$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.mft File: MIoPBCNx10Tky2KrUekE9wys03o.mft (raw, json) Hash identifier: N/gyaknoRerkvRML3Uq3SiEMxQrgkag/Lzy4piHof2k= Subject key identifier: 18:77:3C:3B:7C:C0:86:6C:19:B9:DA:2B:DF:A8:D9:6C:31:1B:56:DF Authority key identifier: 30:8A:0F:04:23:71:D7:44:E4:CB:62:AB:51:E9:04:F7:0C:AC:D3:7A Certificate issuer: /CN=A91B2252/serialNumber=308A0F042371D744E4CB62AB51E904F70CACD37A Certificate serial: 0703 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MIoPBCNx10Tky2KrUekE9wys03o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.mft Manifest number: 06FD Signing time: Thu 02 May 2024 22:50:06 +0000 Manifest this update: Thu 02 May 2024 22:50:06 +0000 Manifest next update: Thu 09 May 2024 22:50:06 +0000 Files and hashes: 1: MIoPBCNx10Tky2KrUekE9wys03o.crl (hash: 8pLivDPAhQSG6vO0cp21kVyTvv1B6P7jVdtJK4XOJ2k=) 2: 0C86DB20F63E11EA9FF7B134C4F9AE02.roa (hash: LurmJ7QLRkm4UNwbxz+t6OH5Zu37E1jXfkrfx8UtdmI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.crl rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MIoPBCNx10Tky2KrUekE9wys03o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 22:50:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1795 (0x703) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2252/serialNumber=308A0F042371D744E4CB62AB51E904F70CACD37A Validity Not Before: May 2 22:50:06 2024 GMT Not After : May 9 22:50:06 2024 GMT Subject: CN=6634189e-5d3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:3e:cd:00:79:d3:6c:44:49:f4:e9:cc:1e:73: 18:5d:8d:b9:6a:70:bb:69:c1:7f:29:a2:d8:d3:9d: ab:5c:65:c8:db:5f:d4:7e:d8:38:66:d5:5a:fd:1a: 57:fa:33:3a:d4:77:cd:38:01:95:77:5c:c2:42:f4: 90:d3:d8:47:11:ee:32:c9:7c:1a:7d:92:8a:35:18: db:76:de:de:0d:bf:20:6c:90:21:e1:7e:2e:cd:67: 99:12:66:d4:8a:5b:ae:ec:96:40:bb:3a:44:f6:39: c7:f2:94:28:bc:b3:5f:82:b4:64:47:c8:52:91:17: ba:c7:f3:83:b5:f2:94:dc:8e:d8:0a:ec:a4:10:c5: a2:e9:09:24:96:79:9b:97:83:37:e3:56:29:3b:dd: bb:73:fe:85:f6:3b:06:13:8d:f0:de:10:33:cf:10: 04:a8:ca:4a:35:6e:01:c1:d1:2a:1b:48:f8:3a:86: ec:6f:fc:44:a4:84:0c:a4:5e:5e:6a:f6:6f:31:6c: 1b:25:1d:53:c5:f2:4d:41:e6:8e:e3:6c:d3:bc:31: 7a:38:25:06:a1:30:e3:ed:c8:3c:6d:db:dc:3b:77: 73:9b:63:e9:80:21:58:9b:fa:27:9d:3c:1e:f8:a4: 2f:ff:e8:bf:76:73:ad:2e:24:1a:b1:b6:02:b7:bf: 10:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:77:3C:3B:7C:C0:86:6C:19:B9:DA:2B:DF:A8:D9:6C:31:1B:56:DF X509v3 Authority Key Identifier: keyid:30:8A:0F:04:23:71:D7:44:E4:CB:62:AB:51:E9:04:F7:0C:AC:D3:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MIoPBCNx10Tky2KrUekE9wys03o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:b7:f0:fc:d1:af:d1:b7:7e:d2:11:0d:5f:6e:c0:fc:c8:7d: 0a:07:f2:73:c9:6a:aa:5d:d1:c1:2e:81:09:9b:ad:df:c8:20: 7f:f9:84:d1:1e:ee:b2:d1:09:8a:75:b3:bb:71:f0:60:9d:ad: 58:bb:00:a6:5b:c1:40:b5:0c:1c:a9:a4:46:9f:43:fd:d7:db: 7b:b9:44:bd:23:81:f8:28:85:ae:b2:ba:b8:c9:7b:c5:27:50: 81:32:8b:ab:ba:77:92:bf:80:dd:24:0e:3d:11:e0:10:c6:9a: ba:88:4b:53:54:dc:ef:3f:09:f6:d8:0b:86:98:3a:b2:10:75: 78:ee:8b:51:fc:38:3d:8a:3a:3a:59:4a:21:98:14:e9:d4:57: e9:47:0a:ce:3d:25:a2:61:93:db:14:bb:79:15:76:8c:fa:91: 3d:28:9e:b3:4a:b0:47:30:4f:70:37:20:1b:51:ef:ac:c1:ac: 9d:14:d1:42:5c:ce:18:1d:f5:41:2e:ab:d9:24:61:e3:a3:8e: bc:11:1f:63:62:83:a9:ab:72:3d:c4:33:17:ee:22:93:9b:e8: 17:c7:f7:2f:d5:20:25:61:78:69:1b:97:8f:3c:65:73:3b:59: 51:0d:a3:c1:85:46:8b:f7:73:7f:75:fa:45:c1:43:17:d0:03: 46:e1:1e:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIyNTIxMTAvBgNVBAUTKDMwOEEwRjA0MjM3MUQ3NDRFNENCNjJBQjUxRTkwNEY3 MENBQ0QzN0EwHhcNMjQwNTAyMjI1MDA2WhcNMjQwNTA5MjI1MDA2WjAYMRYwFAYD VQQDEw02NjM0MTg5ZS01ZDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlD7NAHnTbERJ9OnMHnMYXY25anC7acF/KaLY052rXGXI21/Uftg4ZtVa/RpX +jM61HfNOAGVd1zCQvSQ09hHEe4yyXwafZKKNRjbdt7eDb8gbJAh4X4uzWeZEmbU iluu7JZAuzpE9jnH8pQovLNfgrRkR8hSkRe6x/ODtfKU3I7YCuykEMWi6Qkklnmb l4M341YpO927c/6F9jsGE43w3hAzzxAEqMpKNW4BwdEqG0j4Oobsb/xEpIQMpF5e avZvMWwbJR1TxfJNQeaO42zTvDF6OCUGoTDj7cg8bdvcO3dzm2PpgCFYm/onnTwe +KQv/+i/dnOtLiQasbYCt78QxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBh3PDt8 wIZsGbnaK9+o2WwxG1bfMB8GA1UdIwQYMBaAFDCKDwQjcddE5Mtiq1HpBPcMrNN6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjI1Mi9DNThGOEI3QUY2 M0ExMUVBQjcwQTM2MUZDNEY5QUUwMi9NSW9QQkNOeDEwVGt5MktyVWVrRTl3eXMw M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01Jb1BCQ054MTBUa3kyS3JVZWtFOXd5czAzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjI1Mi9DNThGOEI3QUY2M0ExMUVBQjcwQTM2MUZDNEY5QUUwMi9NSW9QQkNOeDEw VGt5MktyVWVrRTl3eXMwM28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+t/D80a/Rt37SEQ1fbsD8yH0KB/JzyWqqXdHBLoEJm63fyCB/+YTR Hu6y0QmKdbO7cfBgna1YuwCmW8FAtQwcqaRGn0P919t7uUS9I4H4KIWusrq4yXvF J1CBMouruneSv4DdJA49EeAQxpq6iEtTVNzvPwn22AuGmDqyEHV47otR/Dg9ijo6 WUohmBTp1FfpRwrOPSWiYZPbFLt5FXaM+pE9KJ6zSrBHME9wNyAbUe+swaydFNFC XM4YHfVBLqvZJGHjo468ER9jYoOpq3I9xDMX7iKTm+gXx/cv1SAlYXhpG5ePPGVz O1lRDaPBhUaL93N/dfpFwUMX0ANG4R6j -----END CERTIFICATE-----Generated at Thu May 2 23:48:44 2024 by rpki-client on console-fra.rpki-client.org