$ rpki-client -vvf rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.mft File: x-V5CwXg1NIJ20PcaA-3iCeYFKk.mft (raw, json) Hash identifier: KhyyOhFDzB6HVuvYDKpAhf4oz6fAmo8FK9jWtRO9OGE= Subject key identifier: C8:0E:C2:04:94:F0:75:62:EF:58:3E:09:27:73:60:CB:EB:7E:ED:33 Authority key identifier: C7:E5:79:0B:05:E0:D4:D2:09:DB:43:DC:68:0F:B7:88:27:98:14:A9 Certificate issuer: /CN=A91E01B2/serialNumber=C7E5790B05E0D4D209DB43DC680FB788279814A9 Certificate serial: 0299 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x-V5CwXg1NIJ20PcaA-3iCeYFKk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.mft Manifest number: 0291 Signing time: Fri 03 May 2024 03:45:08 +0000 Manifest this update: Fri 03 May 2024 03:45:08 +0000 Manifest next update: Fri 10 May 2024 03:45:08 +0000 Files and hashes: 1: x-V5CwXg1NIJ20PcaA-3iCeYFKk.crl (hash: 2XCgHCOoQnwjy+AjPd93KkW6q3xP2Tg+zcUv1z8yM3o=) 2: A8E34E9CB66611ECAF76DA4CC4F9AE02.roa (hash: H61h5fXsvlRnlENkIrx+tFqMY/HM+pvGeCm6ugQKqtU=) 3: A9906244B66611ECAF76DA4CC4F9AE02.roa (hash: 2BMnSUaVbf1wtJhhxxVU6VnaQor23drbSv3U2jHE+g4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.crl rsync://rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x-V5CwXg1NIJ20PcaA-3iCeYFKk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 665 (0x299) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E01B2/serialNumber=C7E5790B05E0D4D209DB43DC680FB788279814A9 Validity Not Before: May 3 03:45:08 2024 GMT Not After : May 10 03:45:08 2024 GMT Subject: CN=66345dc4-cee1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:1d:fa:d5:3b:ca:c9:65:da:aa:d4:74:8c:c9: 8e:c5:a1:d9:24:35:b3:7c:34:0b:34:63:a6:52:34: ea:4b:21:9a:a4:3a:4c:33:80:7d:bd:cc:1d:2b:af: db:a9:72:23:1b:5f:83:71:fc:f5:05:2c:d3:ed:bb: 95:b5:ac:55:55:70:44:1b:8e:af:d8:fb:69:0d:1a: 0f:d4:6e:02:2f:1d:ab:26:db:c3:f0:ca:cf:09:bb: ee:34:a4:29:11:18:0f:cd:5e:65:b4:84:73:a0:02: 48:2b:b4:1c:0f:07:f8:18:e9:2f:d7:59:66:96:c2: 88:ff:54:e1:7e:a8:bf:cc:98:d7:1a:4b:3b:20:66: 48:59:de:d3:ae:49:31:4b:f4:8c:65:3a:5f:33:2a: 2f:d4:ac:0f:9b:d5:a0:e3:d7:2e:fb:b8:9a:80:e5: 91:b4:50:dc:b6:09:f8:d6:64:57:e2:c1:d3:6c:62: 81:fa:40:6c:89:c3:4f:84:a7:a8:59:0f:19:8d:e2: e1:d2:fd:82:e9:a4:80:da:1a:78:3a:a1:f4:f2:3c: af:0e:23:7a:d4:58:ec:ce:be:61:5b:f2:18:30:1d: 47:ed:ae:7e:16:d0:e1:c1:c2:48:aa:86:de:e9:6b: 27:b3:b1:06:58:f1:1c:1f:bf:7b:8e:f6:e9:2b:76: 4d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:0E:C2:04:94:F0:75:62:EF:58:3E:09:27:73:60:CB:EB:7E:ED:33 X509v3 Authority Key Identifier: keyid:C7:E5:79:0B:05:E0:D4:D2:09:DB:43:DC:68:0F:B7:88:27:98:14:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x-V5CwXg1NIJ20PcaA-3iCeYFKk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:8d:02:3b:66:3d:f7:ed:92:05:d2:bc:eb:4a:a5:03:52:d1: 24:98:c5:39:57:bd:a7:c8:ff:e1:80:1d:6e:6d:08:5f:03:14: 35:2b:41:e5:6c:78:c4:c8:e8:9e:d1:00:a1:61:ce:cc:71:17: 26:29:d0:8b:fe:96:d6:ff:83:7f:c9:7e:03:a6:ff:9e:07:f6: 80:98:58:eb:fd:1f:8b:b2:e4:cd:ba:a8:c0:c9:53:84:6c:0f: f7:dc:c1:23:8e:d4:a6:46:27:83:c3:52:61:9a:9f:aa:2e:60: b8:cb:5b:71:1a:ca:32:38:db:c4:ad:48:4c:49:1f:37:25:1d: 75:7d:47:cd:0b:69:24:7f:2a:5c:0c:60:c0:86:bd:36:81:44: 36:fc:e6:29:1c:ed:67:5e:c2:96:b8:dc:d0:ff:0d:bb:2e:5a: 55:c1:31:ec:0f:5b:f7:6d:0f:cc:26:04:a6:16:91:e2:24:3c: e9:2d:2a:e1:27:d6:01:bb:bf:94:f9:c0:7b:74:5d:8c:d7:4c: b5:be:e6:2b:3c:05:29:9e:e7:17:db:9e:b1:1d:c8:43:d2:2b: 1d:7e:2b:b8:fd:cb:16:93:44:c7:53:c3:e2:73:61:74:8f:40: c0:d7:15:48:1f:31:41:50:66:90:f5:9a:fc:f6:29:fe:72:8f: 22:b0:1a:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAxQjIxMTAvBgNVBAUTKEM3RTU3OTBCMDVFMEQ0RDIwOURCNDNEQzY4MEZCNzg4 Mjc5ODE0QTkwHhcNMjQwNTAzMDM0NTA4WhcNMjQwNTEwMDM0NTA4WjAYMRYwFAYD VQQDEw02NjM0NWRjNC1jZWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6B361TvKyWXaqtR0jMmOxaHZJDWzfDQLNGOmUjTqSyGapDpMM4B9vcwdK6/b qXIjG1+Dcfz1BSzT7buVtaxVVXBEG46v2PtpDRoP1G4CLx2rJtvD8MrPCbvuNKQp ERgPzV5ltIRzoAJIK7QcDwf4GOkv11lmlsKI/1Thfqi/zJjXGks7IGZIWd7Trkkx S/SMZTpfMyov1KwPm9Wg49cu+7iagOWRtFDctgn41mRX4sHTbGKB+kBsicNPhKeo WQ8ZjeLh0v2C6aSA2hp4OqH08jyvDiN61Fjszr5hW/IYMB1H7a5+FtDhwcJIqobe 6Wsns7EGWPEcH797jvbpK3ZNlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMgOwgSU 8HVi71g+CSdzYMvrfu0zMB8GA1UdIwQYMBaAFMfleQsF4NTSCdtD3GgPt4gnmBSp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDFCMi82REU5RjQxMEI2 NjMxMUVDOEQ1NEE0NDlDNEY5QUUwMi94LVY1Q3dYZzFOSUoyMFBjYUEtM2lDZVlG S2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3gtVjVDd1hnMU5JSjIwUGNhQS0zaUNlWUZLay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDFCMi82REU5RjQxMEI2NjMxMUVDOEQ1NEE0NDlDNEY5QUUwMi94LVY1Q3dYZzFO SUoyMFBjYUEtM2lDZVlGS2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABjQI7Zj337ZIF0rzrSqUDUtEkmMU5V72nyP/hgB1ubQhfAxQ1K0Hl bHjEyOie0QChYc7McRcmKdCL/pbW/4N/yX4Dpv+eB/aAmFjr/R+LsuTNuqjAyVOE bA/33MEjjtSmRieDw1Jhmp+qLmC4y1txGsoyONvErUhMSR83JR11fUfNC2kkfypc DGDAhr02gUQ2/OYpHO1nXsKWuNzQ/w27LlpVwTHsD1v3bQ/MJgSmFpHiJDzpLSrh J9YBu7+U+cB7dF2M10y1vuYrPAUpnucX256xHchD0isdfiu4/csWk0THU8Pic2F0 j0DA1xVIHzFBUGaQ9Zr89in+co8isBqw -----END CERTIFICATE-----Generated at Fri May 3 04:45:28 2024 by rpki-client on console-fra.rpki-client.org