$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft File: U4XhOhtYRftEzutr7Y3rTomvOCk.mft (raw, json) Hash identifier: 31SIDEtjcyxmz9BqkRuczsTBrx8Mp0qWV9YYanaWzd8= Subject key identifier: C4:57:34:6D:4C:41:AA:88:81:7F:3E:CC:FC:65:B9:E6:0B:27:12:7C Authority key identifier: 53:85:E1:3A:1B:58:45:FB:44:CE:EB:6B:ED:8D:EB:4E:89:AF:38:29 Certificate issuer: /CN=A91ACFEB/serialNumber=5385E13A1B5845FB44CEEB6BED8DEB4E89AF3829 Certificate serial: 08B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft Manifest number: 08A2 Signing time: Thu 02 May 2024 21:39:55 +0000 Manifest this update: Thu 02 May 2024 21:39:54 +0000 Manifest next update: Thu 09 May 2024 21:39:54 +0000 Files and hashes: 1: U4XhOhtYRftEzutr7Y3rTomvOCk.crl (hash: 3uyKEmVNdINHyS5zCrRkP3deZiV4UzCJGztXC8KvPxE=) 2: 3636BCD2937011EA8A795583C4F9AE02.roa (hash: YRt4jKdI4p9jPEw/yG2fC1+AmKWnjwB4/jgfu0A37Zs=) 3: 35831FCE937011EA8A795583C4F9AE02.roa (hash: quwFz9je4iFlkCJSU3B1mU1SM1se6oAq60Dc17Nx0YY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.crl rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 21:27:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2224 (0x8b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACFEB/serialNumber=5385E13A1B5845FB44CEEB6BED8DEB4E89AF3829 Validity Not Before: May 2 21:39:54 2024 GMT Not After : May 9 21:39:54 2024 GMT Subject: CN=6634082b-7859 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:46:4e:ee:62:1e:a7:7a:e9:ab:1e:2b:35:c9: 6e:9e:de:23:88:e9:25:fb:d2:0f:13:ba:09:00:15: 40:29:87:36:9c:c6:72:a7:2e:05:4c:d0:c0:0e:8c: 2f:ec:00:b2:b5:69:2a:88:47:ef:38:33:d2:dd:ad: 86:7e:d5:36:c1:86:0b:91:e0:88:4c:ab:97:1e:88: 73:db:cb:69:4f:61:e6:3b:b2:47:a7:f9:e7:e1:02: f5:27:95:59:35:ae:24:d5:2f:85:a2:59:a0:e8:8c: ac:0a:51:84:5b:44:7d:c3:68:b5:f3:52:b5:54:7d: 67:dd:3c:f5:d8:ac:70:a5:6c:31:0b:3a:f8:d2:b7: 76:09:5f:b7:a7:c7:17:c3:2c:fd:ec:01:42:5c:75: 4e:d4:f9:9f:06:a1:92:1a:4d:1b:80:86:c1:e0:52: dd:bf:55:91:9e:fc:d4:a4:29:96:a4:32:df:7a:1b: 46:c8:95:b0:b9:3d:6e:64:f4:27:ea:b8:ab:9f:5a: c3:4b:da:37:82:5b:ac:56:91:25:41:00:bf:c9:58: b6:8b:4b:c1:ac:73:06:2e:1d:44:10:54:ac:91:71: b4:7a:79:e6:26:1e:c8:90:71:5f:a6:7b:61:a4:c1: f2:4b:7a:2f:70:cd:43:7f:1b:6b:4c:44:3e:9b:bf: 56:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:57:34:6D:4C:41:AA:88:81:7F:3E:CC:FC:65:B9:E6:0B:27:12:7C X509v3 Authority Key Identifier: keyid:53:85:E1:3A:1B:58:45:FB:44:CE:EB:6B:ED:8D:EB:4E:89:AF:38:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:ef:26:95:70:45:7d:df:05:52:e9:0a:43:c9:a5:10:bf:f6: 80:57:c4:08:9d:ae:82:b8:48:5c:f4:97:88:f1:aa:00:41:80: 16:0c:11:a1:8f:27:a6:9f:d4:eb:e3:83:9a:df:ef:f9:69:9b: 1b:c9:59:86:65:36:81:00:5b:7a:5d:62:b5:67:63:5a:2e:ba: 5e:31:4b:8e:98:f5:49:da:db:99:09:54:5c:fe:e0:c5:37:24: ca:b8:46:e8:79:26:38:ed:6f:02:09:18:5f:28:a1:4e:3e:c0: 4d:27:62:41:32:71:81:c3:d8:ad:3e:2f:0f:81:60:f1:69:f8: c5:03:84:c5:5e:ba:4f:3b:2c:23:32:ef:a6:1d:a9:ef:d1:e7: fc:f1:2e:4d:34:9a:d8:12:a4:82:3c:94:38:f7:56:8a:1e:0b: 2d:78:53:84:68:6f:a3:5d:cd:0b:2c:97:75:58:46:c7:13:25: 41:00:65:49:2a:70:dd:23:64:40:fe:09:46:fc:3e:4b:3b:71: 05:47:53:e3:63:71:38:2e:61:77:11:d8:f8:e7:0e:0f:6b:e1: 69:05:df:25:ae:3a:ea:21:f3:c3:c8:75:35:3d:67:03:1b:e0: 90:0b:fc:81:c9:11:c3:3e:54:d7:7d:6f:09:e9:42:90:a2:58: be:07:e8:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNGRUIxMTAvBgNVBAUTKDUzODVFMTNBMUI1ODQ1RkI0NENFRUI2QkVEOERFQjRF ODlBRjM4MjkwHhcNMjQwNTAyMjEzOTU0WhcNMjQwNTA5MjEzOTU0WjAYMRYwFAYD VQQDEw02NjM0MDgyYi03ODU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2EZO7mIep3rpqx4rNclunt4jiOkl+9IPE7oJABVAKYc2nMZypy4FTNDADowv 7ACytWkqiEfvODPS3a2GftU2wYYLkeCITKuXHohz28tpT2HmO7JHp/nn4QL1J5VZ Na4k1S+Folmg6IysClGEW0R9w2i181K1VH1n3Tz12KxwpWwxCzr40rd2CV+3p8cX wyz97AFCXHVO1PmfBqGSGk0bgIbB4FLdv1WRnvzUpCmWpDLfehtGyJWwuT1uZPQn 6rirn1rDS9o3glusVpElQQC/yVi2i0vBrHMGLh1EEFSskXG0ennmJh7IkHFfpnth pMHyS3ovcM1DfxtrTEQ+m79W5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMRXNG1M QaqIgX8+zPxlueYLJxJ8MB8GA1UdIwQYMBaAFFOF4TobWEX7RM7ra+2N606Jrzgp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0ZFQi9DQjJDMzNFNjkz NkUxMUVBQTVFNTZCN0VDNEY5QUUwMi9VNFhoT2h0WVJmdEV6dXRyN1kzclRvbXZP Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0WGhPaHRZUmZ0RXp1dHI3WTNyVG9tdk9Day5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0ZFQi9DQjJDMzNFNjkzNkUxMUVBQTVFNTZCN0VDNEY5QUUwMi9VNFhoT2h0WVJm dEV6dXRyN1kzclRvbXZPQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB67yaVcEV93wVS6QpDyaUQv/aAV8QIna6CuEhc9JeI8aoAQYAWDBGh jyemn9Tr44Oa3+/5aZsbyVmGZTaBAFt6XWK1Z2NaLrpeMUuOmPVJ2tuZCVRc/uDF NyTKuEboeSY47W8CCRhfKKFOPsBNJ2JBMnGBw9itPi8PgWDxafjFA4TFXrpPOywj Mu+mHanv0ef88S5NNJrYEqSCPJQ491aKHgsteFOEaG+jXc0LLJd1WEbHEyVBAGVJ KnDdI2RA/glG/D5LO3EFR1PjY3E4LmF3Edj45w4Pa+FpBd8lrjrqIfPDyHU1PWcD G+CQC/yByRHDPlTXfW8J6UKQoli+B+gX -----END CERTIFICATE-----Generated at Thu May 2 22:13:21 2024 by rpki-client on console-fra.rpki-client.org