$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft File: 4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft (raw, json) Hash identifier: grPaDyizpQgYrI0QCNV/Iy2lifZhDaD5V0A6tUahOxo= Subject key identifier: AB:8A:B6:91:CA:DF:0B:E5:2E:B6:F9:AC:42:87:FF:9B:49:FF:26:88 Authority key identifier: E2:1F:24:E0:C5:4D:BB:93:F6:67:81:44:02:D6:6A:D4:08:07:11:14 Certificate issuer: /CN=A91C4060/serialNumber=E21F24E0C54DBB93F667814402D66AD408071114 Certificate serial: 0659 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft Manifest number: 0654 Signing time: Mon 06 May 2024 23:40:34 +0000 Manifest this update: Mon 06 May 2024 23:40:33 +0000 Manifest next update: Mon 13 May 2024 23:40:33 +0000 Files and hashes: 1: 4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl (hash: /0bwCmQ3gMMnCFXzd3lotmx/Pnyj2vySVdbQHVJEegQ=) 2: 71C26BD039D211EB84B9FD6BC4F9AE02.roa (hash: 9Ioqjb6UfH3GfYuP6JJKmPFvoBaEH5i4iGzHzciFUTM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 23:40:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1625 (0x659) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4060/serialNumber=E21F24E0C54DBB93F667814402D66AD408071114 Validity Not Before: May 6 23:40:33 2024 GMT Not After : May 13 23:40:33 2024 GMT Subject: CN=66396a72-0d1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c6:dc:9c:10:dc:d8:12:24:fe:28:82:74:83: 0d:82:82:ca:a9:d9:f4:05:8c:c3:f6:15:33:50:29: da:55:cc:69:4f:b9:0d:f3:58:75:7f:54:76:ef:f4: 44:14:ea:da:49:60:ef:ec:8f:77:04:06:e5:ef:45: 79:85:14:a9:78:fd:6a:41:a8:97:55:cd:86:8c:b0: 90:8a:9c:33:b8:68:c6:fb:bf:28:f3:fe:29:d9:18: 1c:21:fb:2c:4e:f1:23:1d:48:83:0f:f5:fa:f0:7b: 2a:79:8e:6b:7d:8b:a6:db:d0:f3:07:e5:60:1d:68: a1:ba:dc:c5:1c:bd:e3:fc:99:c3:de:39:46:87:bc: e4:e8:a5:6a:da:cd:cc:9a:b5:b5:24:90:86:83:46: f3:0d:0d:b7:f2:8c:bf:a9:8e:b6:f8:e7:bc:03:e1: f6:cc:6d:fa:8b:cc:88:e7:d6:bc:ff:9b:40:63:9e: 15:2b:73:9f:7b:39:cc:a5:7f:db:0e:ee:4f:25:90: 2b:26:b2:76:15:b4:0f:b9:4c:b8:6b:8c:9e:da:a8: 0b:15:83:7f:90:ae:d2:96:6c:1d:f2:47:1e:50:0c: 91:3c:de:65:43:aa:cb:e9:e5:2d:b4:2f:12:74:8a: 37:06:27:f2:a4:71:7c:b8:e3:24:d8:74:04:18:b5: 18:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:8A:B6:91:CA:DF:0B:E5:2E:B6:F9:AC:42:87:FF:9B:49:FF:26:88 X509v3 Authority Key Identifier: keyid:E2:1F:24:E0:C5:4D:BB:93:F6:67:81:44:02:D6:6A:D4:08:07:11:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:2b:9b:f8:07:20:34:ce:17:da:84:21:ab:67:00:2b:b5:86: da:08:bb:63:be:fc:d5:06:8a:88:74:f4:a4:30:3a:5e:4c:a9: 4e:f5:6f:9d:38:dd:17:70:c5:e5:79:5c:53:98:6b:e7:90:e2: 05:09:88:4f:e5:32:b2:56:d6:e0:86:d7:cc:5c:bc:a8:f3:83: 98:ea:2f:03:07:51:56:8f:5e:30:7c:7e:ac:b4:4b:77:2a:91: 1a:db:5b:db:ac:f5:1e:07:5d:8e:df:d4:03:58:90:ef:04:26: f6:aa:ce:a8:5f:90:af:76:e4:54:a0:0d:3c:29:f7:cc:b6:b4: 8c:18:4a:d2:b7:e3:02:5b:7a:02:46:d4:29:7f:11:1c:63:46: ca:35:d7:03:5f:e2:e4:3e:50:87:6f:d4:d7:91:e4:1b:36:86: fb:a3:95:81:18:db:b1:bd:82:b5:d8:8a:00:79:c6:1a:59:c2: 18:8d:5b:a4:c5:e6:e0:76:1f:65:21:31:ba:d0:1b:72:97:f5: a1:18:4e:34:7a:d7:f7:0a:ce:d4:31:42:ed:e1:3b:5a:29:cb: 76:ea:82:8c:d9:e8:b2:44:fc:e5:be:15:cd:de:45:8c:2d:87: 29:e9:11:37:cc:60:52:a0:9e:60:da:21:68:47:35:05:36:62: 1d:b6:c6:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwNjAxMTAvBgNVBAUTKEUyMUYyNEUwQzU0REJCOTNGNjY3ODE0NDAyRDY2QUQ0 MDgwNzExMTQwHhcNMjQwNTA2MjM0MDMzWhcNMjQwNTEzMjM0MDMzWjAYMRYwFAYD VQQDEw02NjM5NmE3Mi0wZDFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsbcnBDc2BIk/iiCdIMNgoLKqdn0BYzD9hUzUCnaVcxpT7kN81h1f1R27/RE FOraSWDv7I93BAbl70V5hRSpeP1qQaiXVc2GjLCQipwzuGjG+78o8/4p2RgcIfss TvEjHUiDD/X68HsqeY5rfYum29DzB+VgHWihutzFHL3j/JnD3jlGh7zk6KVq2s3M mrW1JJCGg0bzDQ238oy/qY62+Oe8A+H2zG36i8yI59a8/5tAY54VK3OfeznMpX/b Du5PJZArJrJ2FbQPuUy4a4ye2qgLFYN/kK7Slmwd8kceUAyRPN5lQ6rL6eUttC8S dIo3BifypHF8uOMk2HQEGLUYaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKuKtpHK 3wvlLrb5rEKH/5tJ/yaIMB8GA1UdIwQYMBaAFOIfJODFTbuT9meBRALWatQIBxEU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDA2MC81NjkzODlGRTM5 RDAxMUVCOEY0NzE1NjlDNEY5QUUwMi80aDhrNE1WTnU1UDJaNEZFQXRacTFBZ0hF UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRoOGs0TVZOdTVQMlo0RkVBdFpxMUFnSEVSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDA2MC81NjkzODlGRTM5RDAxMUVCOEY0NzE1NjlDNEY5QUUwMi80aDhrNE1WTnU1 UDJaNEZFQXRacTFBZ0hFUlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgK5v4ByA0zhfahCGrZwArtYbaCLtjvvzVBoqIdPSkMDpeTKlO9W+d ON0XcMXleVxTmGvnkOIFCYhP5TKyVtbghtfMXLyo84OY6i8DB1FWj14wfH6stEt3 KpEa21vbrPUeB12O39QDWJDvBCb2qs6oX5CvduRUoA08KffMtrSMGErSt+MCW3oC RtQpfxEcY0bKNdcDX+LkPlCHb9TXkeQbNob7o5WBGNuxvYK12IoAecYaWcIYjVuk xebgdh9lITG60Btyl/WhGE40etf3Cs7UMULt4TtaKct26oKM2eiyRPzlvhXN3kWM LYcp6RE3zGBSoJ5g2iFoRzUFNmIdtsby -----END CERTIFICATE-----Generated at Tue May 7 01:58:27 2024 by rpki-client on console-fra.rpki-client.org