$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft File: AaQS70FsiE9vY38b2oAOtu9nttY.mft (raw, json) Hash identifier: dn8J9OpbZoZtJVVLQxpUaD3+vQVJYUTxl6kO2IPK3Ls= Subject key identifier: 0E:50:E7:F6:34:9A:E6:FC:72:34:24:55:C7:DA:BC:5F:60:55:AD:2C Authority key identifier: 01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 Certificate issuer: /CN=A91E4845/serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Certificate serial: 210D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft Manifest number: 20F5 Signing time: Sat 04 May 2024 16:18:18 +0000 Manifest this update: Sat 04 May 2024 16:18:18 +0000 Manifest next update: Sat 11 May 2024 16:18:18 +0000 Files and hashes: 1: AaQS70FsiE9vY38b2oAOtu9nttY.crl (hash: qXcnVQpvzo1GcjDXUl8NemJWJ0DkrlD6aCeaXB1S4F4=) 2: B517FDAAC49F11ED8CF0B945C4F9AE02.roa (hash: q+Bp4il3k3Nf2HcSC8fRGkv+SGqRhHOgY4Fo0DshqU8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 16:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8461 (0x210d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4845/serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Validity Not Before: May 4 16:18:18 2024 GMT Not After : May 11 16:18:18 2024 GMT Subject: CN=66365fca-c8b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:47:1f:75:14:41:ee:a6:9d:10:9e:5e:da:bb: d7:74:38:d7:88:38:f9:a8:90:6e:a1:a8:b6:57:23: 1b:53:34:08:a3:12:7f:0b:75:c7:ba:a5:71:96:ea: 91:a8:b7:71:90:b4:d7:25:bd:df:20:32:6d:69:5b: b6:be:6a:7a:8c:1c:63:d2:ee:9c:b6:4e:61:19:b7: 7a:8a:a8:5b:32:15:51:1e:a4:b0:8c:3c:34:8d:ad: cf:a1:c7:29:33:0a:c5:9d:f8:00:ba:d1:43:5c:d9: 43:30:71:17:6d:a9:1b:11:c1:d5:b8:3b:d9:e8:a2: 84:e0:40:ff:26:fb:52:3f:4e:de:8f:6a:7e:fe:9d: d8:77:ff:6d:6e:93:61:9b:63:75:72:8f:6f:2e:45: a1:c2:a2:05:f7:6b:da:95:f1:a9:9a:b0:44:21:20: 89:e1:79:9b:fb:ee:34:f0:3c:0d:c1:a8:70:e9:67: ff:58:76:60:4a:b1:d9:f9:db:4e:28:e4:00:d3:8a: 60:07:54:76:e3:a5:73:34:38:af:c9:3f:4e:ba:5d: 09:a7:c9:57:ca:0a:e5:6d:f8:50:89:f6:95:d6:14: 49:82:35:ae:bf:78:ba:1e:26:05:36:7f:13:03:10: b8:99:9d:d8:d8:77:f9:46:27:fb:88:d3:b8:b2:e4: 6b:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:50:E7:F6:34:9A:E6:FC:72:34:24:55:C7:DA:BC:5F:60:55:AD:2C X509v3 Authority Key Identifier: keyid:01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:5c:31:ce:af:df:3f:12:64:58:7a:eb:82:fd:d2:fa:3e:0b: 31:c2:80:a1:fe:c7:46:4c:4d:d6:ca:e8:80:da:6d:52:3a:ae: 68:a4:02:c3:97:3d:cd:af:13:74:3f:53:bd:ad:75:f9:21:f9: 65:1b:ba:7c:de:e7:00:df:08:66:27:a8:48:fd:41:c5:43:12: ce:bc:ac:dd:87:36:e1:8a:34:69:51:91:5f:f4:13:96:1b:99: 83:30:d5:cb:2b:f0:fd:59:e0:b1:b4:10:7e:2f:20:d3:7a:a2: 26:27:a9:39:0d:ca:88:b0:a3:92:5d:95:f6:52:d6:e1:0e:1e: fc:6b:6d:20:cc:82:db:56:b7:24:66:fe:02:91:f6:d3:48:3b: b9:e9:30:8c:9c:f4:4e:fb:1f:f9:65:bd:92:79:b3:58:9f:16: 8f:ac:d8:df:b5:e5:bb:71:9e:61:e0:24:c5:ce:2d:34:6e:c4: bf:9c:9d:a8:d9:4f:22:b8:c7:3d:76:d9:36:24:d0:b5:4d:ff: fe:30:6f:51:af:8e:38:b3:37:4c:a4:3f:78:ab:4a:7c:46:3e: 47:bb:af:ad:ef:65:1d:e0:db:7a:35:1a:6c:6c:56:d1:2e:53: 1d:1c:19:f7:18:12:4b:24:3f:d1:66:f8:d5:ad:d7:ff:ee:00: 09:54:91:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ4NDUxMTAvBgNVBAUTKDAxQTQxMkVGNDE2Qzg4NEY2RjYzN0YxQkRBODAwRUI2 RUY2N0I2RDYwHhcNMjQwNTA0MTYxODE4WhcNMjQwNTExMTYxODE4WjAYMRYwFAYD VQQDEw02NjM2NWZjYS1jOGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApUcfdRRB7qadEJ5e2rvXdDjXiDj5qJBuoai2VyMbUzQIoxJ/C3XHuqVxluqR qLdxkLTXJb3fIDJtaVu2vmp6jBxj0u6ctk5hGbd6iqhbMhVRHqSwjDw0ja3Poccp MwrFnfgAutFDXNlDMHEXbakbEcHVuDvZ6KKE4ED/JvtSP07ej2p+/p3Yd/9tbpNh m2N1co9vLkWhwqIF92valfGpmrBEISCJ4Xmb++408DwNwahw6Wf/WHZgSrHZ+dtO KOQA04pgB1R246VzNDivyT9Oul0Jp8lXygrlbfhQifaV1hRJgjWuv3i6HiYFNn8T AxC4mZ3Y2Hf5Rif7iNO4suRrdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA5Q5/Y0 mub8cjQkVcfavF9gVa0sMB8GA1UdIwQYMBaAFAGkEu9BbIhPb2N/G9qADrbvZ7bW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDg0NS80MDAxNTNCNkQy RUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lFOXZZMzhiMm9BT3R1OW50 dFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FhUVM3MEZzaUU5dlkzOGIyb0FPdHU5bnR0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDg0NS80MDAxNTNCNkQyRUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lF OXZZMzhiMm9BT3R1OW50dFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQXDHOr98/EmRYeuuC/dL6PgsxwoCh/sdGTE3WyuiA2m1SOq5opALD lz3NrxN0P1O9rXX5IfllG7p83ucA3whmJ6hI/UHFQxLOvKzdhzbhijRpUZFf9BOW G5mDMNXLK/D9WeCxtBB+LyDTeqImJ6k5DcqIsKOSXZX2UtbhDh78a20gzILbVrck Zv4CkfbTSDu56TCMnPRO+x/5Zb2SebNYnxaPrNjfteW7cZ5h4CTFzi00bsS/nJ2o 2U8iuMc9dtk2JNC1Tf/+MG9Rr444szdMpD94q0p8Rj5Hu6+t72Ud4Nt6NRpsbFbR LlMdHBn3GBJLJD/RZvjVrdf/7gAJVJFr -----END CERTIFICATE-----Generated at Sat May 4 17:19:50 2024 by rpki-client on console-fra.rpki-client.org