$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft File: rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft (raw, json) Hash identifier: NRT9quOsDTunUz+qjm5OU6xMLbQC53ZEMVh4fTtb+X8= Subject key identifier: 52:C1:A7:91:99:3A:9C:C3:3D:75:85:26:F9:C5:6E:1C:43:39:78:9D Authority key identifier: AD:CD:5A:4D:B5:99:C7:1A:ED:93:D0:96:AB:14:CA:FA:08:15:E6:17 Certificate issuer: /CN=A91E1498/serialNumber=ADCD5A4DB599C71AED93D096AB14CAFA0815E617 Certificate serial: 2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rc1aTbWZxxrtk9CWqxTK-ggV5hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft Manifest number: 28 Signing time: Wed 15 May 2024 08:43:21 +0000 Manifest this update: Wed 15 May 2024 08:43:21 +0000 Manifest next update: Wed 22 May 2024 08:43:21 +0000 Files and hashes: 1: rc1aTbWZxxrtk9CWqxTK-ggV5hc.crl (hash: Ph4qY4SdeN+CucUUxQnBP1ZySH5BgI23tER2qWYnhks=) 2: 6C523164E03F11EE87838439C4F9AE02.roa (hash: mv/1q1fWNxrhkEN9Y113u0N7l2VES4hsApUz5cCFDX8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.crl rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rc1aTbWZxxrtk9CWqxTK-ggV5hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1498/serialNumber=ADCD5A4DB599C71AED93D096AB14CAFA0815E617 Validity Not Before: May 15 08:43:21 2024 GMT Not After : May 22 08:43:21 2024 GMT Subject: CN=664475a9-e54e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:25:3b:f5:a2:d0:4e:ed:f6:30:77:59:24:ab: 94:8f:a1:3f:77:89:a6:69:e5:3a:b7:77:3d:21:23: 00:05:17:e7:d5:06:12:90:78:fc:34:a6:a0:65:fb: d7:b8:3c:0a:01:40:5f:02:78:31:7e:bc:ab:09:2f: da:9e:55:01:7f:6e:ec:be:0b:54:d0:da:46:a3:d5: 0c:31:4e:0a:60:6d:30:05:85:ea:e6:86:2c:c3:61: 1e:71:d2:71:97:be:97:1f:43:3a:61:60:f6:e7:2a: 26:82:44:13:8f:63:de:7f:dc:d3:4d:2a:02:6c:4f: 11:71:55:2c:c5:4e:a6:19:59:ae:3e:16:a5:1b:c9: c9:b4:ba:58:b2:a6:05:0a:72:da:2f:c4:05:9a:0f: 49:82:6f:7e:bb:76:be:15:47:c7:ce:95:d9:ad:08: b0:cd:52:22:33:66:7d:af:e1:72:53:a9:3f:2e:15: 92:8e:1e:90:5b:fe:40:27:06:1a:ca:eb:7d:a4:9c: 1d:d5:2d:bc:3c:14:ca:56:0a:1d:2a:9e:71:16:93: e7:2d:6a:8f:97:83:be:97:e5:4c:f9:32:98:64:6c: 12:8c:8d:6b:cc:b0:e4:56:20:7d:ed:1e:a2:63:23: dc:90:ba:0f:45:b2:f3:95:72:63:f9:f6:42:b0:ec: ff:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:C1:A7:91:99:3A:9C:C3:3D:75:85:26:F9:C5:6E:1C:43:39:78:9D X509v3 Authority Key Identifier: keyid:AD:CD:5A:4D:B5:99:C7:1A:ED:93:D0:96:AB:14:CA:FA:08:15:E6:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rc1aTbWZxxrtk9CWqxTK-ggV5hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:4e:08:70:7a:f0:ae:93:07:56:5e:48:3e:85:2d:e7:2e:02: 19:88:f2:16:62:ee:d4:be:12:79:77:ba:0d:57:0c:77:9e:c8: c2:a5:84:cd:2a:90:5e:f4:07:0c:e9:15:98:4c:f8:e4:a2:a2: 82:6b:69:58:32:5a:1c:c2:e3:11:8b:23:8e:bb:4e:77:85:21: ab:a4:09:9c:74:88:27:06:50:3b:3d:ac:bc:40:2b:4c:83:90: 2b:8e:aa:53:16:c7:d6:fa:26:1e:dc:d6:8c:e1:f6:ab:66:63: 05:af:d9:42:11:63:7a:55:f6:e8:67:7e:f9:65:28:e5:87:cc: 0e:91:cc:91:3d:4a:bb:57:9b:99:5b:d3:af:36:6d:68:aa:c3: 00:71:fc:99:2c:15:d9:3f:d7:48:82:aa:ea:f5:0d:e4:bf:85: 58:b3:a4:b8:a5:dc:18:60:9f:57:5e:3c:ba:d5:84:64:11:b4: 3b:36:e1:c7:3d:51:9d:c8:32:ba:74:1b:18:52:3f:d9:4c:49: 33:89:ad:67:32:da:1e:d7:5a:70:9f:ac:8d:c8:c9:bc:23:6b: d5:cc:07:99:c7:30:e2:fe:da:5d:3f:dd:5c:9a:14:3d:e1:dd: 27:80:22:a6:59:be:5f:42:52:0d:57:4d:b1:1c:94:b9:df:ff: 9d:2d:4b:7f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MTQ5ODExMC8GA1UEBRMoQURDRDVBNERCNTk5QzcxQUVEOTNEMDk2QUIxNENBRkEw ODE1RTYxNzAeFw0yNDA1MTUwODQzMjFaFw0yNDA1MjIwODQzMjFaMBgxFjAUBgNV BAMTDTY2NDQ3NWE5LWU1NGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWJTv1otBO7fYwd1kkq5SPoT93iaZp5Tq3dz0hIwAFF+fVBhKQePw0pqBl+9e4 PAoBQF8CeDF+vKsJL9qeVQF/buy+C1TQ2kaj1QwxTgpgbTAFhermhizDYR5x0nGX vpcfQzphYPbnKiaCRBOPY95/3NNNKgJsTxFxVSzFTqYZWa4+FqUbycm0uliypgUK ctovxAWaD0mCb367dr4VR8fOldmtCLDNUiIzZn2v4XJTqT8uFZKOHpBb/kAnBhrK 632knB3VLbw8FMpWCh0qnnEWk+ctao+Xg76X5Uz5MphkbBKMjWvMsORWIH3tHqJj I9yQug9FsvOVcmP59kKw7P9vAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUsGnkZk6 nMM9dYUm+cVuHEM5eJ0wHwYDVR0jBBgwFoAUrc1aTbWZxxrtk9CWqxTK+ggV5hcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUxNDk4L0IzQzhBOTdDREZC NTExRUVCN0FEOEYyRUM0RjlBRTAyL3JjMWFUYldaeHhydGs5Q1dxeFRLLWdnVjVo Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcmMxYVRiV1p4eHJ0azlDV3F4VEstZ2dWNWhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUx NDk4L0IzQzhBOTdDREZCNTExRUVCN0FEOEYyRUM0RjlBRTAyL3JjMWFUYldaeHhy dGs5Q1dxeFRLLWdnVjVoYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFFOCHB68K6TB1ZeSD6FLecuAhmI8hZi7tS+Enl3ug1XDHeeyMKlhM0q kF70BwzpFZhM+OSiooJraVgyWhzC4xGLI467TneFIaukCZx0iCcGUDs9rLxAK0yD kCuOqlMWx9b6Jh7c1ozh9qtmYwWv2UIRY3pV9uhnfvllKOWHzA6RzJE9SrtXm5lb 0682bWiqwwBx/JksFdk/10iCqur1DeS/hVizpLil3Bhgn1dePLrVhGQRtDs24cc9 UZ3IMrp0GxhSP9lMSTOJrWcy2h7XWnCfrI3Iybwja9XMB5nHMOL+2l0/3VyaFD3h 3SeAIqZZvl9CUg1XTbEclLnf/50tS38= -----END CERTIFICATE-----Generated at Wed May 15 09:28:17 2024 by rpki-client on console-fra.rpki-client.org