$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft File: ficJop5GIOVCf3NfN8A0c-NrWXo.mft (raw, json) Hash identifier: jwutkm4PXN/Tk8Gu21I8wd6+MLE6x3gO8y0H4k54WiM= Subject key identifier: 2D:75:09:89:7F:39:54:78:2D:B0:9A:0C:7D:31:4E:AE:84:BA:85:C3 Authority key identifier: 7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A Certificate issuer: /CN=A91DD0A4/serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A Certificate serial: 0841 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft Manifest number: 0839 Signing time: Thu 02 May 2024 21:54:08 +0000 Manifest this update: Thu 02 May 2024 21:54:07 +0000 Manifest next update: Thu 09 May 2024 21:54:07 +0000 Files and hashes: 1: ficJop5GIOVCf3NfN8A0c-NrWXo.crl (hash: le4rZPmWlM2y7zppwAcvoXIoyP8MAEYyr8yOLCu7mPE=) 2: C8CCE2CCAA7411EA9DF2E685C4F9AE02.roa (hash: 6I+uff1UXsEclScW0pxm4ci886ZY0LDxuI+o7m1iBhQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.crl rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 21:27:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2113 (0x841) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD0A4/serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A Validity Not Before: May 2 21:54:07 2024 GMT Not After : May 9 21:54:07 2024 GMT Subject: CN=66340b80-d1cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:71:63:a1:1c:ec:75:c7:d3:58:a3:1f:2c:4f: 8f:15:ad:e2:46:46:f0:bb:a0:d0:4a:f2:68:0a:6d: 6e:b1:71:3f:c4:35:2b:90:2f:d9:2b:b6:79:81:99: f3:3e:db:4a:c7:54:62:7e:c0:56:c8:fe:dd:17:7b: a8:d8:7d:6b:d7:95:2a:e1:bd:66:9b:1e:a8:91:86: 5a:0d:25:70:26:f0:3b:2d:0c:9c:41:b0:cb:49:ec: e4:af:77:ab:50:58:fc:e4:de:ef:0c:65:3c:08:25: 1c:1b:07:11:8d:66:6d:5b:a2:64:1a:4d:81:9b:27: 68:af:38:da:49:dd:3e:b2:18:57:29:93:ff:cd:14: 2c:73:82:1a:e6:17:63:31:d4:bd:a1:92:a6:43:44: 13:b5:63:64:df:8d:8a:05:d4:c1:89:a6:16:d4:00: c1:80:4d:d3:9d:40:1b:3b:80:ac:b3:97:57:55:52: 4b:4b:77:4f:a2:dd:85:e0:a2:6e:fe:d3:f1:b7:b0: c6:42:b4:e9:a9:5b:ae:c9:86:44:c2:2a:e2:bd:81: d2:ec:cc:fb:0e:43:d5:28:9f:2f:8a:ef:22:8e:d5: d6:b2:8a:4f:73:a4:55:b4:e3:37:30:0b:89:9d:e9: 8c:59:6a:b5:4f:44:5c:a9:6a:44:34:de:90:db:38: 3b:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:75:09:89:7F:39:54:78:2D:B0:9A:0C:7D:31:4E:AE:84:BA:85:C3 X509v3 Authority Key Identifier: keyid:7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:fc:be:3d:b0:d2:ea:a5:05:4b:d8:b3:f1:07:b9:81:52:27: 25:d6:60:ad:49:70:dc:49:1b:5c:b6:a7:55:a6:93:f3:3b:b7: 34:2e:78:74:2b:03:a5:00:61:41:76:30:5a:8b:4f:b6:6a:ae: 09:e2:29:27:29:86:de:bc:c8:87:d9:f2:54:f9:1a:32:d4:f1: d2:ab:1f:d1:84:ae:e5:64:2d:20:54:8a:a9:83:59:a3:05:49: 3b:6f:fe:7a:2f:36:ef:c0:be:b0:d1:86:42:bb:51:f0:a7:1b: da:17:fb:88:49:bc:54:c0:3b:98:4d:47:29:89:c2:9e:07:39: d3:9d:9c:25:45:a3:fa:42:2c:7f:33:1c:9d:a8:79:e9:52:10: 77:ae:00:93:19:6b:b6:18:34:77:65:d0:04:50:2d:38:4a:f6: 6d:40:7b:ea:a5:d6:02:e0:f0:f2:03:67:57:78:18:2e:07:0e: 75:e1:93:7c:2f:42:7e:59:0d:24:12:32:62:ca:dc:b3:f3:1a: 24:c4:26:11:17:f7:bd:c2:c0:71:4b:2b:9f:34:bd:3f:8a:57: d6:14:74:3d:fc:4a:38:eb:9f:d5:56:57:c4:f8:a9:26:57:19: e7:6a:1e:75:71:a8:d5:18:8a:79:1f:7d:fd:56:5b:da:a8:1e: 17:39:38:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQwQTQxMTAvBgNVBAUTKDdFMjcwOUEyOUU0NjIwRTU0MjdGNzM1RjM3QzAzNDcz RTM2QjU5N0EwHhcNMjQwNTAyMjE1NDA3WhcNMjQwNTA5MjE1NDA3WjAYMRYwFAYD VQQDEw02NjM0MGI4MC1kMWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA73FjoRzsdcfTWKMfLE+PFa3iRkbwu6DQSvJoCm1usXE/xDUrkC/ZK7Z5gZnz PttKx1RifsBWyP7dF3uo2H1r15Uq4b1mmx6okYZaDSVwJvA7LQycQbDLSezkr3er UFj85N7vDGU8CCUcGwcRjWZtW6JkGk2BmydorzjaSd0+shhXKZP/zRQsc4Ia5hdj MdS9oZKmQ0QTtWNk342KBdTBiaYW1ADBgE3TnUAbO4Css5dXVVJLS3dPot2F4KJu /tPxt7DGQrTpqVuuyYZEwirivYHS7Mz7DkPVKJ8viu8ijtXWsopPc6RVtOM3MAuJ nemMWWq1T0RcqWpENN6Q2zg7XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC11CYl/ OVR4LbCaDH0xTq6EuoXDMB8GA1UdIwQYMBaAFH4nCaKeRiDlQn9zXzfANHPja1l6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDBBNC85NUQ1RTM5MkFB NzMxMUVBQTEwQUNDODRDNEY5QUUwMi9maWNKb3A1R0lPVkNmM05mTjhBMGMtTnJX WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZpY0pvcDVHSU9WQ2YzTmZOOEEwYy1OcldYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDBBNC85NUQ1RTM5MkFBNzMxMUVBQTEwQUNDODRDNEY5QUUwMi9maWNKb3A1R0lP VkNmM05mTjhBMGMtTnJXWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBS/L49sNLqpQVL2LPxB7mBUicl1mCtSXDcSRtctqdVppPzO7c0Lnh0 KwOlAGFBdjBai0+2aq4J4iknKYbevMiH2fJU+Roy1PHSqx/RhK7lZC0gVIqpg1mj BUk7b/56LzbvwL6w0YZCu1HwpxvaF/uISbxUwDuYTUcpicKeBznTnZwlRaP6Qix/ MxydqHnpUhB3rgCTGWu2GDR3ZdAEUC04SvZtQHvqpdYC4PDyA2dXeBguBw514ZN8 L0J+WQ0kEjJiytyz8xokxCYRF/e9wsBxSyufNL0/ilfWFHQ9/Eo465/VVlfE+Kkm Vxnnah51cajVGIp5H339VlvaqB4XOThl -----END CERTIFICATE-----Generated at Thu May 2 22:28:58 2024 by rpki-client on console-ams.rpki-client.org