$ rpki-client -vvf rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft File: 3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft (raw, json) Hash identifier: J532s3GY0o4DebXWyJg9DQ3/R9bzAIhyAuUq6uKtNOE= Subject key identifier: 5E:EB:01:7A:B0:E2:98:E8:72:87:07:A5:FA:0B:C9:26:79:B8:F2:76 Authority key identifier: DC:B8:39:31:9F:D5:2E:AD:9F:CB:97:78:29:84:FD:1F:D4:49:2C:17 Certificate issuer: /CN=A91B569E/serialNumber=DCB839319FD52EAD9FCB97782984FD1FD4492C17 Certificate serial: 012A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft Manifest number: 0127 Signing time: Tue 07 May 2024 05:04:10 +0000 Manifest this update: Tue 07 May 2024 05:04:10 +0000 Manifest next update: Tue 14 May 2024 05:04:10 +0000 Files and hashes: 1: 3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl (hash: wr/9SowDtSIwO79p8/irB94f9QCVwdR+ZzD5utCy7YI=) 2: B6C2A6FE4D2711ED8D49D62FC4F9AE02.roa (hash: cGKzPRi4qpFTDp9AsYpCH0KUskozh5GY9aPuYwuAisU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 05:04:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B569E/serialNumber=DCB839319FD52EAD9FCB97782984FD1FD4492C17 Validity Not Before: May 7 05:04:10 2024 GMT Not After : May 14 05:04:10 2024 GMT Subject: CN=6639b64a-6e75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:6a:34:70:6c:b2:e9:46:cf:22:cd:6b:22:f0: b3:12:f2:29:9f:30:84:91:ad:1b:d8:8a:13:07:45: 66:cc:7a:50:cd:71:b3:e0:ec:60:b1:fc:c3:aa:70: d6:63:2b:ed:04:c6:0f:e0:a3:4b:e5:d5:22:b4:01: 9f:b2:bf:53:02:0a:55:4f:90:7c:fd:c0:fd:11:b7: 01:84:03:5a:28:5c:48:c0:66:b3:98:69:fc:66:dd: 7b:f4:5e:a8:16:79:49:d5:ee:d2:e6:ec:e9:e4:d6: 5a:27:61:57:03:b7:e8:47:8e:dc:f1:e1:c3:96:70: ad:e6:aa:6e:1c:22:f4:33:58:a1:d7:b9:87:00:c2: 5e:0e:37:e7:44:8d:cc:61:5b:e8:89:f6:b6:01:8c: 6e:ef:33:c4:7f:26:3e:e1:5f:72:dd:da:63:80:49: b5:b2:62:f4:73:f1:e7:37:58:48:50:6b:33:15:d1: 51:9d:ac:97:f6:e8:02:bf:d7:96:e1:36:a7:6a:8f: c6:08:87:fc:b0:02:0c:4f:20:ca:65:b8:a9:25:a3: a0:b8:76:1a:68:ae:d1:6d:05:1a:05:36:9a:92:a2: 22:6f:5e:07:88:ec:39:94:b4:8f:39:0d:06:01:0e: 91:18:e3:70:65:c7:cd:2d:53:d7:ff:0d:69:85:a9: 46:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:EB:01:7A:B0:E2:98:E8:72:87:07:A5:FA:0B:C9:26:79:B8:F2:76 X509v3 Authority Key Identifier: keyid:DC:B8:39:31:9F:D5:2E:AD:9F:CB:97:78:29:84:FD:1F:D4:49:2C:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:82:68:e4:a2:d5:eb:32:23:f1:d4:f7:7c:d0:4a:ae:5a:cf: 61:97:b3:6a:48:cf:5e:d8:1f:43:54:2a:f9:ab:d1:1b:d1:84: eb:d0:85:d9:2b:72:dd:5e:21:3e:33:8e:65:4b:60:3c:ce:bb: ab:88:05:a4:0f:4e:54:84:35:84:5d:4e:4f:e8:7f:2f:1a:ac: 95:74:20:08:61:ce:32:ac:21:09:ca:b6:7c:97:b3:d6:36:cd: fe:a0:70:b3:24:10:ae:ca:43:67:98:54:0d:72:b6:27:3e:fa: cc:7d:4b:ed:50:4d:58:3b:44:36:28:ee:47:67:8f:35:9e:6a: 8e:09:c9:d7:56:a4:22:6d:11:02:f1:6a:21:ed:a6:cc:d5:dd: 49:fa:9d:8a:c0:40:10:f2:f9:18:d4:04:17:09:f6:bd:67:3b: 74:72:d7:f3:b2:64:e7:28:b1:19:04:7c:34:3c:97:2c:b3:8d: a0:ad:13:a6:ed:a8:fe:c5:40:2a:d9:c4:dd:68:5d:81:41:9c: 07:a8:b5:62:bc:34:96:8b:41:a0:d1:19:99:a4:94:95:a4:45: 0e:13:68:e9:39:f8:50:6f:7c:86:6b:48:a0:02:0e:85:93:3f: 56:3c:2b:22:8f:d6:12:eb:45:37:5e:b9:da:29:31:86:4f:39: b1:77:a5:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU2OUUxMTAvBgNVBAUTKERDQjgzOTMxOUZENTJFQUQ5RkNCOTc3ODI5ODRGRDFG RDQ0OTJDMTcwHhcNMjQwNTA3MDUwNDEwWhcNMjQwNTE0MDUwNDEwWjAYMRYwFAYD VQQDEw02NjM5YjY0YS02ZTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0mo0cGyy6UbPIs1rIvCzEvIpnzCEka0b2IoTB0VmzHpQzXGz4OxgsfzDqnDW YyvtBMYP4KNL5dUitAGfsr9TAgpVT5B8/cD9EbcBhANaKFxIwGazmGn8Zt179F6o FnlJ1e7S5uzp5NZaJ2FXA7foR47c8eHDlnCt5qpuHCL0M1ih17mHAMJeDjfnRI3M YVvoifa2AYxu7zPEfyY+4V9y3dpjgEm1smL0c/HnN1hIUGszFdFRnayX9ugCv9eW 4Tanao/GCIf8sAIMTyDKZbipJaOguHYaaK7RbQUaBTaakqIib14HiOw5lLSPOQ0G AQ6RGONwZcfNLVPX/w1phalGeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF7rAXqw 4pjococHpfoLySZ5uPJ2MB8GA1UdIwQYMBaAFNy4OTGf1S6tn8uXeCmE/R/USSwX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTY5RS8yNTI1QzdDODRE MjUxMUVEQTZEREQyMkVDNEY5QUUwMi8zTGc1TVpfVkxxMmZ5NWQ0S1lUOUg5UkpM QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNMZzVNWl9WTHEyZnk1ZDRLWVQ5SDlSSkxCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTY5RS8yNTI1QzdDODREMjUxMUVEQTZEREQyMkVDNEY5QUUwMi8zTGc1TVpfVkxx MmZ5NWQ0S1lUOUg5UkpMQmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmgmjkotXrMiPx1Pd80EquWs9hl7NqSM9e2B9DVCr5q9Eb0YTr0IXZ K3LdXiE+M45lS2A8zruriAWkD05UhDWEXU5P6H8vGqyVdCAIYc4yrCEJyrZ8l7PW Ns3+oHCzJBCuykNnmFQNcrYnPvrMfUvtUE1YO0Q2KO5HZ481nmqOCcnXVqQibREC 8Woh7abM1d1J+p2KwEAQ8vkY1AQXCfa9Zzt0ctfzsmTnKLEZBHw0PJcss42grROm 7aj+xUAq2cTdaF2BQZwHqLVivDSWi0Gg0RmZpJSVpEUOE2jpOfhQb3yGa0igAg6F kz9WPCsij9YS60U3XrnaKTGGTzmxd6Wb -----END CERTIFICATE-----Generated at Tue May 7 05:40:30 2024 by rpki-client on console-fra.rpki-client.org