$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.mft File: SnOxbS7p6c1MP8C9YQkcSJBT1DY.mft (raw, json) Hash identifier: xpPVMHIHkbfhlgRkzeSPEq8OY5hWFnwZp6kOpjqN+NM= Subject key identifier: 29:31:35:75:48:01:15:8F:A3:BB:41:37:A1:89:C4:68:07:ED:AB:E4 Authority key identifier: 4A:73:B1:6D:2E:E9:E9:CD:4C:3F:C0:BD:61:09:1C:48:90:53:D4:36 Certificate issuer: /CN=A91CF364/serialNumber=4A73B16D2EE9E9CD4C3FC0BD61091C489053D436 Certificate serial: 0864 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SnOxbS7p6c1MP8C9YQkcSJBT1DY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.mft Manifest number: 085F Signing time: Tue 30 Apr 2024 21:58:27 +0000 Manifest this update: Tue 30 Apr 2024 21:58:27 +0000 Manifest next update: Tue 07 May 2024 21:58:27 +0000 Files and hashes: 1: SnOxbS7p6c1MP8C9YQkcSJBT1DY.crl (hash: Gze3uMtGd7K0QyySoHMsD3Tgq3KRi+mHgnK7VFCZpFg=) 2: 1DEAACDA9F8511EABAA10F3BC4F9AE02.roa (hash: RKzT8WfiNly987ZV5/67jTokO6WLne0D32l07Yxs0jg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.crl rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SnOxbS7p6c1MP8C9YQkcSJBT1DY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 21:58:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2148 (0x864) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF364/serialNumber=4A73B16D2EE9E9CD4C3FC0BD61091C489053D436 Validity Not Before: Apr 30 21:58:27 2024 GMT Not After : May 7 21:58:27 2024 GMT Subject: CN=66316983-0615 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ac:56:08:b6:3c:fd:21:41:ae:05:5c:04:5b: 33:d1:ad:3b:30:94:1c:0f:c4:32:38:d8:a4:48:08: 0e:7b:cf:92:e1:a8:fe:68:16:bc:e4:18:b4:e0:91: b4:cf:7c:96:b1:c1:ca:a0:16:e9:8b:25:d3:49:dd: b0:c5:28:87:ab:9b:32:83:03:7c:da:1f:5a:e0:7c: 7b:83:be:ce:01:bd:bb:42:18:41:35:14:ae:65:fc: 17:ad:5c:56:ab:d6:73:de:95:ec:ec:97:ee:8d:d5: 28:20:fe:b6:13:3e:56:d3:e9:01:94:ac:2b:4a:e0: 4a:d5:d0:bc:1d:7d:2d:01:6a:29:7c:62:f4:77:37: ce:2f:eb:fa:29:f7:ec:83:3f:44:4b:c1:fc:00:26: 46:8c:1a:f6:b7:1b:26:ab:d3:b2:2d:67:a8:b0:f5: 64:8f:60:c5:12:bc:a1:45:ea:f7:60:7f:3b:d5:19: e0:fa:c9:16:68:69:e8:a4:8f:40:77:fb:1f:22:0a: 32:a2:e3:b6:cb:c8:b1:65:79:13:8b:1f:df:21:70: 82:34:b5:9c:ce:58:03:11:04:2b:24:fc:03:79:83: bb:23:59:2a:f1:f1:72:0c:08:ff:1a:bf:83:96:8b: 8b:da:7b:7b:08:b0:0b:0b:ce:68:03:28:72:a9:e8: 17:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:31:35:75:48:01:15:8F:A3:BB:41:37:A1:89:C4:68:07:ED:AB:E4 X509v3 Authority Key Identifier: keyid:4A:73:B1:6D:2E:E9:E9:CD:4C:3F:C0:BD:61:09:1C:48:90:53:D4:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SnOxbS7p6c1MP8C9YQkcSJBT1DY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:45:dd:b5:f2:b1:5a:bf:62:46:16:f0:c9:23:8a:cf:1a:70: 43:3d:2c:65:99:3b:cc:f8:69:25:7a:2b:cf:72:46:90:34:55: 09:7e:1a:b3:9b:83:3d:63:2e:16:4f:e1:b8:f6:52:51:67:e8: 03:27:e5:a3:9d:a3:43:29:c3:08:29:26:bf:44:09:1d:b6:30: 5d:62:56:12:12:02:f6:2b:c1:96:22:61:4c:4d:e7:07:c2:2d: ca:52:34:8c:b4:14:72:f4:f7:a4:24:85:5d:dc:fe:c9:97:c1: 0d:84:b3:f0:cc:75:76:75:e3:1f:8c:5e:8d:de:da:05:85:96: 33:38:c5:ca:60:5d:40:7b:a8:32:7a:0f:90:bc:26:eb:88:1d: 29:9b:48:0b:e2:40:7e:bf:76:18:7b:a7:63:1f:d1:81:6e:aa: 5b:72:74:a0:3a:2d:46:0e:8f:8b:b2:9e:cc:83:9a:17:08:ce: 4c:05:c9:38:5b:12:e2:c5:da:39:50:4f:b1:8b:f2:d5:23:00: 6f:90:cb:41:b6:f0:05:91:6e:be:c1:c3:08:f7:f2:d7:fc:cc: 12:84:1e:b1:e2:2e:8f:60:25:18:e9:e2:bc:32:92:72:51:2b: 2a:66:5f:6f:ac:03:dd:19:1e:8b:67:5a:79:50:c2:0e:5b:a7: ad:a9:1e:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0YzNjQxMTAvBgNVBAUTKDRBNzNCMTZEMkVFOUU5Q0Q0QzNGQzBCRDYxMDkxQzQ4 OTA1M0Q0MzYwHhcNMjQwNDMwMjE1ODI3WhcNMjQwNTA3MjE1ODI3WjAYMRYwFAYD VQQDEw02NjMxNjk4My0wNjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA36xWCLY8/SFBrgVcBFsz0a07MJQcD8QyONikSAgOe8+S4aj+aBa85Bi04JG0 z3yWscHKoBbpiyXTSd2wxSiHq5sygwN82h9a4Hx7g77OAb27QhhBNRSuZfwXrVxW q9Zz3pXs7JfujdUoIP62Ez5W0+kBlKwrSuBK1dC8HX0tAWopfGL0dzfOL+v6Kffs gz9ES8H8ACZGjBr2txsmq9OyLWeosPVkj2DFEryhRer3YH871Rng+skWaGnopI9A d/sfIgoyouO2y8ixZXkTix/fIXCCNLWczlgDEQQrJPwDeYO7I1kq8fFyDAj/Gr+D louL2nt7CLALC85oAyhyqegXBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCkxNXVI ARWPo7tBN6GJxGgH7avkMB8GA1UdIwQYMBaAFEpzsW0u6enNTD/AvWEJHEiQU9Q2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjM2NC83MTZBNTlBQzlG ODMxMUVBOTMxNDkxMzVDNEY5QUUwMi9Tbk94YlM3cDZjMU1QOEM5WVFrY1NKQlQx RFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NuT3hiUzdwNmMxTVA4QzlZUWtjU0pCVDFEWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjM2NC83MTZBNTlBQzlGODMxMUVBOTMxNDkxMzVDNEY5QUUwMi9Tbk94YlM3cDZj MU1QOEM5WVFrY1NKQlQxRFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKRd218rFav2JGFvDJI4rPGnBDPSxlmTvM+GkleivPckaQNFUJfhqz m4M9Yy4WT+G49lJRZ+gDJ+WjnaNDKcMIKSa/RAkdtjBdYlYSEgL2K8GWImFMTecH wi3KUjSMtBRy9PekJIVd3P7Jl8ENhLPwzHV2deMfjF6N3toFhZYzOMXKYF1Ae6gy eg+QvCbriB0pm0gL4kB+v3YYe6djH9GBbqpbcnSgOi1GDo+Lsp7Mg5oXCM5MBck4 WxLixdo5UE+xi/LVIwBvkMtBtvAFkW6+wcMI9/LX/MwShB6x4i6PYCUY6eK8MpJy USsqZl9vrAPdGR6LZ1p5UMIOW6etqR70 -----END CERTIFICATE-----Generated at Tue Apr 30 22:56:19 2024 by rpki-client on console-fra.rpki-client.org