$ rpki-client -vvf rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft File: lVqjNNYHfBfALW18rdIVmRIeTvo.mft (raw, json) Hash identifier: dO8+tE3EcOmBZWmPAM+CxB6HHGcP/lZQ2WeZwQLlydA= Subject key identifier: F9:80:BB:B3:26:A0:FA:7A:BE:9F:1A:3C:98:AE:34:F7:66:03:D8:87 Authority key identifier: 95:5A:A3:34:D6:07:7C:17:C0:2D:6D:7C:AD:D2:15:99:12:1E:4E:FA Certificate issuer: /CN=A91D01AF/serialNumber=955AA334D6077C17C02D6D7CADD21599121E4EFA Certificate serial: 0710 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft Manifest number: 070A Signing time: Tue 30 Apr 2024 22:54:55 +0000 Manifest this update: Tue 30 Apr 2024 22:54:54 +0000 Manifest next update: Tue 07 May 2024 22:54:54 +0000 Files and hashes: 1: lVqjNNYHfBfALW18rdIVmRIeTvo.crl (hash: 8EVDAefOT3BwyQiWJZ2mv/iZr7N6w4TxAMIseCAv2/g=) 2: AD797FA2F17E11EAA3CC597BC4F9AE02.roa (hash: l83Por6hOyQGHnJRjbOPWErATp3zYej63Ri9KjjPDGE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.crl rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 22:38:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1808 (0x710) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D01AF/serialNumber=955AA334D6077C17C02D6D7CADD21599121E4EFA Validity Not Before: Apr 30 22:54:54 2024 GMT Not After : May 7 22:54:54 2024 GMT Subject: CN=663176bf-4aba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:1b:22:18:a0:62:19:d5:24:fc:b6:a6:26:1f: 7e:ae:e7:f0:69:64:e4:1c:37:08:27:7e:e2:ea:65: b9:b9:16:96:77:23:e9:5e:01:e2:40:6e:60:c5:2a: 97:59:c5:ac:52:b2:67:bb:ad:48:12:4d:9c:d1:89: 20:8e:00:78:7b:95:67:1b:c7:9d:2d:69:ad:d7:c9: c5:6f:db:b1:b0:9e:b0:83:76:f8:90:b0:b3:1b:2c: fc:97:92:68:03:22:62:b1:2b:d5:c0:3e:4f:7e:35: 29:ee:ee:e3:0f:93:76:28:29:db:85:2e:f0:c7:64: 49:68:43:3a:29:74:79:f5:97:30:5e:45:3b:2e:01: ea:f4:7b:63:70:dc:07:57:2b:68:fc:b3:92:ed:38: 4d:ff:c9:24:16:90:d0:5e:e1:4b:66:ab:8e:9b:5c: 62:be:2e:52:cc:06:da:79:bf:7e:77:7c:b0:41:3f: e4:1a:ce:79:0c:c0:80:df:22:63:10:74:af:da:06: c6:05:ac:26:f0:6f:98:c1:0a:f2:01:b2:23:37:99: 7c:ca:9c:8f:19:aa:07:17:f1:d5:fa:79:03:33:74: f4:3e:c4:01:2d:06:d5:d1:87:b7:10:11:db:02:d6: 1c:35:b1:7d:9d:46:8d:f6:58:ec:0f:c3:2c:bf:72: c3:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:80:BB:B3:26:A0:FA:7A:BE:9F:1A:3C:98:AE:34:F7:66:03:D8:87 X509v3 Authority Key Identifier: keyid:95:5A:A3:34:D6:07:7C:17:C0:2D:6D:7C:AD:D2:15:99:12:1E:4E:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:3f:dd:fc:3a:04:01:4d:ca:1f:11:af:fb:5c:71:d8:2a:2f: 6c:19:98:2c:b2:a9:a6:32:61:3e:54:33:ed:b1:6f:5a:a7:f5: 88:c4:23:2a:26:99:64:4d:1a:a3:65:7d:ff:b7:a8:45:33:ea: f7:78:91:c3:10:20:f7:aa:95:85:c2:2d:d7:f5:6b:ae:22:2a: 19:ea:00:7b:e4:88:96:d6:ec:a8:f6:50:a1:35:2a:dc:d0:94: c8:fd:54:05:f8:74:74:e9:20:75:2b:a4:fa:6a:e0:e0:24:f3: 7f:48:dc:d9:b0:27:b2:f0:d4:40:01:c8:3e:ce:cb:cb:81:0c: 6e:ff:87:fa:40:b4:c0:e0:70:b4:ca:20:30:2e:fc:a1:7f:e2: bf:cf:b1:78:47:93:7f:a7:af:52:58:63:18:a3:66:67:a5:5b: 53:6c:71:16:ff:d3:f4:46:9f:e1:1a:2d:48:52:5e:4d:ac:b9: 5b:59:e2:17:9e:12:62:2b:57:28:c3:b3:28:5a:9d:26:5e:6e: 01:d1:4b:b0:a8:7a:0a:2d:e8:b8:8a:92:4e:4b:42:d2:45:7a: be:bb:e7:62:20:0b:78:9f:17:50:dc:8d:46:9c:c2:36:d6:72: 8b:90:0e:41:7a:a7:6f:96:e5:ba:52:71:05:a0:6b:47:f5:2b: 8e:a8:51:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAxQUYxMTAvBgNVBAUTKDk1NUFBMzM0RDYwNzdDMTdDMDJENkQ3Q0FERDIxNTk5 MTIxRTRFRkEwHhcNMjQwNDMwMjI1NDU0WhcNMjQwNTA3MjI1NDU0WjAYMRYwFAYD VQQDEw02NjMxNzZiZi00YWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2hsiGKBiGdUk/LamJh9+rufwaWTkHDcIJ37i6mW5uRaWdyPpXgHiQG5gxSqX WcWsUrJnu61IEk2c0YkgjgB4e5VnG8edLWmt18nFb9uxsJ6wg3b4kLCzGyz8l5Jo AyJisSvVwD5PfjUp7u7jD5N2KCnbhS7wx2RJaEM6KXR59ZcwXkU7LgHq9HtjcNwH Vyto/LOS7ThN/8kkFpDQXuFLZquOm1xivi5SzAbaeb9+d3ywQT/kGs55DMCA3yJj EHSv2gbGBawm8G+YwQryAbIjN5l8ypyPGaoHF/HV+nkDM3T0PsQBLQbV0Ye3EBHb AtYcNbF9nUaN9ljsD8Msv3LDRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPmAu7Mm oPp6vp8aPJiuNPdmA9iHMB8GA1UdIwQYMBaAFJVaozTWB3wXwC1tfK3SFZkSHk76 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDFBRi9DRDdFNzBEOEYx N0QxMUVBQUIzOTI1NzhDNEY5QUUwMi9sVnFqTk5ZSGZCZkFMVzE4cmRJVm1SSWVU dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xWcWpOTllIZkJmQUxXMThyZElWbVJJZVR2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDFBRi9DRDdFNzBEOEYxN0QxMUVBQUIzOTI1NzhDNEY5QUUwMi9sVnFqTk5ZSGZC ZkFMVzE4cmRJVm1SSWVUdm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHP938OgQBTcofEa/7XHHYKi9sGZgssqmmMmE+VDPtsW9ap/WIxCMq JplkTRqjZX3/t6hFM+r3eJHDECD3qpWFwi3X9WuuIioZ6gB75IiW1uyo9lChNSrc 0JTI/VQF+HR06SB1K6T6auDgJPN/SNzZsCey8NRAAcg+zsvLgQxu/4f6QLTA4HC0 yiAwLvyhf+K/z7F4R5N/p69SWGMYo2ZnpVtTbHEW/9P0Rp/hGi1IUl5NrLlbWeIX nhJiK1cow7MoWp0mXm4B0UuwqHoKLei4ipJOS0LSRXq+u+diIAt4nxdQ3I1GnMI2 1nKLkA5BeqdvluW6UnEFoGtH9SuOqFEz -----END CERTIFICATE-----Generated at Tue Apr 30 23:40:16 2024 by rpki-client on console-fra.rpki-client.org