$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft File: SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft (raw, json) Hash identifier: NfMoiCLLQRYNv+FxRlOip0ptkOlA5n+YSv4xKw7A3EQ= Subject key identifier: CB:77:A0:46:87:97:CE:30:DF:BA:93:7B:5A:69:CF:A9:FA:C2:EC:57 Authority key identifier: 48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 Certificate issuer: /CN=A91DA389/serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Certificate serial: CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft Manifest number: CC Signing time: Fri 03 May 2024 06:19:42 +0000 Manifest this update: Fri 03 May 2024 06:19:41 +0000 Manifest next update: Fri 10 May 2024 06:19:41 +0000 Files and hashes: 1: SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl (hash: g93II1xwYMkyQ8YDsvdq6z0PAiW3xxHvOami7u6zEs0=) 2: 4F467C58D3AA11ED91B0C532C4F9AE02.roa (hash: WfMFG2paYlBcaW2VzjMRlqPjY0slGN+N4xg/J/HMhEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 06:19:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA389/serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Validity Not Before: May 3 06:19:41 2024 GMT Not After : May 10 06:19:41 2024 GMT Subject: CN=663481fd-30ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:36:85:22:5f:b2:6a:14:89:8a:c7:c3:29:f9: 66:90:34:79:c8:7e:e8:f0:0f:89:9e:fd:ba:0b:2e: d1:ab:ed:63:39:80:70:97:b5:9d:41:72:e1:0f:b0: 95:8e:89:0a:1e:47:f7:76:b9:cf:f4:95:a5:db:44: 68:17:8a:4a:2b:a6:e1:6a:ea:24:ea:08:5b:f7:e9: 55:c2:51:d1:52:81:af:f3:a8:31:5a:71:42:78:72: fe:36:a7:99:1d:fb:f1:d0:55:89:4e:fa:7c:b8:9f: 87:3e:0d:f2:98:9f:2a:62:ba:ba:08:ba:d9:15:47: b4:85:c0:99:73:24:54:31:f4:01:52:a6:55:88:aa: b3:ff:d0:ac:03:28:e4:c4:62:b2:96:3f:52:2d:17: 3c:07:57:ed:b2:1a:da:b1:ff:25:fd:2e:03:50:ce: 24:16:64:e8:16:68:da:9d:18:58:2d:f8:61:6f:41: 3f:6f:00:e6:9d:ae:7c:39:00:b1:2e:d5:ff:b8:15: a4:bb:c7:83:69:c7:b9:3d:9d:39:93:43:e9:c5:34: d1:4b:ce:eb:0e:25:7a:ad:02:78:f4:30:5e:93:df: 62:13:33:87:32:ff:00:14:9e:2e:11:98:b7:f4:a8: d8:cf:34:c6:7c:de:5e:e6:d1:99:71:f4:f7:8b:b5: 38:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:77:A0:46:87:97:CE:30:DF:BA:93:7B:5A:69:CF:A9:FA:C2:EC:57 X509v3 Authority Key Identifier: keyid:48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:86:81:43:0d:c3:62:2e:bf:6e:ab:bd:79:ac:c1:dd:54:81: 71:1c:cc:ed:66:c2:9b:59:18:18:c3:80:28:d2:62:08:46:7a: a5:ae:9a:35:48:1a:f3:49:f3:41:51:e1:6c:86:79:99:f8:31: a7:9f:5e:eb:a9:d3:0a:9a:55:d7:ec:76:7c:bd:7a:eb:3a:f4: 60:cd:a1:95:39:bd:6b:90:d5:3a:30:47:2c:57:1d:c5:6f:90: ac:fb:26:6b:44:b1:16:b2:00:57:38:1f:d6:b4:1d:df:60:a0: 31:e3:da:15:ff:4d:21:96:11:88:83:59:48:04:46:d6:41:02: 69:ab:d1:28:6c:0e:03:47:c9:a6:3d:56:20:eb:23:2e:f6:81: e3:13:80:d8:c8:1f:ef:44:59:5a:28:b4:06:29:de:f8:18:6f: cc:62:7b:e5:75:db:58:26:e4:1f:cb:7d:49:0a:1b:f1:6c:41: f2:24:69:e9:67:77:bd:f0:d5:53:7e:59:43:a2:72:b1:f2:b4: 5f:32:a1:f4:92:75:fa:88:87:0a:21:70:f9:99:a4:0f:ca:20: 0b:36:81:5c:a8:65:eb:4c:c2:56:1d:55:c5:1f:f3:41:38:76: ca:ea:5d:cf:f5:52:05:af:f1:51:b5:5e:7f:3f:c0:2c:47:e2: c7:bb:fd:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEzODkxMTAvBgNVBAUTKDQ4RjUwRTE2QjgzMDVBQTJDNzU2RDIxQzhGMEZENTA5 MzM4QTVDMjkwHhcNMjQwNTAzMDYxOTQxWhcNMjQwNTEwMDYxOTQxWjAYMRYwFAYD VQQDEw02NjM0ODFmZC0zMGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2DaFIl+yahSJisfDKflmkDR5yH7o8A+Jnv26Cy7Rq+1jOYBwl7WdQXLhD7CV jokKHkf3drnP9JWl20RoF4pKK6bhauok6ghb9+lVwlHRUoGv86gxWnFCeHL+NqeZ Hfvx0FWJTvp8uJ+HPg3ymJ8qYrq6CLrZFUe0hcCZcyRUMfQBUqZViKqz/9CsAyjk xGKylj9SLRc8B1ftshrasf8l/S4DUM4kFmToFmjanRhYLfhhb0E/bwDmna58OQCx LtX/uBWku8eDace5PZ05k0PpxTTRS87rDiV6rQJ49DBek99iEzOHMv8AFJ4uEZi3 9KjYzzTGfN5e5tGZcfT3i7U4PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMt3oEaH l84w37qTe1ppz6n6wuxXMB8GA1UdIwQYMBaAFEj1Dha4MFqix1bSHI8P1Qkzilwp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTM4OS9CMjE3MEI3NEQz QTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dxTEhWdEljandfVkNUT0tY Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NQVU9Gcmd3V3FMSFZ0SWNqd19WQ1RPS1hDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTM4OS9CMjE3MEI3NEQzQTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dx TEhWdEljandfVkNUT0tYQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAhoFDDcNiLr9uq715rMHdVIFxHMztZsKbWRgYw4Ao0mIIRnqlrpo1 SBrzSfNBUeFshnmZ+DGnn17rqdMKmlXX7HZ8vXrrOvRgzaGVOb1rkNU6MEcsVx3F b5Cs+yZrRLEWsgBXOB/WtB3fYKAx49oV/00hlhGIg1lIBEbWQQJpq9EobA4DR8mm PVYg6yMu9oHjE4DYyB/vRFlaKLQGKd74GG/MYnvlddtYJuQfy31JChvxbEHyJGnp Z3e98NVTfllDonKx8rRfMqH0knX6iIcKIXD5maQPyiALNoFcqGXrTMJWHVXFH/NB OHbK6l3P9VIFr/FRtV5/P8AsR+LHu/23 -----END CERTIFICATE-----Generated at Fri May 3 09:09:34 2024 by rpki-client on console-fra.rpki-client.org