$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.mft File: 4USmzKVqqTEokShNJidwYk784uw.mft (raw, json) Hash identifier: vnxqUhfrbRiWVpFAszsLIOO6pu9G6Jie1QZv83acTvQ= Subject key identifier: DF:A7:4F:7E:74:5C:2C:2B:75:3A:FF:A0:51:11:8E:06:6E:93:D5:D8 Authority key identifier: E1:44:A6:CC:A5:6A:A9:31:28:91:28:4D:26:27:70:62:4E:FC:E2:EC Certificate issuer: /CN=A91E3493/serialNumber=E144A6CCA56AA9312891284D262770624EFCE2EC Certificate serial: 03D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4USmzKVqqTEokShNJidwYk784uw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.mft Manifest number: 03D1 Signing time: Mon 29 Apr 2024 02:17:51 +0000 Manifest this update: Mon 29 Apr 2024 02:17:51 +0000 Manifest next update: Mon 06 May 2024 02:17:51 +0000 Files and hashes: 1: 4USmzKVqqTEokShNJidwYk784uw.crl (hash: 4dGi4AvMZe/zm52cLtB51+CfVr9uxm/4fZ9sLrSjKAw=) 2: E7BC076E368A11EC9109BC30C4F9AE02.roa (hash: kbW09UJFsKnL4dHOYrdUOjMo0coDZTCOAj09v2MTtJM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.crl rsync://rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4USmzKVqqTEokShNJidwYk784uw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 02:17:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 980 (0x3d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3493/serialNumber=E144A6CCA56AA9312891284D262770624EFCE2EC Validity Not Before: Apr 29 02:17:51 2024 GMT Not After : May 6 02:17:51 2024 GMT Subject: CN=662f034f-4f16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ec:6d:5d:96:21:91:1c:0c:3c:dc:86:e4:1e: ba:a3:a8:d8:3d:e1:fe:fa:4d:b3:56:68:e0:f2:3c: f5:c0:1f:40:7d:0c:04:52:3f:ca:b8:e0:74:c9:01: de:5d:39:98:57:e7:5c:9b:79:46:f4:32:27:cf:a9: 76:70:34:67:21:27:1f:f2:9f:d7:89:13:d5:35:7e: 22:e5:4e:c8:03:e6:30:ce:16:e9:d4:63:a1:29:74: b8:7c:29:e1:22:b0:0c:98:6d:20:d6:4f:2e:0e:ab: eb:04:3e:a5:3c:80:82:79:e2:20:09:30:53:c6:0d: 5f:44:d5:7f:0e:52:d6:69:85:c5:8b:7d:59:7a:12: fe:ce:a1:be:b8:8f:1a:82:55:5c:a9:29:6c:f1:ae: d7:17:19:ac:fe:b0:3d:03:fc:23:2e:d3:30:85:65: 15:fa:dd:e2:be:4c:35:17:bd:a7:e8:c0:39:10:97: 4a:17:47:d2:57:6d:6e:67:da:5b:59:53:4f:c5:7b: 2b:c6:b5:a1:26:e8:20:a1:58:64:0b:28:de:69:35: dd:f2:ac:e4:f5:28:f3:7c:e5:90:0f:b0:55:5f:cf: ae:82:5c:d6:75:e7:93:2a:c5:f5:fd:ed:9e:5b:ce: 72:b1:9f:34:42:2c:b8:e3:e2:87:68:b1:11:12:23: 2e:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:A7:4F:7E:74:5C:2C:2B:75:3A:FF:A0:51:11:8E:06:6E:93:D5:D8 X509v3 Authority Key Identifier: keyid:E1:44:A6:CC:A5:6A:A9:31:28:91:28:4D:26:27:70:62:4E:FC:E2:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4USmzKVqqTEokShNJidwYk784uw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:cd:ab:d1:70:09:20:ff:fe:bd:e5:0d:ae:aa:cf:5e:1f:83: e7:20:e2:56:8c:0b:d0:cd:40:c1:fe:53:f5:92:00:95:7c:02: e4:6f:1b:66:e7:19:d4:00:7b:88:18:81:f5:ac:8d:a8:aa:97: 6e:01:9c:81:d8:bd:d1:b2:c9:5d:99:59:3a:de:dd:b5:fe:9f: 87:bb:9d:30:db:0f:df:88:4f:a8:1d:2a:c4:1e:0f:ee:84:0e: 2a:89:62:fe:46:9c:e0:d7:9c:fb:95:c0:a4:72:e4:3d:09:0a: ba:72:2f:b8:93:9f:92:4e:5b:ae:e9:69:bd:51:1b:67:96:ce: a9:a6:df:9a:b9:78:42:dc:63:e8:dc:32:1d:c1:f6:e4:44:42: b0:19:9d:84:85:cc:23:70:77:e2:b8:24:db:e9:6e:e2:87:36: 37:d3:f5:40:61:34:c0:b2:33:72:f0:46:79:bc:9f:09:12:dc: c2:9c:d4:f5:9e:77:4c:12:b9:d1:ca:48:66:1f:1d:fe:7f:a0: 67:d2:8a:e3:dd:e7:bd:77:01:55:49:54:0c:f0:db:cb:10:b0: 9b:b0:17:44:9a:e7:55:2b:a2:5d:42:f0:08:15:2f:af:77:31: ab:f3:23:6a:96:e7:36:9d:f3:74:c8:fe:af:bf:db:39:71:76: 4b:98:b7:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM0OTMxMTAvBgNVBAUTKEUxNDRBNkNDQTU2QUE5MzEyODkxMjg0RDI2Mjc3MDYy NEVGQ0UyRUMwHhcNMjQwNDI5MDIxNzUxWhcNMjQwNTA2MDIxNzUxWjAYMRYwFAYD VQQDEw02NjJmMDM0Zi00ZjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3extXZYhkRwMPNyG5B66o6jYPeH++k2zVmjg8jz1wB9AfQwEUj/KuOB0yQHe XTmYV+dcm3lG9DInz6l2cDRnIScf8p/XiRPVNX4i5U7IA+Ywzhbp1GOhKXS4fCnh IrAMmG0g1k8uDqvrBD6lPICCeeIgCTBTxg1fRNV/DlLWaYXFi31ZehL+zqG+uI8a glVcqSls8a7XFxms/rA9A/wjLtMwhWUV+t3ivkw1F72n6MA5EJdKF0fSV21uZ9pb WVNPxXsrxrWhJuggoVhkCyjeaTXd8qzk9SjzfOWQD7BVX8+uglzWdeeTKsX1/e2e W85ysZ80Qiy44+KHaLEREiMunwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN+nT350 XCwrdTr/oFERjgZuk9XYMB8GA1UdIwQYMBaAFOFEpsylaqkxKJEoTSYncGJO/OLs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzQ5My80OUEyRUU2QzM2 ODUxMUVDODBGNTIwMzVDNEY5QUUwMi80VVNtektWcXFURW9rU2hOSmlkd1lrNzg0 dXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRVU216S1ZxcVRFb2tTaE5KaWR3WWs3ODR1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzQ5My80OUEyRUU2QzM2ODUxMUVDODBGNTIwMzVDNEY5QUUwMi80VVNtektWcXFU RW9rU2hOSmlkd1lrNzg0dXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8zavRcAkg//695Q2uqs9eH4PnIOJWjAvQzUDB/lP1kgCVfALkbxtm 5xnUAHuIGIH1rI2oqpduAZyB2L3RssldmVk63t21/p+Hu50w2w/fiE+oHSrEHg/u hA4qiWL+Rpzg15z7lcCkcuQ9CQq6ci+4k5+STluu6Wm9URtnls6ppt+auXhC3GPo 3DIdwfbkREKwGZ2EhcwjcHfiuCTb6W7ihzY30/VAYTTAsjNy8EZ5vJ8JEtzCnNT1 nndMErnRykhmHx3+f6Bn0orj3ee9dwFVSVQM8NvLELCbsBdEmudVK6JdQvAIFS+v dzGr8yNqluc2nfN0yP6vv9s5cXZLmLci -----END CERTIFICATE-----Generated at Mon Apr 29 03:35:08 2024 by rpki-client on console-fra.rpki-client.org