$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft File: tLEObLONU2XQVOjb6Q808sOIsQw.mft (raw, json) Hash identifier: kE8/UBnEHlRt4arfZcDdCVj41Y1tjdpVTK3rbIaBdb0= Subject key identifier: BE:C2:FB:DF:6B:A2:17:BB:C6:14:D7:B9:08:D8:30:A1:E3:CC:A5:54 Authority key identifier: B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C Certificate issuer: /CN=A91CE3A3/serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Certificate serial: 0BB3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft Manifest number: 0B98 Signing time: Thu 02 May 2024 19:28:36 +0000 Manifest this update: Thu 02 May 2024 19:28:36 +0000 Manifest next update: Thu 09 May 2024 19:28:36 +0000 Files and hashes: 1: tLEObLONU2XQVOjb6Q808sOIsQw.crl (hash: e4BGvGYdGOUFj3YsSz+u/LVDL6Npiop0NgID140ILNw=) 2: 30256B5CF7B911EEAB0C6C36C4F9AE02.roa (hash: qy9NNwAedenzkudqT2ZIz6zLSNmdTgzsSWzNkSNvY6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 19:28:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2995 (0xbb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3A3/serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Validity Not Before: May 2 19:28:36 2024 GMT Not After : May 9 19:28:36 2024 GMT Subject: CN=6633e964-9fc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:af:9c:34:56:ac:21:0e:83:7e:e8:9a:10:6d: e6:72:83:f3:1c:a5:64:05:4d:c8:ae:9d:a2:d0:83: 51:ff:68:0a:7d:1b:69:33:08:af:1d:ac:9e:3a:5e: d1:b4:bc:64:7f:75:ac:4c:ce:f3:92:8e:94:bf:3e: e3:d5:60:7b:cc:30:38:b2:19:7a:76:6d:f9:b8:ac: c6:c4:8d:a1:54:a2:3f:3d:db:e9:e9:82:41:72:5b: 10:08:25:fc:87:34:e7:30:cb:3d:9c:4a:8c:fb:30: 3d:da:08:2b:52:a7:c5:6f:44:dd:fc:18:39:bb:53: c7:b3:20:a1:d0:7a:6d:b1:26:8a:a8:20:c1:be:c1: 69:9c:9d:6c:36:c3:e4:97:d3:77:25:28:63:97:e0: 88:10:be:25:8d:06:7e:b4:0c:3e:b9:09:71:53:75: 3c:eb:aa:23:eb:e3:a3:fb:ae:20:44:b3:0d:be:9a: cf:0e:63:60:09:bd:a7:a9:98:63:00:c9:cc:af:c4: fb:8d:56:91:49:95:52:cf:c4:55:c9:73:3c:d2:61: 99:4a:2a:71:bc:5e:8a:22:17:63:3f:e8:e7:b0:4b: 76:30:e2:45:94:95:0d:91:02:6a:73:34:04:bf:71: 7a:df:00:1d:5a:82:f8:0e:7f:8f:1f:dd:87:20:fc: 59:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:C2:FB:DF:6B:A2:17:BB:C6:14:D7:B9:08:D8:30:A1:E3:CC:A5:54 X509v3 Authority Key Identifier: keyid:B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:15:d8:e6:e1:b8:65:6e:f7:bc:0d:3a:2d:ab:df:5b:63:40: 0f:c0:5e:34:15:df:58:70:ca:5e:6e:94:fc:fe:68:23:dc:03: d4:07:fe:89:2a:d3:2d:9b:c0:72:b7:7c:65:97:37:36:86:58: 58:f4:83:99:0b:0b:67:40:2f:a9:c1:a9:a5:a2:00:7e:f5:08: 4e:07:df:af:85:49:77:55:12:4e:e5:1b:78:17:7d:53:55:e4: 34:92:d9:81:fc:23:17:77:6d:01:3e:35:12:49:d3:3b:9d:a7: 9c:b8:5d:d6:45:2d:f2:4b:3a:46:57:42:3d:21:94:88:17:79: 87:68:08:5f:e9:52:d0:88:04:59:b9:2e:d1:e5:92:57:07:00: 82:b0:43:2a:ad:92:b2:1d:24:75:d9:77:95:7a:2f:1c:bb:17: 94:6e:58:54:9d:f6:96:35:60:e7:6f:6a:29:41:a0:a9:82:c2: 0f:2f:1e:58:50:72:b5:af:ec:fd:cc:20:b8:4e:a0:22:96:f5: f3:b3:28:e7:3c:bc:27:89:15:b0:cb:ab:4d:ff:1b:aa:75:e8: 0b:a2:ec:02:7a:6b:e2:d9:af:ed:0d:a7:f6:78:25:45:83:71: c4:7d:14:a2:d4:ef:c0:77:1c:f9:aa:9f:88:3a:9a:e8:02:62: 0c:98:63:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQTMxMTAvBgNVBAUTKEI0QjEwRTZDQjM4RDUzNjVEMDU0RThEQkU5MEYzNEYy QzM4OEIxMEMwHhcNMjQwNTAyMTkyODM2WhcNMjQwNTA5MTkyODM2WjAYMRYwFAYD VQQDEw02NjMzZTk2NC05ZmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA56+cNFasIQ6DfuiaEG3mcoPzHKVkBU3Irp2i0INR/2gKfRtpMwivHayeOl7R tLxkf3WsTM7zko6Uvz7j1WB7zDA4shl6dm35uKzGxI2hVKI/Pdvp6YJBclsQCCX8 hzTnMMs9nEqM+zA92ggrUqfFb0Td/Bg5u1PHsyCh0HptsSaKqCDBvsFpnJ1sNsPk l9N3JShjl+CIEL4ljQZ+tAw+uQlxU3U866oj6+Oj+64gRLMNvprPDmNgCb2nqZhj AMnMr8T7jVaRSZVSz8RVyXM80mGZSipxvF6KIhdjP+jnsEt2MOJFlJUNkQJqczQE v3F63wAdWoL4Dn+PH92HIPxZJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL7C+99r ohe7xhTXuQjYMKHjzKVUMB8GA1UdIwQYMBaAFLSxDmyzjVNl0FTo2+kPNPLDiLEM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNBMy8yMDkxREM4RTA1 MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi90TEVPYkxPTlUyWFFWT2piNlE4MDhzT0lz UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMRU9iTE9OVTJYUVZPamI2UTgwOHNPSXNRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTNBMy8yMDkxREM4RTA1MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi90TEVPYkxPTlUy WFFWT2piNlE4MDhzT0lzUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVFdjm4bhlbve8DTotq99bY0APwF40Fd9YcMpebpT8/mgj3APUB/6J KtMtm8Byt3xllzc2hlhY9IOZCwtnQC+pwamlogB+9QhOB9+vhUl3VRJO5Rt4F31T VeQ0ktmB/CMXd20BPjUSSdM7naecuF3WRS3ySzpGV0I9IZSIF3mHaAhf6VLQiARZ uS7R5ZJXBwCCsEMqrZKyHSR12XeVei8cuxeUblhUnfaWNWDnb2opQaCpgsIPLx5Y UHK1r+z9zCC4TqAilvXzsyjnPLwniRWwy6tN/xuqdegLouwCemvi2a/tDaf2eCVF g3HEfRSi1O/Adxz5qp+IOproAmIMmGOi -----END CERTIFICATE-----Generated at Thu May 2 20:50:36 2024 by rpki-client on console-fra.rpki-client.org