$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.mft File: 1RZ7lweHQQlX4l2fh1CFYPAFd24.mft (raw, json) Hash identifier: emPcofYsMsb7hH3OMCBuxHhivrlouUflSp0u6xRxQEA= Subject key identifier: FB:2C:44:93:86:E4:5F:AE:88:C9:EF:0E:42:95:BB:1F:3F:17:F5:07 Authority key identifier: D5:16:7B:97:07:87:41:09:57:E2:5D:9F:87:50:85:60:F0:05:77:6E Certificate issuer: /CN=A91B9011/serialNumber=D5167B970787410957E25D9F87508560F005776E Certificate serial: 04F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RZ7lweHQQlX4l2fh1CFYPAFd24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.mft Manifest number: 04EE Signing time: Sun 05 May 2024 01:24:50 +0000 Manifest this update: Sun 05 May 2024 01:24:50 +0000 Manifest next update: Sun 12 May 2024 01:24:50 +0000 Files and hashes: 1: 1RZ7lweHQQlX4l2fh1CFYPAFd24.crl (hash: j9s1Z5y2k2CZ4iMsbOsltcRuTKV3DNMVhlBEiVkeCTw=) 2: 438893AC55BE11EDBDE51983C4F9AE02.roa (hash: BLZihm/TeabqF4tkohMfsqoOF09WEG/Ggs7uUhIWlKs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.crl rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RZ7lweHQQlX4l2fh1CFYPAFd24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1266 (0x4f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9011/serialNumber=D5167B970787410957E25D9F87508560F005776E Validity Not Before: May 5 01:24:50 2024 GMT Not After : May 12 01:24:50 2024 GMT Subject: CN=6636dfe2-574d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:1b:3f:fe:17:55:a2:85:2d:00:2c:90:34:67: 33:13:6b:f3:90:dd:3f:0d:91:56:78:c5:d5:ef:e3: 0d:82:be:12:62:ee:0a:4b:bf:bb:2d:d4:e2:b5:60: ec:eb:72:2f:85:bc:cd:c7:8b:92:6b:a6:80:81:9f: c5:fc:a0:e0:24:6e:5c:f0:93:e9:7c:ed:0f:0e:15: da:d8:f0:a3:2f:55:55:2a:96:2f:54:7f:e8:36:30: 93:45:b6:73:6d:27:e9:de:ee:ea:b0:b2:ca:1d:6e: d8:24:fd:f3:60:00:72:b5:b9:95:50:d5:11:75:09: f0:b7:c6:c2:30:6d:a8:f7:24:89:f0:40:0a:70:ac: 18:15:b1:26:c5:a8:d2:69:e7:71:58:54:ea:7a:af: 3e:fa:d7:45:b4:c8:d7:d2:02:34:bc:21:08:8f:d1: 0c:f6:d5:42:3b:e2:ee:1b:38:dd:bb:98:ce:42:cd: 0a:d7:d1:9f:3d:03:e0:f3:1e:fb:5b:02:14:35:55: 2a:d1:a5:d4:69:e3:b3:61:0f:55:a4:35:31:80:9c: 67:5a:15:dd:e6:13:e1:a4:99:31:6f:30:56:b4:fa: e3:fe:c0:61:b2:1c:aa:32:ac:b8:fe:97:bc:04:ca: eb:d6:b3:2a:34:04:ba:76:41:bd:2b:de:f5:85:01: e1:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:2C:44:93:86:E4:5F:AE:88:C9:EF:0E:42:95:BB:1F:3F:17:F5:07 X509v3 Authority Key Identifier: keyid:D5:16:7B:97:07:87:41:09:57:E2:5D:9F:87:50:85:60:F0:05:77:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RZ7lweHQQlX4l2fh1CFYPAFd24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:1a:3b:31:52:f1:69:c3:fa:7b:99:d0:6a:f0:7e:96:64:d9: 10:fd:8b:a9:11:8a:5f:a2:d8:4a:9b:78:07:27:ae:a1:45:1b: 9d:69:4f:78:38:a5:48:f7:19:bd:74:70:8b:6a:5b:c7:42:4e: 71:d7:23:07:93:31:a6:45:80:0a:b3:b3:f3:21:25:d0:f5:92: 10:14:5c:36:25:da:db:ec:7d:d7:a1:0d:23:51:75:0b:21:d8: c6:f1:fd:e1:de:3c:6e:f3:40:94:2c:d4:ff:f6:7b:b5:8e:94: e2:5b:ab:49:d3:fe:34:88:c9:bc:c7:db:89:0d:b1:07:c8:41: ea:dc:75:4b:6b:0e:25:53:d5:e5:f1:1a:5e:b7:6e:6f:8d:fb: 0e:aa:ba:c7:20:e9:36:ed:59:5e:4c:28:fb:8f:63:3c:43:32: 22:6d:8e:5c:28:88:98:7f:33:64:1c:db:88:c9:75:7e:0f:2f: 25:b7:5c:70:50:70:01:7d:25:65:46:87:05:48:24:97:c9:36: 2a:41:7f:5d:3f:8c:46:a9:19:76:8e:fc:ba:e9:3f:67:a6:ed: d5:23:76:ca:e2:4e:61:9e:7c:8d:c8:28:4c:48:a4:f4:ed:42: de:49:86:8a:68:5b:48:11:98:ff:24:00:6a:78:26:1a:cf:2e: e5:ef:80:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkwMTExMTAvBgNVBAUTKEQ1MTY3Qjk3MDc4NzQxMDk1N0UyNUQ5Rjg3NTA4NTYw RjAwNTc3NkUwHhcNMjQwNTA1MDEyNDUwWhcNMjQwNTEyMDEyNDUwWjAYMRYwFAYD VQQDEw02NjM2ZGZlMi01NzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsRs//hdVooUtACyQNGczE2vzkN0/DZFWeMXV7+MNgr4SYu4KS7+7LdTitWDs 63IvhbzNx4uSa6aAgZ/F/KDgJG5c8JPpfO0PDhXa2PCjL1VVKpYvVH/oNjCTRbZz bSfp3u7qsLLKHW7YJP3zYABytbmVUNURdQnwt8bCMG2o9ySJ8EAKcKwYFbEmxajS aedxWFTqeq8++tdFtMjX0gI0vCEIj9EM9tVCO+LuGzjdu5jOQs0K19GfPQPg8x77 WwIUNVUq0aXUaeOzYQ9VpDUxgJxnWhXd5hPhpJkxbzBWtPrj/sBhshyqMqy4/pe8 BMrr1rMqNAS6dkG9K971hQHhvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPssRJOG 5F+uiMnvDkKVux8/F/UHMB8GA1UdIwQYMBaAFNUWe5cHh0EJV+Jdn4dQhWDwBXdu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTAxMS8zODg4RTBDNEM3 M0ExMUVCOTAwNzU1MTBDNEY5QUUwMi8xUlo3bHdlSFFRbFg0bDJmaDFDRllQQUZk MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFSWjdsd2VIUVFsWDRsMmZoMUNGWVBBRmQyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTAxMS8zODg4RTBDNEM3M0ExMUVCOTAwNzU1MTBDNEY5QUUwMi8xUlo3bHdlSFFR bFg0bDJmaDFDRllQQUZkMjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcGjsxUvFpw/p7mdBq8H6WZNkQ/YupEYpfothKm3gHJ66hRRudaU94 OKVI9xm9dHCLalvHQk5x1yMHkzGmRYAKs7PzISXQ9ZIQFFw2Jdrb7H3XoQ0jUXUL IdjG8f3h3jxu80CULNT/9nu1jpTiW6tJ0/40iMm8x9uJDbEHyEHq3HVLaw4lU9Xl 8Rpet25vjfsOqrrHIOk27VleTCj7j2M8QzIibY5cKIiYfzNkHNuIyXV+Dy8lt1xw UHABfSVlRocFSCSXyTYqQX9dP4xGqRl2jvy66T9npu3VI3bK4k5hnnyNyChMSKT0 7ULeSYaKaFtIEZj/JABqeCYazy7l74Dx -----END CERTIFICATE-----Generated at Sun May 5 02:33:38 2024 by rpki-client on console-fra.rpki-client.org