$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft File: R4pL3QESHRxrMz7MPiW6Gohxmao.mft (raw, json) Hash identifier: RW4LlG6wObtPKuJbuqIaCEAWTRRmsacPGYvsvUw25Jk= Subject key identifier: 0A:34:85:A6:E2:A3:04:28:22:86:86:57:91:40:9B:A0:B4:C6:67:5E Authority key identifier: 47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA Certificate issuer: /CN=A91DF076/serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Certificate serial: 0D04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft Manifest number: 0CFC Signing time: Wed 24 Apr 2024 18:48:17 +0000 Manifest this update: Wed 24 Apr 2024 18:48:17 +0000 Manifest next update: Wed 01 May 2024 18:48:17 +0000 Files and hashes: 1: R4pL3QESHRxrMz7MPiW6Gohxmao.crl (hash: /UZfJN2FJi7ZYAclUcvHxpg7mtcRoTEcHEMVa6K0baA=) 2: 7043D43679BB11ECB6D72266C4F9AE02.roa (hash: xOxXMfOXHt2qRd+Rnz4yuRb/4BHfIz/GTJSc2sQzyVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 18:35:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3332 (0xd04) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF076/serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Validity Not Before: Apr 24 18:48:17 2024 GMT Not After : May 1 18:48:17 2024 GMT Subject: CN=662953f1-140b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:64:3d:75:d5:37:d5:b8:7e:f5:53:e3:96:10: bd:64:ba:b9:b1:aa:cc:08:67:7c:04:dc:f3:5b:9d: f3:79:0c:3b:0b:60:fb:bd:dc:f9:6b:76:de:f7:c2: c7:e4:5d:98:68:91:06:fe:12:d1:00:f9:41:0b:2f: 19:60:7c:38:26:9f:49:a6:8f:9b:48:6b:bc:c3:1b: d4:e1:dc:10:87:bd:d7:48:0c:19:4c:e5:ce:f0:80: d8:f7:92:e8:51:b8:c1:04:d4:4d:1b:4b:37:c0:f7: 22:d0:3e:f9:01:72:74:67:0e:ac:86:1c:9d:1b:00: d1:72:ea:23:05:72:a7:7e:c3:27:3c:bf:07:4e:b2: 70:43:c5:95:55:c9:c2:e6:1a:7d:06:d4:f6:6c:ab: 5c:10:dc:23:99:9b:3b:60:00:82:b7:36:e8:6c:e3: f2:c0:f5:6a:2a:cf:b7:be:83:d5:a2:42:8b:bb:18: 17:18:8c:19:63:f5:49:5c:a5:e3:e9:f2:e9:f9:2c: d8:7d:97:58:a3:5d:3d:c3:a3:65:03:3c:e3:b3:d1: 34:1d:09:7f:39:c1:cf:98:8d:1a:40:8d:6f:b9:74: 6f:e6:96:98:bd:07:21:6c:c8:63:37:fb:b3:d5:ab: ca:92:55:d7:27:53:0e:9b:0e:6d:f8:ac:16:e9:bb: 17:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:34:85:A6:E2:A3:04:28:22:86:86:57:91:40:9B:A0:B4:C6:67:5E X509v3 Authority Key Identifier: keyid:47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:c1:4f:8f:e7:2b:14:2b:8a:81:87:6b:e2:ec:15:fd:fd:7e: c3:3e:98:ee:44:2b:c0:ae:45:a5:23:96:62:dc:5e:fc:12:de: 97:63:d8:45:e3:28:ed:c4:8a:ad:e0:85:ef:4c:70:57:57:f3: d9:20:82:4f:e8:71:b9:65:7f:0d:0f:13:54:c1:a5:19:d9:41: f6:40:3d:0e:c2:03:54:46:b6:8f:15:46:1d:83:df:9e:6f:d5: 9e:6d:49:2e:dd:9d:97:fe:0c:52:90:46:63:89:55:3d:b4:22: 51:e3:15:31:c7:d2:1d:15:5a:6e:1c:9f:00:18:4e:0e:73:45: 0d:93:e7:bf:4f:c7:80:a7:17:ab:e6:10:69:04:98:68:eb:fb: 3f:3b:40:1a:95:6d:13:69:b3:ab:e7:52:fd:f6:a7:c0:e6:c9: 7c:6c:42:38:93:38:56:31:d0:f8:d8:fc:92:da:b6:f0:a7:82: 8d:92:2f:3b:48:31:14:48:0d:0d:1c:be:ba:47:e4:58:74:53: 7e:63:58:0c:5f:f4:3e:2d:e9:61:57:6b:6b:76:a3:69:6c:13: d1:81:94:ff:d2:70:f7:c0:f3:25:6b:0e:64:06:74:7c:9b:87: eb:98:ba:3d:72:74:38:60:71:81:9c:2e:29:6e:ca:ce:2d:7b: ea:6c:1f:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwNzYxMTAvBgNVBAUTKDQ3OEE0QkREMDExMjFEMUM2QjMzM0VDQzNFMjVCQTFB ODg3MTk5QUEwHhcNMjQwNDI0MTg0ODE3WhcNMjQwNTAxMTg0ODE3WjAYMRYwFAYD VQQDEw02NjI5NTNmMS0xNDBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw2Q9ddU31bh+9VPjlhC9ZLq5sarMCGd8BNzzW53zeQw7C2D7vdz5a3be98LH 5F2YaJEG/hLRAPlBCy8ZYHw4Jp9Jpo+bSGu8wxvU4dwQh73XSAwZTOXO8IDY95Lo UbjBBNRNG0s3wPci0D75AXJ0Zw6shhydGwDRcuojBXKnfsMnPL8HTrJwQ8WVVcnC 5hp9BtT2bKtcENwjmZs7YACCtzbobOPywPVqKs+3voPVokKLuxgXGIwZY/VJXKXj 6fLp+SzYfZdYo109w6NlAzzjs9E0HQl/OcHPmI0aQI1vuXRv5paYvQchbMhjN/uz 1avKklXXJ1MOmw5t+KwW6bsXTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAo0habi owQoIoaGV5FAm6C0xmdeMB8GA1UdIwQYMBaAFEeKS90BEh0cazM+zD4luhqIcZmq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjA3Ni9BNDA4RjU4MkI5 MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hSeHJNejdNUGlXNkdvaHht YW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1I0cEwzUUVTSFJ4ck16N01QaVc2R29oeG1hby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjA3Ni9BNDA4RjU4MkI5MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hS eHJNejdNUGlXNkdvaHhtYW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFwU+P5ysUK4qBh2vi7BX9/X7DPpjuRCvArkWlI5Zi3F78Et6XY9hF 4yjtxIqt4IXvTHBXV/PZIIJP6HG5ZX8NDxNUwaUZ2UH2QD0OwgNURraPFUYdg9+e b9WebUku3Z2X/gxSkEZjiVU9tCJR4xUxx9IdFVpuHJ8AGE4Oc0UNk+e/T8eApxer 5hBpBJho6/s/O0AalW0TabOr51L99qfA5sl8bEI4kzhWMdD42PyS2rbwp4KNki87 SDEUSA0NHL66R+RYdFN+Y1gMX/Q+LelhV2trdqNpbBPRgZT/0nD3wPMlaw5kBnR8 m4frmLo9cnQ4YHGBnC4pbsrOLXvqbB/F -----END CERTIFICATE-----Generated at Wed Apr 24 20:29:53 2024 by rpki-client on console-fra.rpki-client.org