$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.mft File: FAfjHIfhFiRZ2Dw660iMl1qcI_E.mft (raw, json) Hash identifier: ixqQNbCqA1wto+aTp76y/ruBh/zhvINf77EKZof0XFk= Subject key identifier: 83:35:FF:CA:9D:88:20:4E:77:4C:EB:22:B3:7C:B0:B0:C1:4C:17:C9 Authority key identifier: 14:07:E3:1C:87:E1:16:24:59:D8:3C:3A:EB:48:8C:97:5A:9C:23:F1 Certificate issuer: /CN=A91B2131/serialNumber=1407E31C87E1162459D83C3AEB488C975A9C23F1 Certificate serial: 05A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FAfjHIfhFiRZ2Dw660iMl1qcI_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.mft Manifest number: 05A3 Signing time: Fri 03 May 2024 00:26:13 +0000 Manifest this update: Fri 03 May 2024 00:26:12 +0000 Manifest next update: Fri 10 May 2024 00:26:12 +0000 Files and hashes: 1: FAfjHIfhFiRZ2Dw660iMl1qcI_E.crl (hash: JN+hMHDjiJvxSDpvqnUBuxIy50p7VlLV0sGdRlarFyU=) 2: D240E2EE814D11EBB1CE367FC4F9AE02.roa (hash: s8OCSBLifuS9TRRZxsTR6TnHRfdGmipWnBCw9rF6/XU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.crl rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FAfjHIfhFiRZ2Dw660iMl1qcI_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 00:26:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1447 (0x5a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2131/serialNumber=1407E31C87E1162459D83C3AEB488C975A9C23F1 Validity Not Before: May 3 00:26:12 2024 GMT Not After : May 10 00:26:12 2024 GMT Subject: CN=66342f24-e243 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:49:5b:4f:ef:2c:7c:09:d5:af:fd:34:44:e6: 99:21:23:f8:c6:26:e7:06:27:bd:f1:60:9b:fa:93: d8:5c:f1:6b:83:94:10:a5:6a:34:5c:c9:b2:cb:49: 77:d6:92:16:c5:db:e2:9d:e7:11:6d:96:32:be:f9: 01:48:ae:8f:e6:b4:38:22:f6:fd:af:55:98:1c:d6: e6:a4:d5:1e:85:d7:7f:d5:75:b3:0e:ad:7e:e8:da: bc:30:4a:5d:73:f2:7f:37:f9:4b:0f:1a:9a:a9:ee: f5:9e:43:c9:85:13:9d:21:88:c3:a2:ce:d4:ac:c1: e4:0f:e8:cc:da:5d:33:80:bc:5d:6a:28:36:3b:95: d2:ef:2c:d3:ca:b9:90:48:4b:5b:b1:ff:93:fc:5e: 76:ee:0a:4d:dc:1c:18:82:55:87:4c:9e:f8:91:9e: 78:83:65:03:ba:fb:68:81:67:ff:91:19:2a:c5:ce: c4:ff:5e:d2:78:89:ac:89:22:73:4c:96:b2:56:36: b8:85:22:1b:29:c5:14:58:3f:59:65:56:f9:77:3a: 2b:81:f4:10:2f:e4:20:fe:cf:a4:81:08:54:56:98: 05:86:08:3e:7b:67:40:05:db:6a:04:6a:f1:9f:97: af:40:30:9b:5f:17:02:43:ee:a3:d1:12:36:b4:d6: a4:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:35:FF:CA:9D:88:20:4E:77:4C:EB:22:B3:7C:B0:B0:C1:4C:17:C9 X509v3 Authority Key Identifier: keyid:14:07:E3:1C:87:E1:16:24:59:D8:3C:3A:EB:48:8C:97:5A:9C:23:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FAfjHIfhFiRZ2Dw660iMl1qcI_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:6b:6e:3e:44:9f:5d:5d:d3:93:9b:24:b5:60:77:23:7d:58: 58:61:5c:ca:a1:d5:c9:8d:b7:78:65:2e:8b:ca:e0:dd:ce:19: b6:cc:10:31:b5:ad:84:52:3a:71:f1:3e:cd:70:c7:85:c2:f0: ee:38:3d:7c:95:1c:f3:4e:eb:f0:bb:1d:f0:35:99:48:b7:6f: 84:7e:c6:97:18:69:39:67:6c:f9:f8:23:24:a0:4a:03:b3:2f: ca:3b:f2:67:52:12:9b:e3:26:01:86:11:d2:b1:7b:84:bb:b6: 18:81:43:2e:c8:7c:05:57:6f:c4:5b:96:94:23:36:78:00:3d: 66:9e:c8:b6:ea:67:3b:47:b9:49:45:65:7d:f5:46:b8:e5:59: 26:56:23:ad:7b:72:1e:ac:f9:e7:3e:c5:e4:80:93:d8:95:bb: d7:ad:e4:a4:66:ed:7d:76:d1:1a:23:b7:a6:6c:11:cd:d0:89: c6:3c:83:04:98:23:02:0f:93:31:be:04:3f:69:14:20:b4:8a: a7:30:af:74:6c:4c:a8:1c:86:c6:db:37:51:05:c2:0e:8f:d7: 68:78:af:fa:f0:4e:c2:43:35:6c:e4:cc:f2:3f:9b:f6:3d:60: 0e:2c:5e:b0:a0:57:bb:1b:5c:f3:c9:cb:a2:3e:21:45:bc:2b: 6f:34:91:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIxMzExMTAvBgNVBAUTKDE0MDdFMzFDODdFMTE2MjQ1OUQ4M0MzQUVCNDg4Qzk3 NUE5QzIzRjEwHhcNMjQwNTAzMDAyNjEyWhcNMjQwNTEwMDAyNjEyWjAYMRYwFAYD VQQDEw02NjM0MmYyNC1lMjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu0lbT+8sfAnVr/00ROaZISP4xibnBie98WCb+pPYXPFrg5QQpWo0XMmyy0l3 1pIWxdvinecRbZYyvvkBSK6P5rQ4Ivb9r1WYHNbmpNUehdd/1XWzDq1+6Nq8MEpd c/J/N/lLDxqaqe71nkPJhROdIYjDos7UrMHkD+jM2l0zgLxdaig2O5XS7yzTyrmQ SEtbsf+T/F527gpN3BwYglWHTJ74kZ54g2UDuvtogWf/kRkqxc7E/17SeImsiSJz TJayVja4hSIbKcUUWD9ZZVb5dzorgfQQL+Qg/s+kgQhUVpgFhgg+e2dABdtqBGrx n5evQDCbXxcCQ+6j0RI2tNaksQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIM1/8qd iCBOd0zrIrN8sLDBTBfJMB8GA1UdIwQYMBaAFBQH4xyH4RYkWdg8OutIjJdanCPx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjEzMS9CRTRBNkNEMDdE NzIxMUVCOENCNjM2NjVDNEY5QUUwMi9GQWZqSElmaEZpUloyRHc2NjBpTWwxcWNJ X0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZBZmpISWZoRmlSWjJEdzY2MGlNbDFxY0lfRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjEzMS9CRTRBNkNEMDdENzIxMUVCOENCNjM2NjVDNEY5QUUwMi9GQWZqSElmaEZp UloyRHc2NjBpTWwxcWNJX0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBha24+RJ9dXdOTmyS1YHcjfVhYYVzKodXJjbd4ZS6LyuDdzhm2zBAx ta2EUjpx8T7NcMeFwvDuOD18lRzzTuvwux3wNZlIt2+EfsaXGGk5Z2z5+CMkoEoD sy/KO/JnUhKb4yYBhhHSsXuEu7YYgUMuyHwFV2/EW5aUIzZ4AD1mnsi26mc7R7lJ RWV99Ua45VkmViOte3IerPnnPsXkgJPYlbvXreSkZu19dtEaI7embBHN0InGPIME mCMCD5MxvgQ/aRQgtIqnMK90bEyoHIbG2zdRBcIOj9doeK/68E7CQzVs5MzyP5v2 PWAOLF6woFe7G1zzycuiPiFFvCtvNJEM -----END CERTIFICATE-----Generated at Fri May 3 01:30:27 2024 by rpki-client on console-fra.rpki-client.org