$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft File: 2QDd8konYiv5ZDdX7byv-u4yHDc.mft (raw, json) Hash identifier: h/3NnHnaP9EHKNoUsWw4904ZHKKAQz4aPDKepp7d9O8= Subject key identifier: FC:6F:E8:FF:3E:A6:B9:60:87:F5:BC:38:E4:AB:C5:7B:5A:27:19:2B Authority key identifier: D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 Certificate issuer: /CN=A91C7773/serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Certificate serial: 0D83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft Manifest number: 0D75 Signing time: Thu 02 May 2024 18:40:07 +0000 Manifest this update: Thu 02 May 2024 18:40:06 +0000 Manifest next update: Thu 09 May 2024 18:40:06 +0000 Files and hashes: 1: 2QDd8konYiv5ZDdX7byv-u4yHDc.crl (hash: OhDbnHER4FdWrqODBWUpP9SAS545ZkJDXYv5TLADp9c=) 2: A47D2EC84C1E11EEBA8CDB4BC4F9AE02.roa (hash: T7IBSrfCyp29EdA+pBMAlhjWNwITSpBbT33uwuVc7Co=) 3: 70F417104B1511EEB17AE059C4F9AE02.roa (hash: F9Z/vsgvq85axUrN39zW0cz5sNEX8ybx5f+P2WiQyNo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 18:40:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3459 (0xd83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7773/serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Validity Not Before: May 2 18:40:06 2024 GMT Not After : May 9 18:40:06 2024 GMT Subject: CN=6633de06-28ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ab:b6:00:5c:ab:48:74:1d:9a:df:e7:62:48: 52:16:c9:a7:bd:c9:f8:31:07:b5:98:67:03:2a:96: fa:dc:1d:f2:91:e6:72:cd:9c:55:6e:24:53:9d:21: 48:99:86:3a:20:f5:d1:5e:b8:bf:6d:9b:fb:c1:2e: d0:90:8e:4a:8c:5e:f0:fd:c8:75:94:37:6e:89:9b: 5c:ef:53:ee:be:c9:9b:95:31:da:0d:2c:75:5f:04: f1:e2:55:2d:d8:bc:22:06:6c:24:79:df:28:ec:f7: dd:cb:62:3d:cf:c4:05:1e:87:dc:ae:08:5d:d0:14: b0:fd:5d:c7:a2:7a:1e:aa:d3:7d:12:8b:e8:3c:2d: c3:3c:df:99:f9:d9:2b:81:53:9e:0b:2e:63:9d:e0: b0:71:4a:94:65:e5:5f:d3:f6:20:a2:d5:04:ae:ad: 6f:bf:df:40:f6:8e:21:be:2c:b1:7a:38:d6:ac:72: 29:1f:5b:fe:0f:cb:5a:e9:3f:39:16:0a:62:00:47: 40:66:ee:ec:be:dc:1c:53:2a:22:05:c4:cb:24:61: d3:50:85:bf:c7:44:ac:dc:7c:7b:df:d3:54:10:95: e0:c0:09:2d:d4:73:37:98:e0:ea:89:6c:ca:78:01: d9:b5:49:ed:07:8d:08:aa:b2:08:c4:e2:d1:4f:d7: 2c:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:6F:E8:FF:3E:A6:B9:60:87:F5:BC:38:E4:AB:C5:7B:5A:27:19:2B X509v3 Authority Key Identifier: keyid:D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:7c:8d:e2:8a:04:4c:ff:87:3e:e3:75:53:ca:8b:7c:ec:39: 6e:bb:32:ff:ad:6b:f0:66:55:ed:de:66:70:0b:36:87:c9:58: 1b:f6:76:c6:fd:db:de:8b:a9:57:29:6d:0b:42:1e:d2:3c:08: 89:53:f6:20:fb:44:06:e8:88:df:bd:d3:16:25:40:2c:87:54: 2f:bf:50:20:b0:4b:61:12:b0:aa:dd:bc:7e:5d:18:fc:10:2e: 2b:fb:c0:a0:f2:43:6b:d5:a7:ad:f1:26:56:01:92:2f:28:5e: 14:b4:d2:9b:9b:4a:af:5d:9a:66:fd:f3:3a:37:50:cc:a3:cd: 51:b0:60:14:cd:d2:74:fb:97:52:b2:e5:4b:8b:c4:23:4e:73: ed:1a:c1:52:41:bf:f3:71:74:44:49:0f:8a:1a:2f:de:f0:d8: dd:8a:a9:74:18:5a:98:be:41:53:cc:7a:55:29:62:4f:a5:74: b6:e1:02:3e:bf:30:1f:41:89:4c:4a:87:3e:a9:9e:00:a6:a5: 2f:a1:e4:ea:94:1b:e8:e9:ca:ab:12:d1:ae:8b:ea:61:0d:bb: 04:fd:e6:02:87:36:50:1f:db:32:ab:8b:bf:07:e1:17:5c:25: d6:ea:10:f4:1b:b3:5a:a1:c5:db:a4:95:f2:74:93:00:92:b8: 14:14:71:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3NzMxMTAvBgNVBAUTKEQ5MDBEREYyNEEyNzYyMkJGOTY0Mzc1N0VEQkNBRkZB RUUzMjFDMzcwHhcNMjQwNTAyMTg0MDA2WhcNMjQwNTA5MTg0MDA2WjAYMRYwFAYD VQQDEw02NjMzZGUwNi0yOGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzau2AFyrSHQdmt/nYkhSFsmnvcn4MQe1mGcDKpb63B3ykeZyzZxVbiRTnSFI mYY6IPXRXri/bZv7wS7QkI5KjF7w/ch1lDduiZtc71PuvsmblTHaDSx1XwTx4lUt 2LwiBmwked8o7Pfdy2I9z8QFHofcrghd0BSw/V3HonoeqtN9EovoPC3DPN+Z+dkr gVOeCy5jneCwcUqUZeVf0/YgotUErq1vv99A9o4hviyxejjWrHIpH1v+D8ta6T85 FgpiAEdAZu7svtwcUyoiBcTLJGHTUIW/x0Ss3Hx739NUEJXgwAkt1HM3mODqiWzK eAHZtUntB40IqrIIxOLRT9csHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPxv6P8+ prlgh/W8OOSrxXtaJxkrMB8GA1UdIwQYMBaAFNkA3fJKJ2Ir+WQ3V+28r/ruMhw3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzc3My9BRDMyMjM3Q0Ey RTgxMUU5QkFFNzhENDdDNEY5QUUwMi8yUURkOGtvbllpdjVaRGRYN2J5di11NHlI RGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRRGQ4a29uWWl2NVpEZFg3Ynl2LXU0eUhEYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzc3My9BRDMyMjM3Q0EyRTgxMUU5QkFFNzhENDdDNEY5QUUwMi8yUURkOGtvbllp djVaRGRYN2J5di11NHlIRGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4fI3iigRM/4c+43VTyot87DluuzL/rWvwZlXt3mZwCzaHyVgb9nbG /dvei6lXKW0LQh7SPAiJU/Yg+0QG6IjfvdMWJUAsh1Qvv1AgsEthErCq3bx+XRj8 EC4r+8Cg8kNr1aet8SZWAZIvKF4UtNKbm0qvXZpm/fM6N1DMo81RsGAUzdJ0+5dS suVLi8QjTnPtGsFSQb/zcXRESQ+KGi/e8Njdiql0GFqYvkFTzHpVKWJPpXS24QI+ vzAfQYlMSoc+qZ4ApqUvoeTqlBvo6cqrEtGui+phDbsE/eYChzZQH9syq4u/B+EX XCXW6hD0G7NaocXbpJXydJMAkrgUFHEG -----END CERTIFICATE-----Generated at Thu May 2 20:50:36 2024 by rpki-client on console-fra.rpki-client.org