$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.mft File: J8OQD7137iLLcempDoFXTN5GRK0.mft (raw, json) Hash identifier: DM/5Yw6yFGhzObQjslrYfnuxa5RUKTed4uz3xlQ9d7A= Subject key identifier: B3:53:2B:16:33:DD:AA:48:D7:2C:CE:3C:E6:93:F7:7D:2E:91:58:9E Authority key identifier: 27:C3:90:0F:BD:77:EE:22:CB:71:E9:A9:0E:81:57:4C:DE:46:44:AD Certificate issuer: /CN=A91B1A23/serialNumber=27C3900FBD77EE22CB71E9A90E81574CDE4644AD Certificate serial: 0686 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8OQD7137iLLcempDoFXTN5GRK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.mft Manifest number: 0680 Signing time: Tue 30 Apr 2024 23:43:27 +0000 Manifest this update: Tue 30 Apr 2024 23:43:27 +0000 Manifest next update: Tue 07 May 2024 23:43:27 +0000 Files and hashes: 1: J8OQD7137iLLcempDoFXTN5GRK0.crl (hash: qLpAnpO4CV4vzLoLbxsWOh5zkHGTS4H9zvMNdzO1x38=) 2: 594EEA2CAEA711EE961B0558C4F9AE02.roa (hash: 1OottJ+jVSIpn9/qIbqYxFLpDRPxTkPCkdhUb2jBhmM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.crl rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8OQD7137iLLcempDoFXTN5GRK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 23:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1670 (0x686) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1A23/serialNumber=27C3900FBD77EE22CB71E9A90E81574CDE4644AD Validity Not Before: Apr 30 23:43:27 2024 GMT Not After : May 7 23:43:27 2024 GMT Subject: CN=6631821f-fe18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:ab:3a:49:be:77:77:45:b6:ff:2a:19:5b:28: e2:90:bc:76:27:5c:7b:e2:f7:44:67:2e:41:9f:a1: 38:38:18:6e:58:52:d3:b1:a2:20:31:08:a8:d6:18: 26:70:e5:bd:6f:fe:67:03:74:51:80:79:7a:33:fe: 63:2f:14:34:a1:32:a7:d8:4b:37:f0:92:21:83:d3: 57:81:fb:9c:a0:84:0f:e8:5b:84:46:80:b4:34:45: 23:fe:fd:22:dd:29:59:12:9e:09:37:a6:29:bf:33: f1:b1:2f:be:a3:c5:a5:5a:77:7d:04:cd:c5:b9:ab: 4e:62:b3:3d:5d:12:a7:ca:4b:6b:f2:ac:3f:8b:1f: 6d:8c:e9:18:35:4e:ae:ba:e1:14:4c:cf:ac:86:70: 16:91:d5:fc:e1:7e:0c:b1:c9:69:21:17:e1:4a:b9: be:48:53:b8:26:be:99:29:26:57:7d:44:14:c4:e3: 65:bc:52:70:5b:a1:a7:98:e5:c1:0b:51:6f:e0:35: 99:c0:55:8e:fd:f7:54:7b:bc:4a:31:c8:f5:82:aa: 15:3c:b9:5b:5e:70:f2:3d:8a:71:a4:e9:83:49:c3: ab:1c:ab:bd:af:ab:c2:43:be:55:69:a6:cf:b1:fd: e6:f1:58:ab:eb:96:5f:dc:12:1a:ef:0a:a4:11:5f: 4a:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:53:2B:16:33:DD:AA:48:D7:2C:CE:3C:E6:93:F7:7D:2E:91:58:9E X509v3 Authority Key Identifier: keyid:27:C3:90:0F:BD:77:EE:22:CB:71:E9:A9:0E:81:57:4C:DE:46:44:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8OQD7137iLLcempDoFXTN5GRK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:6e:4f:ab:60:82:e1:34:dc:fe:81:f4:ae:72:ce:b2:a0:f4: 73:b8:8b:7e:b4:22:a9:4e:9b:65:4c:75:ee:3c:9d:a0:fa:29: 16:c2:20:ed:bd:b2:7a:29:90:e7:2d:61:ea:f9:f5:ed:cd:f6: 36:8e:87:c8:b8:ef:fe:59:dd:3c:70:2e:e5:be:a0:f2:2c:c4: 47:70:a1:d4:37:33:af:84:e8:25:f3:d6:0f:12:e0:b0:16:af: 87:59:ec:1e:52:06:1a:41:41:73:27:96:84:f5:4f:94:7a:0d: 79:f8:ff:ce:a7:d7:3b:36:ab:1e:e8:d0:0a:be:ca:d1:df:05: ae:de:3a:0a:3e:47:0a:20:3a:b3:8f:1f:cc:7e:a1:0f:6c:a4: 73:e4:f8:b8:6a:8d:f3:63:4f:8c:3a:40:ad:a9:11:06:c3:be: 32:2f:c3:03:3e:7b:22:b3:1a:17:a0:66:55:56:3e:7d:09:07: e4:61:42:d7:39:4f:c4:3d:71:d7:c3:cf:33:26:cb:84:d3:9d: 8f:46:9f:72:dd:64:3a:c2:17:a3:e7:74:cf:10:63:87:03:cf: ca:c9:86:ea:31:49:fc:76:4b:be:9c:86:d7:9d:7d:46:79:4f: 3b:72:cf:f8:77:f3:de:e0:4f:ee:6a:c3:64:e5:aa:33:b6:b7: 9c:3a:eb:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFBMjMxMTAvBgNVBAUTKDI3QzM5MDBGQkQ3N0VFMjJDQjcxRTlBOTBFODE1NzRD REU0NjQ0QUQwHhcNMjQwNDMwMjM0MzI3WhcNMjQwNTA3MjM0MzI3WjAYMRYwFAYD VQQDEw02NjMxODIxZi1mZTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9Ks6Sb53d0W2/yoZWyjikLx2J1x74vdEZy5Bn6E4OBhuWFLTsaIgMQio1hgm cOW9b/5nA3RRgHl6M/5jLxQ0oTKn2Es38JIhg9NXgfucoIQP6FuERoC0NEUj/v0i 3SlZEp4JN6YpvzPxsS++o8WlWnd9BM3FuatOYrM9XRKnyktr8qw/ix9tjOkYNU6u uuEUTM+shnAWkdX84X4MsclpIRfhSrm+SFO4Jr6ZKSZXfUQUxONlvFJwW6GnmOXB C1Fv4DWZwFWO/fdUe7xKMcj1gqoVPLlbXnDyPYpxpOmDScOrHKu9r6vCQ75VaabP sf3m8Vir65Zf3BIa7wqkEV9KYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLNTKxYz 3apI1yzOPOaT930ukVieMB8GA1UdIwQYMBaAFCfDkA+9d+4iy3HpqQ6BV0zeRkSt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUEyMy9BQzUzM0RFRTI4 OTYxMUVCQkFBRDU3MjFDNEY5QUUwMi9KOE9RRDcxMzdpTExjZW1wRG9GWFRONUdS SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o4T1FENzEzN2lMTGNlbXBEb0ZYVE41R1JLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUEyMy9BQzUzM0RFRTI4OTYxMUVCQkFBRDU3MjFDNEY5QUUwMi9KOE9RRDcxMzdp TExjZW1wRG9GWFRONUdSSzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPbk+rYILhNNz+gfSucs6yoPRzuIt+tCKpTptlTHXuPJ2g+ikWwiDt vbJ6KZDnLWHq+fXtzfY2jofIuO/+Wd08cC7lvqDyLMRHcKHUNzOvhOgl89YPEuCw Fq+HWeweUgYaQUFzJ5aE9U+Ueg15+P/Op9c7Nqse6NAKvsrR3wWu3joKPkcKIDqz jx/MfqEPbKRz5Pi4ao3zY0+MOkCtqREGw74yL8MDPnsisxoXoGZVVj59CQfkYULX OU/EPXHXw88zJsuE052PRp9y3WQ6whej53TPEGOHA8/KyYbqMUn8dku+nIbXnX1G eU87cs/4d/Pe4E/uasNk5aoztrecOuun -----END CERTIFICATE-----Generated at Wed May 1 00:24:03 2024 by rpki-client on console-fra.rpki-client.org