$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.mft File: VjjLHibRGZ2r6LjH7SKwPEzoyAo.mft (raw, json) Hash identifier: KEwVRYFOXvmObuja89jkEixaNlX91xQldWuNKjKvj1M= Subject key identifier: 7D:0F:F8:49:FA:02:1D:18:E5:60:B7:7C:8F:3C:34:E3:14:9B:F9:E7 Authority key identifier: 56:38:CB:1E:26:D1:19:9D:AB:E8:B8:C7:ED:22:B0:3C:4C:E8:C8:0A Certificate issuer: /CN=A91D6F2B/serialNumber=5638CB1E26D1199DABE8B8C7ED22B03C4CE8C80A Certificate serial: 028E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VjjLHibRGZ2r6LjH7SKwPEzoyAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.mft Manifest number: 028A Signing time: Wed 01 May 2024 03:58:49 +0000 Manifest this update: Wed 01 May 2024 03:58:48 +0000 Manifest next update: Wed 08 May 2024 03:58:48 +0000 Files and hashes: 1: VjjLHibRGZ2r6LjH7SKwPEzoyAo.crl (hash: k8WSbVLtyI1gTATTihlZK6z6h4WhzGTEraz4Bq9HhUQ=) 2: 2A22D2FCB6CB11ECA43EEE87C4F9AE02.roa (hash: 17zYLasmjWkylExtRqYU5N/LN7+1/9TF71dGXdEDivA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.crl rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VjjLHibRGZ2r6LjH7SKwPEzoyAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 654 (0x28e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6F2B/serialNumber=5638CB1E26D1199DABE8B8C7ED22B03C4CE8C80A Validity Not Before: May 1 03:58:48 2024 GMT Not After : May 8 03:58:48 2024 GMT Subject: CN=6631bdf9-c9fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6c:3a:1c:56:27:02:7b:5f:57:4b:27:42:aa: c8:65:2d:db:d5:47:62:4b:f7:e8:6f:a1:a2:e5:79: f3:d0:fe:1e:0d:50:cc:b7:84:88:fc:a4:7b:47:d8: 54:06:c1:43:ac:bf:55:b9:ae:7c:a5:3e:13:64:2f: 72:c6:c2:bf:22:ae:f4:68:b2:d7:90:f2:9f:2f:32: 35:4d:4a:b6:8e:de:2e:4a:5e:f7:5a:3f:bc:7e:f0: 8a:6e:ea:0e:9a:7f:b2:11:9f:ea:e1:95:48:32:9f: ab:0e:ab:9d:d2:11:10:08:64:c0:46:d2:e7:9a:a9: 36:ea:bc:77:25:05:a8:6f:68:9d:d1:e2:8b:dc:e1: 3b:e6:e6:3a:a1:6b:04:b1:e0:a7:0e:07:8c:9b:2a: 4d:fa:9c:ff:93:36:0d:20:52:11:71:d2:1a:20:c4: e9:19:38:cf:17:e1:47:34:5c:de:0e:b7:3e:c2:8a: b2:d7:2f:c4:76:be:ee:84:c2:d8:30:7f:4a:a6:ad: cd:eb:8e:39:3f:10:82:0e:a8:b6:94:bf:a4:ab:00: 4d:bd:8e:02:6e:ed:54:d7:ce:cb:a7:81:51:14:6e: fd:36:66:c6:a2:7a:3a:a5:eb:bd:7e:a0:01:c7:d5: 20:2e:72:78:c4:9e:3d:59:10:ab:00:ae:cb:13:6e: af:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:0F:F8:49:FA:02:1D:18:E5:60:B7:7C:8F:3C:34:E3:14:9B:F9:E7 X509v3 Authority Key Identifier: keyid:56:38:CB:1E:26:D1:19:9D:AB:E8:B8:C7:ED:22:B0:3C:4C:E8:C8:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VjjLHibRGZ2r6LjH7SKwPEzoyAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:0e:59:3e:fc:99:fd:d3:01:cc:21:d9:fb:1b:99:30:99:bb: ca:a7:02:cc:79:1a:39:ce:a5:b0:92:14:06:bf:05:f5:a6:17: 5d:6a:01:3a:38:76:c8:9f:bd:64:fb:a2:ce:41:b6:87:6c:8f: 9e:c9:f5:dd:4c:75:03:cc:1d:88:26:a0:dc:5d:ae:08:b1:27: 4e:7d:2e:5f:1b:21:7b:5b:f8:a0:53:35:dc:f4:c9:0b:84:75: 90:51:e6:b0:5e:f0:4b:b7:5b:af:69:9c:40:88:31:a8:40:bd: dc:95:e2:6e:76:0c:ba:b8:41:76:e7:75:6f:43:ca:e6:6e:a5: e4:69:0a:ba:fe:94:70:b2:47:16:61:50:c3:95:52:ef:21:1f: 4a:a9:d8:35:27:fe:37:52:9e:04:0b:c1:5b:4b:f8:a6:b4:2d: 22:60:05:94:e4:ce:a2:5e:cd:78:29:19:d8:8c:2c:0b:36:9b: 4a:cc:0c:89:e7:9e:fa:f4:f4:a7:09:6b:ba:31:5a:cd:06:37: 94:4a:db:3b:18:e1:f9:ee:7a:54:9f:67:20:aa:fb:9d:03:d7: 66:15:50:4e:df:90:0a:fc:75:ce:64:35:f5:bb:b8:98:e7:67: 12:96:ed:b1:de:58:0a:d7:e1:e8:ae:fd:e5:54:e1:5f:0e:79: ff:18:2e:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZGMkIxMTAvBgNVBAUTKDU2MzhDQjFFMjZEMTE5OURBQkU4QjhDN0VEMjJCMDND NENFOEM4MEEwHhcNMjQwNTAxMDM1ODQ4WhcNMjQwNTA4MDM1ODQ4WjAYMRYwFAYD VQQDEw02NjMxYmRmOS1jOWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtWw6HFYnAntfV0snQqrIZS3b1UdiS/fob6Gi5Xnz0P4eDVDMt4SI/KR7R9hU BsFDrL9Vua58pT4TZC9yxsK/Iq70aLLXkPKfLzI1TUq2jt4uSl73Wj+8fvCKbuoO mn+yEZ/q4ZVIMp+rDqud0hEQCGTARtLnmqk26rx3JQWob2id0eKL3OE75uY6oWsE seCnDgeMmypN+pz/kzYNIFIRcdIaIMTpGTjPF+FHNFzeDrc+woqy1y/Edr7uhMLY MH9Kpq3N6445PxCCDqi2lL+kqwBNvY4Cbu1U187Lp4FRFG79NmbGono6peu9fqAB x9UgLnJ4xJ49WRCrAK7LE26veQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH0P+En6 Ah0Y5WC3fI88NOMUm/nnMB8GA1UdIwQYMBaAFFY4yx4m0Rmdq+i4x+0isDxM6MgK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkYyQi8zMzg2Njc2NkI2 QzkxMUVDODlCREM2ODdDNEY5QUUwMi9WampMSGliUkdaMnI2TGpIN1NLd1BFem95 QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZqakxIaWJSR1oycjZMakg3U0t3UEV6b3lBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkYyQi8zMzg2Njc2NkI2QzkxMUVDODlCREM2ODdDNEY5QUUwMi9WampMSGliUkda MnI2TGpIN1NLd1BFem95QW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpDlk+/Jn90wHMIdn7G5kwmbvKpwLMeRo5zqWwkhQGvwX1phddagE6 OHbIn71k+6LOQbaHbI+eyfXdTHUDzB2IJqDcXa4IsSdOfS5fGyF7W/igUzXc9MkL hHWQUeawXvBLt1uvaZxAiDGoQL3cleJudgy6uEF253VvQ8rmbqXkaQq6/pRwskcW YVDDlVLvIR9Kqdg1J/43Up4EC8FbS/imtC0iYAWU5M6iXs14KRnYjCwLNptKzAyJ 55769PSnCWu6MVrNBjeUSts7GOH57npUn2cgqvudA9dmFVBO35AK/HXOZDX1u7iY 52cSlu2x3lgK1+Horv3lVOFfDnn/GC4D -----END CERTIFICATE-----Generated at Wed May 1 05:59:12 2024 by rpki-client on console-fra.rpki-client.org