$ rpki-client -vvf rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft File: 8bZbeXYWOXNS7L1KLHdPz37G1HA.mft (raw, json) Hash identifier: 4zscwez6Pdo13Zy8LeKLHUW0VU0Xzo/DiXkObQKaaWg= Subject key identifier: 16:98:D0:F6:B5:11:7B:AC:FA:EC:70:3C:37:97:E3:EF:CC:C4:82:69 Authority key identifier: F1:B6:5B:79:76:16:39:73:52:EC:BD:4A:2C:77:4F:CF:7E:C6:D4:70 Certificate issuer: /CN=A91D14EF/serialNumber=F1B65B797616397352ECBD4A2C774FCF7EC6D470 Certificate serial: 0594 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft Manifest number: 058F Signing time: Tue 07 May 2024 00:29:32 +0000 Manifest this update: Tue 07 May 2024 00:29:31 +0000 Manifest next update: Tue 14 May 2024 00:29:31 +0000 Files and hashes: 1: 8bZbeXYWOXNS7L1KLHdPz37G1HA.crl (hash: puVecX5pzXJipG0CUVQzB51PYTg7smSftCVcSeOxG5o=) 2: 226402B0860D11EB8F541B68C4F9AE02.roa (hash: y7fGqG2zMTlsWUgwcSbG/aCOa1G0W3pseNmyoJID29o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.crl rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 00:29:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1428 (0x594) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D14EF/serialNumber=F1B65B797616397352ECBD4A2C774FCF7EC6D470 Validity Not Before: May 7 00:29:31 2024 GMT Not After : May 14 00:29:31 2024 GMT Subject: CN=663975ec-aeef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:fc:2e:8d:c0:de:23:1e:9b:12:25:16:6a:bb: f6:1a:05:b4:45:09:09:0d:3f:97:d6:3a:69:5f:74: 1c:c7:54:e1:81:15:e5:0a:57:0e:6c:a0:8d:2f:10: 20:3b:26:1f:83:2b:24:ca:9c:a3:d8:be:3f:83:4f: cf:f1:5d:1f:e3:b7:3c:95:d7:83:35:cb:8e:c2:eb: 2d:1e:b2:f6:e4:b1:30:b0:6a:db:4f:eb:63:bb:f4: 21:09:9f:81:df:b4:24:e7:ad:54:5a:61:4a:0e:ab: dc:4c:fb:73:c6:68:03:cd:a0:12:36:32:f8:86:a0: 09:ae:59:c6:7a:63:91:e0:8b:98:38:ac:f6:2a:a2: 4e:de:a4:bd:9d:19:41:8d:a9:45:b4:8b:fc:dc:8f: 5b:46:24:5a:f0:11:1a:34:1e:39:b9:10:2e:7a:5d: eb:b8:84:78:7d:44:12:af:10:5c:4e:d5:4f:d5:4b: aa:ab:00:13:e0:c1:e7:6a:2e:92:a8:b0:c3:da:fb: ec:21:cc:e1:5c:f6:1c:3b:5e:5f:ae:9f:e6:21:0e: fe:16:87:c7:b3:22:dd:e9:4c:e9:8d:c7:b3:f4:44: 41:72:6c:44:c8:ff:89:ce:3e:07:4a:ec:58:45:ae: 21:ab:dc:f9:27:64:97:34:53:6e:86:f9:b1:78:6d: ad:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:98:D0:F6:B5:11:7B:AC:FA:EC:70:3C:37:97:E3:EF:CC:C4:82:69 X509v3 Authority Key Identifier: keyid:F1:B6:5B:79:76:16:39:73:52:EC:BD:4A:2C:77:4F:CF:7E:C6:D4:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:d5:37:0a:30:e5:4b:44:fa:8c:2e:17:78:e2:5b:45:31:98: 59:33:b0:56:56:68:3e:d4:8b:fa:f7:08:d7:0d:cb:cb:df:26: d6:92:e0:1d:04:75:52:3a:6f:ce:66:fb:a5:b5:3d:f1:f3:e8: a6:83:9e:03:da:4e:42:66:4a:bc:e3:0c:48:58:1b:92:f5:f7: 0f:14:ba:9f:0f:87:8d:c9:67:d4:bd:12:37:1b:b9:7b:58:a7: 94:cd:37:c6:02:4b:2a:d5:70:26:97:5f:5e:1c:f8:e1:c2:51: 83:9e:20:7a:f9:c7:f7:ed:0d:bb:19:2d:71:71:cf:8a:c6:f2: b8:1a:ef:35:c7:26:4b:8c:02:16:af:f9:32:a6:ad:0d:27:97: 6a:6a:a2:81:b1:a5:04:9f:78:b6:cd:4f:8c:a5:bb:6b:66:53: e0:45:ae:e1:e4:df:ca:63:6d:07:44:7a:79:9c:ab:c3:7e:4b: 8d:7a:07:fb:27:e9:72:87:be:7d:79:6f:31:14:31:f0:c2:62: c6:65:2d:dd:7e:6b:33:0d:cc:58:91:6d:14:bc:c9:4f:06:69: 6a:d1:81:89:5e:24:8d:2b:b3:99:ac:2a:67:4e:25:e6:3a:1e: 57:b9:79:d8:e3:2a:70:59:71:56:46:b5:47:84:dd:71:c4:2e: c1:88:6b:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE0RUYxMTAvBgNVBAUTKEYxQjY1Qjc5NzYxNjM5NzM1MkVDQkQ0QTJDNzc0RkNG N0VDNkQ0NzAwHhcNMjQwNTA3MDAyOTMxWhcNMjQwNTE0MDAyOTMxWjAYMRYwFAYD VQQDEw02NjM5NzVlYy1hZWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoPwujcDeIx6bEiUWarv2GgW0RQkJDT+X1jppX3Qcx1ThgRXlClcObKCNLxAg OyYfgyskypyj2L4/g0/P8V0f47c8ldeDNcuOwustHrL25LEwsGrbT+tju/QhCZ+B 37Qk561UWmFKDqvcTPtzxmgDzaASNjL4hqAJrlnGemOR4IuYOKz2KqJO3qS9nRlB jalFtIv83I9bRiRa8BEaNB45uRAuel3ruIR4fUQSrxBcTtVP1UuqqwAT4MHnai6S qLDD2vvsIczhXPYcO15frp/mIQ7+FofHsyLd6Uzpjcez9ERBcmxEyP+Jzj4HSuxY Ra4hq9z5J2SXNFNuhvmxeG2t7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBaY0Pa1 EXus+uxwPDeX4+/MxIJpMB8GA1UdIwQYMBaAFPG2W3l2FjlzUuy9Six3T89+xtRw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTRFRi8yNjQwMTAwNjg2 MEIxMUVCOTFDMTJENjNDNEY5QUUwMi84YlpiZVhZV09YTlM3TDFLTEhkUHozN0cx SEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhiWmJlWFlXT1hOUzdMMUtMSGRQejM3RzFIQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTRFRi8yNjQwMTAwNjg2MEIxMUVCOTFDMTJENjNDNEY5QUUwMi84YlpiZVhZV09Y TlM3TDFLTEhkUHozN0cxSEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+1TcKMOVLRPqMLhd44ltFMZhZM7BWVmg+1Iv69wjXDcvL3ybWkuAd BHVSOm/OZvultT3x8+img54D2k5CZkq84wxIWBuS9fcPFLqfD4eNyWfUvRI3G7l7 WKeUzTfGAksq1XAml19eHPjhwlGDniB6+cf37Q27GS1xcc+KxvK4Gu81xyZLjAIW r/kypq0NJ5dqaqKBsaUEn3i2zU+MpbtrZlPgRa7h5N/KY20HRHp5nKvDfkuNegf7 J+lyh759eW8xFDHwwmLGZS3dfmszDcxYkW0UvMlPBmlq0YGJXiSNK7OZrCpnTiXm Oh5XuXnY4ypwWXFWRrVHhN1xxC7BiGua -----END CERTIFICATE-----Generated at Tue May 7 01:58:28 2024 by rpki-client on console-fra.rpki-client.org