$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft File: k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft (raw, json) Hash identifier: ryDPmgL+ROUxNS3ksIpH3Ar+LioO47ph+hYShmSnh+Y= Subject key identifier: AB:05:94:B9:8E:5E:7E:01:E5:1B:79:BA:E0:87:DF:8E:46:2D:71:8E Authority key identifier: 93:C4:D7:4D:18:F5:2C:EA:58:52:80:BB:33:12:F3:10:E1:20:C0:E9 Certificate issuer: /CN=A91E3D15/serialNumber=93C4D74D18F52CEA585280BB3312F310E120C0E9 Certificate serial: 12F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8TXTRj1LOpYUoC7MxLzEOEgwOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft Manifest number: 12DF Signing time: Sat 04 May 2024 17:43:08 +0000 Manifest this update: Sat 04 May 2024 17:43:07 +0000 Manifest next update: Sat 11 May 2024 17:43:07 +0000 Files and hashes: 1: k8TXTRj1LOpYUoC7MxLzEOEgwOk.crl (hash: cbpRP/cKluclTN7kZSfuqDwc8T3wslPzO5jlytyHf/U=) 2: A04E05E42CE911EC8F99F486C4F9AE02.roa (hash: grFPnpair5b6TpzaGyDaVQsKdbSvgiobKcV8VYMAec0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.crl rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8TXTRj1LOpYUoC7MxLzEOEgwOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:43:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4856 (0x12f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3D15/serialNumber=93C4D74D18F52CEA585280BB3312F310E120C0E9 Validity Not Before: May 4 17:43:07 2024 GMT Not After : May 11 17:43:07 2024 GMT Subject: CN=663673ac-522f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:00:a7:70:ae:5c:62:24:c1:c6:55:42:d8:ed: 38:88:91:80:1b:2a:a6:ce:cd:10:7a:e2:fa:ad:5b: e4:f1:e4:ff:b6:bf:cc:8e:c1:05:1b:82:cc:db:82: 0e:5c:43:3b:f9:c2:6b:5a:12:47:5b:bd:d4:93:4e: 48:35:bf:5b:64:ef:13:eb:a3:c8:68:0d:33:b8:20: a6:df:96:86:a3:d5:26:22:18:60:fb:b4:ad:60:f9: a7:96:8e:f0:48:b4:53:2e:f8:d4:50:53:dd:89:ca: 7c:53:73:e4:80:a4:a4:51:08:a5:0a:92:2e:ec:fb: d1:4e:e3:0a:cb:64:17:43:b8:03:8c:df:cd:03:36: 46:b9:6a:fd:9a:68:80:57:7e:1a:dc:d2:08:ae:24: bc:6b:a0:71:47:52:66:cc:56:28:93:32:4b:b6:79: 41:6e:1a:9f:85:be:2f:02:76:3c:ea:f1:9f:64:4e: 10:29:e8:5d:d4:a5:c5:a5:fc:8f:48:cd:5f:1b:5d: 62:da:08:cd:d8:df:a8:06:da:7a:74:4f:8d:3c:69: d2:b4:f7:3f:8b:80:09:ac:34:3d:3d:b6:c8:ee:40: 03:e6:07:a4:63:24:13:cf:a6:b4:9a:72:10:28:7e: fb:cf:a9:f9:ac:dc:00:c5:c3:0e:85:fe:2a:91:e7: 26:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:05:94:B9:8E:5E:7E:01:E5:1B:79:BA:E0:87:DF:8E:46:2D:71:8E X509v3 Authority Key Identifier: keyid:93:C4:D7:4D:18:F5:2C:EA:58:52:80:BB:33:12:F3:10:E1:20:C0:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8TXTRj1LOpYUoC7MxLzEOEgwOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:15:ba:1a:40:3d:94:f2:72:27:7a:16:1f:70:24:7d:2c:9d: ed:67:bb:8a:e4:8a:4c:b0:b6:84:d3:c2:67:aa:c1:f3:e7:c5: 61:40:2e:d9:6b:95:b1:1b:fa:72:0a:56:a3:08:c0:e9:fb:9e: 93:21:15:49:f3:f8:d3:23:74:1c:18:59:8d:60:05:51:f9:49: dc:e1:03:2b:d3:b8:e9:d6:c3:2b:14:b8:e5:30:e6:82:8e:73: 1b:52:66:e6:4b:fb:cf:e4:47:1c:5b:e1:c9:d9:88:f3:5b:f8: da:7d:cc:6c:83:09:67:e1:ff:38:32:32:73:9b:fe:50:ca:6d: e2:37:da:fe:a0:46:04:ea:35:91:65:2a:41:c6:1c:fb:e2:6b: 8a:97:50:35:6d:e7:5b:24:3e:11:30:98:78:28:2f:43:90:a3: cb:7b:e8:2b:71:9b:a0:5b:02:2a:60:20:25:f0:33:92:6a:2a: 2d:e4:4a:7b:ed:83:97:3d:3d:33:b9:9b:b3:d9:d3:08:5e:08: c3:ac:cc:d9:5b:7f:8f:a0:6d:2a:cf:97:86:7c:46:4a:4d:07: 70:0e:32:ba:80:82:08:fa:2f:d1:85:b7:3c:cd:57:80:ec:a1: a7:5e:1c:4c:8b:b9:e0:d4:f6:8e:4a:08:9b:19:e3:bb:06:60: e9:cb:17:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEvgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNEMTUxMTAvBgNVBAUTKDkzQzRENzREMThGNTJDRUE1ODUyODBCQjMzMTJGMzEw RTEyMEMwRTkwHhcNMjQwNTA0MTc0MzA3WhcNMjQwNTExMTc0MzA3WjAYMRYwFAYD VQQDEw02NjM2NzNhYy01MjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6QCncK5cYiTBxlVC2O04iJGAGyqmzs0QeuL6rVvk8eT/tr/MjsEFG4LM24IO XEM7+cJrWhJHW73Uk05INb9bZO8T66PIaA0zuCCm35aGo9UmIhhg+7StYPmnlo7w SLRTLvjUUFPdicp8U3PkgKSkUQilCpIu7PvRTuMKy2QXQ7gDjN/NAzZGuWr9mmiA V34a3NIIriS8a6BxR1JmzFYokzJLtnlBbhqfhb4vAnY86vGfZE4QKehd1KXFpfyP SM1fG11i2gjN2N+oBtp6dE+NPGnStPc/i4AJrDQ9PbbI7kAD5gekYyQTz6a0mnIQ KH77z6n5rNwAxcMOhf4qkecmjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKsFlLmO Xn4B5Rt5uuCH345GLXGOMB8GA1UdIwQYMBaAFJPE100Y9SzqWFKAuzMS8xDhIMDp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0QxNS83QzY4NUE4Mjk1 QjkxMUU4QTY4OEI2MEVDNEY5QUUwMi9rOFRYVFJqMUxPcFlVb0M3TXhMekVPRWd3 T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2s4VFhUUmoxTE9wWVVvQzdNeEx6RU9FZ3dPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0QxNS83QzY4NUE4Mjk1QjkxMUU4QTY4OEI2MEVDNEY5QUUwMi9rOFRYVFJqMUxP cFlVb0M3TXhMekVPRWd3T2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWFboaQD2U8nInehYfcCR9LJ3tZ7uK5IpMsLaE08JnqsHz58VhQC7Z a5WxG/pyClajCMDp+56TIRVJ8/jTI3QcGFmNYAVR+Unc4QMr07jp1sMrFLjlMOaC jnMbUmbmS/vP5EccW+HJ2YjzW/jafcxsgwln4f84MjJzm/5Qym3iN9r+oEYE6jWR ZSpBxhz74muKl1A1bedbJD4RMJh4KC9DkKPLe+grcZugWwIqYCAl8DOSaiot5Ep7 7YOXPT0zuZuz2dMIXgjDrMzZW3+PoG0qz5eGfEZKTQdwDjK6gIII+i/Rhbc8zVeA 7KGnXhxMi7ng1PaOSgibGeO7BmDpyxda -----END CERTIFICATE-----Generated at Sat May 4 20:37:19 2024 by rpki-client on console-fra.rpki-client.org