$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft File: JzQEfW6XjVCbqKUabxBkh49Hddo.mft (raw, json) Hash identifier: ZfHjnCfKBDSASEG+M+e6WP9/W9J0f4oOWxC2dZa/UTg= Subject key identifier: 14:2E:28:86:04:FF:36:3A:96:B2:F2:E4:17:DB:DA:A1:4A:03:5F:F8 Authority key identifier: 27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA Certificate issuer: /CN=A91C23C5/serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Certificate serial: 1C65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft Manifest number: 1C58 Signing time: Thu 02 May 2024 16:37:31 +0000 Manifest this update: Thu 02 May 2024 16:37:31 +0000 Manifest next update: Thu 09 May 2024 16:37:31 +0000 Files and hashes: 1: JzQEfW6XjVCbqKUabxBkh49Hddo.crl (hash: 0wIZsJY3YjkKI19JhFrfAXbR3NnhCRXMZOphB1EPIXA=) 2: AC34FBD61C0111EC8ADBF80CC4F9AE02.roa (hash: VAflStlQWDW9sfa6XfWK+CuboZm8fiuMVELAQ+9b/UM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 16:37:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7269 (0x1c65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23C5/serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Validity Not Before: May 2 16:37:31 2024 GMT Not After : May 9 16:37:31 2024 GMT Subject: CN=6633c14b-0cde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a6:cf:dc:3c:dd:18:36:fa:03:66:5d:8a:ff: 18:1e:d8:e4:74:5d:fa:5f:32:b3:35:bc:5e:40:92: 5d:f6:6d:f6:53:56:89:a8:5e:75:93:66:55:bb:32: 9f:84:ac:e4:24:e8:5d:28:10:dd:15:b1:62:76:4a: 93:17:03:d9:c9:8a:6c:62:29:ea:0f:2a:73:33:fe: 4d:e2:fa:15:f3:5d:b9:7e:94:92:18:9a:55:64:0a: 29:74:20:ce:ae:89:a1:77:b9:03:7e:fa:68:37:ef: 14:f8:c0:0a:22:97:91:e1:9d:06:d0:00:4c:81:9f: bd:3d:70:b4:71:75:fd:23:22:58:92:70:ab:6c:3c: 90:ee:3b:46:24:85:51:c6:ea:c1:e0:a3:ef:40:c8: 34:1c:da:3c:fd:50:0e:87:eb:1f:b9:6d:c9:48:37: 12:33:7a:21:d3:b4:8b:42:80:70:2f:df:ee:79:cf: 22:b5:e8:29:94:8d:67:df:2c:d2:8c:d9:ea:16:d9: 5e:e2:62:25:6a:6f:59:4c:b0:fb:ec:4f:aa:2c:59: 1e:3c:61:73:d4:6c:e3:11:b3:d0:7b:52:df:61:9a: e9:9e:75:44:0e:9b:6d:5f:c8:91:c3:44:f0:7c:cb: ce:83:38:87:b9:87:5e:52:2a:52:fd:9e:cd:02:17: e1:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:2E:28:86:04:FF:36:3A:96:B2:F2:E4:17:DB:DA:A1:4A:03:5F:F8 X509v3 Authority Key Identifier: keyid:27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:63:10:c0:d8:6f:85:4a:b2:c3:3d:92:3f:b1:30:c2:2f:1c: 1f:a3:4d:c7:f4:ea:56:17:b3:bc:d0:aa:ea:9b:13:8c:16:6e: 14:be:86:f0:7e:09:86:45:22:63:5c:34:ed:7b:a4:b2:6b:5a: b2:05:34:d9:59:03:c3:31:11:da:a6:c5:77:f9:da:d2:8b:b1: c6:19:77:30:ea:0c:04:86:37:e9:f5:fa:1e:a7:5a:18:fa:89: 7a:44:52:77:f2:ef:4f:cb:40:03:b1:c5:1f:18:69:e5:66:c5: 7c:3f:fc:3d:ad:57:fc:8a:ed:c7:e3:ec:8d:9a:ee:e5:37:75: a1:eb:3b:fb:cf:2c:76:76:d4:8b:45:5f:19:a6:c9:14:fb:56: 3d:9f:2a:ea:08:6c:58:b9:1e:26:b9:48:db:74:fa:3a:3f:9a: 84:f7:1f:ce:72:5a:81:16:34:08:67:b8:c6:4b:35:af:df:32: 9b:86:1d:3d:58:c7:17:96:ef:5a:7d:0a:78:63:25:98:98:26: 96:57:05:10:5e:45:26:dd:af:f2:b7:9d:db:1d:7f:34:9e:40: 2c:68:b0:38:a4:69:3c:37:8e:66:5c:cf:2a:68:d7:0f:b3:f5: 59:af:17:73:1d:65:26:b6:54:9e:c0:6b:64:82:37:59:f2:99: f0:ba:10:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzQzUxMTAvBgNVBAUTKDI3MzQwNDdENkU5NzhENTA5QkE4QTUxQTZGMTA2NDg3 OEY0Nzc1REEwHhcNMjQwNTAyMTYzNzMxWhcNMjQwNTA5MTYzNzMxWjAYMRYwFAYD VQQDEw02NjMzYzE0Yi0wY2RlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqbP3DzdGDb6A2Zdiv8YHtjkdF36XzKzNbxeQJJd9m32U1aJqF51k2ZVuzKf hKzkJOhdKBDdFbFidkqTFwPZyYpsYinqDypzM/5N4voV8125fpSSGJpVZAopdCDO romhd7kDfvpoN+8U+MAKIpeR4Z0G0ABMgZ+9PXC0cXX9IyJYknCrbDyQ7jtGJIVR xurB4KPvQMg0HNo8/VAOh+sfuW3JSDcSM3oh07SLQoBwL9/uec8itegplI1n3yzS jNnqFtle4mIlam9ZTLD77E+qLFkePGFz1GzjEbPQe1LfYZrpnnVEDpttX8iRw0Tw fMvOgziHuYdeUipS/Z7NAhfhdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBQuKIYE /zY6lrLy5Bfb2qFKA1/4MB8GA1UdIwQYMBaAFCc0BH1ul41Qm6ilGm8QZIePR3Xa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNDNS84MzFBMjBGRUI1 QzMxMUU2QjUxNDNBMkFDNEY5QUUwMi9KelFFZlc2WGpWQ2JxS1VhYnhCa2g0OUhk ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p6UUVmVzZYalZDYnFLVWFieEJraDQ5SGRkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNDNS84MzFBMjBGRUI1QzMxMUU2QjUxNDNBMkFDNEY5QUUwMi9KelFFZlc2WGpW Q2JxS1VhYnhCa2g0OUhkZG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4YxDA2G+FSrLDPZI/sTDCLxwfo03H9OpWF7O80KrqmxOMFm4Uvobw fgmGRSJjXDTte6Sya1qyBTTZWQPDMRHapsV3+drSi7HGGXcw6gwEhjfp9foep1oY +ol6RFJ38u9Py0ADscUfGGnlZsV8P/w9rVf8iu3H4+yNmu7lN3Wh6zv7zyx2dtSL RV8ZpskU+1Y9nyrqCGxYuR4muUjbdPo6P5qE9x/OclqBFjQIZ7jGSzWv3zKbhh09 WMcXlu9afQp4YyWYmCaWVwUQXkUm3a/yt53bHX80nkAsaLA4pGk8N45mXM8qaNcP s/VZrxdzHWUmtlSewGtkgjdZ8pnwuhD5 -----END CERTIFICATE-----Generated at Thu May 2 17:43:49 2024 by rpki-client on console-fra.rpki-client.org