$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.mft File: F3JfretEo_qLMf_wpjy8UVWpB9g.mft (raw, json) Hash identifier: vEjADD4cuusr4MvA8dKv1iuCEatQy9OCFNcxy9iN6io= Subject key identifier: 35:CF:85:30:2E:7B:81:71:0B:D6:AF:E1:E4:31:A5:46:04:53:DD:ED Authority key identifier: 17:72:5F:AD:EB:44:A3:FA:8B:31:FF:F0:A6:3C:BC:51:55:A9:07:D8 Certificate issuer: /CN=A91B0049/serialNumber=17725FADEB44A3FA8B31FFF0A63CBC5155A907D8 Certificate serial: 06C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F3JfretEo_qLMf_wpjy8UVWpB9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.mft Manifest number: 06C1 Signing time: Thu 02 May 2024 23:11:46 +0000 Manifest this update: Thu 02 May 2024 23:11:45 +0000 Manifest next update: Thu 09 May 2024 23:11:45 +0000 Files and hashes: 1: F3JfretEo_qLMf_wpjy8UVWpB9g.crl (hash: Kg4T5K7jbJo5dBghQLAYBM19aYnRFhNXDtoUv6xmzAk=) 2: C6591C620DFD11EBAD63A21CC4F9AE02.roa (hash: RHlwfDUxOMQtT5bp81t+fsaYo8+wSgQW+csj9NkKOFA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.crl rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F3JfretEo_qLMf_wpjy8UVWpB9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 22:53:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1733 (0x6c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0049/serialNumber=17725FADEB44A3FA8B31FFF0A63CBC5155A907D8 Validity Not Before: May 2 23:11:45 2024 GMT Not After : May 9 23:11:45 2024 GMT Subject: CN=66341db1-524d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:ca:36:2d:7d:f4:de:07:19:01:9c:86:dc:45: d7:17:6c:42:a9:15:77:01:4d:ba:83:23:d3:83:6a: 84:4a:98:34:b6:94:c3:cf:16:a0:44:05:28:2d:75: 12:3f:53:20:d5:50:23:45:23:13:9d:cc:49:cc:3c: c6:48:b1:19:ea:c4:7b:35:67:ef:0f:c4:69:33:b6: bb:ba:0e:93:8d:79:f1:70:d2:4d:18:bf:ac:7f:6d: db:f2:b7:3e:51:01:4d:eb:e3:79:35:6c:83:75:b6: fa:5d:72:c3:85:be:68:7f:2d:41:4c:79:84:f7:fc: 32:fa:ba:52:86:e8:45:10:6d:d0:7c:d5:81:2f:87: 4a:9c:08:9f:7d:26:f9:e4:63:91:8e:9d:60:50:47: 71:60:e6:53:bd:fa:c4:1a:a6:82:d4:a9:a1:2b:82: fc:b9:55:6d:fe:81:b8:63:2b:06:69:a4:58:4c:f2: 1e:a4:98:37:a8:8f:23:70:3e:3d:9a:10:19:b9:c9: 69:1d:37:1f:b1:23:6f:72:98:e4:31:ae:19:20:de: cf:a4:59:db:2b:11:c0:72:b8:cd:4f:83:6f:6e:68: 2a:31:84:ed:fd:d9:d4:e2:a1:62:ab:9d:aa:0a:c8: 9f:da:6a:5e:45:8f:b8:b8:23:e8:82:16:bc:5f:d8: 85:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:CF:85:30:2E:7B:81:71:0B:D6:AF:E1:E4:31:A5:46:04:53:DD:ED X509v3 Authority Key Identifier: keyid:17:72:5F:AD:EB:44:A3:FA:8B:31:FF:F0:A6:3C:BC:51:55:A9:07:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F3JfretEo_qLMf_wpjy8UVWpB9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:59:41:c6:03:36:df:04:75:12:24:40:b6:03:8c:75:6d:35: 49:31:5b:fe:f9:69:a1:4b:93:4c:cd:f9:d7:c1:f4:6f:f7:2e: ea:39:27:5e:ee:70:aa:ed:0d:92:90:d5:ff:82:47:1e:33:fa: 1c:fa:57:d5:11:61:b5:11:c5:2c:1c:de:8c:88:e5:14:d3:a9: 7a:f8:12:9a:5c:c7:0f:00:60:e5:31:c5:0f:b1:05:86:4a:64: 4f:8e:3f:a9:97:2a:8b:36:ea:70:72:dc:ab:64:81:3a:be:29: 06:06:d9:b6:55:6e:18:5f:c2:2e:e5:fc:6d:fe:75:48:df:3b: e1:84:69:03:23:f0:1d:4d:7a:aa:a1:0b:2f:8d:da:81:48:44: 56:37:f5:7f:42:7a:70:0a:0b:4e:0f:69:b4:5b:75:dc:71:54: f7:88:8f:6c:a8:c3:b4:cc:ac:30:1b:da:01:5e:32:0b:24:3d: 9f:6f:33:c7:fc:0e:74:16:19:b3:5f:be:d8:8d:1c:85:c2:d2: 3a:02:76:85:c9:e0:7b:9d:b5:ec:79:f9:e5:2b:95:a6:89:e0: db:fd:a3:e3:af:19:22:76:09:79:a0:ec:fd:da:10:ff:2a:9a: d4:40:ad:1b:54:20:38:52:80:aa:b7:9f:5f:1c:04:67:3a:70: 7d:25:dd:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAwNDkxMTAvBgNVBAUTKDE3NzI1RkFERUI0NEEzRkE4QjMxRkZGMEE2M0NCQzUx NTVBOTA3RDgwHhcNMjQwNTAyMjMxMTQ1WhcNMjQwNTA5MjMxMTQ1WjAYMRYwFAYD VQQDEw02NjM0MWRiMS01MjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8co2LX303gcZAZyG3EXXF2xCqRV3AU26gyPTg2qESpg0tpTDzxagRAUoLXUS P1Mg1VAjRSMTncxJzDzGSLEZ6sR7NWfvD8RpM7a7ug6TjXnxcNJNGL+sf23b8rc+ UQFN6+N5NWyDdbb6XXLDhb5ofy1BTHmE9/wy+rpShuhFEG3QfNWBL4dKnAiffSb5 5GORjp1gUEdxYOZTvfrEGqaC1KmhK4L8uVVt/oG4YysGaaRYTPIepJg3qI8jcD49 mhAZuclpHTcfsSNvcpjkMa4ZIN7PpFnbKxHAcrjNT4NvbmgqMYTt/dnU4qFiq52q Csif2mpeRY+4uCPogha8X9iFiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDXPhTAu e4FxC9av4eQxpUYEU93tMB8GA1UdIwQYMBaAFBdyX63rRKP6izH/8KY8vFFVqQfY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDA0OS83RUM5MDk3NjBE RkMxMUVCQjJGMTM4MUJDNEY5QUUwMi9GM0pmcmV0RW9fcUxNZl93cGp5OFVWV3BC OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0YzSmZyZXRFb19xTE1mX3dwank4VVZXcEI5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDA0OS83RUM5MDk3NjBERkMxMUVCQjJGMTM4MUJDNEY5QUUwMi9GM0pmcmV0RW9f cUxNZl93cGp5OFVWV3BCOWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMWUHGAzbfBHUSJEC2A4x1bTVJMVv++WmhS5NMzfnXwfRv9y7qOSde 7nCq7Q2SkNX/gkceM/oc+lfVEWG1EcUsHN6MiOUU06l6+BKaXMcPAGDlMcUPsQWG SmRPjj+plyqLNupwctyrZIE6vikGBtm2VW4YX8Iu5fxt/nVI3zvhhGkDI/AdTXqq oQsvjdqBSERWN/V/QnpwCgtOD2m0W3XccVT3iI9sqMO0zKwwG9oBXjILJD2fbzPH /A50FhmzX77YjRyFwtI6AnaFyeB7nbXsefnlK5WmieDb/aPjrxkidgl5oOz92hD/ KprUQK0bVCA4UoCqt59fHARnOnB9Jd1q -----END CERTIFICATE-----Generated at Thu May 2 23:48:44 2024 by rpki-client on console-fra.rpki-client.org