$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5114/34E19E88E5A211ED808CF377C4F9AE02/LIi8YKOEeXk7VUcMN37SPqAtByI.mft File: LIi8YKOEeXk7VUcMN37SPqAtByI.mft (raw, json) Hash identifier: KB/Apo8ZpGWsMPSOGKCpJL70nXiyoxVnC9uCamLd9d8= Subject key identifier: A8:DD:F2:90:63:11:C5:63:9E:86:4B:A7:09:E4:FD:98:6A:CF:07:0A Authority key identifier: 2C:88:BC:60:A3:84:79:79:3B:55:47:0C:37:7E:D2:3E:A0:2D:07:22 Certificate issuer: /CN=A91D5114/serialNumber=2C88BC60A38479793B55470C377ED23EA02D0722 Certificate serial: C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LIi8YKOEeXk7VUcMN37SPqAtByI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5114/34E19E88E5A211ED808CF377C4F9AE02/LIi8YKOEeXk7VUcMN37SPqAtByI.mft Manifest number: BE Signing time: Sat 27 Apr 2024 06:15:25 +0000 Manifest this update: Sat 27 Apr 2024 06:15:25 +0000 Manifest next update: Sat 04 May 2024 06:15:25 +0000 Files and hashes: 1: LIi8YKOEeXk7VUcMN37SPqAtByI.crl (hash: GVH05qivIQAbtIHHrj0FsRlL6lY0TGa0uH6yl+/HgxA=) 2: 97EFA28EE5A911ED80EF757BC4F9AE02.roa (hash: FqYmcTF/6Y1nQYcY29/jdoG0ePxilWZunrJgFCUco84=) 3: ED0DECA6E5A611EDADDD1074C4F9AE02.roa (hash: WeqYps0Qtp/XizbhrFlCHWKpyxU3wF9WzGSxXPO5gDs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5114/34E19E88E5A211ED808CF377C4F9AE02/LIi8YKOEeXk7VUcMN37SPqAtByI.crl rsync://rpki.apnic.net/member_repository/A91D5114/34E19E88E5A211ED808CF377C4F9AE02/LIi8YKOEeXk7VUcMN37SPqAtByI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LIi8YKOEeXk7VUcMN37SPqAtByI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 06:15:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 194 (0xc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5114/serialNumber=2C88BC60A38479793B55470C377ED23EA02D0722 Validity Not Before: Apr 27 06:15:25 2024 GMT Not After : May 4 06:15:25 2024 GMT Subject: CN=662c97fd-1f1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b6:8b:45:83:fe:11:4c:b3:64:2f:93:e5:5a: 47:2b:73:29:2f:ec:c3:a7:fe:ee:1b:3d:1a:5d:bf: db:4d:57:1f:d6:91:a4:f6:65:2f:f1:eb:1c:63:c8: 7c:82:b9:10:3a:4d:df:bc:6f:aa:5d:4a:3e:ea:86: 78:1e:ee:0e:29:92:19:30:1b:90:0f:94:b1:7b:07: 5f:a8:0c:bc:50:af:e9:b9:95:22:81:cd:f8:0b:ee: 3e:ea:58:ba:3f:e8:82:7a:76:3f:41:be:e4:02:41: 9a:2f:56:e1:90:7e:51:68:6e:90:94:a1:0d:99:79: ed:cc:a4:62:e8:7c:5b:be:68:f8:95:5a:1a:7a:76: 0a:c3:77:dd:90:51:65:2a:5f:fe:0f:7c:83:ac:da: 03:6f:38:0e:51:c1:c0:45:ee:f9:73:13:84:f2:e7: d7:0b:19:f1:b9:98:56:b5:85:0e:30:34:4c:d7:c9: c7:65:f2:c1:d2:d1:0d:18:a9:63:bf:0f:42:ab:77: e8:5a:37:4e:e0:cb:b6:e0:d9:3e:be:6a:1f:51:2b: 26:51:a2:68:60:bf:5e:4e:38:9b:1e:e3:f5:2c:91: 01:3d:b7:26:5a:97:6f:65:3a:55:76:35:d3:7e:12: 1f:ce:f4:66:b5:aa:cf:d6:4d:ce:ac:cc:59:85:c6: 6c:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:DD:F2:90:63:11:C5:63:9E:86:4B:A7:09:E4:FD:98:6A:CF:07:0A X509v3 Authority Key Identifier: keyid:2C:88:BC:60:A3:84:79:79:3B:55:47:0C:37:7E:D2:3E:A0:2D:07:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5114/34E19E88E5A211ED808CF377C4F9AE02/LIi8YKOEeXk7VUcMN37SPqAtByI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LIi8YKOEeXk7VUcMN37SPqAtByI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5114/34E19E88E5A211ED808CF377C4F9AE02/LIi8YKOEeXk7VUcMN37SPqAtByI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:45:8d:72:ed:15:69:b2:e4:1b:b2:08:0c:94:67:6d:2e:98: 43:8c:1f:83:75:f1:cf:f0:fa:be:3b:03:fc:38:b9:97:40:a8: c2:4e:d3:eb:0a:53:66:20:5b:e0:06:eb:81:53:b5:7c:fb:99: f9:b4:b5:61:a2:d8:44:c0:3a:92:7f:67:f1:ec:06:fe:7f:31: 75:d5:73:ac:89:08:94:b6:f9:76:be:9d:a7:0d:c1:2a:f1:32: 56:45:ba:17:71:2b:15:98:da:8f:64:27:70:9d:e2:f4:97:12: 14:49:3f:d4:12:16:01:22:7d:e4:83:54:3c:04:39:33:09:3d: 84:39:09:8f:ce:4b:d4:e9:38:95:23:02:ab:83:12:19:35:a4: 1b:dd:81:06:5a:5c:b3:49:ec:7b:64:57:6a:1a:13:dc:56:ba: d9:ad:f5:2f:4f:a0:f6:5a:ae:e3:fc:97:53:80:78:14:21:0b: c0:2b:8d:e5:53:da:b8:ed:ba:fd:38:02:63:f4:97:a5:ff:86: a6:d8:e9:92:7b:2d:71:30:32:af:22:32:50:0d:c0:46:99:9c: 55:07:1b:61:e6:69:f8:73:4e:a0:16:ce:43:04:3b:76:e7:49: a4:54:34:60:12:0f:a8:6a:b2:f6:e5:bf:05:24:8e:c1:07:06: 46:a9:fe:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxMTQxMTAvBgNVBAUTKDJDODhCQzYwQTM4NDc5NzkzQjU1NDcwQzM3N0VEMjNF QTAyRDA3MjIwHhcNMjQwNDI3MDYxNTI1WhcNMjQwNTA0MDYxNTI1WjAYMRYwFAYD VQQDEw02NjJjOTdmZC0xZjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtbaLRYP+EUyzZC+T5VpHK3MpL+zDp/7uGz0aXb/bTVcf1pGk9mUv8escY8h8 grkQOk3fvG+qXUo+6oZ4Hu4OKZIZMBuQD5SxewdfqAy8UK/puZUigc34C+4+6li6 P+iCenY/Qb7kAkGaL1bhkH5RaG6QlKENmXntzKRi6Hxbvmj4lVoaenYKw3fdkFFl Kl/+D3yDrNoDbzgOUcHARe75cxOE8ufXCxnxuZhWtYUOMDRM18nHZfLB0tENGKlj vw9Cq3foWjdO4Mu24Nk+vmofUSsmUaJoYL9eTjibHuP1LJEBPbcmWpdvZTpVdjXT fhIfzvRmtarP1k3OrMxZhcZsOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKjd8pBj EcVjnoZLpwnk/ZhqzwcKMB8GA1UdIwQYMBaAFCyIvGCjhHl5O1VHDDd+0j6gLQci MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTExNC8zNEUxOUU4OEU1 QTIxMUVEODA4Q0YzNzdDNEY5QUUwMi9MSWk4WUtPRWVYazdWVWNNTjM3U1BxQXRC eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xJaThZS09FZVhrN1ZVY01OMzdTUHFBdEJ5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTExNC8zNEUxOUU4OEU1QTIxMUVEODA4Q0YzNzdDNEY5QUUwMi9MSWk4WUtPRWVY azdWVWNNTjM3U1BxQXRCeUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWRY1y7RVpsuQbsggMlGdtLphDjB+DdfHP8Pq+OwP8OLmXQKjCTtPr ClNmIFvgBuuBU7V8+5n5tLVhothEwDqSf2fx7Ab+fzF11XOsiQiUtvl2vp2nDcEq 8TJWRboXcSsVmNqPZCdwneL0lxIUST/UEhYBIn3kg1Q8BDkzCT2EOQmPzkvU6TiV IwKrgxIZNaQb3YEGWlyzSex7ZFdqGhPcVrrZrfUvT6D2Wq7j/JdTgHgUIQvAK43l U9q47br9OAJj9Jel/4am2OmSey1xMDKvIjJQDcBGmZxVBxth5mn4c06gFs5DBDt2 50mkVDRgEg+oarL25b8FJI7BBwZGqf5l -----END CERTIFICATE-----Generated at Sun Apr 28 15:52:23 2024 by rpki-client on console-fra.rpki-client.org