$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft File: o9wYjy1VW0FacV8lkDahpg_8uNk.mft (raw, json) Hash identifier: eaROYPv4hdGBTb1n84OBylcEkMWVlR4qG8ymNj4eAeY= Subject key identifier: AA:58:BF:63:59:0A:B6:FF:63:B7:48:05:65:E1:EE:EB:E9:6A:F3:7A Authority key identifier: A3:DC:18:8F:2D:55:5B:41:5A:71:5F:25:90:36:A1:A6:0F:FC:B8:D9 Certificate issuer: /CN=A91C8F68/serialNumber=A3DC188F2D555B415A715F259036A1A60FFCB8D9 Certificate serial: 0141 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft Manifest number: 013E Signing time: Wed 01 May 2024 05:17:18 +0000 Manifest this update: Wed 01 May 2024 05:17:18 +0000 Manifest next update: Wed 08 May 2024 05:17:18 +0000 Files and hashes: 1: o9wYjy1VW0FacV8lkDahpg_8uNk.crl (hash: sQtjBsTDfEnuxE+mDFIDOoE6164SNxaA2qUH5OaNd8Y=) 2: 2A766EA23A3411EDA1B7D863C4F9AE02.roa (hash: a66eqXBUZfLZkKRWsJcJh3a05RUfhoQl9hv5mdKW/B8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.crl rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 321 (0x141) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8F68/serialNumber=A3DC188F2D555B415A715F259036A1A60FFCB8D9 Validity Not Before: May 1 05:17:18 2024 GMT Not After : May 8 05:17:18 2024 GMT Subject: CN=6631d05e-cc62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c8:a8:2f:e0:07:50:01:1a:fb:f5:d8:ab:93: 75:e1:cf:5b:61:5a:6c:9a:c7:30:f6:4b:7a:1b:1d: fa:dc:00:d7:54:d3:0f:3f:4f:84:ba:df:b1:b0:c3: d1:c2:05:7f:3c:b4:c2:32:c3:62:5f:b0:c6:ac:d2: 36:21:61:15:f1:e4:9e:43:90:06:dd:2b:e9:20:22: fc:99:b3:85:4d:a9:f7:98:91:83:91:53:f9:40:d9: 34:bd:95:ea:a7:4c:20:65:de:de:b0:5d:90:b3:99: 0b:13:9e:94:cd:5e:3d:1f:de:9f:bc:fb:e0:50:22: 6d:6b:01:2c:33:59:c5:bb:cb:fa:92:7e:55:a0:aa: 39:2c:39:c3:cf:1c:2f:ee:f3:45:5c:bb:2b:53:8d: f0:bd:e6:8b:cc:3f:fd:08:42:f6:d2:1a:b4:18:41: e7:1a:b6:46:7b:82:38:fe:2a:6d:19:9d:e5:d3:19: 88:c0:48:ed:21:f7:f1:40:96:51:0f:01:02:ba:7c: fb:f6:6b:3b:af:22:45:94:78:6b:26:3d:df:a0:aa: 3b:bf:c1:ca:c2:bf:84:a2:03:2e:05:8a:49:ef:6c: 4b:c9:98:cc:7f:b7:59:53:de:f6:ab:7a:e8:dc:47: 67:62:1f:b8:31:0d:a9:67:dc:0a:be:11:70:32:4c: ea:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:58:BF:63:59:0A:B6:FF:63:B7:48:05:65:E1:EE:EB:E9:6A:F3:7A X509v3 Authority Key Identifier: keyid:A3:DC:18:8F:2D:55:5B:41:5A:71:5F:25:90:36:A1:A6:0F:FC:B8:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:92:fd:2f:76:98:c8:86:6b:f2:5d:ef:f4:b8:aa:1e:88:35: 52:e1:60:a1:0f:47:54:45:e6:64:d5:fb:43:95:38:d4:57:e4: 15:62:e1:af:7d:72:67:e1:4e:e8:d6:40:7c:fa:b1:bb:cf:94: 07:f9:b4:61:7c:0c:96:a8:e1:7d:00:2f:cd:95:a3:d5:67:dc: d0:ee:85:c5:fe:d4:1d:21:41:ca:48:02:98:f6:54:15:70:3d: 9f:7d:38:01:99:ce:74:41:f7:a3:92:c2:ae:f1:29:84:fd:b8: 61:c6:32:36:b5:bd:5b:ea:61:1e:4f:af:de:29:b3:2e:92:7d: 31:2b:31:c2:b0:51:a2:c2:e0:6f:af:a1:e0:1c:e6:ca:d1:f0: ef:4c:02:87:6c:79:57:39:0d:af:4d:6c:ad:e6:29:3c:2c:e2: 18:85:cb:87:d7:1d:75:27:72:56:40:8f:60:7c:07:17:de:58: 04:95:1d:63:7b:e4:4e:6f:11:6f:fe:87:df:d8:1e:c3:32:09: 8d:ab:14:d8:fc:b4:16:26:53:32:50:5b:f0:92:ee:a7:0b:b5: 66:ca:cc:b3:ac:31:65:d8:85:2b:2d:5c:a4:15:22:79:08:79: ec:05:ac:f0:98:53:2d:b5:c7:d2:0b:b0:9a:34:a3:13:bc:d0: c6:1a:78:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhGNjgxMTAvBgNVBAUTKEEzREMxODhGMkQ1NTVCNDE1QTcxNUYyNTkwMzZBMUE2 MEZGQ0I4RDkwHhcNMjQwNTAxMDUxNzE4WhcNMjQwNTA4MDUxNzE4WjAYMRYwFAYD VQQDEw02NjMxZDA1ZS1jYzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA08ioL+AHUAEa+/XYq5N14c9bYVpsmscw9kt6Gx363ADXVNMPP0+Eut+xsMPR wgV/PLTCMsNiX7DGrNI2IWEV8eSeQ5AG3SvpICL8mbOFTan3mJGDkVP5QNk0vZXq p0wgZd7esF2Qs5kLE56UzV49H96fvPvgUCJtawEsM1nFu8v6kn5VoKo5LDnDzxwv 7vNFXLsrU43wveaLzD/9CEL20hq0GEHnGrZGe4I4/iptGZ3l0xmIwEjtIffxQJZR DwECunz79ms7ryJFlHhrJj3foKo7v8HKwr+EogMuBYpJ72xLyZjMf7dZU972q3ro 3EdnYh+4MQ2pZ9wKvhFwMkzqowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKpYv2NZ Crb/Y7dIBWXh7uvpavN6MB8GA1UdIwQYMBaAFKPcGI8tVVtBWnFfJZA2oaYP/LjZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEY2OC82QjYwQkZCQTNB MzExMUVEQTEwQ0E3NjFDNEY5QUUwMi9vOXdZankxVlcwRmFjVjhsa0RhaHBnXzh1 TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285d1lqeTFWVzBGYWNWOGxrRGFocGdfOHVOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEY2OC82QjYwQkZCQTNBMzExMUVEQTEwQ0E3NjFDNEY5QUUwMi9vOXdZankxVlcw RmFjVjhsa0RhaHBnXzh1TmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIkv0vdpjIhmvyXe/0uKoeiDVS4WChD0dUReZk1ftDlTjUV+QVYuGv fXJn4U7o1kB8+rG7z5QH+bRhfAyWqOF9AC/NlaPVZ9zQ7oXF/tQdIUHKSAKY9lQV cD2ffTgBmc50QfejksKu8SmE/bhhxjI2tb1b6mEeT6/eKbMukn0xKzHCsFGiwuBv r6HgHObK0fDvTAKHbHlXOQ2vTWyt5ik8LOIYhcuH1x11J3JWQI9gfAcX3lgElR1j e+RObxFv/off2B7DMgmNqxTY/LQWJlMyUFvwku6nC7VmysyzrDFl2IUrLVykFSJ5 CHnsBazwmFMttcfSC7CaNKMTvNDGGngR -----END CERTIFICATE-----Generated at Wed May 1 05:59:11 2024 by rpki-client on console-fra.rpki-client.org