$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft File: s0it0HgdstIdxNM510-HoDk4ycc.mft (raw, json) Hash identifier: l2wn2bOE+n+MxodmUicCbQWYJJUaSRn6acM1qTsAu6c= Subject key identifier: B1:CA:F0:2D:2B:B3:EE:45:B3:67:CB:1C:7D:1A:07:ED:97:06:63:D8 Authority key identifier: B3:48:AD:D0:78:1D:B2:D2:1D:C4:D3:39:D7:4F:87:A0:39:38:C9:C7 Certificate issuer: /CN=A91C7C44/serialNumber=B348ADD0781DB2D21DC4D339D74F87A03938C9C7 Certificate serial: 011F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s0it0HgdstIdxNM510-HoDk4ycc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft Manifest number: 011B Signing time: Wed 01 May 2024 05:34:40 +0000 Manifest this update: Wed 01 May 2024 05:34:40 +0000 Manifest next update: Wed 08 May 2024 05:34:40 +0000 Files and hashes: 1: s0it0HgdstIdxNM510-HoDk4ycc.crl (hash: Bq1nxF6KGP/IeTUnsQmerPVWlno/NnLQe8/6RXcyMqU=) 2: 945D844463E311EDAD1B0B3FC4F9AE02.roa (hash: I1X7JACg/hLAWHCM0UINIChuMTlGhLwT5KCeL2gJlpM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.crl rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s0it0HgdstIdxNM510-HoDk4ycc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 05:34:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 287 (0x11f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7C44/serialNumber=B348ADD0781DB2D21DC4D339D74F87A03938C9C7 Validity Not Before: May 1 05:34:40 2024 GMT Not After : May 8 05:34:40 2024 GMT Subject: CN=6631d470-61cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:36:21:0e:46:8a:2c:e4:16:b4:5b:b3:11:cd: 5e:37:f6:ee:7f:b6:01:c2:51:25:a3:6b:1a:ff:4c: 8b:5a:4b:3f:e6:03:2c:15:ec:52:71:3c:24:51:25: f8:28:19:80:32:c3:1e:af:f6:c3:28:1d:ac:ab:d4: c5:98:ec:53:95:c5:f0:a9:68:d4:ac:79:95:91:2e: ed:df:49:f2:0a:c9:03:76:4b:9d:39:1f:fa:e5:5c: 01:53:bb:83:af:86:65:0d:43:55:93:4e:48:e9:85: 9d:b8:d0:27:e8:c9:a4:28:fe:f7:d1:ab:2a:60:7a: d2:73:86:5f:21:a3:2c:17:f3:ec:06:6b:1a:82:c0: 9d:29:74:fc:d1:03:7a:40:20:8a:b0:c3:40:85:ff: e3:0b:b9:c3:92:b2:59:09:87:d5:b5:b6:be:3b:23: bd:ec:84:93:4e:fe:bd:b1:75:f5:d2:f6:c7:75:c2: 74:03:5a:52:4c:b1:3a:88:a2:76:6d:2f:74:32:e3: 77:f8:3d:37:1b:97:7a:73:f7:83:a1:9a:c8:1f:e4: fa:ef:3f:01:d5:be:42:aa:c0:55:26:39:35:b4:f7: 76:ff:40:66:1a:7e:11:da:68:5e:64:47:35:81:d6: c2:8f:65:e9:92:84:fb:b3:2c:c1:b9:8f:c1:43:36: eb:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:CA:F0:2D:2B:B3:EE:45:B3:67:CB:1C:7D:1A:07:ED:97:06:63:D8 X509v3 Authority Key Identifier: keyid:B3:48:AD:D0:78:1D:B2:D2:1D:C4:D3:39:D7:4F:87:A0:39:38:C9:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s0it0HgdstIdxNM510-HoDk4ycc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:66:f0:c1:0c:55:e5:76:8d:55:80:8f:47:ae:91:6f:2b:8b: ae:6e:da:93:54:13:15:b1:48:e5:f6:d5:ec:2c:6b:01:9d:2a: d9:6e:c5:f2:3a:51:04:ef:ae:5c:05:6f:1b:3c:aa:ea:9f:09: 3e:2f:5b:e4:22:2f:8e:9d:c8:42:2c:1c:eb:e1:af:d5:5e:1a: b2:3f:18:18:6e:a1:b0:86:3f:89:9a:3f:8a:8a:92:75:7a:7b: 5d:29:a9:2f:ce:80:06:60:31:36:31:92:1f:1d:82:d4:28:c1: fc:43:20:87:c6:5d:ad:82:6d:d5:03:98:82:a1:95:f8:d2:89: 8c:45:59:8e:76:74:da:42:6f:fa:6a:eb:8c:a4:ca:68:50:0a: fc:f3:30:27:24:5d:66:b1:ad:6b:5a:f9:19:29:ac:ff:a2:d2: 2f:86:ff:48:96:2a:e8:ec:21:9e:4a:f6:06:1e:5a:89:b2:86: ec:43:be:db:c8:bf:bb:26:60:74:0f:a5:57:5f:b2:ca:a8:95: c6:94:a1:8b:f4:56:e7:4a:6b:4f:4d:cd:b9:82:86:38:b8:88: bd:d2:f6:b1:7f:b5:7c:45:81:4d:08:70:8a:f2:e3:32:82:68: 39:f8:0b:6d:c3:64:f3:d8:02:1f:12:2e:15:9d:bd:8b:e7:03: f4:e6:22:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdDNDQxMTAvBgNVBAUTKEIzNDhBREQwNzgxREIyRDIxREM0RDMzOUQ3NEY4N0Ew MzkzOEM5QzcwHhcNMjQwNTAxMDUzNDQwWhcNMjQwNTA4MDUzNDQwWjAYMRYwFAYD VQQDEw02NjMxZDQ3MC02MWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3zYhDkaKLOQWtFuzEc1eN/buf7YBwlElo2sa/0yLWks/5gMsFexScTwkUSX4 KBmAMsMer/bDKB2sq9TFmOxTlcXwqWjUrHmVkS7t30nyCskDdkudOR/65VwBU7uD r4ZlDUNVk05I6YWduNAn6MmkKP730asqYHrSc4ZfIaMsF/PsBmsagsCdKXT80QN6 QCCKsMNAhf/jC7nDkrJZCYfVtba+OyO97ISTTv69sXX10vbHdcJ0A1pSTLE6iKJ2 bS90MuN3+D03G5d6c/eDoZrIH+T67z8B1b5CqsBVJjk1tPd2/0BmGn4R2mheZEc1 gdbCj2XpkoT7syzBuY/BQzbrAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLHK8C0r s+5Fs2fLHH0aB+2XBmPYMB8GA1UdIwQYMBaAFLNIrdB4HbLSHcTTOddPh6A5OMnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0M0NC9ENTMzQTdCNDYz REUxMUVEODBCQ0QzMzdDNEY5QUUwMi9zMGl0MEhnZHN0SWR4Tk01MTAtSG9EazR5 Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3MwaXQwSGdkc3RJZHhOTTUxMC1Ib0RrNHljYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0M0NC9ENTMzQTdCNDYzREUxMUVEODBCQ0QzMzdDNEY5QUUwMi9zMGl0MEhnZHN0 SWR4Tk01MTAtSG9EazR5Y2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjZvDBDFXldo1VgI9HrpFvK4uubtqTVBMVsUjl9tXsLGsBnSrZbsXy OlEE765cBW8bPKrqnwk+L1vkIi+OnchCLBzr4a/VXhqyPxgYbqGwhj+Jmj+KipJ1 entdKakvzoAGYDE2MZIfHYLUKMH8QyCHxl2tgm3VA5iCoZX40omMRVmOdnTaQm/6 auuMpMpoUAr88zAnJF1msa1rWvkZKaz/otIvhv9Iliro7CGeSvYGHlqJsobsQ77b yL+7JmB0D6VXX7LKqJXGlKGL9FbnSmtPTc25goY4uIi90vaxf7V8RYFNCHCK8uMy gmg5+Attw2Tz2AIfEi4Vnb2L5wP05iIt -----END CERTIFICATE-----Generated at Wed May 1 07:07:06 2024 by rpki-client on console-fra.rpki-client.org