$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft File: U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft (raw, json) Hash identifier: aW86hHmGcRMZJiGQaZlhhJnU1t7QSwCobCr2Ua3FT38= Subject key identifier: 05:A1:0D:F3:77:8A:DB:F4:2E:90:F5:DA:23:5F:2D:8C:76:5C:9C:8F Authority key identifier: 53:D5:DB:87:0E:5C:CD:48:E9:8D:73:56:0D:BD:5E:65:94:6C:2D:D4 Certificate issuer: /CN=A91BA251/serialNumber=53D5DB870E5CCD48E98D73560DBD5E65946C2DD4 Certificate serial: 0484 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft Manifest number: 047E Signing time: Sat 01 Jun 2024 02:39:51 +0000 Manifest this update: Sat 01 Jun 2024 02:39:50 +0000 Manifest next update: Sat 08 Jun 2024 02:39:50 +0000 Files and hashes: 1: U9Xbhw5czUjpjXNWDb1eZZRsLdQ.crl (hash: h4gXG91BgFveLZ6w66uK+oXiA6D4B1xBSolT62rJYiI=) 2: 567C8DB8354111ECBCC05B63C4F9AE02.roa (hash: LzWsufD3jBLBFlEvCAE5s8+avOurxtPFYFkw78OGI9U=) 3: DEA2CCF8050511EEB4D8141FC4F9AE02.roa (hash: +wANWr6Rhur2r82M4CqDooSvlKXhXX0HZdtlwo87YvQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.crl rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:39:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1156 (0x484) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA251/serialNumber=53D5DB870E5CCD48E98D73560DBD5E65946C2DD4 Validity Not Before: Jun 1 02:39:50 2024 GMT Not After : Jun 8 02:39:50 2024 GMT Subject: CN=665a89f6-577a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e1:c3:fb:d3:57:bd:77:bd:e2:a8:80:ce:02: b3:2d:6d:10:a2:2b:36:6a:8f:66:ef:40:ef:c6:ce: 0d:19:4d:2f:69:ff:0d:fe:d0:f7:f3:5f:84:d5:46: d2:13:9e:2a:a9:ec:be:a6:92:82:e0:d8:01:ee:f5: 54:a4:a1:67:d4:eb:3d:a3:8d:b4:b9:7b:27:7c:a2: 26:04:1f:9d:77:24:5e:f8:64:f0:94:06:18:b9:24: 7d:be:47:bb:2b:9e:31:7b:e3:15:e2:79:ab:bf:a2: a1:65:e8:21:f3:9c:6b:dd:98:49:52:85:2d:95:08: 4f:f8:ca:0e:37:e5:c6:54:98:c7:0b:1c:97:78:6a: 71:87:bd:13:5a:90:46:27:24:f7:26:23:9b:0b:43: 4f:ab:d3:1c:49:8d:32:3d:70:34:f1:e4:ad:5a:e2: 7b:67:f8:39:c8:d8:ea:7d:75:ed:80:8e:2a:41:e3: dc:67:6c:17:5b:2e:2e:ee:c2:e1:72:55:4e:2d:14: ba:0d:f4:f3:02:4d:79:39:7d:85:ad:41:f0:54:ce: b6:19:71:df:56:e8:33:8b:df:22:82:93:23:d2:60: e2:96:12:d0:03:fe:df:0c:a6:92:ee:da:88:62:b8: 5f:bf:24:bf:27:0b:7b:9e:67:30:8c:41:f3:5d:f5: bc:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:A1:0D:F3:77:8A:DB:F4:2E:90:F5:DA:23:5F:2D:8C:76:5C:9C:8F X509v3 Authority Key Identifier: keyid:53:D5:DB:87:0E:5C:CD:48:E9:8D:73:56:0D:BD:5E:65:94:6C:2D:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:d2:fe:ea:58:e1:a4:49:b9:c3:1a:0e:c1:6e:4c:14:4b:f2: cf:b9:97:6d:92:bd:4d:01:6c:5d:9f:14:31:75:9b:1a:d3:c8: 65:6e:d8:c0:6f:d1:d1:34:bf:f6:cd:62:e1:ca:70:77:e2:1e: 19:3a:89:50:6f:59:5d:b2:6f:38:66:65:1f:4f:35:e9:25:ec: 79:a0:53:44:bc:9b:8b:f8:b0:a9:36:06:f8:5d:34:cc:37:4c: 56:65:dc:f5:9f:ff:df:29:6c:57:97:f9:f3:35:c1:5b:1d:7e: 0b:b6:57:84:b5:47:fe:dd:5f:e4:0c:da:ae:d5:d8:67:6f:e2: 7f:b4:fc:54:a0:73:45:30:9a:c1:df:ea:6d:24:4f:b1:18:89: b2:f3:34:0c:5f:ce:0f:14:9d:e9:0c:36:2d:e1:d5:33:32:3c: d6:51:4c:14:a3:31:fa:94:f2:d9:83:25:cf:8a:e7:ea:05:70: 41:d6:ed:60:4b:0b:a8:28:22:fe:4a:ca:f6:d5:e3:8e:c2:16: b2:e9:a7:cb:17:e7:52:2b:da:68:f8:b3:2f:7d:c6:58:ef:05: 06:18:ee:0a:a2:eb:c7:88:ed:67:f6:9c:31:34:98:73:59:0c: 8b:e6:da:ce:91:8d:f2:6e:6b:79:3b:bd:7c:62:7b:a7:ec:c4: b3:04:3d:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEyNTExMTAvBgNVBAUTKDUzRDVEQjg3MEU1Q0NENDhFOThENzM1NjBEQkQ1RTY1 OTQ2QzJERDQwHhcNMjQwNjAxMDIzOTUwWhcNMjQwNjA4MDIzOTUwWjAYMRYwFAYD VQQDEw02NjVhODlmNi01NzdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp+HD+9NXvXe94qiAzgKzLW0Qois2ao9m70Dvxs4NGU0vaf8N/tD381+E1UbS E54qqey+ppKC4NgB7vVUpKFn1Os9o420uXsnfKImBB+ddyRe+GTwlAYYuSR9vke7 K54xe+MV4nmrv6KhZegh85xr3ZhJUoUtlQhP+MoON+XGVJjHCxyXeGpxh70TWpBG JyT3JiObC0NPq9McSY0yPXA08eStWuJ7Z/g5yNjqfXXtgI4qQePcZ2wXWy4u7sLh clVOLRS6DfTzAk15OX2FrUHwVM62GXHfVugzi98igpMj0mDilhLQA/7fDKaS7tqI YrhfvyS/Jwt7nmcwjEHzXfW8qwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAWhDfN3 itv0LpD12iNfLYx2XJyPMB8GA1UdIwQYMBaAFFPV24cOXM1I6Y1zVg29XmWUbC3U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTI1MS9EOTNENzk2MEY3 NDgxMUVCQTc1RkNDMTNDNEY5QUUwMi9VOVhiaHc1Y3pVanBqWE5XRGIxZVpaUnNM ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U5WGJodzVjelVqcGpYTldEYjFlWlpSc0xkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTI1MS9EOTNENzk2MEY3NDgxMUVCQTc1RkNDMTNDNEY5QUUwMi9VOVhiaHc1Y3pV anBqWE5XRGIxZVpaUnNMZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAD0v7qWOGkSbnDGg7BbkwUS/LPuZdtkr1NAWxdnxQxdZsa08hlbtjA b9HRNL/2zWLhynB34h4ZOolQb1ldsm84ZmUfTzXpJex5oFNEvJuL+LCpNgb4XTTM N0xWZdz1n//fKWxXl/nzNcFbHX4LtleEtUf+3V/kDNqu1dhnb+J/tPxUoHNFMJrB 3+ptJE+xGImy8zQMX84PFJ3pDDYt4dUzMjzWUUwUozH6lPLZgyXPiufqBXBB1u1g SwuoKCL+Ssr21eOOwhay6afLF+dSK9po+LMvfcZY7wUGGO4KouvHiO1n9pwxNJhz WQyL5trOkY3ybmt5O718Ynun7MSzBD1y -----END CERTIFICATE-----Generated at Sat Jun 1 04:59:05 2024 by rpki-client on console-fra.rpki-client.org