$ rpki-client -vvf rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft File: FF-_nuMXN-kcPNSE7AFq48jzgDw.mft (raw, json) Hash identifier: 0Qrb/UTEc9vFZOCzvFgimrkXklDhg26stg2Q3dX0Ih0= Subject key identifier: 32:1D:BA:5A:D6:47:8D:0F:5A:90:1A:51:81:B4:39:54:BF:C3:64:25 Authority key identifier: 14:5F:BF:9E:E3:17:37:E9:1C:3C:D4:84:EC:01:6A:E3:C8:F3:80:3C Certificate issuer: /CN=A91B978D/serialNumber=145FBF9EE31737E91C3CD484EC016AE3C8F3803C Certificate serial: 01E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft Manifest number: 01E3 Signing time: Sun 05 May 2024 04:24:49 +0000 Manifest this update: Sun 05 May 2024 04:24:48 +0000 Manifest next update: Sun 12 May 2024 04:24:48 +0000 Files and hashes: 1: FF-_nuMXN-kcPNSE7AFq48jzgDw.crl (hash: +7kzoVq2hiIx2DdBjrWyTSmJfYDcvGc3fBkj6K/Jvfc=) 2: D5D64BB0FB6811EC863B8150C4F9AE02.roa (hash: 65F2G59MHFVGLVKd/ikA3cZL7cCRB1lDJX3oDcAILQw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.crl rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 487 (0x1e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B978D/serialNumber=145FBF9EE31737E91C3CD484EC016AE3C8F3803C Validity Not Before: May 5 04:24:48 2024 GMT Not After : May 12 04:24:48 2024 GMT Subject: CN=66370a11-ba9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:43:25:60:3f:3b:b1:29:a0:74:36:55:9e:45: 59:21:c2:ba:c8:23:65:63:8f:1c:66:e0:3d:0c:f6: 7b:31:5f:8f:5a:a0:3d:2c:0c:41:65:99:8a:c0:c0: 83:ce:e2:24:ed:23:f8:9c:17:d9:80:b6:98:18:34: f3:40:26:eb:56:86:a8:00:40:4a:d3:9d:b2:11:94: b1:cb:b8:fe:b0:e8:82:4e:1b:df:83:b7:eb:42:12: 80:a7:8b:b1:ef:83:e3:38:1a:56:20:d6:f4:75:bc: 2b:b7:27:6b:de:9a:ac:70:66:5a:6e:d6:ae:85:97: 9b:f6:39:a0:f4:91:97:cb:7a:54:dd:16:7d:08:5e: ce:02:89:ad:f5:78:92:0e:f0:b2:30:87:77:08:b6: 96:b2:ae:40:f4:ea:ad:3e:66:9d:38:2f:13:66:bc: c1:d9:83:1a:bd:d8:dc:0b:40:07:85:b5:98:ac:d8: 1c:61:3e:de:67:e3:2f:65:29:d6:3d:f5:9e:71:e4: 8e:fa:0f:7b:22:5f:f0:4b:b2:88:cc:f7:77:4f:13: f0:32:d3:1e:e7:c1:d0:19:78:d9:f5:75:b2:ab:0b: 51:41:c4:de:be:76:e7:c2:69:07:a7:00:79:9d:03: 0f:2d:a6:0f:83:e4:4b:8e:fe:84:f3:d7:5c:59:ee: cd:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:1D:BA:5A:D6:47:8D:0F:5A:90:1A:51:81:B4:39:54:BF:C3:64:25 X509v3 Authority Key Identifier: keyid:14:5F:BF:9E:E3:17:37:E9:1C:3C:D4:84:EC:01:6A:E3:C8:F3:80:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:4f:2d:a1:b4:de:e3:7d:dc:bb:5b:7f:6a:8d:fc:d2:7e:12: 5f:95:30:86:a9:75:6e:9d:4c:86:a6:db:ef:3d:ad:01:b0:14: 95:71:2b:c1:b7:c1:fc:10:ab:e2:43:06:04:3f:00:48:12:8d: 42:c7:e1:59:09:71:7e:4d:e5:74:a2:c0:55:24:f6:96:23:12: 1e:80:2b:27:32:46:da:96:6c:55:6a:d6:20:49:eb:07:cd:37: d7:33:eb:e9:c1:57:90:3f:08:e2:2d:96:59:82:ef:e3:38:0f: 54:bf:12:d0:5b:40:4a:4d:c8:75:e7:35:ad:e9:07:02:2c:55: de:c9:0a:33:3b:e8:21:5d:47:e3:5d:db:39:a2:fe:30:20:eb: 52:98:e7:dc:ee:75:df:7a:2f:2c:e6:32:20:be:c4:01:3c:09: 10:c0:92:4c:8d:2f:4c:15:bd:8e:b1:4a:9c:cc:f6:f5:39:dc: 9f:cc:eb:ab:48:1d:b3:ad:f4:6a:0a:77:8a:59:58:51:8f:25: 30:b2:99:2e:e0:ff:74:19:c7:ae:bb:53:42:94:0f:a7:59:fd: 00:ef:39:81:d3:74:ae:bf:98:50:6c:73:c8:1e:b0:16:7d:ce: c1:a2:36:b8:ea:e0:4d:d6:2e:f8:23:01:e1:db:2e:9c:ea:06: 11:e1:ba:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAecwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3OEQxMTAvBgNVBAUTKDE0NUZCRjlFRTMxNzM3RTkxQzNDRDQ4NEVDMDE2QUUz QzhGMzgwM0MwHhcNMjQwNTA1MDQyNDQ4WhcNMjQwNTEyMDQyNDQ4WjAYMRYwFAYD VQQDEw02NjM3MGExMS1iYTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwEMlYD87sSmgdDZVnkVZIcK6yCNlY48cZuA9DPZ7MV+PWqA9LAxBZZmKwMCD zuIk7SP4nBfZgLaYGDTzQCbrVoaoAEBK052yEZSxy7j+sOiCThvfg7frQhKAp4ux 74PjOBpWINb0dbwrtydr3pqscGZabtauhZeb9jmg9JGXy3pU3RZ9CF7OAomt9XiS DvCyMId3CLaWsq5A9OqtPmadOC8TZrzB2YMavdjcC0AHhbWYrNgcYT7eZ+MvZSnW PfWeceSO+g97Il/wS7KIzPd3TxPwMtMe58HQGXjZ9XWyqwtRQcTevnbnwmkHpwB5 nQMPLaYPg+RLjv6E89dcWe7NnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDIdulrW R40PWpAaUYG0OVS/w2QlMB8GA1UdIwQYMBaAFBRfv57jFzfpHDzUhOwBauPI84A8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTc4RC82N0I0NDgyOEZC NjYxMUVDQUJBMTAxNEZDNEY5QUUwMi9GRi1fbnVNWE4ta2NQTlNFN0FGcTQ4anpn RHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZGLV9udU1YTi1rY1BOU0U3QUZxNDhqemdEdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTc4RC82N0I0NDgyOEZCNjYxMUVDQUJBMTAxNEZDNEY5QUUwMi9GRi1fbnVNWE4t a2NQTlNFN0FGcTQ4anpnRHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALTy2htN7jfdy7W39qjfzSfhJflTCGqXVunUyGptvvPa0BsBSVcSvB t8H8EKviQwYEPwBIEo1Cx+FZCXF+TeV0osBVJPaWIxIegCsnMkbalmxVatYgSesH zTfXM+vpwVeQPwjiLZZZgu/jOA9UvxLQW0BKTch15zWt6QcCLFXeyQozO+ghXUfj Xds5ov4wIOtSmOfc7nXfei8s5jIgvsQBPAkQwJJMjS9MFb2OsUqczPb1OdyfzOur SB2zrfRqCneKWVhRjyUwspku4P90Gceuu1NClA+nWf0A7zmB03Suv5hQbHPIHrAW fc7Boja46uBN1i74IwHh2y6c6gYR4bo2 -----END CERTIFICATE-----Generated at Sun May 5 05:30:51 2024 by rpki-client on console-ams.rpki-client.org