$ rpki-client -vvf rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.mft File: 3CH4ZzeyOX3SsmCej7QGhuPI92E.mft (raw, json) Hash identifier: OWFv0sGHHSWiOqaMXrsxuF+ODFLRrPV3+uaMlsIPMrA= Subject key identifier: D4:73:FE:85:A3:E9:09:90:56:13:FF:10:8D:82:02:A6:FB:B1:5E:7E Authority key identifier: DC:21:F8:67:37:B2:39:7D:D2:B2:60:9E:8F:B4:06:86:E3:C8:F7:61 Certificate issuer: /CN=A91C799C/serialNumber=DC21F86737B2397DD2B2609E8FB40686E3C8F761 Certificate serial: 06B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3CH4ZzeyOX3SsmCej7QGhuPI92E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.mft Manifest number: 06B3 Signing time: Sat 04 May 2024 23:16:59 +0000 Manifest this update: Sat 04 May 2024 23:16:59 +0000 Manifest next update: Sat 11 May 2024 23:16:59 +0000 Files and hashes: 1: 3CH4ZzeyOX3SsmCej7QGhuPI92E.crl (hash: 5QsLRzOkTUL0DFlAtipgiHt7gIwfOL6/bYXaXY7b3mw=) 2: 9F5F0EC6135911EBBC97C718C4F9AE02.roa (hash: LwyG3cBK685X5Hy6zcxvokAuNx9OxDQ6PWKOHUrID2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.crl rsync://rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3CH4ZzeyOX3SsmCej7QGhuPI92E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1719 (0x6b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C799C/serialNumber=DC21F86737B2397DD2B2609E8FB40686E3C8F761 Validity Not Before: May 4 23:16:59 2024 GMT Not After : May 11 23:16:59 2024 GMT Subject: CN=6636c1eb-d3cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:4b:11:26:66:fd:2f:88:37:99:6f:23:5a:c1: 5c:fb:8a:66:aa:e2:44:3d:45:ac:95:f0:95:5f:f1: 7a:80:93:49:fc:94:d1:f8:de:9b:63:f5:4c:dc:9f: 07:2b:c9:72:05:5a:bf:4d:66:94:49:1e:90:46:4a: a7:1d:8a:70:4c:25:49:d4:ad:7a:7b:9b:64:4e:85: 26:58:13:6b:4c:89:97:09:cd:19:5b:8b:00:00:1d: e8:0b:c4:9a:96:f3:ec:d1:10:6c:5c:71:20:3f:f5: 97:b9:74:b5:8e:79:b3:31:9d:ce:75:15:91:8d:64: 46:f6:eb:bb:08:03:69:3a:1f:ff:83:fc:05:1c:65: 97:29:03:62:16:34:c4:08:7b:fe:6a:57:4c:d9:bf: cf:67:cc:e3:4f:3e:67:6b:21:79:52:4d:7e:66:3c: ef:62:28:70:83:f2:5a:2d:72:da:7f:2e:4f:73:d9: e7:40:b3:06:5d:4d:83:0b:c8:f1:7f:e3:61:d3:9b: 72:b4:ee:f7:81:aa:a1:f3:e1:bd:69:67:c7:e6:f1: d0:7d:c4:54:48:44:c8:9a:56:d9:88:0e:30:78:8a: a5:4d:45:9f:a4:c0:9b:63:5d:38:81:b5:1f:3c:15: e5:7f:25:e9:83:ed:ef:b8:f5:bb:51:6c:4f:f9:e3: 85:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:73:FE:85:A3:E9:09:90:56:13:FF:10:8D:82:02:A6:FB:B1:5E:7E X509v3 Authority Key Identifier: keyid:DC:21:F8:67:37:B2:39:7D:D2:B2:60:9E:8F:B4:06:86:E3:C8:F7:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3CH4ZzeyOX3SsmCej7QGhuPI92E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:fd:e5:b3:7c:0a:31:a7:8e:e0:d5:57:60:38:a8:a1:8f:75: 8c:9d:0b:ff:d6:2c:3b:e8:de:76:51:7c:45:62:10:31:b8:91: b0:16:97:8d:b2:54:21:de:3e:9f:79:9d:e2:fe:de:3c:7c:3c: 52:9a:bc:c7:5d:f8:df:26:56:e4:8b:59:18:dc:5d:65:74:28: c7:c2:1e:87:2f:c1:8f:c3:5e:46:a0:cc:f7:0b:40:ea:9e:0a: 6e:63:c1:d9:56:ea:d6:63:69:ba:26:fb:27:f1:59:38:7c:5c: f4:8a:9b:b3:83:29:41:a5:9a:46:91:12:09:4b:6e:6b:88:cc: 5a:fd:e0:5a:96:22:23:27:37:e7:ba:57:2b:69:73:90:79:25: 66:29:0a:7d:60:a4:6a:42:56:e3:75:79:e1:a9:bc:f5:5a:1c: 0d:47:29:7e:ba:68:0c:4e:20:e8:fd:3d:02:06:5d:72:dd:02: 01:9c:bc:0d:88:34:ba:44:7d:6c:cb:04:77:d6:e4:16:e8:7c: 8b:d8:ac:f5:d4:2e:e1:97:d0:25:87:b0:cc:55:36:07:84:35: 6f:80:b3:96:55:a4:c8:84:27:aa:ae:8e:8d:2b:05:da:73:81: f8:f4:68:9f:5b:5e:47:d2:b2:40:b9:8b:57:17:52:72:e0:2a: 80:4f:21:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc5OUMxMTAvBgNVBAUTKERDMjFGODY3MzdCMjM5N0REMkIyNjA5RThGQjQwNjg2 RTNDOEY3NjEwHhcNMjQwNTA0MjMxNjU5WhcNMjQwNTExMjMxNjU5WjAYMRYwFAYD VQQDEw02NjM2YzFlYi1kM2NiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA40sRJmb9L4g3mW8jWsFc+4pmquJEPUWslfCVX/F6gJNJ/JTR+N6bY/VM3J8H K8lyBVq/TWaUSR6QRkqnHYpwTCVJ1K16e5tkToUmWBNrTImXCc0ZW4sAAB3oC8Sa lvPs0RBsXHEgP/WXuXS1jnmzMZ3OdRWRjWRG9uu7CANpOh//g/wFHGWXKQNiFjTE CHv+aldM2b/PZ8zjTz5nayF5Uk1+ZjzvYihwg/JaLXLafy5Pc9nnQLMGXU2DC8jx f+Nh05tytO73gaqh8+G9aWfH5vHQfcRUSETImlbZiA4weIqlTUWfpMCbY104gbUf PBXlfyXpg+3vuPW7UWxP+eOF4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNRz/oWj 6QmQVhP/EI2CAqb7sV5+MB8GA1UdIwQYMBaAFNwh+Gc3sjl90rJgno+0BobjyPdh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzk5Qy9BMkRGQjMzNjEz NTcxMUVCOEQxM0IyMTVDNEY5QUUwMi8zQ0g0WnpleU9YM1NzbUNlajdRR2h1UEk5 MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNDSDRaemV5T1gzU3NtQ2VqN1FHaHVQSTkyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzk5Qy9BMkRGQjMzNjEzNTcxMUVCOEQxM0IyMTVDNEY5QUUwMi8zQ0g0WnpleU9Y M1NzbUNlajdRR2h1UEk5MkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB//eWzfAoxp47g1VdgOKihj3WMnQv/1iw76N52UXxFYhAxuJGwFpeN slQh3j6feZ3i/t48fDxSmrzHXfjfJlbki1kY3F1ldCjHwh6HL8GPw15GoMz3C0Dq ngpuY8HZVurWY2m6Jvsn8Vk4fFz0ipuzgylBpZpGkRIJS25riMxa/eBaliIjJzfn ulcraXOQeSVmKQp9YKRqQlbjdXnhqbz1WhwNRyl+umgMTiDo/T0CBl1y3QIBnLwN iDS6RH1sywR31uQW6HyL2Kz11C7hl9Alh7DMVTYHhDVvgLOWVaTIhCeqro6NKwXa c4H49GifW15H0rJAuYtXF1Jy4CqATyGh -----END CERTIFICATE-----Generated at Sun May 5 00:12:30 2024 by rpki-client on console-fra.rpki-client.org