$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.mft File: 3VM9EaneKrkYCFCDvoLVFDTfRUA.mft (raw, json) Hash identifier: gznUgYighQV1KGj0MhdP/Ospm88e0y2hdjMep5xgtUM= Subject key identifier: 8B:4E:E6:C7:05:21:49:2F:35:70:79:DA:10:81:16:55:F0:56:10:D1 Authority key identifier: DD:53:3D:11:A9:DE:2A:B9:18:08:50:83:BE:82:D5:14:34:DF:45:40 Certificate issuer: /CN=A91C8EB6/serialNumber=DD533D11A9DE2AB918085083BE82D51434DF4540 Certificate serial: 14FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3VM9EaneKrkYCFCDvoLVFDTfRUA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.mft Manifest number: 14F4 Signing time: Thu 02 May 2024 17:24:41 +0000 Manifest this update: Thu 02 May 2024 17:24:41 +0000 Manifest next update: Thu 09 May 2024 17:24:41 +0000 Files and hashes: 1: 3VM9EaneKrkYCFCDvoLVFDTfRUA.crl (hash: MyFfipHlcJLhBEdskbE2gIOOje1yAWPP9epaY8cUDCk=) 2: 116B4B06282011E8BBA2F625C4F9AE02.roa (hash: NJfgwr8reyKiWOTsgoS+1qUOFvWlAGnIvjQECs3DnIU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.crl rsync://rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3VM9EaneKrkYCFCDvoLVFDTfRUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 17:24:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5371 (0x14fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8EB6/serialNumber=DD533D11A9DE2AB918085083BE82D51434DF4540 Validity Not Before: May 2 17:24:41 2024 GMT Not After : May 9 17:24:41 2024 GMT Subject: CN=6633cc59-7723 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:4c:3e:2b:be:a3:aa:68:e3:e5:bd:46:07:21: d9:88:13:e9:20:e9:8a:06:f5:0b:1e:02:5c:4d:0f: e3:bf:ed:8e:14:9c:6c:4f:6d:ff:e2:24:48:ba:fb: fa:97:94:ad:b9:22:0a:11:9d:a8:c2:0c:87:9e:2b: f5:f1:2b:3a:13:ff:bc:71:dc:a8:81:8d:3d:97:d3: 05:58:79:c8:a1:e7:c3:1d:fc:04:dd:4f:a9:23:c7: cc:7e:1e:bd:e3:e8:b8:d5:7d:fb:ac:80:f4:04:c6: e6:d0:5e:4b:ed:6d:35:cc:0f:55:ee:6e:a6:a7:e6: 29:67:e3:f0:2d:5f:0e:29:6f:16:f3:76:59:63:7a: f1:6f:06:bd:4f:83:c4:b5:35:81:4c:5e:4f:db:f3: f4:ce:40:f9:81:fd:4a:8b:f3:ed:3f:a3:24:c9:f7: 46:7c:5e:d3:b4:29:f8:68:b3:f8:4c:86:81:db:a3: c2:14:3b:22:92:83:89:59:6a:8d:cc:0a:af:86:72: 56:1c:97:f5:ce:71:e4:e5:1d:c4:b2:cb:85:c0:37: 23:52:86:2f:a9:39:a5:b4:2f:80:5e:70:d4:14:2d: 2e:d3:ab:43:f0:c1:fb:40:d7:fe:9b:a9:63:2e:ff: f7:7c:8e:c5:6e:fe:c3:1e:84:73:46:ef:a4:ab:56: 96:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:4E:E6:C7:05:21:49:2F:35:70:79:DA:10:81:16:55:F0:56:10:D1 X509v3 Authority Key Identifier: keyid:DD:53:3D:11:A9:DE:2A:B9:18:08:50:83:BE:82:D5:14:34:DF:45:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3VM9EaneKrkYCFCDvoLVFDTfRUA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:00:7b:d5:dc:0d:93:23:92:1f:f4:f4:c6:ed:26:9f:a7:74: e1:be:14:24:f2:52:fc:5d:a0:0f:29:70:32:44:2d:9d:31:ec: 36:c5:56:e3:57:4f:d7:ec:da:8a:46:42:ef:30:f7:6d:82:e9: 9f:38:81:84:2e:3d:bb:bb:c3:a9:e7:0a:7e:06:80:f0:4b:b9: 8b:75:d6:9f:40:35:5f:04:14:65:df:c9:68:43:2d:f1:6c:5b: df:7b:c9:38:51:14:f4:0f:30:73:91:51:91:1f:33:5a:6d:99: d7:9b:a7:7d:51:f5:f9:0a:8b:8d:4b:f6:88:cf:be:51:ad:71: 33:ae:11:33:b7:41:f0:b1:02:e8:9a:7b:57:c4:d8:22:c9:78: 84:98:94:4b:67:a9:ef:00:b3:1b:61:0d:a5:72:0a:1a:9a:40: 1c:4f:e5:7a:c4:aa:7c:2a:51:f2:71:66:1f:e6:35:e8:b7:bc: 4c:d3:49:0c:99:33:8c:1b:02:a6:db:d5:99:5b:d8:7b:6c:e7: 42:74:15:98:67:3c:8b:60:7a:ce:47:dd:6d:50:f9:c6:64:40: 9f:03:e2:2f:42:fc:e6:5c:ad:e8:c5:17:6a:1c:61:5b:94:66: 73:4c:d6:56:fc:47:b4:55:64:38:57:d6:8f:c7:51:db:ae:06: 87:6b:f7:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhFQjYxMTAvBgNVBAUTKERENTMzRDExQTlERTJBQjkxODA4NTA4M0JFODJENTE0 MzRERjQ1NDAwHhcNMjQwNTAyMTcyNDQxWhcNMjQwNTA5MTcyNDQxWjAYMRYwFAYD VQQDEw02NjMzY2M1OS03NzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA80w+K76jqmjj5b1GByHZiBPpIOmKBvULHgJcTQ/jv+2OFJxsT23/4iRIuvv6 l5StuSIKEZ2owgyHniv18Ss6E/+8cdyogY09l9MFWHnIoefDHfwE3U+pI8fMfh69 4+i41X37rID0BMbm0F5L7W01zA9V7m6mp+YpZ+PwLV8OKW8W83ZZY3rxbwa9T4PE tTWBTF5P2/P0zkD5gf1Ki/PtP6MkyfdGfF7TtCn4aLP4TIaB26PCFDsikoOJWWqN zAqvhnJWHJf1znHk5R3EssuFwDcjUoYvqTmltC+AXnDUFC0u06tD8MH7QNf+m6lj Lv/3fI7Fbv7DHoRzRu+kq1aW+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFItO5scF IUkvNXB52hCBFlXwVhDRMB8GA1UdIwQYMBaAFN1TPRGp3iq5GAhQg76C1RQ030VA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEVCNi8xMDhGNTNBRTI4 MUYxMUU4QjIwMzgyMjRDNEY5QUUwMi8zVk05RWFuZUtya1lDRkNEdm9MVkZEVGZS VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNWTTlFYW5lS3JrWUNGQ0R2b0xWRkRUZlJVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEVCNi8xMDhGNTNBRTI4MUYxMUU4QjIwMzgyMjRDNEY5QUUwMi8zVk05RWFuZUty a1lDRkNEdm9MVkZEVGZSVUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0AHvV3A2TI5If9PTG7Safp3ThvhQk8lL8XaAPKXAyRC2dMew2xVbj V0/X7NqKRkLvMPdtgumfOIGELj27u8Op5wp+BoDwS7mLddafQDVfBBRl38loQy3x bFvfe8k4URT0DzBzkVGRHzNabZnXm6d9UfX5CouNS/aIz75RrXEzrhEzt0HwsQLo mntXxNgiyXiEmJRLZ6nvALMbYQ2lcgoamkAcT+V6xKp8KlHycWYf5jXot7xM00kM mTOMGwKm29WZW9h7bOdCdBWYZzyLYHrOR91tUPnGZECfA+IvQvzmXK3oxRdqHGFb lGZzTNZW/Ee0VWQ4V9aPx1HbrgaHa/dE -----END CERTIFICATE-----Generated at Thu May 2 20:50:36 2024 by rpki-client on console-fra.rpki-client.org