$ rpki-client -vvf rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft File: b814Gaj5P69A0OOH8htG6E3p1ws.mft (raw, json) Hash identifier: ZTy/L49MawpqwUUSEE2Fvw1o00pueXjWZhYcYdmNJH4= Subject key identifier: DD:AB:96:25:0E:A8:87:0C:BF:90:D5:78:E2:51:24:C3:E5:6C:8C:07 Authority key identifier: 6F:CD:78:19:A8:F9:3F:AF:40:D0:E3:87:F2:1B:46:E8:4D:E9:D7:0B Certificate issuer: /CN=A91B02A2/serialNumber=6FCD7819A8F93FAF40D0E387F21B46E84DE9D70B Certificate serial: 66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft Manifest number: 65 Signing time: Wed 15 May 2024 07:41:41 +0000 Manifest this update: Wed 15 May 2024 07:41:41 +0000 Manifest next update: Wed 22 May 2024 07:41:41 +0000 Files and hashes: 1: b814Gaj5P69A0OOH8htG6E3p1ws.crl (hash: E87DXldLFg+nEJ/4762c1NljuP1wolqWJUxiiBguDcg=) 2: 5D98833C77EC11EEA06F373BC4F9AE02.roa (hash: mPmCunMSrXDdreriX544bpxYrAwb++Ejhwv2abmXk3A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.crl rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:41:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B02A2/serialNumber=6FCD7819A8F93FAF40D0E387F21B46E84DE9D70B Validity Not Before: May 15 07:41:41 2024 GMT Not After : May 22 07:41:41 2024 GMT Subject: CN=66446735-7f89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:43:20:59:d7:e3:f0:aa:36:f6:ee:5c:7a:92: 86:87:8f:43:48:8b:5b:cf:0d:b8:dc:4c:09:c6:6c: c8:1e:9a:47:95:9e:8f:d0:6e:12:2c:d7:e1:f0:b1: 5f:fb:08:1e:8f:d9:f0:8a:30:b0:48:cb:4b:af:b6: 75:17:9e:4c:38:7f:9e:e9:8e:4e:93:12:d6:c3:73: a6:6b:d3:5b:21:eb:08:f4:3b:8f:1d:b3:fe:7a:4b: bc:84:04:ac:03:ca:07:7c:9f:a0:9f:a1:1d:48:eb: b3:d4:c9:47:b8:04:82:c8:7e:35:31:52:6b:5c:2d: de:db:53:92:b2:36:6f:52:78:e7:e9:f8:01:08:12: 4b:46:ef:c2:28:70:c8:8a:9d:25:e8:79:f5:d4:aa: 44:1a:cd:2c:99:4b:1b:1d:af:ab:4e:ad:6f:68:10: 2b:cc:0d:da:8d:2a:ec:a1:d1:ac:f1:c0:75:f4:be: fb:5d:df:45:d6:a0:2b:52:74:95:bf:4f:46:88:83: b7:d2:cf:a9:8e:c8:2a:c5:15:48:08:3a:23:cd:c1: 98:47:f6:18:95:67:ab:cc:58:6d:1e:a0:a6:e3:c8: 63:36:b3:58:35:70:fb:69:75:ca:3b:70:e8:7c:c2: bb:4d:db:da:d1:52:4c:a7:5f:94:a8:52:ed:d0:82: 14:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:AB:96:25:0E:A8:87:0C:BF:90:D5:78:E2:51:24:C3:E5:6C:8C:07 X509v3 Authority Key Identifier: keyid:6F:CD:78:19:A8:F9:3F:AF:40:D0:E3:87:F2:1B:46:E8:4D:E9:D7:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:d5:72:b6:a7:a0:46:91:d1:a7:8b:8c:3e:54:3d:3e:b0:5b: ab:7a:83:f1:be:da:10:21:9e:b3:7d:a2:43:29:bd:d5:a1:3c: da:68:de:28:84:5b:63:c1:3b:e5:46:12:57:83:34:5f:1e:92: ec:57:5c:4a:8b:04:da:5f:7f:e2:10:14:4d:c8:7b:fc:62:e9: a4:6c:a5:bb:49:18:12:2a:52:18:9d:95:76:32:91:cb:e2:8a: d4:7d:e4:b0:95:6e:8e:45:41:eb:53:00:f1:9f:7e:f3:0e:ff: 28:8d:b5:f2:c6:05:08:84:11:ef:d5:2f:89:ed:f5:d5:85:62: 1d:91:5b:5b:e8:32:8d:68:7a:58:69:d4:9f:08:77:6c:6d:8c: 13:1f:9e:65:c3:b6:07:10:33:c7:50:fc:92:62:e8:c0:05:c4: 97:38:13:dd:de:45:58:92:58:84:1c:83:0e:08:af:f7:e9:98: af:46:af:a1:19:35:15:17:f0:4e:5a:45:c3:56:03:46:8c:59: b0:ad:62:2a:5b:36:6f:25:09:31:ea:5e:72:28:3b:81:8d:d8: f7:c4:42:8c:1d:ff:89:56:c3:46:97:e7:ca:47:05:50:15:7d: 81:72:96:cb:0e:7f:59:f7:ea:ed:73:19:6a:39:93:c7:18:ba: 36:56:c3:81 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MDJBMjExMC8GA1UEBRMoNkZDRDc4MTlBOEY5M0ZBRjQwRDBFMzg3RjIxQjQ2RTg0 REU5RDcwQjAeFw0yNDA1MTUwNzQxNDFaFw0yNDA1MjIwNzQxNDFaMBgxFjAUBgNV BAMTDTY2NDQ2NzM1LTdmODkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4QyBZ1+Pwqjb27lx6koaHj0NIi1vPDbjcTAnGbMgemkeVno/QbhIs1+HwsV/7 CB6P2fCKMLBIy0uvtnUXnkw4f57pjk6TEtbDc6Zr01sh6wj0O48ds/56S7yEBKwD ygd8n6CfoR1I67PUyUe4BILIfjUxUmtcLd7bU5KyNm9SeOfp+AEIEktG78IocMiK nSXoefXUqkQazSyZSxsdr6tOrW9oECvMDdqNKuyh0azxwHX0vvtd30XWoCtSdJW/ T0aIg7fSz6mOyCrFFUgIOiPNwZhH9hiVZ6vMWG0eoKbjyGM2s1g1cPtpdco7cOh8 wrtN29rRUkynX5SoUu3QghRvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU3auWJQ6o hwy/kNV44lEkw+VsjAcwHwYDVR0jBBgwFoAUb814Gaj5P69A0OOH8htG6E3p1wsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIwMkEyL0VGRDIxNTg0NzdF QjExRUU5M0I2OEIzQUM0RjlBRTAyL2I4MTRHYWo1UDY5QTBPT0g4aHRHNkUzcDF3 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYjgxNEdhajVQNjlBME9PSDhodEc2RTNwMXdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIw MkEyL0VGRDIxNTg0NzdFQjExRUU5M0I2OEIzQUM0RjlBRTAyL2I4MTRHYWo1UDY5 QTBPT0g4aHRHNkUzcDF3cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF/VcranoEaR0aeLjD5UPT6wW6t6g/G+2hAhnrN9okMpvdWhPNpo3iiE W2PBO+VGEleDNF8ekuxXXEqLBNpff+IQFE3Ie/xi6aRspbtJGBIqUhidlXYykcvi itR95LCVbo5FQetTAPGffvMO/yiNtfLGBQiEEe/VL4nt9dWFYh2RW1voMo1oelhp 1J8Id2xtjBMfnmXDtgcQM8dQ/JJi6MAFxJc4E93eRViSWIQcgw4Ir/fpmK9Gr6EZ NRUX8E5aRcNWA0aMWbCtYipbNm8lCTHqXnIoO4GN2PfEQowd/4lWw0aX58pHBVAV fYFylssOf1n36u1zGWo5k8cYujZWw4E= -----END CERTIFICATE-----Generated at Wed May 15 09:28:13 2024 by rpki-client on console-fra.rpki-client.org