$ rpki-client -vvf rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft File: L4dzyVEFOxQ4vCfsxV45KvteK7I.mft (raw, json) Hash identifier: prTKS5796cnJjXaM8ILmm+v7C6KJgTfJnPxfjeA053I= Subject key identifier: 95:4B:B2:15:10:CD:CA:6A:C2:B1:9E:C3:2B:6A:6C:F0:0E:17:FC:01 Authority key identifier: 2F:87:73:C9:51:05:3B:14:38:BC:27:EC:C5:5E:39:2A:FB:5E:2B:B2 Certificate issuer: /CN=A91B56F0/serialNumber=2F8773C951053B1438BC27ECC55E392AFB5E2BB2 Certificate serial: 0A99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft Manifest number: 0A87 Signing time: Fri 31 May 2024 20:54:40 +0000 Manifest this update: Fri 31 May 2024 20:54:39 +0000 Manifest next update: Fri 07 Jun 2024 20:54:39 +0000 Files and hashes: 1: L4dzyVEFOxQ4vCfsxV45KvteK7I.crl (hash: mT5zGCnz/S2JAl4mcticH+kWPF/Oy17POYvXtzAFfdc=) 2: 84AC17989B0811EDB5FDAF75C4F9AE02.roa (hash: an8QcsqIykDysnx8UEP31FBu3+zGjozR3RM/gYXKosU=) 3: 837821AA9B0811EDB5FDAF75C4F9AE02.roa (hash: 6R58DKIp51BCGrrBGGy8fHU/1OuIVYOlSAZ5sOx4nqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.crl rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 20:54:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2713 (0xa99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B56F0/serialNumber=2F8773C951053B1438BC27ECC55E392AFB5E2BB2 Validity Not Before: May 31 20:54:39 2024 GMT Not After : Jun 7 20:54:39 2024 GMT Subject: CN=665a390f-148f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:60:9c:17:fc:55:99:64:6e:33:a7:63:0a:93: e4:17:18:ee:28:75:ae:1b:28:f9:97:60:d9:7b:46: 70:bd:12:86:ab:66:2a:03:18:b1:93:a1:02:5d:63: ae:87:80:34:16:0b:99:10:c6:e8:5a:e8:77:2b:c4: ac:4b:71:14:8c:b4:b7:e9:45:07:b4:2d:68:df:7d: 4b:5c:71:93:30:b3:f8:38:45:d8:3a:4a:28:e2:9d: ce:ff:39:26:18:0c:de:d0:0f:ff:25:ad:30:a5:39: 2a:df:16:f5:0f:51:3d:0a:df:43:ba:5a:88:d1:64: da:f4:41:42:2f:bb:b2:56:93:f0:21:a0:0e:88:79: 29:d8:4f:78:eb:01:50:ea:dd:89:cf:6f:43:a6:fd: 50:28:b2:8d:17:10:90:e0:27:e8:4d:84:0b:35:e7: b2:e4:c7:4e:64:c7:68:a4:76:51:de:1c:18:6d:ce: c8:c2:9d:d4:cd:18:41:4a:58:a2:5d:6e:56:b5:80: 7e:87:06:9a:20:4a:95:8f:85:16:0c:d4:d1:60:95: 5f:a8:96:d8:c9:bf:02:77:e4:75:51:98:0c:1e:c9: 50:69:93:03:dc:4c:83:fd:c7:94:77:dc:77:37:ad: ec:85:34:5e:4b:09:02:aa:2b:f8:52:9c:20:00:f8: b4:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:4B:B2:15:10:CD:CA:6A:C2:B1:9E:C3:2B:6A:6C:F0:0E:17:FC:01 X509v3 Authority Key Identifier: keyid:2F:87:73:C9:51:05:3B:14:38:BC:27:EC:C5:5E:39:2A:FB:5E:2B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:80:c8:e9:d9:b5:32:05:31:bd:ba:29:ed:7d:59:83:c3:71: 6f:c1:c6:1d:d4:2c:1a:9f:97:d1:a8:4e:2e:7c:77:f9:13:96: c0:1f:f0:0a:03:e8:c3:98:77:8e:b2:12:4c:a3:83:b0:0b:28: 8a:f5:e8:b4:3f:23:74:eb:64:44:ea:d2:84:db:a8:7b:4b:d1: 4b:4a:7e:38:ea:fd:c3:2e:c8:19:47:5c:23:cc:7f:01:c9:c8: e3:5a:89:09:ce:5c:3c:1c:b2:60:b1:46:b5:79:90:60:ac:1c: c5:e6:9c:c7:d8:aa:5d:6b:9c:7e:9b:15:f8:a7:75:44:5e:1f: ed:99:33:77:a5:99:4b:f7:89:1b:6d:0b:75:64:1f:38:85:e9: 65:f9:0a:59:c9:a3:78:b3:93:dc:9a:56:80:9c:69:1b:db:30: 09:35:48:c9:2b:9e:0b:03:38:50:2a:df:3f:41:e7:7a:5f:61: 3d:0e:f3:43:60:45:11:1a:27:9b:ec:0e:72:13:51:b9:f8:b4: 33:c7:f6:ca:df:22:1a:60:27:d4:c6:ca:0f:9c:c5:45:57:0c: 46:a6:86:1a:f5:62:47:b9:1b:30:11:ae:12:94:94:89:37:2f: d2:66:a9:18:36:81:47:91:e0:b7:6b:d3:a9:d7:96:6e:0c:ef: a9:89:a2:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCpkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU2RjAxMTAvBgNVBAUTKDJGODc3M0M5NTEwNTNCMTQzOEJDMjdFQ0M1NUUzOTJB RkI1RTJCQjIwHhcNMjQwNTMxMjA1NDM5WhcNMjQwNjA3MjA1NDM5WjAYMRYwFAYD VQQDEw02NjVhMzkwZi0xNDhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGCcF/xVmWRuM6djCpPkFxjuKHWuGyj5l2DZe0ZwvRKGq2YqAxixk6ECXWOu h4A0FguZEMboWuh3K8SsS3EUjLS36UUHtC1o331LXHGTMLP4OEXYOkoo4p3O/zkm GAze0A//Ja0wpTkq3xb1D1E9Ct9DulqI0WTa9EFCL7uyVpPwIaAOiHkp2E946wFQ 6t2Jz29Dpv1QKLKNFxCQ4CfoTYQLNeey5MdOZMdopHZR3hwYbc7Iwp3UzRhBSlii XW5WtYB+hwaaIEqVj4UWDNTRYJVfqJbYyb8Cd+R1UZgMHslQaZMD3EyD/ceUd9x3 N63shTReSwkCqiv4UpwgAPi0NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJVLshUQ zcpqwrGewytqbPAOF/wBMB8GA1UdIwQYMBaAFC+Hc8lRBTsUOLwn7MVeOSr7Xiuy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTZGMC83RDY3RTRENDM4 NEMxMUVBQkVBMkRCNzFDNEY5QUUwMi9MNGR6eVZFRk94UTR2Q2ZzeFY0NUt2dGVL N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w0ZHp5VkVGT3hRNHZDZnN4VjQ1S3Z0ZUs3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTZGMC83RDY3RTRENDM4NEMxMUVBQkVBMkRCNzFDNEY5QUUwMi9MNGR6eVZFRk94 UTR2Q2ZzeFY0NUt2dGVLN0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBugMjp2bUyBTG9uintfVmDw3FvwcYd1Cwan5fRqE4ufHf5E5bAH/AK A+jDmHeOshJMo4OwCyiK9ei0PyN062RE6tKE26h7S9FLSn446v3DLsgZR1wjzH8B ycjjWokJzlw8HLJgsUa1eZBgrBzF5pzH2Kpda5x+mxX4p3VEXh/tmTN3pZlL94kb bQt1ZB84hell+QpZyaN4s5PcmlaAnGkb2zAJNUjJK54LAzhQKt8/Qed6X2E9DvND YEURGieb7A5yE1G5+LQzx/bK3yIaYCfUxsoPnMVFVwxGpoYa9WJHuRswEa4SlJSJ Ny/SZqkYNoFHkeC3a9Op15ZuDO+piaID -----END CERTIFICATE-----Generated at Fri May 31 22:13:10 2024 by rpki-client on console-fra.rpki-client.org