$ rpki-client -vvf rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft File: _IholOLXDjUuTxaAUsUbBasFrMU.mft (raw, json) Hash identifier: xFytphz5md795Hw4+CizokK3VgfxSN02sMLa7QCvr+U= Subject key identifier: FF:05:74:F0:1F:53:D2:26:E5:5F:06:CA:9F:4F:B5:06:98:BD:28:80 Authority key identifier: FC:88:68:94:E2:D7:0E:35:2E:4F:16:80:52:C5:1B:05:AB:05:AC:C5 Certificate issuer: /CN=A91CABF0/serialNumber=FC886894E2D70E352E4F168052C51B05AB05ACC5 Certificate serial: 37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IholOLXDjUuTxaAUsUbBasFrMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft Manifest number: 36 Signing time: Wed 15 May 2024 08:27:46 +0000 Manifest this update: Wed 15 May 2024 08:27:45 +0000 Manifest next update: Wed 22 May 2024 08:27:45 +0000 Files and hashes: 1: _IholOLXDjUuTxaAUsUbBasFrMU.crl (hash: kI2Vb/16MRaM2Eggzw2GJsf84ibR98nIOdo1Evn7Sck=) 2: 740B66A6C09A11EE9839DC42C4F9AE02.roa (hash: TlwKY8840Dm8xfdNqjL0RFl5yxFx6ZTK9aojXdZLogY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.crl rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IholOLXDjUuTxaAUsUbBasFrMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CABF0/serialNumber=FC886894E2D70E352E4F168052C51B05AB05ACC5 Validity Not Before: May 15 08:27:45 2024 GMT Not After : May 22 08:27:45 2024 GMT Subject: CN=66447201-2c3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:af:76:33:da:df:5f:76:76:ad:06:26:27:7e: 56:ca:a8:a6:e9:a6:51:cf:2c:7d:a5:0d:ce:b1:42: b8:b0:f5:3b:9d:22:0a:dc:c8:73:3e:79:70:9e:34: 31:65:da:59:45:2a:7d:2b:33:66:34:8e:34:63:67: 6c:f2:c9:33:fa:91:a8:16:98:3f:5f:ca:dd:94:c3: 39:2f:02:65:2c:20:86:f8:ba:0f:47:83:0b:d1:45: 06:75:86:62:e4:3e:fe:85:4c:57:f5:fa:d8:58:dc: 32:f1:25:30:52:87:39:23:32:de:73:18:73:32:95: 7a:85:4e:19:7c:7a:50:b2:fa:cc:a0:bb:91:70:cc: 7f:af:2e:f2:da:1e:b5:99:5d:9d:97:36:3a:8e:30: e8:70:0f:50:1c:1d:11:b8:81:37:e9:ab:e3:e5:3e: 9f:24:ef:97:f2:14:c3:4c:ce:c6:4b:a2:91:05:21: 21:cd:02:24:8f:68:d9:b1:88:9f:9b:55:f7:64:16: 38:17:97:1d:4c:68:6d:e7:74:9a:2a:c0:95:55:29: ae:61:fc:2a:91:24:88:81:8d:65:45:f8:92:76:21: 24:fe:ae:ac:63:4b:ef:22:7d:e0:38:20:6f:80:43: a5:34:53:2f:78:79:27:b3:67:ce:a0:e5:f6:a4:39: 94:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:05:74:F0:1F:53:D2:26:E5:5F:06:CA:9F:4F:B5:06:98:BD:28:80 X509v3 Authority Key Identifier: keyid:FC:88:68:94:E2:D7:0E:35:2E:4F:16:80:52:C5:1B:05:AB:05:AC:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IholOLXDjUuTxaAUsUbBasFrMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:ba:ac:fb:5e:a6:e1:b6:77:c3:d6:84:ae:25:54:46:5c:2b: 79:25:33:c8:2e:c6:7b:6a:68:5e:f8:5b:d5:f8:2a:05:06:b1: 7c:c9:10:1e:9d:a4:48:bf:8f:a4:ab:9e:82:62:92:d4:95:78: a8:8b:46:ce:e7:5c:76:a1:5a:20:de:b9:a0:ea:79:21:83:74: 03:39:b2:e6:f7:26:ad:4e:34:67:bc:25:40:20:5b:4d:12:58: 5d:3b:d1:06:f3:38:39:e0:c0:0e:63:1b:98:7d:cc:f5:67:e1: 12:65:54:2d:45:2a:62:ee:b4:70:8b:31:e0:f4:19:0a:71:9b: 81:67:cd:34:f1:9f:7f:fb:eb:ce:46:b6:b8:78:f7:8a:0a:26: c2:1c:29:af:6a:44:21:f7:f0:23:48:7d:d2:f1:25:3c:a5:0b: 50:ea:af:dc:88:b9:e5:fa:ee:ee:9f:8c:5e:61:4d:3c:6e:19: c2:54:5c:5a:17:24:bf:0b:61:dc:a5:a7:c9:74:3a:2c:5b:3b: 88:74:2d:5c:ea:6b:0f:28:f8:8e:68:75:19:af:c6:2e:d6:eb: be:ee:dd:93:fc:dc:2f:8f:a0:35:b8:1a:3c:39:a6:a5:e7:ce: 84:7f:76:94:cb:a1:86:1a:a6:a0:e4:a2:f8:f3:0a:e6:e6:73: e3:23:1f:1d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QUJGMDExMC8GA1UEBRMoRkM4ODY4OTRFMkQ3MEUzNTJFNEYxNjgwNTJDNTFCMDVB QjA1QUNDNTAeFw0yNDA1MTUwODI3NDVaFw0yNDA1MjIwODI3NDVaMBgxFjAUBgNV BAMTDTY2NDQ3MjAxLTJjM2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+r3Yz2t9fdnatBiYnflbKqKbpplHPLH2lDc6xQriw9TudIgrcyHM+eXCeNDFl 2llFKn0rM2Y0jjRjZ2zyyTP6kagWmD9fyt2UwzkvAmUsIIb4ug9HgwvRRQZ1hmLk Pv6FTFf1+thY3DLxJTBShzkjMt5zGHMylXqFThl8elCy+sygu5FwzH+vLvLaHrWZ XZ2XNjqOMOhwD1AcHRG4gTfpq+PlPp8k75fyFMNMzsZLopEFISHNAiSPaNmxiJ+b VfdkFjgXlx1MaG3ndJoqwJVVKa5h/CqRJIiBjWVF+JJ2IST+rqxjS+8ifeA4IG+A Q6U0Uy94eSezZ86g5fakOZQFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/wV08B9T 0iblXwbKn0+1Bpi9KIAwHwYDVR0jBBgwFoAU/IholOLXDjUuTxaAUsUbBasFrMUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNBQkYwL0Q5NkJBNjYwQzA5 OTExRUVCOTUwNUE0MUM0RjlBRTAyL19JaG9sT0xYRGpVdVR4YUFVc1ViQmFzRnJN VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvX0lob2xPTFhEalV1VHhhQVVzVWJCYXNGck1VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNB QkYwL0Q5NkJBNjYwQzA5OTExRUVCOTUwNUE0MUM0RjlBRTAyL19JaG9sT0xYRGpV dVR4YUFVc1ViQmFzRnJNVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACm6rPtepuG2d8PWhK4lVEZcK3klM8guxntqaF74W9X4KgUGsXzJEB6d pEi/j6SrnoJiktSVeKiLRs7nXHahWiDeuaDqeSGDdAM5sub3Jq1ONGe8JUAgW00S WF070QbzODngwA5jG5h9zPVn4RJlVC1FKmLutHCLMeD0GQpxm4FnzTTxn3/7685G trh494oKJsIcKa9qRCH38CNIfdLxJTylC1Dqr9yIueX67u6fjF5hTTxuGcJUXFoX JL8LYdylp8l0OixbO4h0LVzqaw8o+I5odRmvxi7W677u3ZP83C+PoDW4Gjw5pqXn zoR/dpTLoYYapqDkovjzCubmc+MjHx0= -----END CERTIFICATE-----Generated at Wed May 15 09:28:15 2024 by rpki-client on console-fra.rpki-client.org