$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/57QbPSVuxr0M5xIbNw3kdBuDXmE.mft File: 57QbPSVuxr0M5xIbNw3kdBuDXmE.mft (raw, json) Hash identifier: zacQVtXjDTjEVHfXCiw7OUa7dM+804rOtVc8Fwhpm4A= Subject key identifier: DD:01:4A:CD:32:6A:B0:0E:79:0D:6A:A3:12:2B:65:95:9F:09:2A:3B Authority key identifier: E7:B4:1B:3D:25:6E:C6:BD:0C:E7:12:1B:37:0D:E4:74:1B:83:5E:61 Certificate issuer: /CN=A91C6A39/serialNumber=E7B41B3D256EC6BD0CE7121B370DE4741B835E61 Certificate serial: 0D35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57QbPSVuxr0M5xIbNw3kdBuDXmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/57QbPSVuxr0M5xIbNw3kdBuDXmE.mft Manifest number: 0D28 Signing time: Mon 06 May 2024 18:46:48 +0000 Manifest this update: Mon 06 May 2024 18:46:48 +0000 Manifest next update: Mon 13 May 2024 18:46:48 +0000 Files and hashes: 1: 57QbPSVuxr0M5xIbNw3kdBuDXmE.crl (hash: Xi7d5NPDCGNZ/PGEFJ8zxJVUhADawvNmUo2mR8Onukg=) 2: 032B593EB1C511E9A4B3CE25C4F9AE02.roa (hash: TXYafClgQVQeXJUBvNnLknPV2XqYxQCmJVpXmho0QT0=) 3: 0F56E156828C11EDA6BCA176C4F9AE02.roa (hash: mITwbrvKWowclf5I2rXkkctzGiZWQzeZoNrUMuqiu/E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/57QbPSVuxr0M5xIbNw3kdBuDXmE.crl rsync://rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/57QbPSVuxr0M5xIbNw3kdBuDXmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57QbPSVuxr0M5xIbNw3kdBuDXmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 18:46:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3381 (0xd35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6A39/serialNumber=E7B41B3D256EC6BD0CE7121B370DE4741B835E61 Validity Not Before: May 6 18:46:48 2024 GMT Not After : May 13 18:46:48 2024 GMT Subject: CN=66392598-f7c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:5e:b6:16:a7:67:79:54:9f:aa:d6:81:b0:0b: 85:1c:62:13:ad:42:30:ac:81:a6:7a:1a:c6:f7:82: a9:f8:ef:08:d7:1a:9b:24:10:3c:2a:66:03:22:d0: 98:ca:7f:b4:bc:a1:f0:d4:87:f0:07:e3:b3:46:6d: 87:86:bd:b6:82:a8:51:e5:1f:b9:35:e8:20:2c:6b: d1:36:c4:7b:3f:89:b4:52:4f:ac:c3:52:b9:a7:50: 0d:52:5c:5b:58:17:e7:ef:77:76:8b:3d:23:a9:79: 6a:0d:9e:86:4e:56:57:90:69:66:20:a2:44:98:a6: c6:99:6a:b2:42:ad:15:89:64:a0:51:4e:a8:c1:7b: 6e:b6:ab:61:e7:bc:01:25:3a:b8:3b:64:fd:0b:a3: 97:bf:bb:07:38:9b:2c:0b:9a:af:83:08:d7:2e:c7: e3:d5:c2:2a:1b:54:48:bc:bd:75:b8:cf:04:76:e0: 93:89:87:14:c5:67:1c:c5:31:dc:d7:2e:3b:a4:00: 33:8f:db:a2:70:a6:e9:5a:6c:74:7e:11:6f:67:a4: d5:9a:08:0f:5b:5e:80:fc:d5:92:e2:91:ba:fd:ce: 7e:46:93:7d:50:34:3f:aa:c5:c8:1f:31:05:47:49: cf:a1:a8:7e:be:10:6e:b8:8a:c9:f6:57:f9:50:f8: e4:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:01:4A:CD:32:6A:B0:0E:79:0D:6A:A3:12:2B:65:95:9F:09:2A:3B X509v3 Authority Key Identifier: keyid:E7:B4:1B:3D:25:6E:C6:BD:0C:E7:12:1B:37:0D:E4:74:1B:83:5E:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/57QbPSVuxr0M5xIbNw3kdBuDXmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57QbPSVuxr0M5xIbNw3kdBuDXmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/57QbPSVuxr0M5xIbNw3kdBuDXmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:3f:88:fa:90:d0:6a:b5:f4:56:2c:52:02:89:fb:65:85:fc: f8:4d:bc:8d:a4:a7:6d:9c:ef:34:17:9d:19:b3:16:31:87:66: 91:31:65:2a:e8:3c:4c:f6:7a:23:31:38:93:2c:c1:6d:be:67: 82:87:07:bd:51:3f:b5:77:ef:36:64:e3:af:de:d2:02:29:6c: ca:65:a3:74:c3:f8:c5:ac:2e:bb:8a:f3:66:2c:79:cf:66:15: 8a:f1:62:16:c4:cf:68:0c:65:ff:2d:a8:67:5d:e3:1c:f6:b4: b2:a7:2b:5f:25:e9:de:ab:af:97:b1:9e:f3:00:3b:09:7d:c9: 73:0d:bc:4d:d0:09:33:8e:f0:04:f3:6d:81:2f:bd:e8:ac:5e: 73:82:5c:a2:74:2e:e2:c5:28:6a:bf:1e:2f:5c:6e:d3:98:1b: 25:a4:cb:52:79:98:58:01:7a:cd:a2:d7:e8:44:f4:ea:6d:72: 14:07:73:f6:2b:fd:f9:22:b5:05:8c:ac:2a:22:fc:2f:17:4f: 53:fa:95:ca:2d:ef:83:1f:64:62:e5:e5:84:1a:5c:ab:b1:55: 72:a2:ee:76:dc:27:28:e1:04:93:7e:8a:98:55:b3:2b:74:08: cb:a1:5d:e7:7c:fc:25:f9:ab:48:f4:aa:a0:77:4d:1d:6a:2a: 71:10:5b:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZBMzkxMTAvBgNVBAUTKEU3QjQxQjNEMjU2RUM2QkQwQ0U3MTIxQjM3MERFNDc0 MUI4MzVFNjEwHhcNMjQwNTA2MTg0NjQ4WhcNMjQwNTEzMTg0NjQ4WjAYMRYwFAYD VQQDEw02NjM5MjU5OC1mN2MwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq162FqdneVSfqtaBsAuFHGITrUIwrIGmehrG94Kp+O8I1xqbJBA8KmYDItCY yn+0vKHw1IfwB+OzRm2Hhr22gqhR5R+5NeggLGvRNsR7P4m0Uk+sw1K5p1ANUlxb WBfn73d2iz0jqXlqDZ6GTlZXkGlmIKJEmKbGmWqyQq0ViWSgUU6owXtutqth57wB JTq4O2T9C6OXv7sHOJssC5qvgwjXLsfj1cIqG1RIvL11uM8EduCTiYcUxWccxTHc 1y47pAAzj9uicKbpWmx0fhFvZ6TVmggPW16A/NWS4pG6/c5+RpN9UDQ/qsXIHzEF R0nPoah+vhBuuIrJ9lf5UPjkowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN0BSs0y arAOeQ1qoxIrZZWfCSo7MB8GA1UdIwQYMBaAFOe0Gz0lbsa9DOcSGzcN5HQbg15h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkEzOS83MzBGMDBCMkIx QzQxMUU5QkVDQjE4MjVDNEY5QUUwMi81N1FiUFNWdXhyME01eEliTncza2RCdURY bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzU3UWJQU1Z1eHIwTTV4SWJOdzNrZEJ1RFhtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkEzOS83MzBGMDBCMkIxQzQxMUU5QkVDQjE4MjVDNEY5QUUwMi81N1FiUFNWdXhy ME01eEliTncza2RCdURYbUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxP4j6kNBqtfRWLFICiftlhfz4TbyNpKdtnO80F50ZsxYxh2aRMWUq 6DxM9nojMTiTLMFtvmeChwe9UT+1d+82ZOOv3tICKWzKZaN0w/jFrC67ivNmLHnP ZhWK8WIWxM9oDGX/LahnXeMc9rSypytfJeneq6+XsZ7zADsJfclzDbxN0AkzjvAE 822BL73orF5zglyidC7ixShqvx4vXG7TmBslpMtSeZhYAXrNotfoRPTqbXIUB3P2 K/35IrUFjKwqIvwvF09T+pXKLe+DH2Ri5eWEGlyrsVVyou523Cco4QSTfoqYVbMr dAjLoV3nfPwl+atI9Kqgd00daipxEFsK -----END CERTIFICATE-----Generated at Mon May 6 20:19:19 2024 by rpki-client on console-fra.rpki-client.org