$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0BE6/5E517FEE648511EC9A558B0DC4F9AE02/8lDTaGdT_eZUsLs0sSeG-1pDkq8.mft File: 8lDTaGdT_eZUsLs0sSeG-1pDkq8.mft (raw, json) Hash identifier: hXZMMMlK8aFFT897QbgXPVrJ1kIbH7AMvne7fmGu8Ys= Subject key identifier: 36:6F:69:90:E9:37:2B:8D:61:48:81:FD:E6:AE:6F:D6:1B:26:AF:83 Authority key identifier: F2:50:D3:68:67:53:FD:E6:54:B0:BB:34:B1:27:86:FB:5A:43:92:AF Certificate issuer: /CN=A91E0BE6/serialNumber=F250D3686753FDE654B0BB34B12786FB5A4392AF Certificate serial: 0364 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8lDTaGdT_eZUsLs0sSeG-1pDkq8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0BE6/5E517FEE648511EC9A558B0DC4F9AE02/8lDTaGdT_eZUsLs0sSeG-1pDkq8.mft Manifest number: 035F Signing time: Fri 03 May 2024 02:59:01 +0000 Manifest this update: Fri 03 May 2024 02:59:00 +0000 Manifest next update: Fri 10 May 2024 02:59:00 +0000 Files and hashes: 1: 8lDTaGdT_eZUsLs0sSeG-1pDkq8.crl (hash: FVKO4T0tilxAz19FKKibKdg93FWu+uH+Baxw2riybjU=) 2: 5074F282677F11EC8C1C1218C4F9AE02.roa (hash: Shv0mAPAeOgZrUKUVpuc0urk2ziZaGJuKXtf+02VxfI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0BE6/5E517FEE648511EC9A558B0DC4F9AE02/8lDTaGdT_eZUsLs0sSeG-1pDkq8.crl rsync://rpki.apnic.net/member_repository/A91E0BE6/5E517FEE648511EC9A558B0DC4F9AE02/8lDTaGdT_eZUsLs0sSeG-1pDkq8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8lDTaGdT_eZUsLs0sSeG-1pDkq8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 02:59:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 868 (0x364) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0BE6/serialNumber=F250D3686753FDE654B0BB34B12786FB5A4392AF Validity Not Before: May 3 02:59:00 2024 GMT Not After : May 10 02:59:00 2024 GMT Subject: CN=663452f5-bc05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:b9:8f:65:08:10:1b:3e:8f:85:50:c8:45:d6: 11:e9:dc:72:26:8e:e7:80:36:4e:8c:ca:87:b6:2e: f2:02:c8:46:6e:e3:ea:9a:6d:ed:c3:2c:6a:99:b6: 24:6f:eb:a6:c2:43:6a:27:e4:4a:cd:83:2c:ba:46: 98:91:4e:f9:b3:99:0c:df:d1:97:bc:ed:ef:f3:c1: 84:51:84:3b:79:a1:e7:1a:89:61:61:70:5f:d1:10: 23:85:71:d1:7b:e2:e1:f6:72:71:dd:af:c6:02:79: 03:f2:de:da:10:32:b4:90:72:2c:43:30:7d:e0:22: 97:9c:33:43:7d:0a:5b:e2:87:d8:a6:95:ed:2a:6a: 2d:81:33:5c:92:aa:cf:8f:9f:19:0a:cf:ec:0b:ee: e1:aa:21:02:72:d2:87:f1:5a:4e:e0:57:ff:d1:cc: 6d:d6:18:cd:15:fa:c1:fe:82:c7:fa:7a:11:1a:c4: 5d:d5:f7:18:70:c4:9b:ab:fd:34:f7:35:13:43:89: 9b:61:83:33:72:89:dd:5b:be:f9:a3:15:72:71:61: 4a:2b:a2:40:6f:e6:d5:19:47:18:df:78:38:75:f2: a3:b0:ac:e4:cf:f3:02:b2:50:96:32:42:32:60:8d: ea:2f:a8:81:6c:47:fe:a9:b1:bd:b4:d8:da:ff:cf: b0:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:6F:69:90:E9:37:2B:8D:61:48:81:FD:E6:AE:6F:D6:1B:26:AF:83 X509v3 Authority Key Identifier: keyid:F2:50:D3:68:67:53:FD:E6:54:B0:BB:34:B1:27:86:FB:5A:43:92:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0BE6/5E517FEE648511EC9A558B0DC4F9AE02/8lDTaGdT_eZUsLs0sSeG-1pDkq8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8lDTaGdT_eZUsLs0sSeG-1pDkq8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0BE6/5E517FEE648511EC9A558B0DC4F9AE02/8lDTaGdT_eZUsLs0sSeG-1pDkq8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:8c:39:df:ae:dc:7c:7e:bb:fa:ca:28:4f:99:86:d8:c0:11: 11:f6:94:f6:e1:ac:ab:d1:a3:6a:78:3a:24:d3:f7:38:60:46: 27:12:ae:2c:b8:7c:6a:f1:ee:96:8d:72:04:75:3f:e6:07:6a: 4d:31:36:c9:af:ab:99:65:c5:56:64:bf:71:e2:b3:13:80:bf: 8a:94:94:9d:27:12:f5:34:6f:e6:ae:7b:df:c2:16:f8:c5:d7: f3:0e:ab:42:e2:a3:2e:b3:fc:89:78:3a:28:5d:78:be:ac:66: 25:0d:cf:f1:02:4d:ea:5e:3a:3f:47:bb:61:52:61:19:bb:a8: 9f:11:57:f4:ac:c9:10:3c:71:ed:c5:04:fa:3e:d8:39:85:69: 25:d1:1f:a0:88:5d:73:85:96:dc:bf:a3:2b:c4:0a:53:65:ae: 76:7e:b7:60:cc:1c:3c:7c:6a:43:34:1e:4b:3a:e7:48:69:bd: aa:e6:36:8a:f9:70:92:04:1f:4e:44:5a:56:27:88:b4:12:31: 1a:d2:5a:7f:bb:5f:b1:62:02:f2:7a:cd:57:75:88:c8:75:74: fd:1e:78:3f:74:2e:2f:51:08:72:05:a0:36:97:55:d9:f7:45: 2e:c7:92:53:a9:bc:c6:55:b3:ee:bf:c8:4b:8c:5d:ca:76:a5: 12:1e:c9:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBCRTYxMTAvBgNVBAUTKEYyNTBEMzY4Njc1M0ZERTY1NEIwQkIzNEIxMjc4NkZC NUE0MzkyQUYwHhcNMjQwNTAzMDI1OTAwWhcNMjQwNTEwMDI1OTAwWjAYMRYwFAYD VQQDEw02NjM0NTJmNS1iYzA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnbmPZQgQGz6PhVDIRdYR6dxyJo7ngDZOjMqHti7yAshGbuPqmm3twyxqmbYk b+umwkNqJ+RKzYMsukaYkU75s5kM39GXvO3v88GEUYQ7eaHnGolhYXBf0RAjhXHR e+Lh9nJx3a/GAnkD8t7aEDK0kHIsQzB94CKXnDNDfQpb4ofYppXtKmotgTNckqrP j58ZCs/sC+7hqiECctKH8VpO4Ff/0cxt1hjNFfrB/oLH+noRGsRd1fcYcMSbq/00 9zUTQ4mbYYMzcondW775oxVycWFKK6JAb+bVGUcY33g4dfKjsKzkz/MCslCWMkIy YI3qL6iBbEf+qbG9tNja/8+wGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDZvaZDp NyuNYUiB/eaub9YbJq+DMB8GA1UdIwQYMBaAFPJQ02hnU/3mVLC7NLEnhvtaQ5Kv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEJFNi81RTUxN0ZFRTY0 ODUxMUVDOUE1NThCMERDNEY5QUUwMi84bERUYUdkVF9lWlVzTHMwc1NlRy0xcERr cTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhsRFRhR2RUX2VaVXNMczBzU2VHLTFwRGtxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEJFNi81RTUxN0ZFRTY0ODUxMUVDOUE1NThCMERDNEY5QUUwMi84bERUYUdkVF9l WlVzTHMwc1NlRy0xcERrcTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9jDnfrtx8frv6yihPmYbYwBER9pT24ayr0aNqeDok0/c4YEYnEq4s uHxq8e6WjXIEdT/mB2pNMTbJr6uZZcVWZL9x4rMTgL+KlJSdJxL1NG/mrnvfwhb4 xdfzDqtC4qMus/yJeDooXXi+rGYlDc/xAk3qXjo/R7thUmEZu6ifEVf0rMkQPHHt xQT6Ptg5hWkl0R+giF1zhZbcv6MrxApTZa52frdgzBw8fGpDNB5LOudIab2q5jaK +XCSBB9ORFpWJ4i0EjEa0lp/u1+xYgLyes1XdYjIdXT9Hng/dC4vUQhyBaA2l1XZ 90Uux5JTqbzGVbPuv8hLjF3KdqUSHsnM -----END CERTIFICATE-----Generated at Fri May 3 04:45:29 2024 by rpki-client on console-fra.rpki-client.org