$ rpki-client -vvf rpki.apnic.net/member_repository/A91BADCE/0F7281BC3AF411EC89CE072FC4F9AE02/15qMdwXiQZ6rQpU7a8ilcga6xiY.mft File: 15qMdwXiQZ6rQpU7a8ilcga6xiY.mft (raw, json) Hash identifier: GN9XoHI46FW6VFSsVTSHQZG+jwavN2lFLGF3GJ3Su/g= Subject key identifier: 4E:61:E0:5A:51:A7:FF:2A:8C:7A:D6:67:33:B1:96:8A:83:83:35:2E Authority key identifier: D7:9A:8C:77:05:E2:41:9E:AB:42:95:3B:6B:C8:A5:72:06:BA:C6:26 Certificate issuer: /CN=A91BADCE/serialNumber=D79A8C7705E2419EAB42953B6BC8A57206BAC626 Certificate serial: 03D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/15qMdwXiQZ6rQpU7a8ilcga6xiY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BADCE/0F7281BC3AF411EC89CE072FC4F9AE02/15qMdwXiQZ6rQpU7a8ilcga6xiY.mft Manifest number: 03CA Signing time: Mon 29 Apr 2024 02:20:44 +0000 Manifest this update: Mon 29 Apr 2024 02:20:44 +0000 Manifest next update: Mon 06 May 2024 02:20:44 +0000 Files and hashes: 1: 15qMdwXiQZ6rQpU7a8ilcga6xiY.crl (hash: DiDEq+ScfPmNOqXADbGzNw3NdjmEixMyweud72Cdg8Y=) 2: 4BD423FE3AF911EC918C643AC4F9AE02.roa (hash: NFITE7TJAb/KXxBkyjqQoKIW0rgE3xHfQ2EjzFnf43U=) 3: 56C4925E3B0711EC9715501EC4F9AE02.roa (hash: zzgWG6q6KItbF0m0zrC3rt7sfg/sytV8ZrJ1Qdcqn+E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BADCE/0F7281BC3AF411EC89CE072FC4F9AE02/15qMdwXiQZ6rQpU7a8ilcga6xiY.crl rsync://rpki.apnic.net/member_repository/A91BADCE/0F7281BC3AF411EC89CE072FC4F9AE02/15qMdwXiQZ6rQpU7a8ilcga6xiY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/15qMdwXiQZ6rQpU7a8ilcga6xiY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 02:20:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 979 (0x3d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BADCE/serialNumber=D79A8C7705E2419EAB42953B6BC8A57206BAC626 Validity Not Before: Apr 29 02:20:44 2024 GMT Not After : May 6 02:20:44 2024 GMT Subject: CN=662f03fc-98b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:83:6c:cd:d5:31:d1:b0:ca:a3:6a:76:0a:13: da:f3:3e:df:d1:51:41:b1:b0:d3:a8:62:d5:81:93: 47:5a:74:6e:c8:7a:c4:5a:d7:65:2b:17:cb:28:1d: 3b:91:34:2a:21:26:a1:51:ae:6d:5d:f2:41:db:7e: 50:4d:b9:40:27:05:bf:35:b4:ba:b4:bb:e2:68:76: 14:58:fa:08:d9:f6:7a:04:21:b4:45:93:ca:8e:e1: 01:e9:bc:6e:50:62:57:8c:a9:67:30:41:3e:1a:2d: 33:3f:9e:cd:93:cb:53:33:2a:7c:c6:dc:59:3f:d9: a6:2a:22:87:41:e6:ce:e9:53:9c:f5:05:c0:58:57: 7c:1a:9c:9e:52:02:b5:8e:5e:23:de:a9:ee:15:04: 71:8a:ca:80:1e:9b:2f:14:e5:a3:2e:31:ae:f5:40: 4d:68:5c:28:1b:90:fd:ad:60:3e:14:1d:37:f0:78: 0d:81:f3:2e:21:17:ff:a3:19:9c:b0:08:75:37:83: ae:5d:ae:99:1b:59:c3:28:18:cf:4b:21:c5:66:d7: e2:de:cc:68:98:42:e7:4b:dd:16:20:de:9a:1d:5a: 44:2c:88:77:18:e4:85:63:e7:8b:94:b0:84:11:fd: 7b:a3:47:65:40:54:c8:a2:69:e5:21:22:75:a9:6e: 57:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:61:E0:5A:51:A7:FF:2A:8C:7A:D6:67:33:B1:96:8A:83:83:35:2E X509v3 Authority Key Identifier: keyid:D7:9A:8C:77:05:E2:41:9E:AB:42:95:3B:6B:C8:A5:72:06:BA:C6:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BADCE/0F7281BC3AF411EC89CE072FC4F9AE02/15qMdwXiQZ6rQpU7a8ilcga6xiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/15qMdwXiQZ6rQpU7a8ilcga6xiY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BADCE/0F7281BC3AF411EC89CE072FC4F9AE02/15qMdwXiQZ6rQpU7a8ilcga6xiY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:f2:7b:cc:14:45:de:a8:84:b4:55:60:cf:4a:89:6d:b9:7a: 5f:d8:c1:67:57:71:33:ec:ad:10:30:58:d7:09:a3:8a:a1:17: 9c:87:af:15:9c:77:5e:87:f6:c5:e0:53:f7:67:c2:52:c3:11: 1c:ee:2c:eb:04:40:1f:bc:c4:f3:67:b1:26:ae:72:df:08:7b: 7a:13:ed:91:5b:99:52:ae:58:b3:b6:1b:f9:23:98:a2:64:e1: 35:20:a8:80:9b:4f:39:a5:e0:18:ce:ef:19:f7:57:68:be:1e: 84:28:d3:35:6e:ef:f0:c0:9f:35:ae:86:f6:21:ec:4e:be:fc: 8b:b2:e5:ca:0d:f8:ea:8f:8d:50:53:5e:64:3d:cb:c7:76:a7: 81:77:4b:47:43:14:e3:6a:0f:62:31:00:6a:72:40:6e:f5:f3: d1:13:e6:8a:a6:b0:0c:f9:12:99:fc:f1:98:e0:f2:c6:29:68: 76:fe:c6:73:19:81:0d:2c:ee:84:be:1b:9b:9e:79:62:db:64: b1:1c:65:f5:64:c3:ff:3f:d0:7b:81:86:62:f7:f3:72:ba:7d: 1e:1a:96:18:54:d2:51:74:a0:86:32:23:37:ed:76:d0:34:f2: 2d:12:54:ad:53:cc:16:c5:84:94:89:cd:0d:98:d6:cf:86:89: b2:ca:58:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFEQ0UxMTAvBgNVBAUTKEQ3OUE4Qzc3MDVFMjQxOUVBQjQyOTUzQjZCQzhBNTcy MDZCQUM2MjYwHhcNMjQwNDI5MDIyMDQ0WhcNMjQwNTA2MDIyMDQ0WjAYMRYwFAYD VQQDEw02NjJmMDNmYy05OGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxINszdUx0bDKo2p2ChPa8z7f0VFBsbDTqGLVgZNHWnRuyHrEWtdlKxfLKB07 kTQqISahUa5tXfJB235QTblAJwW/NbS6tLviaHYUWPoI2fZ6BCG0RZPKjuEB6bxu UGJXjKlnMEE+Gi0zP57Nk8tTMyp8xtxZP9mmKiKHQebO6VOc9QXAWFd8GpyeUgK1 jl4j3qnuFQRxisqAHpsvFOWjLjGu9UBNaFwoG5D9rWA+FB038HgNgfMuIRf/oxmc sAh1N4OuXa6ZG1nDKBjPSyHFZtfi3sxomELnS90WIN6aHVpELIh3GOSFY+eLlLCE Ef17o0dlQFTIomnlISJ1qW5X1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE5h4FpR p/8qjHrWZzOxloqDgzUuMB8GA1UdIwQYMBaAFNeajHcF4kGeq0KVO2vIpXIGusYm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQURDRS8wRjcyODFCQzNB RjQxMUVDODlDRTA3MkZDNEY5QUUwMi8xNXFNZHdYaVFaNnJRcFU3YThpbGNnYTZ4 aVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzE1cU1kd1hpUVo2clFwVTdhOGlsY2dhNnhpWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QURDRS8wRjcyODFCQzNBRjQxMUVDODlDRTA3MkZDNEY5QUUwMi8xNXFNZHdYaVFa NnJRcFU3YThpbGNnYTZ4aVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBH8nvMFEXeqIS0VWDPSoltuXpf2MFnV3Ez7K0QMFjXCaOKoRech68V nHdeh/bF4FP3Z8JSwxEc7izrBEAfvMTzZ7EmrnLfCHt6E+2RW5lSrlizthv5I5ii ZOE1IKiAm085peAYzu8Z91dovh6EKNM1bu/wwJ81rob2IexOvvyLsuXKDfjqj41Q U15kPcvHdqeBd0tHQxTjag9iMQBqckBu9fPRE+aKprAM+RKZ/PGY4PLGKWh2/sZz GYENLO6Evhubnnli22SxHGX1ZMP/P9B7gYZi9/Nyun0eGpYYVNJRdKCGMiM37XbQ NPItElStU8wWxYSUic0NmNbPhomyyliI -----END CERTIFICATE-----Generated at Mon Apr 29 03:35:05 2024 by rpki-client on console-fra.rpki-client.org