$ rpki-client -vvf rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft File: 07yEKALa0i1cMMKCZffRCL1HjnA.mft (raw, json) Hash identifier: JQ7lkuYg2zWM8D2RII8WHuoBRMbUvt5jyaeJ2hZs4HE= Subject key identifier: D2:7D:BB:8A:67:72:F4:29:11:36:9D:45:17:F3:9B:AB:CF:7D:C9:77 Authority key identifier: D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70 Certificate issuer: /CN=A91B758E/serialNumber=D3BC842802DAD22D5C30C28265F7D108BD478E70 Certificate serial: 2F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft Manifest number: 2D Signing time: Tue 21 May 2024 08:22:58 +0000 Manifest this update: Tue 21 May 2024 08:22:58 +0000 Manifest next update: Tue 28 May 2024 08:22:58 +0000 Files and hashes: 1: 07yEKALa0i1cMMKCZffRCL1HjnA.crl (hash: UiwbqmHcz48NZOUycraeOH9Qza6dlncMqGs5KzdPyfE=) 2: 9E0AD9B0D53E11EEA0454A0BC4F9AE02.roa (hash: R7fWNIo1N2lKM0xCDWt1MXlQDp9EYpgL3Lp7EB7mFwI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.crl rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B758E/serialNumber=D3BC842802DAD22D5C30C28265F7D108BD478E70 Validity Not Before: May 21 08:22:58 2024 GMT Not After : May 28 08:22:58 2024 GMT Subject: CN=664c59e2-c984 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:2a:6a:3a:65:28:a1:72:7c:f2:0d:fc:e9:30: ce:c5:28:a4:86:a8:df:6f:77:88:c8:c1:92:2f:98: 3a:9e:8f:ea:18:90:5f:29:df:ce:ab:54:ab:5b:55: 29:20:c8:b3:b6:ef:c8:eb:7f:14:24:aa:eb:78:07: b5:0a:92:35:32:07:d7:08:10:79:05:23:99:b7:07: 40:d0:da:a7:ed:a2:e8:5a:19:40:d4:83:10:20:ed: 66:ce:36:3c:8e:58:f2:4e:8a:7d:b2:49:df:24:a4: 1e:06:63:06:91:fb:d3:6b:27:e3:05:22:56:a6:f5: aa:33:34:cc:02:74:ed:24:9c:cb:07:64:1f:b5:00: f2:0d:50:1f:05:fb:e1:6c:38:15:42:03:00:3e:5b: 97:a4:c9:bf:c2:cf:08:0d:8d:15:de:61:49:47:03: c4:82:0d:40:82:8c:b1:57:76:f7:d6:0a:8c:ba:7b: 65:be:e7:27:53:b5:2f:22:bd:58:5f:82:c9:77:9b: fc:cf:5c:26:61:f6:d5:e4:53:16:91:94:12:e7:bc: 81:0c:2b:55:fc:1a:3d:eb:63:93:b2:34:58:1d:ce: 72:57:f9:c5:e5:0d:fe:7b:3a:a0:b6:2a:eb:4e:5b: 28:da:b4:06:c8:0c:eb:97:d0:b9:31:09:3f:0c:53: 6b:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:7D:BB:8A:67:72:F4:29:11:36:9D:45:17:F3:9B:AB:CF:7D:C9:77 X509v3 Authority Key Identifier: keyid:D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:3b:04:bd:5f:94:12:87:73:d6:f4:9a:0c:95:35:c0:b2:7e: 17:96:65:7d:2c:f8:ab:37:a9:76:10:f1:a6:da:c2:4f:e8:8e: 56:5d:56:bb:39:0d:78:f2:3d:7d:4e:44:cc:3b:ac:cd:68:ee: 87:a2:cd:df:79:d7:f6:b9:9a:bb:d2:8b:7d:13:64:2d:95:d6: 56:52:21:d8:10:ce:c7:a2:de:96:b2:84:f7:eb:27:c2:78:25: 38:54:10:92:18:eb:40:86:d1:08:b2:5a:11:9a:de:97:82:a2: b1:52:ad:c4:78:81:ad:30:85:c5:a8:de:f3:e3:b1:e8:88:da: a9:a1:d8:7a:28:e8:23:86:1d:e7:cc:19:3d:7a:d1:c2:4d:0f: e7:59:22:97:05:46:47:ec:4a:e1:a0:7b:2f:8b:42:e6:dc:02: ef:9c:0a:61:93:e8:36:f2:62:c0:de:e1:5f:75:96:2c:69:8d: cb:b6:9c:43:4b:a6:b3:3b:54:1a:c9:18:ee:fc:17:81:5c:cc: ac:59:64:25:68:0f:ac:bf:78:31:80:26:d1:ba:5a:86:bf:45: de:e5:81:f8:d5:a0:1d:f0:c9:c3:f1:5a:4b:11:7f:2e:91:bf: 38:3e:74:58:66:c7:77:34:cc:1a:00:b0:c3:5d:13:ec:76:57: 0e:38:33:ab -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NzU4RTExMC8GA1UEBRMoRDNCQzg0MjgwMkRBRDIyRDVDMzBDMjgyNjVGN0QxMDhC RDQ3OEU3MDAeFw0yNDA1MjEwODIyNThaFw0yNDA1MjgwODIyNThaMBgxFjAUBgNV BAMTDTY2NGM1OWUyLWM5ODQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEKmo6ZSihcnzyDfzpMM7FKKSGqN9vd4jIwZIvmDqej+oYkF8p386rVKtbVSkg yLO278jrfxQkqut4B7UKkjUyB9cIEHkFI5m3B0DQ2qftouhaGUDUgxAg7WbONjyO WPJOin2ySd8kpB4GYwaR+9NrJ+MFIlam9aozNMwCdO0knMsHZB+1APINUB8F++Fs OBVCAwA+W5ekyb/CzwgNjRXeYUlHA8SCDUCCjLFXdvfWCoy6e2W+5ydTtS8ivVhf gsl3m/zPXCZh9tXkUxaRlBLnvIEMK1X8Gj3rY5OyNFgdznJX+cXlDf57OqC2KutO WyjatAbIDOuX0LkxCT8MU2uRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0n27imdy 9CkRNp1FF/Obq899yXcwHwYDVR0jBBgwFoAU07yEKALa0i1cMMKCZffRCL1HjnAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3NThFL0RERUM4MTI0RDUz RDExRUU4RjFFOEE4NUM0RjlBRTAyLzA3eUVLQUxhMGkxY01NS0NaZmZSQ0wxSGpu QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMDd5RUtBTGEwaTFjTU1LQ1pmZlJDTDFIam5BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3 NThFL0RERUM4MTI0RDUzRDExRUU4RjFFOEE4NUM0RjlBRTAyLzA3eUVLQUxhMGkx Y01NS0NaZmZSQ0wxSGpuQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEg7BL1flBKHc9b0mgyVNcCyfheWZX0s+Ks3qXYQ8abawk/ojlZdVrs5 DXjyPX1ORMw7rM1o7oeizd951/a5mrvSi30TZC2V1lZSIdgQzsei3payhPfrJ8J4 JThUEJIY60CG0QiyWhGa3peCorFSrcR4ga0whcWo3vPjseiI2qmh2Hoo6COGHefM GT160cJND+dZIpcFRkfsSuGgey+LQubcAu+cCmGT6DbyYsDe4V91lixpjcu2nENL prM7VBrJGO78F4FczKxZZCVoD6y/eDGAJtG6Woa/Rd7lgfjVoB3wycPxWksRfy6R vzg+dFhmx3c0zBoAsMNdE+x2Vw44M6s= -----END CERTIFICATE-----Generated at Tue May 21 10:12:53 2024 by rpki-client on console-ams.rpki-client.org