$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft File: 8dIEca4xiTbXk7RttEgiB9lyRYs.mft (raw, json) Hash identifier: K4G36SRI0W19EkV536DYgKOpKprIxEZqsNRThZLkCDk= Subject key identifier: 27:4F:0B:C8:80:90:59:BA:42:A4:D4:1A:63:03:7C:00:EC:26:0F:E7 Authority key identifier: F1:D2:04:71:AE:31:89:36:D7:93:B4:6D:B4:48:22:07:D9:72:45:8B Certificate issuer: /CN=A91D8EAF/serialNumber=F1D20471AE318936D793B46DB4482207D972458B Certificate serial: 0B96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft Manifest number: 0B85 Signing time: Tue 30 Apr 2024 19:40:34 +0000 Manifest this update: Tue 30 Apr 2024 19:40:33 +0000 Manifest next update: Tue 07 May 2024 19:40:33 +0000 Files and hashes: 1: 8dIEca4xiTbXk7RttEgiB9lyRYs.crl (hash: WNRbE581NDAxT7M3jCG4SuAO3gJWrcYbYopKT5bsnjI=) 2: F4C2F7F604FF11EABFF6E022C4F9AE02.roa (hash: y72UxHLpWElT/p03BNJjswgeJmRwDTBW2SZ3AW6X+Xw=) 3: 168AD09A04EF11EA9060B76BC4F9AE02.roa (hash: 8ZRYSXtg5HDUZuCMB3d8EdToPRSyP0xYvVFsMZiV9Eg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.crl rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 19:40:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2966 (0xb96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8EAF/serialNumber=F1D20471AE318936D793B46DB4482207D972458B Validity Not Before: Apr 30 19:40:33 2024 GMT Not After : May 7 19:40:33 2024 GMT Subject: CN=66314931-97a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:75:1d:71:12:f9:09:35:7d:aa:c3:5f:8d:74: 7c:51:66:ac:91:32:90:c1:94:4e:ac:63:70:4b:34: 28:c2:2c:73:63:fd:a0:10:72:79:8a:6e:e5:84:ac: 77:0a:a8:aa:ce:9b:89:ff:5e:45:65:89:e5:e9:14: e8:27:31:7e:51:63:4e:fa:fa:3c:8b:a9:5b:ee:8a: 34:28:82:6c:17:b9:10:ef:08:96:d2:57:6d:90:4b: a9:a1:3f:5f:cc:75:2c:51:97:1b:7a:70:79:cc:fa: 68:cc:e1:f8:40:db:76:0f:71:17:b3:89:54:5b:32: 33:7a:dd:46:2d:c3:1a:99:54:91:48:bd:96:32:d0: ea:b2:f4:99:43:0e:a6:6a:cc:2b:96:8c:8d:b1:94: 4d:76:c0:f0:33:36:ca:fa:b9:97:f3:56:b2:2a:f9: 51:13:6a:31:ab:09:e8:1b:04:09:55:51:82:8d:4d: 1a:5d:94:69:ca:e1:95:d3:9e:c4:74:a3:87:9b:39: 78:83:32:cf:15:2c:f9:52:dc:bf:54:ab:b0:62:f5: e1:f3:9a:d9:4c:af:9e:11:d5:c2:c7:64:e2:12:3f: ef:a9:a9:c2:d1:62:a7:4d:e4:0c:8b:41:94:87:6a: 1f:4c:53:46:87:0f:df:12:dd:88:08:06:f1:b1:c2: 3f:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:4F:0B:C8:80:90:59:BA:42:A4:D4:1A:63:03:7C:00:EC:26:0F:E7 X509v3 Authority Key Identifier: keyid:F1:D2:04:71:AE:31:89:36:D7:93:B4:6D:B4:48:22:07:D9:72:45:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:41:da:6b:48:8f:64:d0:0c:2f:02:5e:3d:67:cf:b0:bd:54: 18:44:2b:80:7c:b8:f6:81:a3:ed:6f:9e:63:d7:0c:a2:a1:94: ac:fe:46:bc:a5:64:c2:f6:63:13:69:1b:33:1d:88:5a:cc:a7: d1:40:70:ea:c0:e4:7b:bf:4f:16:fe:ef:8e:69:f3:33:1e:69: ae:df:42:3f:c9:6b:76:3a:b1:30:0a:cd:a6:ad:6e:4d:fd:21: ba:14:21:a3:01:93:36:94:a6:0a:48:ef:5a:ec:ca:30:a0:d7: 39:83:61:7e:c5:80:10:6a:27:a4:f4:8f:6c:ca:39:9d:f5:46: 95:2b:57:44:5e:4c:f5:23:ce:e5:28:16:7e:e8:88:79:52:74: 95:7d:2f:cb:69:32:cf:7f:9d:16:ec:28:77:a0:d1:da:1e:e5: 99:b5:1f:bd:ef:5f:37:f3:a2:12:ad:a4:d2:db:fb:1e:3b:98: cc:5a:35:58:47:ac:d2:b0:fd:c5:41:e1:3f:12:e4:1b:16:b6: 8c:7e:ff:4e:ce:e6:97:80:a4:eb:38:ac:94:89:e7:c1:da:b0: 6f:14:23:b5:0f:ef:a4:02:81:2c:8a:c2:91:b7:72:c6:bd:a1: 92:03:46:9f:5f:45:74:26:57:64:3b:4f:6b:85:05:6e:0e:3a: 80:54:bc:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhFQUYxMTAvBgNVBAUTKEYxRDIwNDcxQUUzMTg5MzZENzkzQjQ2REI0NDgyMjA3 RDk3MjQ1OEIwHhcNMjQwNDMwMTk0MDMzWhcNMjQwNTA3MTk0MDMzWjAYMRYwFAYD VQQDEw02NjMxNDkzMS05N2EyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0XUdcRL5CTV9qsNfjXR8UWaskTKQwZROrGNwSzQowixzY/2gEHJ5im7lhKx3 CqiqzpuJ/15FZYnl6RToJzF+UWNO+vo8i6lb7oo0KIJsF7kQ7wiW0ldtkEupoT9f zHUsUZcbenB5zPpozOH4QNt2D3EXs4lUWzIzet1GLcMamVSRSL2WMtDqsvSZQw6m aswrloyNsZRNdsDwMzbK+rmX81ayKvlRE2oxqwnoGwQJVVGCjU0aXZRpyuGV057E dKOHmzl4gzLPFSz5Uty/VKuwYvXh85rZTK+eEdXCx2TiEj/vqanC0WKnTeQMi0GU h2ofTFNGhw/fEt2ICAbxscI/5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCdPC8iA kFm6QqTUGmMDfADsJg/nMB8GA1UdIwQYMBaAFPHSBHGuMYk215O0bbRIIgfZckWL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEVBRi8xMEIwRTNEMDA0 RUExMUVBQkVEQzgxNjFDNEY5QUUwMi84ZElFY2E0eGlUYlhrN1J0dEVnaUI5bHlS WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhkSUVjYTR4aVRiWGs3UnR0RWdpQjlseVJZcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEVBRi8xMEIwRTNEMDA0RUExMUVBQkVEQzgxNjFDNEY5QUUwMi84ZElFY2E0eGlU YlhrN1J0dEVnaUI5bHlSWXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5QdprSI9k0AwvAl49Z8+wvVQYRCuAfLj2gaPtb55j1wyioZSs/ka8 pWTC9mMTaRszHYhazKfRQHDqwOR7v08W/u+OafMzHmmu30I/yWt2OrEwCs2mrW5N /SG6FCGjAZM2lKYKSO9a7MowoNc5g2F+xYAQaiek9I9syjmd9UaVK1dEXkz1I87l KBZ+6Ih5UnSVfS/LaTLPf50W7Ch3oNHaHuWZtR+9718386ISraTS2/seO5jMWjVY R6zSsP3FQeE/EuQbFraMfv9OzuaXgKTrOKyUiefB2rBvFCO1D++kAoEsisKRt3LG vaGSA0afX0V0JldkO09rhQVuDjqAVLzQ -----END CERTIFICATE-----Generated at Tue Apr 30 21:38:07 2024 by rpki-client on console-fra.rpki-client.org