$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft File: SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft (raw, json) Hash identifier: 3HtGGaZWpxHguwcTLMHol6Ykg/do0HZ2YergjRZgF7k= Subject key identifier: C9:33:6A:BB:0E:C4:5E:5E:EC:69:78:58:92:F3:2C:0A:C1:5B:09:A4 Authority key identifier: 49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 Certificate issuer: /CN=A91DA10A/serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Certificate serial: 0748 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft Manifest number: 0723 Signing time: Mon 06 May 2024 22:40:06 +0000 Manifest this update: Mon 06 May 2024 22:40:06 +0000 Manifest next update: Mon 13 May 2024 22:40:06 +0000 Files and hashes: 1: SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl (hash: AWiRp7FgWA/wrypKas1a+nsmy4iHtHsK+khsmqJz7KI=) 2: DDBCA666F18911EAA922EB1FC4F9AE02.roa (hash: 0eY9UJAkZZakZw8of6sUFhqYKDDaBt9qQKETBrfHEcM=) 3: 2F220BBA95AA11ED84962E13C4F9AE02.roa (hash: S+EUoixcFUVdydhYEhX1psMP89cFdxeSHCpw9U6Kva0=) 4: 13279E2C124011ED9E430A4CC4F9AE02.roa (hash: 85M/qz7mJYekYbZAgnSUCVink/uytYT+xqfjbzjrav8=) 5: 67FF0960076911EF8569F157C4F9AE02.roa (hash: hI29xSQXh1cP0cvokOmU5zY43qAdfumBYUMAD16rgjE=) 6: 68C5CFBE076911EF8569F157C4F9AE02.roa (hash: 3urSEYH0gjusIwXeqrofJiltAWjh56tWGXZgfGhU66o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 22:40:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1864 (0x748) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA10A/serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Validity Not Before: May 6 22:40:06 2024 GMT Not After : May 13 22:40:06 2024 GMT Subject: CN=66395c46-d6ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:08:af:9d:60:f7:c7:3e:21:8c:3c:4c:4b:0f: 81:73:7e:41:40:30:6a:55:13:ba:86:60:96:4d:f7: 36:cd:c4:83:46:3b:fc:9f:53:3c:ad:7b:7f:0f:74: 06:6f:8b:04:2f:25:33:bf:e0:13:23:df:dc:95:26: 05:b0:9f:0f:76:1d:1f:42:3b:93:cd:3b:92:70:fc: d8:62:57:fb:a7:9c:f6:1d:07:5a:6e:91:83:1a:8f: 6e:f0:47:22:e4:1d:bc:74:0f:ba:e2:0b:7e:e3:bd: 4d:90:73:28:c4:77:0a:c0:88:c0:98:4b:f1:5a:c1: 75:9d:0c:34:fa:b2:7e:e0:fd:92:55:67:51:3c:ae: ba:cc:44:47:89:08:81:e5:25:e3:70:11:64:e1:b4: 8b:4f:49:89:ed:5f:ce:5b:95:88:c4:cc:cb:6e:20: 5d:1e:ec:d6:a3:33:a9:1d:a3:39:1d:f5:a1:6e:b9: 62:b4:93:3a:64:30:30:83:16:78:50:e6:be:4f:1e: 6a:6d:6d:26:39:54:a5:48:07:cb:ea:05:ee:92:b8: 11:d4:cf:27:f0:ed:2c:97:b3:12:41:66:7a:da:44: 4a:92:ff:cc:6f:ec:9d:6d:80:c7:eb:2c:a3:16:c8: 77:65:43:ff:38:5e:85:c6:57:44:03:46:bc:4a:a2: f3:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:33:6A:BB:0E:C4:5E:5E:EC:69:78:58:92:F3:2C:0A:C1:5B:09:A4 X509v3 Authority Key Identifier: keyid:49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:2f:12:a6:12:6a:86:5d:44:1f:d5:23:d2:22:19:0a:d3:fb: 69:5c:6d:9e:74:fe:8c:76:ee:54:8f:38:2a:00:ef:ac:f3:6a: f1:b4:7c:3e:4c:02:e8:57:b2:42:0c:70:8f:67:af:b8:0e:16: 21:48:19:e9:96:aa:d5:5c:cb:33:58:c6:40:60:1b:db:85:0e: ac:00:99:06:8c:18:4a:f6:04:10:cb:0a:39:40:f6:ea:02:a8: 28:cc:c7:04:e3:a9:54:ef:b6:db:eb:92:a8:fa:a1:2a:17:09: d1:74:a1:b3:5c:1d:2a:2d:63:70:c9:be:f1:54:44:e2:f5:60: 27:94:39:ae:67:54:a2:a4:75:cc:f1:10:c1:f1:28:d8:6c:d5: 39:a1:17:04:89:67:49:fe:d4:6f:bd:ef:58:f6:19:65:c0:46: 6f:a6:ef:c8:5f:16:f8:4e:16:f0:ec:76:6a:ae:00:1b:ed:3b: 2e:94:ff:fe:3c:2a:c1:b5:e0:75:92:87:1d:dc:c6:4f:59:82: 97:f2:ec:02:bc:e9:3c:fc:3c:36:b4:2f:38:37:fd:9e:26:9d: ca:f2:a2:57:02:3e:ae:f5:5a:1f:b4:d7:ea:52:b7:3a:79:7c: 48:c4:8b:c8:0b:dc:af:a0:5a:f6:d6:e5:aa:3a:07:5d:72:f1: bc:4e:a6:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExMEExMTAvBgNVBAUTKDQ5QjVBNDY0NjNFM0EyQjcwQTMzNDQ2MDE0RUJGNDBF NUM5RUZFNzQwHhcNMjQwNTA2MjI0MDA2WhcNMjQwNTEzMjI0MDA2WjAYMRYwFAYD VQQDEw02NjM5NWM0Ni1kNmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxwivnWD3xz4hjDxMSw+Bc35BQDBqVRO6hmCWTfc2zcSDRjv8n1M8rXt/D3QG b4sELyUzv+ATI9/clSYFsJ8Pdh0fQjuTzTuScPzYYlf7p5z2HQdabpGDGo9u8Eci 5B28dA+64gt+471NkHMoxHcKwIjAmEvxWsF1nQw0+rJ+4P2SVWdRPK66zERHiQiB 5SXjcBFk4bSLT0mJ7V/OW5WIxMzLbiBdHuzWozOpHaM5HfWhbrlitJM6ZDAwgxZ4 UOa+Tx5qbW0mOVSlSAfL6gXukrgR1M8n8O0sl7MSQWZ62kRKkv/Mb+ydbYDH6yyj Fsh3ZUP/OF6FxldEA0a8SqLzPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMkzarsO xF5e7Gl4WJLzLArBWwmkMB8GA1UdIwQYMBaAFEm1pGRj46K3CjNEYBTr9A5cnv50 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEwQS9FMzQwMjA0Q0Yx ODcxMUVBQjk3MzRCMUNDNEY5QUUwMi9TYldrWkdQam9yY0tNMFJnRk92MERseWVf blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NiV2taR1Bqb3JjS00wUmdGT3YwRGx5ZV9uUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTEwQS9FMzQwMjA0Q0YxODcxMUVBQjk3MzRCMUNDNEY5QUUwMi9TYldrWkdQam9y Y0tNMFJnRk92MERseWVfblEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnLxKmEmqGXUQf1SPSIhkK0/tpXG2edP6Mdu5UjzgqAO+s82rxtHw+ TALoV7JCDHCPZ6+4DhYhSBnplqrVXMszWMZAYBvbhQ6sAJkGjBhK9gQQywo5QPbq AqgozMcE46lU77bb65Ko+qEqFwnRdKGzXB0qLWNwyb7xVETi9WAnlDmuZ1SipHXM 8RDB8SjYbNU5oRcEiWdJ/tRvve9Y9hllwEZvpu/IXxb4Thbw7HZqrgAb7TsulP/+ PCrBteB1kocd3MZPWYKX8uwCvOk8/Dw2tC84N/2eJp3K8qJXAj6u9VoftNfqUrc6 eXxIxIvIC9yvoFr21uWqOgddcvG8TqbC -----END CERTIFICATE-----Generated at Tue May 7 01:58:29 2024 by rpki-client on console-fra.rpki-client.org