$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft File: 2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft (raw, json) Hash identifier: I89xecRb0gitqJyRw8L5bD7qeqxWG0wt7r2fA7gP1Ek= Subject key identifier: 95:B9:6A:EC:6B:2A:A0:B2:73:46:12:97:AD:39:E3:9F:CE:BB:10:D2 Authority key identifier: D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D Certificate issuer: /CN=A91C2B93/serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Certificate serial: 18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft Manifest number: 15 Signing time: Wed 29 May 2024 09:30:46 +0000 Manifest this update: Wed 29 May 2024 09:30:46 +0000 Manifest next update: Wed 05 Jun 2024 09:30:46 +0000 Files and hashes: 1: 2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl (hash: eql+e/BbDhHwuXvE9NKiYrJyqq4AKA0rESHcAuFqADk=) 2: B00A68E6014A11EFA8F03B5BC4F9AE02.roa (hash: dCFmmnGaeXc/Xyg5+AqlJy4nQ5RSSq2JLasc/NAHwbg=) 3: E2037F8C019911EFAFFEEC5DC4F9AE02.roa (hash: Om1Rc8FPcByfXN7P7h9FuPt4QrBbGaM+Ndfd120fzOc=) 4: B0BE3042014A11EFA8F03B5BC4F9AE02.roa (hash: KPY2wegfaa3tnC/Njnc64HaModZkMYm0j/OEMDfIXmk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 09:25:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2B93/serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Validity Not Before: May 29 09:30:46 2024 GMT Not After : Jun 5 09:30:46 2024 GMT Subject: CN=6656f5c6-a630 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:69:62:ac:1a:d0:63:eb:cc:9c:68:78:b7:9e: e0:3f:0a:ff:d1:eb:21:86:91:90:5c:5f:4a:e8:5a: fb:f2:63:15:5d:fb:9c:f6:f5:3f:36:a8:d0:20:f0: b6:72:ce:5b:25:90:7c:91:63:0c:d4:dc:e1:81:66: 99:a0:a6:cb:c9:39:7b:79:7a:04:67:be:ed:88:3a: a2:df:04:53:02:4a:d1:6a:f9:78:a8:e1:1c:22:86: 17:81:9c:1f:ee:ca:d2:7c:2d:b7:8f:6a:ae:4f:d9: d0:1f:81:54:02:b0:97:7d:af:6e:68:16:44:22:e2: c0:14:c3:b8:2e:e1:9e:1d:f2:1b:46:69:dd:2f:a1: f2:1c:82:20:22:df:7c:6b:c8:6b:6b:88:c2:d7:ec: 0c:14:ec:76:71:16:32:3c:3b:90:11:22:64:46:e4: d7:f4:56:3a:e8:75:5d:b0:68:1a:31:70:a7:52:e7: 9d:95:0d:1a:5c:d2:00:b1:bc:32:7a:77:ad:71:c0: 98:b1:bb:98:61:5b:80:1f:58:15:dd:95:88:49:8a: 8b:60:fe:c3:36:92:fe:68:3c:68:dc:de:2e:08:c7: 41:45:bc:5e:66:cf:e2:49:78:7c:09:1b:ad:9a:7a: 09:d0:71:fd:a0:e5:31:3f:84:e8:b0:a2:19:52:b3: f1:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:B9:6A:EC:6B:2A:A0:B2:73:46:12:97:AD:39:E3:9F:CE:BB:10:D2 X509v3 Authority Key Identifier: keyid:D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:39:4d:86:85:66:d7:6e:dd:1c:13:80:84:e1:eb:ac:a2:ab: 07:c7:b2:c2:14:ee:d9:09:2a:48:cb:67:bd:85:04:41:b7:3b: 26:82:2e:1c:f6:2f:53:c8:07:25:74:f1:61:c8:a7:d3:8d:d5: 60:0d:37:fb:28:42:2d:47:5b:a7:08:c5:78:25:a1:44:3d:ef: 2e:3a:85:b2:7e:2b:47:5a:a7:81:b7:73:a3:3c:e5:ff:e0:d4: 7e:b2:6b:02:16:e6:42:6b:03:12:34:41:26:85:c6:47:b8:4f: aa:5d:99:40:b3:37:a3:4b:87:52:aa:50:04:d7:f9:1d:33:18: 8f:2a:c5:6f:82:09:97:c6:b8:eb:a6:55:aa:a0:fc:c7:b0:45: 74:32:3f:c3:e5:db:3b:ba:3a:24:b9:b0:f6:ac:f1:ce:49:33: b2:eb:5e:ef:c3:55:b1:68:fc:92:f0:3d:71:4d:64:7c:c0:c0: 6c:47:a3:20:77:d8:72:97:2f:c3:15:fe:0b:a7:49:b5:39:a2: a3:3e:43:3e:b9:08:94:1e:68:1c:f8:65:28:30:4d:c4:24:e6: 92:4d:e2:a7:d4:0f:c5:d3:69:18:6f:4e:03:00:8b:8b:9b:64: fd:69:ef:a1:21:48:37:8e:58:e0:86:57:69:d1:f4:8d:16:9d: 6b:9b:dd:ff -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MkI5MzExMC8GA1UEBRMoRDlENjVGN0YzNjA5MEM0MDFCQ0YyMEQ0QkM4MEM0M0Yw REM1OTMzRDAeFw0yNDA1MjkwOTMwNDZaFw0yNDA2MDUwOTMwNDZaMBgxFjAUBgNV BAMTDTY2NTZmNWM2LWE2MzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/aWKsGtBj68ycaHi3nuA/Cv/R6yGGkZBcX0roWvvyYxVd+5z29T82qNAg8LZy zlslkHyRYwzU3OGBZpmgpsvJOXt5egRnvu2IOqLfBFMCStFq+Xio4RwihheBnB/u ytJ8LbePaq5P2dAfgVQCsJd9r25oFkQi4sAUw7gu4Z4d8htGad0vofIcgiAi33xr yGtriMLX7AwU7HZxFjI8O5ARImRG5Nf0VjrodV2waBoxcKdS552VDRpc0gCxvDJ6 d61xwJixu5hhW4AfWBXdlYhJiotg/sM2kv5oPGjc3i4Ix0FFvF5mz+JJeHwJG62a egnQcf2g5TE/hOiwohlSs/HnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUlblq7Gsq oLJzRhKXrTnjn867ENIwHwYDVR0jBBgwFoAU2dZffzYJDEAbzyDUvIDEPw3Fkz0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMyQjkzLzNBQzg3NEVFMDE0 MzExRUY4MjVBNjQ2NUM0RjlBRTAyLzJkWmZmellKREVBYnp5RFV2SURFUHczRmt6 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMmRaZmZ6WUpERUFienlEVXZJREVQdzNGa3owLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMy QjkzLzNBQzg3NEVFMDE0MzExRUY4MjVBNjQ2NUM0RjlBRTAyLzJkWmZmellKREVB Ynp5RFV2SURFUHczRmt6MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKc5TYaFZtdu3RwTgITh66yiqwfHssIU7tkJKkjLZ72FBEG3OyaCLhz2 L1PIByV08WHIp9ON1WANN/soQi1HW6cIxXgloUQ97y46hbJ+K0dap4G3c6M85f/g 1H6yawIW5kJrAxI0QSaFxke4T6pdmUCzN6NLh1KqUATX+R0zGI8qxW+CCZfGuOum Vaqg/MewRXQyP8Pl2zu6OiS5sPas8c5JM7LrXu/DVbFo/JLwPXFNZHzAwGxHoyB3 2HKXL8MV/gunSbU5oqM+Qz65CJQeaBz4ZSgwTcQk5pJN4qfUD8XTaRhvTgMAi4ub ZP1p76EhSDeOWOCGV2nR9I0WnWub3f8= -----END CERTIFICATE-----Generated at Wed May 29 11:18:34 2024 by rpki-client on console-fra.rpki-client.org