$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft File: 0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft (raw, json) Hash identifier: 9un7tTG4YR5HSOHvcGxg4nOERJnycbu/RtziceIGe8Q= Subject key identifier: 83:76:C4:51:4C:0E:B0:6D:C6:27:C1:64:D4:B2:E0:E3:43:4A:A2:D8 Authority key identifier: D2:90:DD:16:72:22:C3:9B:13:4F:81:E5:27:F0:22:D8:5E:DF:23:F4 Certificate issuer: /CN=A91AE08E/serialNumber=D290DD167222C39B134F81E527F022D85EDF23F4 Certificate serial: 07D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft Manifest number: 07CE Signing time: Sun 26 May 2024 22:07:22 +0000 Manifest this update: Sun 26 May 2024 22:07:21 +0000 Manifest next update: Sun 02 Jun 2024 22:07:21 +0000 Files and hashes: 1: 0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl (hash: K5YD8lBIIMRD+iarDSEvBXM92yVU+EXGvN6/baVc4uk=) 2: 6E038820BF6211EA94C2957CC4F9AE02.roa (hash: 4ZJ4bpIZAyoZQWXKXEaFncTtQ6o2taA3kIC/oIBts/4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 21:17:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2007 (0x7d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE08E/serialNumber=D290DD167222C39B134F81E527F022D85EDF23F4 Validity Not Before: May 26 22:07:21 2024 GMT Not After : Jun 2 22:07:21 2024 GMT Subject: CN=6653b29a-e698 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c6:06:52:b1:62:cd:6e:3a:d3:c1:ec:65:73: 0d:58:43:b5:f3:74:b2:da:12:88:15:56:2a:d0:f3: 1f:7a:2c:f1:96:22:03:29:a7:5a:3f:ed:43:19:75: cb:8c:0e:c5:a5:1b:51:45:07:42:e5:80:7a:d5:10: 4a:aa:f2:bb:51:9a:b0:31:46:e9:27:4c:d7:75:80: 5d:9b:e8:cd:b6:f9:6c:a6:18:b9:b9:15:9f:55:83: c1:f8:43:19:75:96:a9:1c:3f:ac:59:d7:b8:c1:46: 3e:99:21:6f:54:6d:ff:92:09:46:49:9d:9a:3c:84: ff:89:2e:3a:80:87:47:94:f1:2f:a3:34:8c:2b:f2: b3:ed:2c:6b:46:6f:0d:b7:b8:f9:84:26:6b:82:e5: c9:b2:49:ca:4e:9f:7e:9d:5a:c2:21:dc:c3:d3:d0: 0e:41:ee:00:84:81:b7:bc:bf:ad:64:06:71:43:a3: 11:8c:31:fd:c1:1f:9d:ee:95:b5:fa:e4:1e:8a:da: 31:51:a4:fa:3c:36:9a:76:8d:41:c9:54:9c:e1:af: 68:bf:8e:be:cc:ba:4b:85:82:05:3f:83:17:77:a0: 6e:28:3d:6c:55:d5:23:a7:ee:66:67:25:14:f8:70: 2e:94:6c:2c:0c:d0:dd:12:13:6a:1f:52:aa:a4:0c: 5e:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:76:C4:51:4C:0E:B0:6D:C6:27:C1:64:D4:B2:E0:E3:43:4A:A2:D8 X509v3 Authority Key Identifier: keyid:D2:90:DD:16:72:22:C3:9B:13:4F:81:E5:27:F0:22:D8:5E:DF:23:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:3b:d4:65:8d:bb:c1:a7:c3:a8:07:26:15:6c:32:39:bd:22: cf:c4:70:3f:4f:7b:d2:dd:56:65:bd:48:9e:ee:e9:f2:bf:f6: 53:b3:4f:c0:5e:7b:5e:2a:11:98:08:76:50:7e:6a:e8:43:7e: 03:b3:68:76:c5:e4:07:1a:9f:8f:58:0a:22:62:9c:33:dd:c7: bd:83:86:29:76:c0:88:76:3f:19:c0:36:3d:61:c7:7c:ab:9c: 17:0d:41:72:4e:24:37:99:b9:dd:80:11:b3:39:bf:10:a9:28: dc:ab:27:6b:47:f2:04:a5:14:15:02:26:53:29:d7:81:1e:90: a6:97:e2:cf:2d:40:ea:74:97:0a:b2:a2:77:38:f0:8a:0f:7e: f0:74:ed:67:33:3f:03:ea:9c:ba:dc:30:c5:ab:68:ad:0a:d1: 45:e4:66:be:43:c4:42:c5:df:2b:f9:c4:e4:5c:be:52:b5:b4: da:7e:a8:53:e8:05:1d:26:1f:60:e4:71:56:66:ab:e3:00:40: 92:c6:da:4f:d2:b2:6e:51:c1:d8:be:92:90:61:2e:b5:76:ea: f3:aa:d8:9d:5f:b9:f1:17:bb:1a:d6:41:1c:de:76:fa:e3:6d: db:ef:d0:c5:37:15:74:f2:31:56:48:b9:cf:c4:5a:c9:be:7e: 49:41:83:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUwOEUxMTAvBgNVBAUTKEQyOTBERDE2NzIyMkMzOUIxMzRGODFFNTI3RjAyMkQ4 NUVERjIzRjQwHhcNMjQwNTI2MjIwNzIxWhcNMjQwNjAyMjIwNzIxWjAYMRYwFAYD VQQDEw02NjUzYjI5YS1lNjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApsYGUrFizW4608HsZXMNWEO183Sy2hKIFVYq0PMfeizxliIDKadaP+1DGXXL jA7FpRtRRQdC5YB61RBKqvK7UZqwMUbpJ0zXdYBdm+jNtvlsphi5uRWfVYPB+EMZ dZapHD+sWde4wUY+mSFvVG3/kglGSZ2aPIT/iS46gIdHlPEvozSMK/Kz7SxrRm8N t7j5hCZrguXJsknKTp9+nVrCIdzD09AOQe4AhIG3vL+tZAZxQ6MRjDH9wR+d7pW1 +uQeitoxUaT6PDaado1ByVSc4a9ov46+zLpLhYIFP4MXd6BuKD1sVdUjp+5mZyUU +HAulGwsDNDdEhNqH1KqpAxeaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIN2xFFM DrBtxifBZNSy4ONDSqLYMB8GA1UdIwQYMBaAFNKQ3RZyIsObE0+B5SfwIthe3yP0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTA4RS9CMkEzQzIzQ0JG NEExMUVBOEMzMTVEMzFDNEY5QUUwMi8wcERkRm5JaXc1c1RUNEhsSl9BaTJGN2ZJ X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBwRGRGbklpdzVzVFQ0SGxKX0FpMkY3ZklfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTA4RS9CMkEzQzIzQ0JGNEExMUVBOEMzMTVEMzFDNEY5QUUwMi8wcERkRm5JaXc1 c1RUNEhsSl9BaTJGN2ZJX1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxO9RljbvBp8OoByYVbDI5vSLPxHA/T3vS3VZlvUie7unyv/ZTs0/A XnteKhGYCHZQfmroQ34Ds2h2xeQHGp+PWAoiYpwz3ce9g4YpdsCIdj8ZwDY9Ycd8 q5wXDUFyTiQ3mbndgBGzOb8QqSjcqydrR/IEpRQVAiZTKdeBHpCml+LPLUDqdJcK sqJ3OPCKD37wdO1nMz8D6py63DDFq2itCtFF5Ga+Q8RCxd8r+cTkXL5StbTafqhT 6AUdJh9g5HFWZqvjAECSxtpP0rJuUcHYvpKQYS61durzqtidX7nxF7sa1kEc3nb6 423b79DFNxV08jFWSLnPxFrJvn5JQYNz -----END CERTIFICATE-----Generated at Sun May 26 22:43:31 2024 by rpki-client on console-fra.rpki-client.org