$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft File: raiu0ysVuH5hElLSnR4dW95YFkY.mft (raw, json) Hash identifier: e8oXKQ6CVuPvknvaDJfMrh38KLcop/N+NtLKZ4k/y9s= Subject key identifier: 5D:B0:89:CC:A9:CC:5D:66:7B:3B:9F:F2:6E:97:19:45:09:0A:31:D9 Authority key identifier: AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46 Certificate issuer: /CN=A91DC5BE/serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646 Certificate serial: 34A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft Manifest number: 342B Signing time: Sun 26 May 2024 14:16:34 +0000 Manifest this update: Sun 26 May 2024 14:16:34 +0000 Manifest next update: Sun 02 Jun 2024 14:16:34 +0000 Files and hashes: 1: raiu0ysVuH5hElLSnR4dW95YFkY.crl (hash: Bffkh4Y90AlAa1Y+ch1iwwPIwqWVPW9G2Y/uYDozn/8=) 2: C9B8A270483411ECA6C7C085C4F9AE02.roa (hash: nJvnNt0eJsmGuLUjItzV/NgJ7+2UZ1r5MhffEQ8w0sk=) 3: 7C836BA46C8E11EEA38B9554C4F9AE02.roa (hash: aQYfeFSthN9oof4UX3Yota3Vi8A1Xibnwm7ZRxMjljY=) 4: 539CC922366C11EEBEBBBE1DC4F9AE02.roa (hash: TrayTHMiKb+Dm5posHRv3ZfOvi01WiwhoUD8use0rkY=) 5: 9040683E28F311EDA8D1655FC4F9AE02.roa (hash: eiHuGSIavLQTh3AuO/qGPu/njiK19zW3tVVTT0thYr8=) 6: FC72B9529F0311EAB6B8EA87C4F9AE02.roa (hash: iJ1kB8ujNY3bRF9sFR+ioHj2q77p/d9prgJ8hOEg/Tw=) 7: E2446DD228AA11E79582F36BC4F9AE02.roa (hash: ZJSRmEu8ZSRqTlcPEDfX6hYX2fzOC+1QV4+V6A/VckU=) 8: 662A2F2286B411E6BAEB2614C4F9AE02.roa (hash: MRkFXSabw9acLO92YltXC7hoPQwJsDF6DX+Xsg12tnY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 14:16:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13478 (0x34a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC5BE/serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646 Validity Not Before: May 26 14:16:34 2024 GMT Not After : Jun 2 14:16:34 2024 GMT Subject: CN=66534442-06c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:48:15:76:95:a3:ef:49:68:45:b3:af:fc:48: ae:eb:2e:bc:41:e4:9a:6c:aa:94:04:8b:2e:e3:ca: 2e:7c:e0:4f:c3:93:28:88:40:79:a7:c0:37:6a:8e: 35:6c:12:81:be:e1:3a:da:dc:3f:da:66:95:5e:c6: 03:ae:fd:2c:67:2e:c7:77:4e:8b:86:77:89:9b:5c: fd:ea:ab:9a:43:04:67:0d:e7:10:1f:47:5f:c1:64: 36:78:c0:9b:d0:49:27:90:d2:08:76:45:8c:b0:f4: 55:23:b6:70:6b:5b:8b:19:5c:d7:ad:94:5f:51:6c: bd:c3:0a:2c:18:dc:d5:cf:d2:2e:37:5b:14:a2:80: e9:56:eb:85:98:14:85:37:c1:c9:6e:72:5a:d0:4a: b3:ba:64:b6:6e:34:7a:92:10:d3:0a:92:b2:40:f2: d8:7e:05:d3:da:32:ba:b1:79:50:df:3f:0e:81:8c: 2e:2b:37:0f:4a:e6:ac:20:07:32:70:cd:e2:0f:eb: 0c:eb:02:c2:a8:e1:5e:4b:c4:0f:8f:b6:ce:d1:b4: 2f:ea:40:58:25:bf:b1:85:99:e5:a9:7b:dd:76:a8: da:3e:b5:d1:91:93:63:86:0a:28:c9:3b:90:fc:98: 7a:57:1f:24:c3:fb:93:62:4f:fc:f0:c6:b2:39:f7: ab:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:B0:89:CC:A9:CC:5D:66:7B:3B:9F:F2:6E:97:19:45:09:0A:31:D9 X509v3 Authority Key Identifier: keyid:AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:2c:0a:7e:5d:6e:0a:21:dc:ac:e0:3e:f4:84:24:44:76:71: af:75:0c:3f:01:d8:d8:87:94:b9:96:ac:73:3a:7b:43:9d:6f: 9c:6a:00:fe:3f:38:e6:b7:80:98:5b:f0:6b:b0:6e:34:7a:23: 2a:ea:73:17:2f:04:a0:49:b8:7e:3f:8b:3b:68:28:59:90:f7: c9:53:e3:31:ca:7e:30:74:50:46:bf:21:2f:98:d8:48:1f:99: 34:a3:4c:1c:09:05:fb:42:fa:5a:48:ea:b5:2e:d4:59:c3:d6: a6:40:21:37:f7:17:42:b6:e9:e0:ae:01:fe:ca:96:8f:a1:42: cf:8d:91:8a:9e:6c:24:2a:fd:c9:4c:e4:b8:0b:95:fe:3e:a1: 6c:85:a7:71:6e:41:ca:4f:1d:ad:15:e5:51:0c:70:c8:5d:15: 54:e9:37:7d:86:3e:06:f8:50:6a:62:64:d1:a8:cf:bd:48:98: ff:0b:4c:76:c9:a8:f9:a5:f5:31:b6:6e:eb:0c:9f:db:e1:f4: 9a:46:bb:d3:26:de:95:89:04:dd:9f:fb:49:3e:d3:fa:ce:1f: bd:09:bb:78:a5:3f:ab:0e:b8:0e:4d:e5:b8:c4:0e:3a:80:25: ef:75:26:8b:1e:93:22:f7:b5:4e:ae:89:8f:53:c1:38:9c:35: e2:82:69:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM1QkUxMTAvBgNVBAUTKEFEQThBRUQzMkIxNUI4N0U2MTEyNTJEMjlEMUUxRDVC REU1ODE2NDYwHhcNMjQwNTI2MTQxNjM0WhcNMjQwNjAyMTQxNjM0WjAYMRYwFAYD VQQDEw02NjUzNDQ0Mi0wNmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArUgVdpWj70loRbOv/Eiu6y68QeSabKqUBIsu48oufOBPw5MoiEB5p8A3ao41 bBKBvuE62tw/2maVXsYDrv0sZy7Hd06LhneJm1z96quaQwRnDecQH0dfwWQ2eMCb 0EknkNIIdkWMsPRVI7Zwa1uLGVzXrZRfUWy9wwosGNzVz9IuN1sUooDpVuuFmBSF N8HJbnJa0EqzumS2bjR6khDTCpKyQPLYfgXT2jK6sXlQ3z8OgYwuKzcPSuasIAcy cM3iD+sM6wLCqOFeS8QPj7bO0bQv6kBYJb+xhZnlqXvddqjaPrXRkZNjhgooyTuQ /Jh6Vx8kw/uTYk/88MayOferdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF2wicyp zF1mezuf8m6XGUUJCjHZMB8GA1UdIwQYMBaAFK2ortMrFbh+YRJS0p0eHVveWBZG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzVCRS9ENDAxNjE5QTFE NjkxMUUyQUZCNjRFQTcwOEIwMkNEMi9yYWl1MHlzVnVINWhFbExTblI0ZFc5NVlG a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JhaXUweXNWdUg1aEVsTFNuUjRkVzk1WUZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzVCRS9ENDAxNjE5QTFENjkxMUUyQUZCNjRFQTcwOEIwMkNEMi9yYWl1MHlzVnVI NWhFbExTblI0ZFc5NVlGa1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMLAp+XW4KIdys4D70hCREdnGvdQw/AdjYh5S5lqxzOntDnW+cagD+ Pzjmt4CYW/BrsG40eiMq6nMXLwSgSbh+P4s7aChZkPfJU+Mxyn4wdFBGvyEvmNhI H5k0o0wcCQX7QvpaSOq1LtRZw9amQCE39xdCtungrgH+ypaPoULPjZGKnmwkKv3J TOS4C5X+PqFshadxbkHKTx2tFeVRDHDIXRVU6Td9hj4G+FBqYmTRqM+9SJj/C0x2 yaj5pfUxtm7rDJ/b4fSaRrvTJt6ViQTdn/tJPtP6zh+9Cbt4pT+rDrgOTeW4xA46 gCXvdSaLHpMi97VOromPU8E4nDXigmmH -----END CERTIFICATE-----Generated at Sun May 26 16:40:36 2024 by rpki-client on console-fra.rpki-client.org