$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft File: _i41K0L3TxDVdoNTA6LpeOHEN7Y.mft (raw, json) Hash identifier: wNSB0dmvISIrpQ610AA+J23LU9V8CDUe1YF0nnrbCBI= Subject key identifier: FC:E5:13:67:02:37:24:F9:8A:33:CB:5D:04:47:B5:73:F6:DB:C6:73 Authority key identifier: FE:2E:35:2B:42:F7:4F:10:D5:76:83:53:03:A2:E9:78:E1:C4:37:B6 Certificate issuer: /CN=A91B5CC0/serialNumber=FE2E352B42F74F10D576835303A2E978E1C437B6 Certificate serial: 0122 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft Manifest number: 0120 Signing time: Mon 29 Apr 2024 05:03:02 +0000 Manifest this update: Mon 29 Apr 2024 05:03:02 +0000 Manifest next update: Mon 06 May 2024 05:03:02 +0000 Files and hashes: 1: _i41K0L3TxDVdoNTA6LpeOHEN7Y.crl (hash: V+b8GwIadKNn55/upNO6xsHYVYi3XH4gDNYuCp0JfxM=) 2: FA13BAAC504611ED9AE40711C4F9AE02.roa (hash: YhSlc/HjraVc9wYkhpQiowNiPND19VQCxvWQLZNe5s0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.crl rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 05:02:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5CC0/serialNumber=FE2E352B42F74F10D576835303A2E978E1C437B6 Validity Not Before: Apr 29 05:03:02 2024 GMT Not After : May 6 05:03:02 2024 GMT Subject: CN=662f2a06-d857 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ef:6c:70:7d:40:b5:6e:36:10:43:c4:98:de: 2e:e5:e4:77:51:aa:76:f9:e1:3a:93:0b:3b:e0:f3: 6a:aa:13:e6:12:6e:dc:91:5d:47:fc:6c:6e:90:4e: 17:b7:1b:1c:8e:b3:90:20:40:0c:95:39:c4:54:21: 21:3e:cf:04:4a:ec:3a:69:f9:5f:5e:b1:a0:e6:92: bd:38:39:6a:96:6b:0c:a8:41:73:04:6f:2b:14:6b: 1b:dd:fe:47:a5:b6:a4:2e:6d:7c:86:e3:2c:f4:f0: 98:51:be:23:0f:50:38:d9:5d:8d:4a:8b:1e:16:2a: 32:f6:e2:0d:35:83:fc:f3:ca:64:68:cb:5a:42:1e: 03:cc:c2:df:d0:eb:1a:1a:18:a2:12:1d:6c:43:cf: 6a:e8:a6:bc:a5:bf:bb:8a:4e:9a:c0:ad:42:c3:29: 89:0d:2c:63:b9:33:45:17:af:c5:b1:ac:35:d0:fa: 9b:f5:73:97:43:7d:1a:57:6e:cd:de:17:51:f5:0a: fb:f8:7a:e6:81:f2:c6:ed:45:71:c3:5a:95:62:46: 6d:31:ba:70:c9:57:f8:01:6c:09:a4:de:13:0b:a0: 0f:1e:33:6c:09:6d:5d:fb:fe:1a:69:c0:8f:45:e5: 82:09:11:f4:dc:e6:f2:3b:cc:92:4c:0f:b6:34:9f: 70:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:E5:13:67:02:37:24:F9:8A:33:CB:5D:04:47:B5:73:F6:DB:C6:73 X509v3 Authority Key Identifier: keyid:FE:2E:35:2B:42:F7:4F:10:D5:76:83:53:03:A2:E9:78:E1:C4:37:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:c8:06:fc:5f:88:6d:98:b3:ec:6b:1c:f0:bc:4a:6b:c9:cd: b8:52:21:39:3d:da:cd:df:c8:31:89:db:8b:35:f1:7d:47:d8: 4e:b4:41:13:a1:8e:91:53:c7:9d:82:6c:b5:8b:f6:63:1f:6b: a9:80:6d:5c:7a:fe:b0:f9:64:e8:e3:69:3d:fe:bf:11:77:2f: 28:94:7a:2b:29:b4:c5:47:c1:89:1d:f6:2a:ef:6d:5d:f3:da: 21:1b:3a:86:87:4e:90:99:22:c6:54:4e:3e:2b:7d:73:99:d5: e3:8b:1e:db:bc:d2:04:6f:f5:c7:fb:d2:06:c3:07:cf:d7:51: 7d:f2:cc:65:d3:44:89:26:80:8b:19:3e:5c:a2:80:aa:5e:66: 43:a9:1d:71:44:b5:e2:14:82:52:d4:74:61:23:90:75:21:66: f8:4d:a3:20:fa:1a:c7:6a:2a:33:b0:b8:ca:1d:d2:b0:85:03: 39:28:a8:02:b0:64:41:4f:4e:ee:92:4c:4f:22:20:c6:9a:71: 12:4d:81:02:49:97:91:bc:3a:49:c8:7f:8e:ec:95:af:c5:45: c2:4b:51:5f:83:d4:de:d7:bd:e7:b8:9b:86:bf:91:af:d0:c3: e6:cd:0c:8d:9d:bf:8c:1d:cd:35:4f:91:09:de:b1:be:fc:79: 7f:9a:c1:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDQzAxMTAvBgNVBAUTKEZFMkUzNTJCNDJGNzRGMTBENTc2ODM1MzAzQTJFOTc4 RTFDNDM3QjYwHhcNMjQwNDI5MDUwMzAyWhcNMjQwNTA2MDUwMzAyWjAYMRYwFAYD VQQDEw02NjJmMmEwNi1kODU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAve9scH1AtW42EEPEmN4u5eR3Uap2+eE6kws74PNqqhPmEm7ckV1H/GxukE4X txscjrOQIEAMlTnEVCEhPs8ESuw6aflfXrGg5pK9ODlqlmsMqEFzBG8rFGsb3f5H pbakLm18huMs9PCYUb4jD1A42V2NSoseFioy9uINNYP888pkaMtaQh4DzMLf0Osa GhiiEh1sQ89q6Ka8pb+7ik6awK1CwymJDSxjuTNFF6/Fsaw10Pqb9XOXQ30aV27N 3hdR9Qr7+HrmgfLG7UVxw1qVYkZtMbpwyVf4AWwJpN4TC6APHjNsCW1d+/4aacCP ReWCCRH03ObyO8ySTA+2NJ9wXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPzlE2cC NyT5ijPLXQRHtXP228ZzMB8GA1UdIwQYMBaAFP4uNStC908Q1XaDUwOi6XjhxDe2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUNDMC9DRkE3OUYxQTUw M0YxMUVEODFEMDc1NkJDNEY5QUUwMi9faTQxSzBMM1R4RFZkb05UQTZMcGVPSEVO N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19pNDFLMEwzVHhEVmRvTlRBNkxwZU9IRU43WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUNDMC9DRkE3OUYxQTUwM0YxMUVEODFEMDc1NkJDNEY5QUUwMi9faTQxSzBMM1R4 RFZkb05UQTZMcGVPSEVON1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPyAb8X4htmLPsaxzwvEpryc24UiE5PdrN38gxiduLNfF9R9hOtEET oY6RU8edgmy1i/ZjH2upgG1cev6w+WTo42k9/r8Rdy8olHorKbTFR8GJHfYq721d 89ohGzqGh06QmSLGVE4+K31zmdXjix7bvNIEb/XH+9IGwwfP11F98sxl00SJJoCL GT5cooCqXmZDqR1xRLXiFIJS1HRhI5B1IWb4TaMg+hrHaiozsLjKHdKwhQM5KKgC sGRBT07ukkxPIiDGmnESTYECSZeRvDpJyH+O7JWvxUXCS1Ffg9Te173nuJuGv5Gv 0MPmzQyNnb+MHc01T5EJ3rG+/Hl/msH8 -----END CERTIFICATE-----Generated at Mon Apr 29 05:42:06 2024 by rpki-client on console-fra.rpki-client.org