$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft File: cn1G1OfHecpnYSxgtGVS68IZkPs.mft (raw, json) Hash identifier: hxN1hzuz93bQ+olJ+I37b7J5PvyqzPzQuWQvmWVB44M= Subject key identifier: 7B:66:F4:CC:0A:89:AE:6B:42:28:FE:2F:B4:D3:7A:CA:13:69:44:A4 Authority key identifier: 72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB Certificate issuer: /CN=A91D4D97/serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Certificate serial: 0385 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft Manifest number: 0382 Signing time: Fri 03 May 2024 02:47:06 +0000 Manifest this update: Fri 03 May 2024 02:47:05 +0000 Manifest next update: Fri 10 May 2024 02:47:05 +0000 Files and hashes: 1: cn1G1OfHecpnYSxgtGVS68IZkPs.crl (hash: +Nbe4FHPCQ+0qyhqyVz0E3nhYlmx57dp+dHdBXD5PTg=) 2: A9E2BE54567B11ECB346816BC4F9AE02.roa (hash: Erl4nPa+GikVhtgshrtlBR/jvDA3RJKWtw2DubCIuKw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 02:47:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 901 (0x385) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4D97/serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Validity Not Before: May 3 02:47:05 2024 GMT Not After : May 10 02:47:05 2024 GMT Subject: CN=66345029-4220 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:e3:16:e3:03:4a:35:af:99:25:64:10:1c:d4: 78:a1:ce:84:08:fb:8c:97:d5:dc:e8:75:65:88:04: 2a:4e:78:bf:0a:d0:45:11:2f:50:2b:46:55:bf:8d: 64:b5:ab:23:cd:14:cb:ff:78:28:94:d6:a3:55:41: 60:ea:ad:99:34:78:8e:b7:76:09:85:6d:bd:b5:6e: cb:71:0d:1f:b0:11:1c:7c:28:f3:56:5d:2b:8c:9f: c9:6b:7b:4e:4e:b3:ce:29:4b:14:0e:f0:c4:42:80: be:d0:de:2f:f1:02:d5:74:08:a9:67:27:27:33:78: 24:fb:11:f6:db:5c:a7:8b:f2:e3:82:5f:30:f1:e6: e5:38:f9:65:53:60:ee:51:6c:a8:66:d4:ee:f4:f6: 05:77:cc:c2:36:1b:d1:bf:5b:2c:d1:5a:62:ce:89: 8a:fe:23:12:0b:f4:14:5f:61:63:5f:7f:38:49:37: 6b:63:81:64:75:ff:4c:8b:36:9a:15:13:08:f6:68: 16:0b:e2:0c:9f:a8:88:2f:f5:9f:f0:f3:03:aa:82: c8:b5:6e:e3:ba:08:51:d9:39:5a:78:66:25:61:ac: bf:1c:36:44:72:1b:ff:4c:d6:ac:cf:bd:d7:3a:b4: b0:e6:08:90:9a:20:7e:a9:e6:0d:6e:9d:21:b3:9f: cd:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:66:F4:CC:0A:89:AE:6B:42:28:FE:2F:B4:D3:7A:CA:13:69:44:A4 X509v3 Authority Key Identifier: keyid:72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:8c:f2:69:1c:25:2f:b4:87:03:ee:04:a5:e7:3f:78:2e:3e: 22:c2:cd:dd:b2:3f:3e:53:25:18:27:b0:56:2f:60:84:11:2a: bb:02:21:3a:c2:74:4a:86:ab:f4:4d:90:06:30:ce:c1:09:d6: 5f:b6:12:7d:96:79:d7:77:85:25:70:0a:a2:0c:93:52:c9:7b: 89:f6:9d:53:4c:00:73:36:7e:8b:d6:3d:8e:e1:fc:ab:71:d4: 2b:cf:05:25:fe:7d:7d:17:f5:4c:64:de:ae:c1:96:14:a4:0a: da:8a:a2:2c:fc:a0:cb:47:2a:49:b4:1f:85:b9:21:08:72:cb: 3e:1d:3e:89:b7:d4:6c:2a:af:5f:6e:f5:fa:79:d4:53:9c:92: a6:7c:3a:3e:27:ba:2f:a2:7b:79:bf:14:76:28:bb:b4:44:4b: 79:63:2b:43:0a:4c:b1:fa:06:e5:fa:70:f3:a3:27:63:0d:c8: 21:2c:2d:84:60:c9:21:31:26:6b:f4:63:5b:22:da:af:43:24: ee:cb:85:32:2e:df:63:30:37:1e:6f:aa:dd:54:e7:7c:46:7d: 37:52:08:d4:ab:d1:23:c7:98:65:67:ab:1e:bd:a2:73:7b:81: 74:bb:17:29:21:3a:74:ee:b2:be:bc:70:10:27:d2:3f:d1:67: 9c:d1:e9:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDREOTcxMTAvBgNVBAUTKDcyN0Q0NkQ0RTdDNzc5Q0E2NzYxMkM2MEI0NjU1MkVC QzIxOTkwRkIwHhcNMjQwNTAzMDI0NzA1WhcNMjQwNTEwMDI0NzA1WjAYMRYwFAYD VQQDEw02NjM0NTAyOS00MjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk+MW4wNKNa+ZJWQQHNR4oc6ECPuMl9Xc6HVliAQqTni/CtBFES9QK0ZVv41k tasjzRTL/3golNajVUFg6q2ZNHiOt3YJhW29tW7LcQ0fsBEcfCjzVl0rjJ/Ja3tO TrPOKUsUDvDEQoC+0N4v8QLVdAipZycnM3gk+xH221yni/Ljgl8w8eblOPllU2Du UWyoZtTu9PYFd8zCNhvRv1ss0VpizomK/iMSC/QUX2FjX384STdrY4Fkdf9Mizaa FRMI9mgWC+IMn6iIL/Wf8PMDqoLItW7jughR2TlaeGYlYay/HDZEchv/TNasz73X OrSw5giQmiB+qeYNbp0hs5/NHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHtm9MwK ia5rQij+L7TTesoTaUSkMB8GA1UdIwQYMBaAFHJ9RtTnx3nKZ2EsYLRlUuvCGZD7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEQ5Ny8xRjYxNDZFMDU2 NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVjcG5ZU3hndEdWUzY4SVpr UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuMUcxT2ZIZWNwbllTeGd0R1ZTNjhJWmtQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEQ5Ny8xRjYxNDZFMDU2NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVj cG5ZU3hndEdWUzY4SVprUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUjPJpHCUvtIcD7gSl5z94Lj4iws3dsj8+UyUYJ7BWL2CEESq7AiE6 wnRKhqv0TZAGMM7BCdZfthJ9lnnXd4UlcAqiDJNSyXuJ9p1TTABzNn6L1j2O4fyr cdQrzwUl/n19F/VMZN6uwZYUpAraiqIs/KDLRypJtB+FuSEIcss+HT6Jt9RsKq9f bvX6edRTnJKmfDo+J7ovont5vxR2KLu0REt5YytDCkyx+gbl+nDzoydjDcghLC2E YMkhMSZr9GNbItqvQyTuy4UyLt9jMDceb6rdVOd8Rn03UgjUq9Ejx5hlZ6sevaJz e4F0uxcpITp07rK+vHAQJ9I/0Wec0en7 -----END CERTIFICATE-----Generated at Fri May 3 04:45:28 2024 by rpki-client on console-fra.rpki-client.org