$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft File: tIGYczHh7UCLUcuf2O9KZQrIZpo.mft (raw, json) Hash identifier: cGVziMsCmflkBcvzm8Sauejkhx6So+kVAaFKT3G8sto= Subject key identifier: 30:C0:90:88:87:59:6C:31:4F:9A:BA:A6:BD:A9:8B:F4:E0:FE:78:A0 Authority key identifier: B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A Certificate issuer: /CN=A91E28E2/serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Certificate serial: D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft Manifest number: D1 Signing time: Sun 05 May 2024 06:17:54 +0000 Manifest this update: Sun 05 May 2024 06:17:53 +0000 Manifest next update: Sun 12 May 2024 06:17:53 +0000 Files and hashes: 1: tIGYczHh7UCLUcuf2O9KZQrIZpo.crl (hash: 6jdGer80YQz4XiWs4A1LoHkFQFDlaZRIOqw8s8lq1Yg=) 2: B070EBECD2E911ED85F0F25BC4F9AE02.roa (hash: tCujeqJiZMiIaSSXS9NqnaebxFrza2rBPRcI+Qpx4Ws=) 3: 21E2BFDAD2EF11EDAE3FC25FC4F9AE02.roa (hash: RfZRe5AfoKnKc25VqJJfbDOYdwAKOjs/dyXEfs3NpZg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 06:17:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E28E2/serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Validity Not Before: May 5 06:17:53 2024 GMT Not After : May 12 06:17:53 2024 GMT Subject: CN=66372492-4af1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:18:9b:6a:c0:5c:f7:2a:4f:bb:53:c3:b7:ac: 6a:36:c2:2d:c3:ee:7d:73:03:17:c0:51:10:ae:42: 10:78:1c:fb:50:b2:a7:08:d0:9a:0e:f2:eb:47:4b: 7a:e4:bf:b2:47:b1:a6:9a:8c:c9:dd:8e:19:1e:5a: b4:92:f0:18:26:1c:f6:c7:f8:5b:44:ef:41:76:bd: 01:af:77:9f:49:a2:9a:11:c9:c4:6e:29:16:b7:92: 2c:ad:e4:49:65:3d:e2:f3:71:a6:b9:aa:af:8e:26: 08:22:6b:19:de:28:c0:02:35:a5:db:09:f6:87:12: 8d:2a:f3:c5:89:f2:b7:cb:de:13:43:ec:19:dc:75: 39:37:66:50:93:68:d0:2d:30:cd:ed:e4:08:f7:46: 17:54:5c:91:02:f2:20:f7:4d:b9:6c:ea:d3:a7:10: 15:c0:1d:2c:45:a1:58:c8:a2:6d:07:53:40:70:51: fe:5e:26:3f:17:38:ed:c3:af:64:e9:29:a7:82:ec: 53:c3:bf:55:5d:71:42:39:20:ff:26:77:8e:e5:f8: fa:b0:31:64:d8:28:ba:04:45:b7:53:3d:2e:88:86: 27:0d:b6:90:a7:15:56:a4:fc:42:da:16:df:16:1f: 9a:b2:c8:82:3d:eb:85:4d:e8:db:0f:8f:01:9c:fc: cf:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:C0:90:88:87:59:6C:31:4F:9A:BA:A6:BD:A9:8B:F4:E0:FE:78:A0 X509v3 Authority Key Identifier: keyid:B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:e6:14:24:77:f8:b7:10:49:14:09:51:31:e9:56:b3:12:45: 57:60:34:dd:f7:54:de:b8:5e:25:15:8c:e5:75:55:44:30:40: 5b:e3:4b:32:93:f0:89:27:80:2f:54:bb:26:d0:03:a1:83:3f: a9:0a:57:4f:f9:41:ba:7e:4f:d7:54:e4:f6:41:e0:8d:de:c6: 66:2f:cc:b3:bb:9e:84:36:90:b5:5d:47:f6:90:de:d0:20:0a: 33:c9:38:a9:46:8a:19:a8:b3:d9:28:83:6e:40:62:7c:62:f0: 15:5e:30:c2:21:96:31:5d:1f:2f:a6:c9:e1:54:1d:18:7f:69: c9:32:11:2a:58:a2:79:26:f8:31:63:bc:77:13:95:22:b5:c4: 75:ca:58:6a:33:37:45:78:8c:1c:0f:5a:cf:9c:47:03:99:f7: 21:66:15:56:3d:b7:4f:2a:b6:a6:e7:68:78:70:d4:62:92:81: 99:61:f9:d9:9a:03:be:b2:a2:bb:52:6d:d5:83:76:2e:82:81: a0:1e:47:df:2b:d4:8b:fd:be:d6:0b:74:2e:ba:90:8b:60:63: 03:f4:92:78:4e:27:4c:ca:fd:59:94:1a:7f:2c:6a:2e:72:40: d6:1b:45:7c:68:08:85:d5:80:99:41:5e:07:ab:e4:5a:2a:78: ea:b0:78:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI4RTIxMTAvBgNVBAUTKEI0ODE5ODczMzFFMUVENDA4QjUxQ0I5RkQ4RUY0QTY1 MEFDODY2OUEwHhcNMjQwNTA1MDYxNzUzWhcNMjQwNTEyMDYxNzUzWjAYMRYwFAYD VQQDEw02NjM3MjQ5Mi00YWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArBibasBc9ypPu1PDt6xqNsItw+59cwMXwFEQrkIQeBz7ULKnCNCaDvLrR0t6 5L+yR7GmmozJ3Y4ZHlq0kvAYJhz2x/hbRO9Bdr0Br3efSaKaEcnEbikWt5IsreRJ ZT3i83GmuaqvjiYIImsZ3ijAAjWl2wn2hxKNKvPFifK3y94TQ+wZ3HU5N2ZQk2jQ LTDN7eQI90YXVFyRAvIg9025bOrTpxAVwB0sRaFYyKJtB1NAcFH+XiY/Fzjtw69k 6SmnguxTw79VXXFCOSD/JneO5fj6sDFk2Ci6BEW3Uz0uiIYnDbaQpxVWpPxC2hbf Fh+assiCPeuFTejbD48BnPzPQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDDAkIiH WWwxT5q6pr2pi/Tg/nigMB8GA1UdIwQYMBaAFLSBmHMx4e1Ai1HLn9jvSmUKyGaa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjhFMi85NTJGQTYzMkQy RTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdVQ0xVY3VmMk85S1pRckla cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJR1ljekhoN1VDTFVjdWYyTzlLWlFySVpwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjhFMi85NTJGQTYzMkQyRTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdV Q0xVY3VmMk85S1pRcklacG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAx5hQkd/i3EEkUCVEx6VazEkVXYDTd91TeuF4lFYzldVVEMEBb40sy k/CJJ4AvVLsm0AOhgz+pCldP+UG6fk/XVOT2QeCN3sZmL8yzu56ENpC1XUf2kN7Q IAozyTipRooZqLPZKINuQGJ8YvAVXjDCIZYxXR8vpsnhVB0Yf2nJMhEqWKJ5Jvgx Y7x3E5UitcR1ylhqMzdFeIwcD1rPnEcDmfchZhVWPbdPKram52h4cNRikoGZYfnZ mgO+sqK7Um3Vg3YugoGgHkffK9SL/b7WC3QuupCLYGMD9JJ4TidMyv1ZlBp/LGou ckDWG0V8aAiF1YCZQV4Hq+RaKnjqsHiM -----END CERTIFICATE-----Generated at Sun May 5 08:39:15 2024 by rpki-client on console-fra.rpki-client.org