$ rpki-client -vvf rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.mft File: 23LIuvHa9pOYGFLuAyIwMF7ICRA.mft (raw, json) Hash identifier: E9SSdvlnU9CPO/IaA0lAvWea9rSPrSHFWs/Iwq+3c74= Subject key identifier: 0D:8C:85:52:96:7C:44:88:4F:EC:93:5E:C8:D8:86:30:D7:79:DC:16 Authority key identifier: DB:72:C8:BA:F1:DA:F6:93:98:18:52:EE:03:22:30:30:5E:C8:09:10 Certificate issuer: /CN=A91B289C/serialNumber=DB72C8BAF1DAF693981852EE032230305EC80910 Certificate serial: 07D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23LIuvHa9pOYGFLuAyIwMF7ICRA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.mft Manifest number: 07CC Signing time: Mon 06 May 2024 22:07:01 +0000 Manifest this update: Mon 06 May 2024 22:07:00 +0000 Manifest next update: Mon 13 May 2024 22:07:00 +0000 Files and hashes: 1: 23LIuvHa9pOYGFLuAyIwMF7ICRA.crl (hash: K+s3vSTaeKsqYpqtvkJHEhD0oES3jwAfsgH5evC1INQ=) 2: E6F3687CBCE711EAACD6466CC4F9AE02.roa (hash: kEjhsheyDbIM2EcMESQDDEPLTz/Beye9fTIUh7y/Pco=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.crl rsync://rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23LIuvHa9pOYGFLuAyIwMF7ICRA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 22:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2002 (0x7d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B289C/serialNumber=DB72C8BAF1DAF693981852EE032230305EC80910 Validity Not Before: May 6 22:07:00 2024 GMT Not After : May 13 22:07:00 2024 GMT Subject: CN=66395484-a8f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:6d:9e:43:2e:d4:51:89:e6:c2:3c:db:33:e7: 13:b7:5f:62:52:ea:bc:c7:11:f3:32:14:01:57:bb: 4d:26:c6:5d:b5:e0:92:73:ca:d6:4c:11:81:b5:69: 4f:84:30:97:3a:de:d4:b7:ea:49:33:a9:68:16:ab: f3:af:5d:43:f6:6f:78:08:02:5a:fc:50:fd:cf:31: af:7d:22:9b:4a:d6:8b:e7:95:48:6b:07:aa:b5:a2: 57:a8:2e:6b:93:4a:76:2a:89:2d:59:e6:b0:61:06: 37:ee:54:a1:66:79:09:0c:9e:53:b5:22:75:3e:28: 64:0a:74:9c:98:ef:84:b1:0f:07:43:9f:dc:8a:1e: 02:65:48:17:34:a9:a4:b3:95:6c:01:3a:fa:3b:f6: b3:3a:b1:26:6e:34:c7:ad:3c:bd:26:53:00:f8:31: 94:ab:e4:c1:c5:38:66:c5:e1:07:9a:f4:e9:d0:dc: c0:64:52:30:eb:0d:35:f6:dd:a3:33:d2:cb:97:77: d6:33:f4:ea:c2:1b:68:3a:69:2c:f8:3e:b7:50:8c: ca:ff:3c:fc:72:79:b9:31:16:a3:e4:85:63:22:20: af:9f:d0:cb:c1:27:c1:c6:27:8c:20:36:04:98:d8: 13:2b:14:7a:2e:c6:52:1b:fc:ad:1b:a3:69:7b:c4: 8f:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:8C:85:52:96:7C:44:88:4F:EC:93:5E:C8:D8:86:30:D7:79:DC:16 X509v3 Authority Key Identifier: keyid:DB:72:C8:BA:F1:DA:F6:93:98:18:52:EE:03:22:30:30:5E:C8:09:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23LIuvHa9pOYGFLuAyIwMF7ICRA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:cf:36:10:ea:35:ba:26:34:a6:f7:e5:8c:c2:bb:10:70:ca: de:1c:a6:77:0e:27:e4:57:c4:e1:56:1f:8d:27:06:d4:48:3e: 97:da:f2:8d:3c:64:00:f0:53:52:a4:ee:ca:02:a2:5a:9b:57: db:8c:de:e4:ef:07:cf:5a:1d:8b:c2:d3:0a:ed:4a:90:47:97: a1:4f:1f:cc:cd:5e:0d:18:8f:33:a1:56:72:36:95:28:e5:22: b8:eb:08:42:d0:0c:4f:72:55:92:97:da:fb:e8:c1:04:c2:f4: 31:e3:0b:96:e2:c5:8a:f7:7e:84:c5:ea:96:28:6e:5c:18:86: 36:0e:dc:bf:0f:d4:bb:6b:dc:f5:a3:e0:4b:d6:7c:80:bb:65: 2e:b9:79:f6:f2:3a:48:35:d8:76:bd:aa:98:85:f4:93:d8:e7: 39:e8:6f:47:48:c1:d5:37:2b:4b:21:e4:ae:11:14:21:4a:84: 0e:07:0a:4d:e6:44:c9:79:14:e8:09:8b:db:59:06:43:c8:f9: 6f:86:c2:c8:4b:ad:87:0f:42:f6:15:57:18:2f:dc:04:2e:39: 98:cc:98:45:6b:20:66:ec:5e:91:77:84:dd:2e:42:ad:76:e4: e0:8a:d6:a4:7b:6d:f8:92:9d:f3:d7:5d:40:26:51:c2:59:40: df:96:41:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI4OUMxMTAvBgNVBAUTKERCNzJDOEJBRjFEQUY2OTM5ODE4NTJFRTAzMjIzMDMw NUVDODA5MTAwHhcNMjQwNTA2MjIwNzAwWhcNMjQwNTEzMjIwNzAwWjAYMRYwFAYD VQQDEw02NjM5NTQ4NC1hOGYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt22eQy7UUYnmwjzbM+cTt19iUuq8xxHzMhQBV7tNJsZdteCSc8rWTBGBtWlP hDCXOt7Ut+pJM6loFqvzr11D9m94CAJa/FD9zzGvfSKbStaL55VIaweqtaJXqC5r k0p2KoktWeawYQY37lShZnkJDJ5TtSJ1PihkCnScmO+EsQ8HQ5/cih4CZUgXNKmk s5VsATr6O/azOrEmbjTHrTy9JlMA+DGUq+TBxThmxeEHmvTp0NzAZFIw6w019t2j M9LLl3fWM/TqwhtoOmks+D63UIzK/zz8cnm5MRaj5IVjIiCvn9DLwSfBxieMIDYE mNgTKxR6LsZSG/ytG6Npe8SPlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA2MhVKW fESIT+yTXsjYhjDXedwWMB8GA1UdIwQYMBaAFNtyyLrx2vaTmBhS7gMiMDBeyAkQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjg5Qy8zQUIxRTJEQ0JD RTcxMUVBQkU5NzJDNkNDNEY5QUUwMi8yM0xJdXZIYTlwT1lHRkx1QXlJd01GN0lD UkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzIzTEl1dkhhOXBPWUdGTHVBeUl3TUY3SUNSQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Mjg5Qy8zQUIxRTJEQ0JDRTcxMUVBQkU5NzJDNkNDNEY5QUUwMi8yM0xJdXZIYTlw T1lHRkx1QXlJd01GN0lDUkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAczzYQ6jW6JjSm9+WMwrsQcMreHKZ3DifkV8ThVh+NJwbUSD6X2vKN PGQA8FNSpO7KAqJam1fbjN7k7wfPWh2LwtMK7UqQR5ehTx/MzV4NGI8zoVZyNpUo 5SK46whC0AxPclWSl9r76MEEwvQx4wuW4sWK936ExeqWKG5cGIY2Dty/D9S7a9z1 o+BL1nyAu2UuuXn28jpINdh2vaqYhfST2Oc56G9HSMHVNytLIeSuERQhSoQOBwpN 5kTJeRToCYvbWQZDyPlvhsLIS62HD0L2FVcYL9wELjmYzJhFayBm7F6Rd4TdLkKt duTgitake234kp3z111AJlHCWUDflkFY -----END CERTIFICATE-----Generated at Mon May 6 23:05:48 2024 by rpki-client on console-fra.rpki-client.org