$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.mft File: NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.mft (raw, json) Hash identifier: WJzLVdAVDH9cFJIaDBn74knNqYGcs0vRJyK8zvSRNQ0= Subject key identifier: 6B:3D:1C:43:FA:F6:8A:FC:12:31:65:B7:AF:71:5A:4C:47:60:6E:92 Authority key identifier: 34:9E:59:7C:71:78:81:04:B0:64:9F:07:3A:BA:72:F6:5F:28:4B:9A Certificate issuer: /CN=A91D4E53/serialNumber=349E597C71788104B0649F073ABA72F65F284B9A Certificate serial: 0625 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.mft Manifest number: 061E Signing time: Thu 02 May 2024 23:55:25 +0000 Manifest this update: Thu 02 May 2024 23:55:25 +0000 Manifest next update: Thu 09 May 2024 23:55:25 +0000 Files and hashes: 1: NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.crl (hash: OJL4pL7pkev3CHOrUfRBY6l1c1fAQdY2mmOaw3xQEgs=) 2: 349EFE924E6511EBBFE35D1AC4F9AE02.roa (hash: uVZILs4im4Ko7O701mJjun7HiLALbhV2MZXSxxEWSZo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.crl rsync://rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 23:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1573 (0x625) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4E53/serialNumber=349E597C71788104B0649F073ABA72F65F284B9A Validity Not Before: May 2 23:55:25 2024 GMT Not After : May 9 23:55:25 2024 GMT Subject: CN=663427ed-0f48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:1d:aa:67:c0:4c:d4:42:aa:75:b3:88:c7:13: 7d:e6:b4:b0:49:5e:2d:80:77:5f:bd:6e:a5:aa:24: 1b:6f:46:51:2a:de:76:7b:07:f6:94:9d:f3:e1:05: 56:7a:97:fc:0d:e8:91:fc:8d:f6:2f:4a:7e:ca:3d: 5a:b4:6a:6a:df:14:b3:5d:fe:ed:e5:df:cc:85:76: 56:ed:47:77:59:6b:cf:96:ee:a5:76:d1:fc:44:a0: 6e:82:53:20:f0:e3:e4:ba:78:b0:6b:45:ef:f4:7c: 44:0e:12:8c:d7:de:82:04:41:99:36:c1:72:f6:e2: 73:b0:90:4c:61:7e:a8:7c:58:d3:12:a9:ba:c4:15: 79:6b:95:b3:76:f0:d3:72:5b:4d:6d:68:ee:b1:57: 58:9c:73:ff:cf:83:26:38:94:69:38:80:ee:27:d5: 5f:5c:b7:c7:60:2f:37:fb:6f:8a:51:d8:af:b7:65: 21:81:07:47:87:5a:d0:e7:74:38:f7:da:18:3e:74: 0e:08:e6:16:79:7b:c7:bf:0a:e4:a3:1f:eb:d2:09: c5:41:c0:54:87:12:89:35:27:4c:12:53:9f:16:f9: 2d:23:c6:08:32:5f:54:b0:41:7b:d8:44:b9:bb:31: 53:1f:a3:b7:63:e4:e7:24:0c:69:43:51:76:81:a9: f6:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:3D:1C:43:FA:F6:8A:FC:12:31:65:B7:AF:71:5A:4C:47:60:6E:92 X509v3 Authority Key Identifier: keyid:34:9E:59:7C:71:78:81:04:B0:64:9F:07:3A:BA:72:F6:5F:28:4B:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:ab:4f:85:21:1a:58:9b:22:bd:d6:61:b7:23:b8:29:0e:88: 93:77:98:70:bf:99:f8:33:9d:45:62:41:83:d4:bd:b3:84:e7: 95:d6:03:c1:64:6f:40:28:a0:15:c4:fb:1b:ee:6f:62:3c:45: 21:f3:0f:8d:94:11:f8:3f:b0:d5:fb:e3:3a:e3:a3:87:e6:15: 0b:ee:1e:ca:0b:8d:c3:04:f5:41:ab:3f:75:a0:26:cb:5f:82: 1f:47:98:99:49:07:42:28:df:f7:df:c4:31:1a:bf:74:ba:bc: 95:51:12:74:86:d4:47:f1:03:7b:50:65:d3:dd:b9:09:21:15: 96:60:9a:5f:20:56:da:e3:fd:79:e7:af:a1:bc:21:da:0b:3a: 92:f7:6e:8a:97:c6:99:8a:22:20:54:3a:c2:fe:60:fe:15:04: 41:89:16:57:d4:00:f5:a0:ce:e0:53:fb:16:54:d7:7b:ad:fe: a4:7c:eb:5c:b4:5b:f4:d2:13:ab:51:d3:05:43:5e:35:b1:1a: f6:0f:ea:88:1b:38:c8:80:da:fa:51:83:21:10:07:28:e7:26: 7e:1a:f6:83:21:37:ff:94:91:a1:67:45:ee:fc:6f:07:3b:bc: fa:a6:9d:7e:48:ce:98:dc:a2:83:a2:d0:00:44:fd:2b:75:05: a9:7c:78:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRFNTMxMTAvBgNVBAUTKDM0OUU1OTdDNzE3ODgxMDRCMDY0OUYwNzNBQkE3MkY2 NUYyODRCOUEwHhcNMjQwNTAyMjM1NTI1WhcNMjQwNTA5MjM1NTI1WjAYMRYwFAYD VQQDEw02NjM0MjdlZC0wZjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxR2qZ8BM1EKqdbOIxxN95rSwSV4tgHdfvW6lqiQbb0ZRKt52ewf2lJ3z4QVW epf8DeiR/I32L0p+yj1atGpq3xSzXf7t5d/MhXZW7Ud3WWvPlu6ldtH8RKBuglMg 8OPkuniwa0Xv9HxEDhKM196CBEGZNsFy9uJzsJBMYX6ofFjTEqm6xBV5a5WzdvDT cltNbWjusVdYnHP/z4MmOJRpOIDuJ9VfXLfHYC83+2+KUdivt2UhgQdHh1rQ53Q4 99oYPnQOCOYWeXvHvwrkox/r0gnFQcBUhxKJNSdMElOfFvktI8YIMl9UsEF72ES5 uzFTH6O3Y+TnJAxpQ1F2gan2PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGs9HEP6 9or8EjFlt69xWkxHYG6SMB8GA1UdIwQYMBaAFDSeWXxxeIEEsGSfBzq6cvZfKEua MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEU1My9BNEE1MTlFQTRF NjIxMUVCQThBQ0FDNUFDNEY5QUUwMi9OSjVaZkhGNGdRU3daSjhIT3JweTlsOG9T NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05KNVpmSEY0Z1FTd1pKOEhPcnB5OWw4b1M1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEU1My9BNEE1MTlFQTRFNjIxMUVCQThBQ0FDNUFDNEY5QUUwMi9OSjVaZkhGNGdR U3daSjhIT3JweTlsOG9TNW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeq0+FIRpYmyK91mG3I7gpDoiTd5hwv5n4M51FYkGD1L2zhOeV1gPB ZG9AKKAVxPsb7m9iPEUh8w+NlBH4P7DV++M646OH5hUL7h7KC43DBPVBqz91oCbL X4IfR5iZSQdCKN/338QxGr90uryVURJ0htRH8QN7UGXT3bkJIRWWYJpfIFba4/15 56+hvCHaCzqS926Kl8aZiiIgVDrC/mD+FQRBiRZX1AD1oM7gU/sWVNd7rf6kfOtc tFv00hOrUdMFQ141sRr2D+qIGzjIgNr6UYMhEAco5yZ+GvaDITf/lJGhZ0Xu/G8H O7z6pp1+SM6Y3KKDotAARP0rdQWpfHgv -----END CERTIFICATE-----Generated at Fri May 3 00:28:40 2024 by rpki-client on console-fra.rpki-client.org