$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.mft File: 2zU_lsDQLN1MHwjaG8Fp_uWNcyE.mft (raw, json) Hash identifier: 4c1hjaJQ4ydltdifMu0ZiUGKoZSglEMXvI8uEe/nY80= Subject key identifier: 32:C5:56:10:2F:E2:E9:F6:DD:B9:C1:F2:DB:D0:50:B3:25:B4:9B:32 Authority key identifier: DB:35:3F:96:C0:D0:2C:DD:4C:1F:08:DA:1B:C1:69:FE:E5:8D:73:21 Certificate issuer: /CN=A91CF848/serialNumber=DB353F96C0D02CDD4C1F08DA1BC169FEE58D7321 Certificate serial: 015D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.mft Manifest number: 015B Signing time: Wed 01 May 2024 05:11:23 +0000 Manifest this update: Wed 01 May 2024 05:11:22 +0000 Manifest next update: Wed 08 May 2024 05:11:22 +0000 Files and hashes: 1: 2zU_lsDQLN1MHwjaG8Fp_uWNcyE.crl (hash: 5CtdzwrYJ0MR5twym9Q8k99kqcq1QYmijzExjbx4dCc=) 2: E9399E722E7211EDAE100C3DC4F9AE02.roa (hash: M3T7YxDp3PgO3w0LzCsSvdkq+omaAe3UAtVrwbaswoQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.crl rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 349 (0x15d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF848/serialNumber=DB353F96C0D02CDD4C1F08DA1BC169FEE58D7321 Validity Not Before: May 1 05:11:22 2024 GMT Not After : May 8 05:11:22 2024 GMT Subject: CN=6631cefa-d3f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ea:bf:b7:18:6b:88:81:f6:36:90:13:72:fb: 04:24:ef:c8:3e:5a:75:29:94:b3:1b:b5:85:c4:04: 94:27:37:dd:7a:1f:9d:db:d5:ec:0f:e1:2e:8e:52: 82:76:5e:c5:38:4f:a1:c9:53:e8:a2:22:c1:64:a0: f8:f9:64:0c:d7:b7:06:a5:05:bb:31:ee:97:45:c7: ed:e6:94:69:93:88:88:1f:7a:57:5c:1c:23:69:80: 67:3d:b7:2f:63:45:45:db:c0:c7:5f:0e:d4:07:1c: 9c:5d:9f:4e:ac:4c:2b:24:55:d3:cc:4a:63:46:68: 4d:78:ae:bc:fe:ef:04:9b:42:8f:24:b8:71:8d:d0: 29:7e:5b:f9:80:98:e8:d9:b7:b7:ee:5c:15:08:f9: 5d:31:21:6a:eb:ce:17:37:d9:53:46:a7:98:2a:2d: 1d:34:b9:73:06:1c:31:92:2f:00:5b:b5:e1:e4:c9: 98:57:6b:27:c3:79:17:3f:1f:ac:fc:bb:dc:49:f5: 89:e8:90:e0:ea:4f:0d:23:cd:bf:89:d5:af:1b:b5: 05:45:99:a7:ac:91:de:d5:77:50:c2:e0:c2:f9:48: 06:cd:8b:5a:15:d9:04:bd:9c:b7:5a:99:c4:33:54: 74:d9:49:f4:30:3c:2b:10:c3:a5:ec:49:63:b8:b5: 1c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:C5:56:10:2F:E2:E9:F6:DD:B9:C1:F2:DB:D0:50:B3:25:B4:9B:32 X509v3 Authority Key Identifier: keyid:DB:35:3F:96:C0:D0:2C:DD:4C:1F:08:DA:1B:C1:69:FE:E5:8D:73:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:4c:43:3b:34:96:57:78:6d:b8:56:ce:a1:aa:b7:a8:c0:b1: cb:27:64:22:57:24:07:ac:1c:f6:a3:cf:14:c1:5b:bd:aa:4c: 98:02:20:bc:b5:eb:0d:bc:c2:24:7a:f5:76:7c:52:62:d2:88: 06:27:5a:a7:23:3b:d0:fb:92:ea:7d:6f:a7:e1:01:03:3e:79: c3:7c:db:6c:0a:65:54:10:81:20:30:87:9f:6a:41:97:c1:de: 46:9e:f9:90:1f:76:f8:87:ed:1e:70:dc:69:9e:89:01:b6:15: c6:ae:13:e3:24:d0:7f:01:a2:e8:7d:4c:f5:eb:dd:19:5c:8b: 60:0b:37:23:fb:d5:02:8e:6e:58:9b:0b:b0:07:80:43:a6:49: 28:ca:06:7c:2e:ef:e9:3a:e4:3a:74:75:28:16:0c:6a:e9:97: 8a:26:5f:45:66:c5:a1:41:de:05:e8:be:3b:2a:12:e5:78:fa: 47:35:7d:db:42:d1:c5:de:d3:f6:27:4b:48:6d:88:5e:e6:e8: 54:00:45:c9:16:f1:b1:8f:51:31:04:61:b5:b6:62:8e:d8:1c: f9:8c:82:33:65:35:da:33:cf:cc:3b:68:1b:25:54:e7:88:aa: f0:74:24:14:a2:40:33:61:ff:47:1e:8a:ef:0a:b7:fd:0f:14: 57:6c:0d:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y4NDgxMTAvBgNVBAUTKERCMzUzRjk2QzBEMDJDREQ0QzFGMDhEQTFCQzE2OUZF RTU4RDczMjEwHhcNMjQwNTAxMDUxMTIyWhcNMjQwNTA4MDUxMTIyWjAYMRYwFAYD VQQDEw02NjMxY2VmYS1kM2YyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOq/txhriIH2NpATcvsEJO/IPlp1KZSzG7WFxASUJzfdeh+d29XsD+EujlKC dl7FOE+hyVPooiLBZKD4+WQM17cGpQW7Me6XRcft5pRpk4iIH3pXXBwjaYBnPbcv Y0VF28DHXw7UBxycXZ9OrEwrJFXTzEpjRmhNeK68/u8Em0KPJLhxjdApflv5gJjo 2be37lwVCPldMSFq684XN9lTRqeYKi0dNLlzBhwxki8AW7Xh5MmYV2snw3kXPx+s /LvcSfWJ6JDg6k8NI82/idWvG7UFRZmnrJHe1XdQwuDC+UgGzYtaFdkEvZy3WpnE M1R02Un0MDwrEMOl7EljuLUcNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDLFVhAv 4un23bnB8tvQULMltJsyMB8GA1UdIwQYMBaAFNs1P5bA0CzdTB8I2hvBaf7ljXMh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjg0OC9DQURBQjdCMjJF NkUxMUVEQUVBQjNFMzZDNEY5QUUwMi8yelVfbHNEUUxOMU1Id2phRzhGcF91V05j eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ6VV9sc0RRTE4xTUh3amFHOEZwX3VXTmN5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Rjg0OC9DQURBQjdCMjJFNkUxMUVEQUVBQjNFMzZDNEY5QUUwMi8yelVfbHNEUUxO MU1Id2phRzhGcF91V05jeUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkTEM7NJZXeG24Vs6hqreowLHLJ2QiVyQHrBz2o88UwVu9qkyYAiC8 tesNvMIkevV2fFJi0ogGJ1qnIzvQ+5LqfW+n4QEDPnnDfNtsCmVUEIEgMIefakGX wd5GnvmQH3b4h+0ecNxpnokBthXGrhPjJNB/AaLofUz1690ZXItgCzcj+9UCjm5Y mwuwB4BDpkkoygZ8Lu/pOuQ6dHUoFgxq6ZeKJl9FZsWhQd4F6L47KhLlePpHNX3b QtHF3tP2J0tIbYhe5uhUAEXJFvGxj1ExBGG1tmKO2Bz5jIIzZTXaM8/MO2gbJVTn iKrwdCQUokAzYf9HHorvCrf9DxRXbA0H -----END CERTIFICATE-----Generated at Wed May 1 05:59:12 2024 by rpki-client on console-fra.rpki-client.org