$ rpki-client -vvf rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft File: CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft (raw, json) Hash identifier: qVfqZCxuKGpY8qVm6Lo3+ux+QAzbaqtF/fFPmwtJ2f4= Subject key identifier: B2:A2:52:22:42:12:E5:E7:89:77:46:27:6A:72:95:59:98:23:9E:81 Authority key identifier: 08:02:5B:9B:44:EE:D8:AE:0B:76:F1:1E:03:72:CE:96:18:77:AD:9F Certificate issuer: /CN=A91C941B/serialNumber=08025B9B44EED8AE0B76F11E0372CE961877AD9F Certificate serial: 0426 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft Manifest number: 041B Signing time: Fri 03 May 2024 02:10:32 +0000 Manifest this update: Fri 03 May 2024 02:10:31 +0000 Manifest next update: Fri 10 May 2024 02:10:31 +0000 Files and hashes: 1: CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl (hash: TUSK7I/oadfgCew7iKFdnAI4RzbJu1QL9dIjlSBFpN4=) 2: B3883EE61A8C11ECBD6CCF18C4F9AE02.roa (hash: 1SiztMWrrOjzVD8IZQc3tHGe6xbD+y3RMtUT94TxEfk=) 3: F719961A1A8611ECB908E939C4F9AE02.roa (hash: UYlgQcxgZvKt/aPYF11YgKV9F95GFY5hL7ix3XcP4Wc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 02:10:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1062 (0x426) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C941B/serialNumber=08025B9B44EED8AE0B76F11E0372CE961877AD9F Validity Not Before: May 3 02:10:31 2024 GMT Not After : May 10 02:10:31 2024 GMT Subject: CN=66344798-55a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:7f:a1:82:aa:36:8f:69:68:ac:cf:8c:72:87: 0f:70:cb:f3:7a:d7:d7:f4:8b:b7:ec:8a:63:37:85: 1b:a4:82:86:23:13:0f:24:73:10:7b:42:62:e8:1c: a2:47:bf:d2:e0:d0:c0:2a:50:b2:ea:4e:ed:f5:41: c0:d3:48:ea:e3:48:37:2b:c4:a4:07:e0:eb:32:c2: 65:4f:59:d3:98:d4:c1:77:ca:80:e5:c4:0f:be:11: d0:0d:04:1c:95:73:4c:b3:ce:0f:d7:1b:5b:fa:9d: 72:eb:78:26:b1:4e:a4:5d:e8:e2:a7:30:14:4d:d0: 18:85:b8:47:ce:80:0b:ba:bc:1b:6e:3c:56:05:67: f5:2c:09:18:a3:db:ad:9d:1c:92:67:6b:0f:05:8b: 93:2c:68:33:1d:0a:86:af:a0:57:bc:3d:8a:ee:42: 4a:d6:dd:54:39:4d:09:9e:a3:5f:dc:2e:d9:a6:12: e2:d1:43:cf:02:a9:c0:91:c2:be:30:7c:b7:75:8c: 82:38:b0:91:69:d2:db:04:07:60:50:7a:b4:ce:e5: f9:93:97:2e:19:7a:15:d2:36:db:ca:3c:80:7b:52: 1b:fd:e3:dd:23:9c:45:74:30:25:29:12:9c:a2:16: e6:13:d9:03:c2:f4:1c:80:c0:1e:b3:8f:40:6a:a3: 69:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:A2:52:22:42:12:E5:E7:89:77:46:27:6A:72:95:59:98:23:9E:81 X509v3 Authority Key Identifier: keyid:08:02:5B:9B:44:EE:D8:AE:0B:76:F1:1E:03:72:CE:96:18:77:AD:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:6b:39:a7:75:ca:79:0e:73:f6:3e:4f:06:ea:b2:4c:27:b0: 3f:5d:f8:b8:65:2f:0b:4c:1f:fc:cf:8c:28:00:b6:18:bf:18: bd:7e:01:e5:f8:a1:ce:5b:ad:03:1c:18:89:5d:b2:b5:e8:8f: 75:6a:08:5d:89:3e:8c:32:b4:54:23:0c:fc:ff:4c:da:da:cb: 15:c7:05:ba:41:0e:d7:e1:e4:c1:00:5f:a2:24:a4:a7:ec:be: de:70:a0:8f:cd:9a:12:78:3e:6a:b7:9e:54:df:9a:92:f0:25: 58:25:45:d9:99:56:cf:e5:83:20:1d:2c:e4:83:81:18:58:95: 44:78:0b:a0:37:12:95:c8:a3:3b:89:2a:ec:0e:6f:7e:db:27: 73:56:3a:84:6d:fa:6e:f8:aa:e7:e4:3b:d0:17:17:6c:5c:0d: 65:03:9f:1a:5e:3c:52:0b:86:9b:55:91:ea:d6:76:05:b8:41: 58:d0:da:e2:0c:77:9b:6b:66:af:8e:ed:6e:5b:20:c8:c2:e8: 84:24:d4:af:ec:da:bd:23:7a:c3:fd:d0:82:d0:1e:36:5f:a7: 75:fd:ca:02:af:c8:d7:97:27:36:45:73:9a:6a:7b:84:47:96: ea:44:ef:8a:b8:07:a0:aa:da:aa:cc:9f:85:2b:23:c4:c9:fa: 50:c2:ef:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk0MUIxMTAvBgNVBAUTKDA4MDI1QjlCNDRFRUQ4QUUwQjc2RjExRTAzNzJDRTk2 MTg3N0FEOUYwHhcNMjQwNTAzMDIxMDMxWhcNMjQwNTEwMDIxMDMxWjAYMRYwFAYD VQQDEw02NjM0NDc5OC01NWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3+hgqo2j2lorM+McocPcMvzetfX9Iu37IpjN4UbpIKGIxMPJHMQe0Ji6Byi R7/S4NDAKlCy6k7t9UHA00jq40g3K8SkB+DrMsJlT1nTmNTBd8qA5cQPvhHQDQQc lXNMs84P1xtb+p1y63gmsU6kXejipzAUTdAYhbhHzoALurwbbjxWBWf1LAkYo9ut nRySZ2sPBYuTLGgzHQqGr6BXvD2K7kJK1t1UOU0JnqNf3C7ZphLi0UPPAqnAkcK+ MHy3dYyCOLCRadLbBAdgUHq0zuX5k5cuGXoV0jbbyjyAe1Ib/ePdI5xFdDAlKRKc ohbmE9kDwvQcgMAes49AaqNpLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLKiUiJC EuXniXdGJ2pylVmYI56BMB8GA1UdIwQYMBaAFAgCW5tE7tiuC3bxHgNyzpYYd62f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTQxQi82OUY2QjdERTFB ODMxMUVDOEM5MjIyMjlDNEY5QUUwMi9DQUpibTBUdTJLNExkdkVlQTNMT2xoaDNy WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NBSmJtMFR1Mks0TGR2RWVBM0xPbGhoM3JaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTQxQi82OUY2QjdERTFBODMxMUVDOEM5MjIyMjlDNEY5QUUwMi9DQUpibTBUdTJL NExkdkVlQTNMT2xoaDNyWjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5azmndcp5DnP2Pk8G6rJMJ7A/Xfi4ZS8LTB/8z4woALYYvxi9fgHl +KHOW60DHBiJXbK16I91aghdiT6MMrRUIwz8/0za2ssVxwW6QQ7X4eTBAF+iJKSn 7L7ecKCPzZoSeD5qt55U35qS8CVYJUXZmVbP5YMgHSzkg4EYWJVEeAugNxKVyKM7 iSrsDm9+2ydzVjqEbfpu+Krn5DvQFxdsXA1lA58aXjxSC4abVZHq1nYFuEFY0Nri DHeba2avju1uWyDIwuiEJNSv7Nq9I3rD/dCC0B42X6d1/coCr8jXlyc2RXOaanuE R5bqRO+KuAegqtqqzJ+FKyPEyfpQwu94 -----END CERTIFICATE-----Generated at Fri May 3 04:45:26 2024 by rpki-client on console-fra.rpki-client.org