$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft File: mD14MALFTaj4puKVg4ucrwE2Q1g.mft (raw, json) Hash identifier: 55ec/G20ZrRUh8xtIm3floJuIwYrWIOuztY7lyzpT0s= Subject key identifier: 09:12:E1:AB:06:46:A5:46:14:E3:73:8E:D0:3D:BD:29:FF:CC:0F:0F Authority key identifier: 98:3D:78:30:02:C5:4D:A8:F8:A6:E2:95:83:8B:9C:AF:01:36:43:58 Certificate issuer: /CN=A91CF77D/serialNumber=983D783002C54DA8F8A6E295838B9CAF01364358 Certificate serial: 0765 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft Manifest number: 075F Signing time: Tue 30 Apr 2024 22:38:15 +0000 Manifest this update: Tue 30 Apr 2024 22:38:15 +0000 Manifest next update: Tue 07 May 2024 22:38:15 +0000 Files and hashes: 1: mD14MALFTaj4puKVg4ucrwE2Q1g.crl (hash: yHD+jUkkUubXPTJTKTU36cCOHkxhfb6RYuQ9RrsvyHU=) 2: D24575B2D22E11EA9D4DDE29C4F9AE02.roa (hash: EbIJ4D0HZi+707WhNkR6KhD/Eb+IiaKDuGlSI4b13R0=) 3: 8FADE73CA49B11EEB19E774BC4F9AE02.roa (hash: NeMNxCT66EaS/hDWLfFuBg/VslOEFI5os0H2VhxkVFs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.crl rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 22:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1893 (0x765) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF77D/serialNumber=983D783002C54DA8F8A6E295838B9CAF01364358 Validity Not Before: Apr 30 22:38:15 2024 GMT Not After : May 7 22:38:15 2024 GMT Subject: CN=663172d7-0ca3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:9c:a9:38:3c:39:ce:30:7e:f8:38:c4:4a:5b: 33:04:d2:6b:e2:64:6c:49:5d:08:cf:c3:bc:55:e7: 08:6e:11:47:cd:10:f5:e1:8c:38:88:01:f6:12:7c: aa:9e:25:b8:f9:6b:cd:9e:2c:a0:b8:ac:d7:e8:03: b8:8a:e7:02:4a:d4:cf:63:f6:79:23:66:26:70:01: 33:0d:90:75:be:be:93:0e:e5:93:63:94:22:7d:0f: 20:16:4f:59:12:32:1a:2b:b4:91:5a:34:11:6f:fd: c3:f3:a6:81:f8:22:75:95:93:19:e8:da:12:87:1b: f9:ae:c8:89:a9:2e:12:35:59:47:53:1a:b7:7f:ba: b1:80:bd:50:93:16:77:e5:3e:67:64:bb:49:3f:8f: 48:15:66:a2:eb:4f:0d:0c:1b:dc:0e:60:b6:6f:9b: 7f:06:bc:94:47:43:af:b8:0f:2f:7b:8c:5f:66:1a: f0:ad:8b:a5:74:a2:71:7f:00:83:c7:5b:4f:d5:55: 67:0f:1e:ab:d5:f8:97:78:ba:0f:78:13:99:f6:37: 2b:32:c6:ab:0a:9a:e3:19:7c:0f:c1:a5:76:3c:42: 9e:62:bd:c5:3b:fb:5e:7e:e2:8a:14:16:48:f0:db: 29:1d:5a:2f:38:d5:b7:86:93:ac:94:f7:a1:04:7e: d2:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:12:E1:AB:06:46:A5:46:14:E3:73:8E:D0:3D:BD:29:FF:CC:0F:0F X509v3 Authority Key Identifier: keyid:98:3D:78:30:02:C5:4D:A8:F8:A6:E2:95:83:8B:9C:AF:01:36:43:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:80:76:a1:e0:9c:00:e3:b1:f5:3d:58:0e:dd:95:29:a8:a1: 45:68:a1:cb:ab:57:e0:d3:02:f3:0f:3b:fb:c4:51:3d:00:fa: 3a:8f:9a:eb:b8:43:12:c0:4e:aa:12:76:36:d0:64:26:02:c3: 4a:d7:3b:05:9a:69:e6:35:28:26:e5:24:bb:43:2a:3e:11:22: 90:9c:1f:1c:45:0f:6e:91:f4:95:25:87:38:7a:0f:cd:86:ce: 5c:bc:ad:ae:ce:0f:05:cb:78:e7:e4:26:ef:a7:04:82:a0:fb: 46:3e:44:74:6e:c5:33:be:09:cc:aa:d2:26:50:f8:45:d0:9a: 9e:0d:2c:49:d6:6f:98:02:ec:f8:f8:53:4d:78:81:75:1c:30: 60:5f:1a:c1:33:42:84:eb:c8:f0:fc:1b:1f:81:94:9f:8e:25: 6a:66:db:da:65:e5:a9:32:ea:9c:04:a1:b7:be:0a:23:59:fc: b5:97:c2:1b:ff:7f:2d:71:31:99:39:b8:15:ab:f6:d3:64:0d: 95:50:fe:a3:51:53:e9:08:0c:80:8b:15:7c:bc:ff:a1:79:93: c5:f2:bf:97:1b:ba:ec:93:fa:10:00:f1:45:4b:63:db:00:45: 08:94:c6:1e:e9:3b:46:8b:0e:0c:c4:a7:72:41:64:85:33:8c: c3:f3:df:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y3N0QxMTAvBgNVBAUTKDk4M0Q3ODMwMDJDNTREQThGOEE2RTI5NTgzOEI5Q0FG MDEzNjQzNTgwHhcNMjQwNDMwMjIzODE1WhcNMjQwNTA3MjIzODE1WjAYMRYwFAYD VQQDEw02NjMxNzJkNy0wY2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4pypODw5zjB++DjESlszBNJr4mRsSV0Iz8O8VecIbhFHzRD14Yw4iAH2Enyq niW4+WvNniyguKzX6AO4iucCStTPY/Z5I2YmcAEzDZB1vr6TDuWTY5QifQ8gFk9Z EjIaK7SRWjQRb/3D86aB+CJ1lZMZ6NoShxv5rsiJqS4SNVlHUxq3f7qxgL1QkxZ3 5T5nZLtJP49IFWai608NDBvcDmC2b5t/BryUR0OvuA8ve4xfZhrwrYuldKJxfwCD x1tP1VVnDx6r1fiXeLoPeBOZ9jcrMsarCprjGXwPwaV2PEKeYr3FO/tefuKKFBZI 8NspHVovONW3hpOslPehBH7SXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAkS4asG RqVGFONzjtA9vSn/zA8PMB8GA1UdIwQYMBaAFJg9eDACxU2o+KbilYOLnK8BNkNY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjc3RC8xMUUyNTlEMEQy MkQxMUVBOEFFNzNEMjdDNEY5QUUwMi9tRDE0TUFMRlRhajRwdUtWZzR1Y3J3RTJR MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21EMTRNQUxGVGFqNHB1S1ZnNHVjcndFMlExZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Rjc3RC8xMUUyNTlEMEQyMkQxMUVBOEFFNzNEMjdDNEY5QUUwMi9tRDE0TUFMRlRh ajRwdUtWZzR1Y3J3RTJRMWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALgHah4JwA47H1PVgO3ZUpqKFFaKHLq1fg0wLzDzv7xFE9APo6j5rr uEMSwE6qEnY20GQmAsNK1zsFmmnmNSgm5SS7Qyo+ESKQnB8cRQ9ukfSVJYc4eg/N hs5cvK2uzg8Fy3jn5CbvpwSCoPtGPkR0bsUzvgnMqtImUPhF0JqeDSxJ1m+YAuz4 +FNNeIF1HDBgXxrBM0KE68jw/BsfgZSfjiVqZtvaZeWpMuqcBKG3vgojWfy1l8Ib /38tcTGZObgVq/bTZA2VUP6jUVPpCAyAixV8vP+heZPF8r+XG7rsk/oQAPFFS2Pb AEUIlMYe6TtGiw4MxKdyQWSFM4zD89/o -----END CERTIFICATE-----Generated at Tue Apr 30 23:40:16 2024 by rpki-client on console-fra.rpki-client.org