0 VHdDdWhZY0M3NDRwNXl0THcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaMeVNDFoPPvX0+4pK0wpW45tFfJ+qu1yfsqlODwfj2VXrzFPr7RAj mPPAcCqroDbzPGTuQbM5WWXfKJ0gwCS9+tjmckdn1eg8W7dOkCLGzNO9AxcNwEeA KSYV5GYuuCnbvLua1nFaWt6nmt+LHRooqFTsRLjzpW6ByA9Kl4nBP3/bTiRbF0je DXPYDDlYaLK+kcRNXrE/pRRYusZdm8nGP8KWjouaYM3NbWBgoQy6U80EaaWrOgJ5 5cWCXiAF8HAvcoVrlgFPx+1xAyLylrcJPf6MeZ21AzqIibf0mIBeuVlomJLcZ7L3 BEg3KQNEYR7YRshXb3As9YCuke2+KaZl -----END CERTIFICATE-----Generated at Sat May 4 15:45:49 2024 by rpki-client on console-fra.rpki-client.org