$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBB09/611DABA07CE811ECAC894839C4F9AE02/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.mft File: l1vVXWFcmGCsz9hgmYU7yxmpm-Q.mft (raw, json) Hash identifier: hSIXAfnpyr0fjyCFUdQflQjHSaebUzJ1YYivQl2wj4s= Subject key identifier: FB:8A:C8:EB:4F:CB:6A:A5:89:B4:16:6B:00:5D:98:1D:1C:A2:E9:C3 Authority key identifier: 97:5B:D5:5D:61:5C:98:60:AC:CF:D8:60:99:85:3B:CB:19:A9:9B:E4 Certificate issuer: /CN=A91CBB09/serialNumber=975BD55D615C9860ACCFD86099853BCB19A99BE4 Certificate serial: 0328 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBB09/611DABA07CE811ECAC894839C4F9AE02/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.mft Manifest number: 0324 Signing time: Fri 03 May 2024 03:07:59 +0000 Manifest this update: Fri 03 May 2024 03:07:59 +0000 Manifest next update: Fri 10 May 2024 03:07:59 +0000 Files and hashes: 1: l1vVXWFcmGCsz9hgmYU7yxmpm-Q.crl (hash: 18+/BCwTGs6sssckGwAC1GSNCzFQsC9jwFxO71H//10=) 2: F865B8887CEB11ECA79BD83DC4F9AE02.roa (hash: 6xprviQ5lZ30ync43cM7NG0EsLbka8U2e313DgawSyY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBB09/611DABA07CE811ECAC894839C4F9AE02/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.crl rsync://rpki.apnic.net/member_repository/A91CBB09/611DABA07CE811ECAC894839C4F9AE02/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:07:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 808 (0x328) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBB09/serialNumber=975BD55D615C9860ACCFD86099853BCB19A99BE4 Validity Not Before: May 3 03:07:59 2024 GMT Not After : May 10 03:07:59 2024 GMT Subject: CN=6634550f-59ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:21:d2:08:64:87:d8:84:22:51:a0:41:fb:b5: 5e:0d:34:4f:cc:97:24:b8:4e:35:d8:3f:d2:a1:f5: b9:a6:66:dd:94:8b:d1:25:95:cd:24:5d:ec:85:fd: ae:1b:96:56:c5:fa:c2:44:76:e1:dd:21:f1:4a:6e: 6d:9e:1e:6d:75:83:e1:6e:ee:6d:f1:97:8d:cb:89: de:36:38:15:3c:35:7c:cb:6e:8e:ee:10:99:d3:79: 39:98:5d:3b:a0:48:8f:8a:8c:e5:88:a5:5e:5c:b4: af:4f:6b:cf:a7:ce:96:2a:55:1a:4f:85:1e:db:47: a1:f2:ab:5b:be:01:ba:16:5d:56:91:b8:b3:8e:b1: bb:2c:b7:24:de:22:1b:1a:3a:8d:0f:39:1d:fa:9f: f4:10:79:26:a9:e5:12:1e:54:6e:35:73:cd:57:9e: e8:71:bf:a7:cf:ed:2d:c3:16:51:fe:f0:c4:b0:7e: 42:65:b6:cb:17:ba:1d:14:ec:9b:86:62:af:02:92: 20:80:2c:f1:76:a8:98:ee:bf:d1:39:48:c1:95:c3: 5c:ee:fb:78:6a:c2:45:ea:c7:79:5f:7e:52:af:fe: 8d:13:fe:da:09:ef:03:89:42:d0:5c:76:e5:b6:11: 33:a8:a3:db:a4:37:51:92:06:82:cd:23:99:6b:bf: fc:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:8A:C8:EB:4F:CB:6A:A5:89:B4:16:6B:00:5D:98:1D:1C:A2:E9:C3 X509v3 Authority Key Identifier: keyid:97:5B:D5:5D:61:5C:98:60:AC:CF:D8:60:99:85:3B:CB:19:A9:9B:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBB09/611DABA07CE811ECAC894839C4F9AE02/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBB09/611DABA07CE811ECAC894839C4F9AE02/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:f7:1f:77:55:b7:1b:96:c8:fc:3a:f4:ed:68:97:b8:88:75: 0e:09:58:9e:0c:e4:8b:15:fb:d9:0b:69:96:e3:72:29:8d:55: 1c:44:de:2e:9a:0b:f6:44:7f:e7:2c:91:14:0f:32:7f:0a:6b: 78:d3:17:7a:c5:53:c2:6e:dd:dd:eb:36:3d:83:dc:9e:46:85: 41:f6:af:bf:ee:e1:4d:e0:2f:35:0b:3f:98:8d:20:42:28:bb: 1c:62:c0:ea:3a:4c:28:6d:ef:21:e4:60:4d:05:07:79:e0:d8: 74:1c:d7:91:aa:2e:5e:e0:f5:28:58:84:b6:6e:af:8e:44:c3: 6c:60:a6:b6:4f:97:ca:d2:95:cb:30:e4:9f:08:8c:e7:19:e8: 17:a1:3d:e1:7d:68:8d:07:7c:b7:6e:2b:ef:90:64:15:28:77: 23:b1:90:92:f2:33:54:9f:f8:5c:ef:a8:ca:dd:ba:e5:71:44: 55:e6:fd:a9:03:04:01:ea:95:31:9c:96:57:8f:72:5d:d2:0d: e8:2b:b2:a4:75:94:36:10:12:68:90:b1:bf:de:3a:c4:20:31: fc:df:13:0f:ca:27:f7:0c:16:e9:93:66:46:17:e6:9b:8b:4b: 44:d1:5b:37:88:4d:8a:76:3b:5d:7c:ac:16:97:c9:0a:1d:c8: 07:ab:47:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAygwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JCMDkxMTAvBgNVBAUTKDk3NUJENTVENjE1Qzk4NjBBQ0NGRDg2MDk5ODUzQkNC MTlBOTlCRTQwHhcNMjQwNTAzMDMwNzU5WhcNMjQwNTEwMDMwNzU5WjAYMRYwFAYD VQQDEw02NjM0NTUwZi01OWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0yHSCGSH2IQiUaBB+7VeDTRPzJckuE412D/SofW5pmbdlIvRJZXNJF3shf2u G5ZWxfrCRHbh3SHxSm5tnh5tdYPhbu5t8ZeNy4neNjgVPDV8y26O7hCZ03k5mF07 oEiPiozliKVeXLSvT2vPp86WKlUaT4Ue20eh8qtbvgG6Fl1WkbizjrG7LLck3iIb GjqNDzkd+p/0EHkmqeUSHlRuNXPNV57ocb+nz+0twxZR/vDEsH5CZbbLF7odFOyb hmKvApIggCzxdqiY7r/ROUjBlcNc7vt4asJF6sd5X35Sr/6NE/7aCe8DiULQXHbl thEzqKPbpDdRkgaCzSOZa7/8UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPuKyOtP y2qlibQWawBdmB0counDMB8GA1UdIwQYMBaAFJdb1V1hXJhgrM/YYJmFO8sZqZvk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkIwOS82MTFEQUJBMDdD RTgxMUVDQUM4OTQ4MzlDNEY5QUUwMi9sMXZWWFdGY21HQ3N6OWhnbVlVN3l4bXBt LVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2wxdlZYV0ZjbUdDc3o5aGdtWVU3eXhtcG0tUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkIwOS82MTFEQUJBMDdDRTgxMUVDQUM4OTQ4MzlDNEY5QUUwMi9sMXZWWFdGY21H Q3N6OWhnbVlVN3l4bXBtLVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAy9x93Vbcblsj8OvTtaJe4iHUOCVieDOSLFfvZC2mW43IpjVUcRN4u mgv2RH/nLJEUDzJ/Cmt40xd6xVPCbt3d6zY9g9yeRoVB9q+/7uFN4C81Cz+YjSBC KLscYsDqOkwobe8h5GBNBQd54Nh0HNeRqi5e4PUoWIS2bq+ORMNsYKa2T5fK0pXL MOSfCIznGegXoT3hfWiNB3y3bivvkGQVKHcjsZCS8jNUn/hc76jK3brlcURV5v2p AwQB6pUxnJZXj3Jd0g3oK7KkdZQ2EBJokLG/3jrEIDH83xMPyif3DBbpk2ZGF+ab i0tE0Vs3iE2KdjtdfKwWl8kKHcgHq0dF -----END CERTIFICATE-----Generated at Fri May 3 04:45:27 2024 by rpki-client on console-fra.rpki-client.org