$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.mft File: 3PVHDFyHgojWHZ6lpRXVhQ57WHM.mft (raw, json) Hash identifier: qS5j+26UjOH5h7CZ/yNdUGHFNSmfTbugGBj1I6Z0xqY= Subject key identifier: 8A:60:51:0B:7C:2E:0F:1B:8B:3E:7D:18:70:AC:A3:63:94:B8:A9:0C Authority key identifier: DC:F5:47:0C:5C:87:82:88:D6:1D:9E:A5:A5:15:D5:85:0E:7B:58:73 Certificate issuer: /CN=A91B5AAA/serialNumber=DCF5470C5C878288D61D9EA5A515D5850E7B5873 Certificate serial: 0A73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.mft Manifest number: 3E2C Signing time: Thu 02 May 2024 14:56:12 +0000 Manifest this update: Thu 02 May 2024 14:56:11 +0000 Manifest next update: Thu 09 May 2024 14:56:11 +0000 Files and hashes: 1: 3PVHDFyHgojWHZ6lpRXVhQ57WHM.crl (hash: HboX/WH/6yWSS1XbECoSW6MvQMNe/TbdrGI1mvhqztY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.crl rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 14:56:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2675 (0xa73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5AAA/serialNumber=DCF5470C5C878288D61D9EA5A515D5850E7B5873 Validity Not Before: May 2 14:56:11 2024 GMT Not After : May 9 14:56:11 2024 GMT Subject: CN=6633a98b-1ea2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f2:1f:55:5d:d0:e7:78:b1:d1:a6:e9:43:07: 51:33:bc:c7:51:69:59:ae:1e:a3:b4:6b:1c:57:48: 48:47:72:99:47:b3:d3:ac:5f:d9:54:14:3b:01:55: 84:d1:ee:bd:7e:c2:7b:c8:30:65:d6:9a:83:7b:da: 9d:9f:92:aa:e8:40:e8:50:0f:2a:6b:e7:52:3b:42: 49:4e:8b:6c:aa:d0:1b:7e:f1:7e:43:bc:2d:a2:f7: 64:f0:ab:06:fc:99:fe:5f:fb:37:e7:a8:22:39:64: 3e:6f:d9:c4:9a:25:42:ac:6a:1f:5d:7b:53:e8:79: b0:07:a1:a2:5a:bf:7e:cc:ae:85:c0:35:ce:c9:d1: f9:bc:33:50:73:01:2f:a3:dc:04:ef:8f:45:66:f6: 74:b2:c6:d6:16:0f:dc:98:f6:c3:d0:b0:63:5f:bc: e4:86:83:b2:fc:2c:42:60:a5:39:0c:99:02:ce:dc: 6b:9d:02:9a:6e:24:9e:1e:9b:25:d9:8c:c5:05:1e: ad:8b:66:26:e6:d0:83:94:db:00:71:91:3c:e5:b8: 0c:31:b2:02:27:57:90:05:21:42:7b:51:1d:da:ec: 37:7d:f7:b3:29:29:68:cd:ec:ca:72:dc:69:8b:40: 38:0c:06:bc:be:43:62:65:d8:12:81:6e:5f:80:83: e0:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:60:51:0B:7C:2E:0F:1B:8B:3E:7D:18:70:AC:A3:63:94:B8:A9:0C X509v3 Authority Key Identifier: keyid:DC:F5:47:0C:5C:87:82:88:D6:1D:9E:A5:A5:15:D5:85:0E:7B:58:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:23:25:e7:23:39:37:4a:d9:ec:76:51:ab:7b:a8:6d:83:9b: bc:44:0c:ea:68:df:4c:1c:a2:19:31:a9:eb:70:96:56:3d:d8: 97:8d:d9:bf:c1:59:0e:f6:95:dd:9b:a3:fe:59:e0:a5:c6:7e: 91:30:37:21:8f:33:be:79:44:bb:6e:37:bc:14:6b:5b:6d:84: 4b:cd:82:cd:48:59:9c:3a:3a:44:fe:1a:f3:86:c5:5b:d0:3b: f9:5d:ab:bd:31:a5:2b:6f:90:d0:29:bb:a2:47:85:1b:54:43: 8e:25:37:05:0d:83:65:10:e8:af:a7:ac:5f:95:a8:16:af:c6: 61:ce:42:6c:e7:f7:cc:83:3b:03:ff:d5:63:28:1b:cb:c0:3d: d9:55:5e:4f:fa:a5:e4:66:27:22:cc:11:8a:44:89:f9:a6:3c: ba:e9:48:56:c1:9e:e5:21:ee:41:09:31:49:6c:21:89:3b:bf: 2a:41:93:b2:5a:de:38:9a:cf:2b:85:b5:5f:a6:52:0d:80:6b: 53:f8:49:7b:0c:da:64:f4:39:0e:44:70:d8:6b:84:c5:c1:84: 08:d7:81:c0:aa:57:5d:64:fa:27:06:11:99:92:8a:f7:57:57: 90:99:4d:f9:16:c0:16:2b:75:26:1e:b6:d6:83:27:3d:de:98: 0a:b9:2c:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVBQUExMTAvBgNVBAUTKERDRjU0NzBDNUM4NzgyODhENjFEOUVBNUE1MTVENTg1 MEU3QjU4NzMwHhcNMjQwNTAyMTQ1NjExWhcNMjQwNTA5MTQ1NjExWjAYMRYwFAYD VQQDEw02NjMzYTk4Yi0xZWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/IfVV3Q53ix0abpQwdRM7zHUWlZrh6jtGscV0hIR3KZR7PTrF/ZVBQ7AVWE 0e69fsJ7yDBl1pqDe9qdn5Kq6EDoUA8qa+dSO0JJTotsqtAbfvF+Q7wtovdk8KsG /Jn+X/s356giOWQ+b9nEmiVCrGofXXtT6HmwB6GiWr9+zK6FwDXOydH5vDNQcwEv o9wE749FZvZ0ssbWFg/cmPbD0LBjX7zkhoOy/CxCYKU5DJkCztxrnQKabiSeHpsl 2YzFBR6ti2Ym5tCDlNsAcZE85bgMMbICJ1eQBSFCe1Ed2uw3ffezKSlozezKctxp i0A4DAa8vkNiZdgSgW5fgIPgIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIpgUQt8 Lg8biz59GHCso2OUuKkMMB8GA1UdIwQYMBaAFNz1Rwxch4KI1h2epaUV1YUOe1hz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUFBQS84RjU4OTI5NDFE OTUxMUUyQTk4QTlBN0QwOEIwMkNEMi8zUFZIREZ5SGdvaldIWjZscFJYVmhRNTdX SE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNQVkhERnlIZ29qV0haNmxwUlhWaFE1N1dITS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUFBQS84RjU4OTI5NDFEOTUxMUUyQTk4QTlBN0QwOEIwMkNEMi8zUFZIREZ5SGdv aldIWjZscFJYVmhRNTdXSE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlIyXnIzk3StnsdlGre6htg5u8RAzqaN9MHKIZManrcJZWPdiXjdm/ wVkO9pXdm6P+WeClxn6RMDchjzO+eUS7bje8FGtbbYRLzYLNSFmcOjpE/hrzhsVb 0Dv5Xau9MaUrb5DQKbuiR4UbVEOOJTcFDYNlEOivp6xflagWr8ZhzkJs5/fMgzsD /9VjKBvLwD3ZVV5P+qXkZicizBGKRIn5pjy66UhWwZ7lIe5BCTFJbCGJO78qQZOy Wt44ms8rhbVfplINgGtT+El7DNpk9DkORHDYa4TFwYQI14HAqlddZPonBhGZkor3 V1eQmU35FsAWK3UmHrbWgyc93pgKuSzV -----END CERTIFICATE-----Generated at Thu May 2 17:43:49 2024 by rpki-client on console-fra.rpki-client.org