$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft File: 2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft (raw, json) Hash identifier: yZv8auve/sh8Z8rvr194O+jIg0WxqxERYBttplEBUU4= Subject key identifier: 1B:2E:B7:00:54:D8:DC:12:F9:B6:3E:66:03:A0:60:80:A6:EF:13:5A Authority key identifier: DA:B4:A5:2A:8E:C1:AA:D6:C9:25:2E:EA:4D:5D:15:69:D2:7A:F4:6B Certificate issuer: /CN=A91D1C7F/serialNumber=DAB4A52A8EC1AAD6C9252EEA4D5D1569D27AF46B Certificate serial: 02A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft Manifest number: 029E Signing time: Tue 07 May 2024 03:35:27 +0000 Manifest this update: Tue 07 May 2024 03:35:26 +0000 Manifest next update: Tue 14 May 2024 03:35:26 +0000 Files and hashes: 1: 2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl (hash: AKkxokScFNVMC0qop6CnbDCs6KTxrNhwegjKzRlgh+o=) 2: E5B25D84B0D211ECB7B1BA7DC4F9AE02.roa (hash: OVG2VV/+X1G5er7IDg5kaj5uYEytBjj8waEAE7a2mDo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 03:35:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 673 (0x2a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1C7F/serialNumber=DAB4A52A8EC1AAD6C9252EEA4D5D1569D27AF46B Validity Not Before: May 7 03:35:26 2024 GMT Not After : May 14 03:35:26 2024 GMT Subject: CN=6639a17f-ba23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d0:12:fa:3c:8b:89:23:9b:06:8b:0e:0b:3a: fe:e8:a8:4e:b8:13:b6:ed:54:a5:af:ed:1c:6b:22: d1:74:e1:f9:f3:c4:f0:d6:2d:ea:20:40:98:43:e5: 23:61:20:dc:b6:cb:42:e8:1a:98:e5:cb:9e:f0:18: 26:99:2f:4e:82:92:24:85:3b:dd:76:29:ef:b2:b2: f8:0d:39:13:73:3f:ef:bb:20:53:c0:33:65:a3:eb: 09:5d:f2:7c:bd:3b:cf:99:d0:db:7f:58:53:19:e9: 88:74:1a:9e:9e:92:4d:08:0d:92:93:af:31:86:70: 98:5e:b6:33:ff:e4:f3:bf:95:cf:bb:99:d4:73:c2: b7:2c:52:cc:ef:ec:d4:ee:d1:66:e3:f9:1a:0a:05: 51:8c:77:63:34:d7:df:9a:04:34:d9:b2:13:9b:fe: 4c:d7:2a:b5:72:01:b5:a4:de:eb:aa:1e:1a:68:bb: 25:31:5b:d1:66:73:00:07:90:7b:ff:a2:71:b5:80: a8:9a:fc:ff:c8:e5:cd:f1:94:b7:f8:65:26:7d:fe: 26:00:aa:60:67:8b:9c:40:b4:9f:1c:03:f4:f2:cc: 31:e8:8c:1e:b1:e0:1d:09:d8:7e:84:6b:92:e2:23: 4f:e8:2c:25:89:15:ba:9f:8a:68:68:72:18:de:32: 58:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:2E:B7:00:54:D8:DC:12:F9:B6:3E:66:03:A0:60:80:A6:EF:13:5A X509v3 Authority Key Identifier: keyid:DA:B4:A5:2A:8E:C1:AA:D6:C9:25:2E:EA:4D:5D:15:69:D2:7A:F4:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:8a:f3:15:4b:06:c9:b9:53:e5:1f:6c:d2:f6:26:6c:7a:eb: c2:35:f1:32:49:f6:a4:fc:ef:e8:af:57:0e:cf:da:3e:73:54: 5d:62:62:31:77:15:a3:4a:58:06:f7:46:77:c5:23:1a:46:0e: 80:14:a6:aa:f7:79:2a:c5:a9:bf:8e:1e:e4:62:cc:19:4c:db: 56:63:a0:6f:ee:8f:a7:8a:9f:ba:43:3f:71:78:58:d7:2a:0c: a3:ef:c4:4a:c0:3d:b3:a6:8a:e1:41:71:c4:a5:c9:74:de:dd: f5:48:77:8c:22:b1:06:a4:4e:3b:6c:4a:b3:92:09:03:f0:61: c7:ef:d6:85:71:37:f1:8e:c0:53:c2:a5:c0:cf:24:69:c2:c8: 89:2f:80:3b:11:7c:7c:66:51:c5:31:55:a5:82:e6:2d:9d:b2: 12:7f:55:34:c7:0d:a3:10:c2:f2:1e:09:53:cb:6f:75:54:68: 42:a0:ec:24:80:f5:63:25:09:aa:89:d1:f2:e2:55:97:42:23: 59:80:03:8e:7e:d7:bf:5f:1d:49:99:42:fe:08:d6:c9:0e:2d: 08:4b:30:f1:0b:c0:90:87:85:d1:7b:53:55:1e:8a:eb:f1:58: 99:6c:8d:78:36:66:9c:b6:d4:0c:f7:3b:ea:42:58:84:9e:01: fb:6e:6b:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFDN0YxMTAvBgNVBAUTKERBQjRBNTJBOEVDMUFBRDZDOTI1MkVFQTRENUQxNTY5 RDI3QUY0NkIwHhcNMjQwNTA3MDMzNTI2WhcNMjQwNTE0MDMzNTI2WjAYMRYwFAYD VQQDEw02NjM5YTE3Zi1iYTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqtAS+jyLiSObBosOCzr+6KhOuBO27VSlr+0cayLRdOH588Tw1i3qIECYQ+Uj YSDctstC6BqY5cue8BgmmS9OgpIkhTvddinvsrL4DTkTcz/vuyBTwDNlo+sJXfJ8 vTvPmdDbf1hTGemIdBqenpJNCA2Sk68xhnCYXrYz/+Tzv5XPu5nUc8K3LFLM7+zU 7tFm4/kaCgVRjHdjNNffmgQ02bITm/5M1yq1cgG1pN7rqh4aaLslMVvRZnMAB5B7 /6JxtYComvz/yOXN8ZS3+GUmff4mAKpgZ4ucQLSfHAP08swx6IweseAdCdh+hGuS 4iNP6CwliRW6n4poaHIY3jJYhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBsutwBU 2NwS+bY+ZgOgYICm7xNaMB8GA1UdIwQYMBaAFNq0pSqOwarWySUu6k1dFWnSevRr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUM3Ri8wOTFFMUVBQUIw RDAxMUVDQkIwNEEzNzhDNEY5QUUwMi8yclNsS283QnF0YkpKUzdxVFYwVmFkSjY5 R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJyU2xLbzdCcXRiSkpTN3FUVjBWYWRKNjlHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUM3Ri8wOTFFMUVBQUIwRDAxMUVDQkIwNEEzNzhDNEY5QUUwMi8yclNsS283QnF0 YkpKUzdxVFYwVmFkSjY5R3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkivMVSwbJuVPlH2zS9iZseuvCNfEySfak/O/or1cOz9o+c1RdYmIx dxWjSlgG90Z3xSMaRg6AFKaq93kqxam/jh7kYswZTNtWY6Bv7o+nip+6Qz9xeFjX Kgyj78RKwD2zporhQXHEpcl03t31SHeMIrEGpE47bEqzkgkD8GHH79aFcTfxjsBT wqXAzyRpwsiJL4A7EXx8ZlHFMVWlguYtnbISf1U0xw2jEMLyHglTy291VGhCoOwk gPVjJQmqidHy4lWXQiNZgAOOfte/Xx1JmUL+CNbJDi0ISzDxC8CQh4XRe1NVHorr 8ViZbI14NmacttQM9zvqQliEngH7bmu6 -----END CERTIFICATE-----Generated at Tue May 7 04:34:53 2024 by rpki-client on console-fra.rpki-client.org