$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft File: aGr0G8M9rvgo-rSuSjoNWHutDT8.mft (raw, json) Hash identifier: ByNhfbUqtht8oy31LTgWCY44R55T0gOygXATS2IM8xg= Subject key identifier: 05:E6:F4:8B:D2:96:F4:7B:8E:D2:44:A8:10:D2:8A:5A:DF:1C:FF:6B Authority key identifier: 68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F Certificate issuer: /CN=A91E4D3D/serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Certificate serial: 04DA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft Manifest number: 04CB Signing time: Fri 03 May 2024 01:32:38 +0000 Manifest this update: Fri 03 May 2024 01:32:37 +0000 Manifest next update: Fri 10 May 2024 01:32:37 +0000 Files and hashes: 1: aGr0G8M9rvgo-rSuSjoNWHutDT8.crl (hash: y0kae0wqbV7vf55cEjqeg79X5paQ+DruGNOcRPyqdDw=) 2: 63FEB4F8D97411EBB8CC3F40C4F9AE02.roa (hash: UFB8SexISoRuGEO0g4DLDULSBBr/BItnnDdRm0FdCQc=) 3: 40310456D8D211EB97FF5586C4F9AE02.roa (hash: UL1/BTKdHNpqlzZukRDIdNL4bhNFFc5wuy8V2rTyjr0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 01:32:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1242 (0x4da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D/serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Validity Not Before: May 3 01:32:37 2024 GMT Not After : May 10 01:32:37 2024 GMT Subject: CN=66343eb6-25e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:f6:80:5f:24:b1:33:b1:59:13:58:8d:0e:3a: 36:f3:a2:a2:6b:04:c8:05:ed:23:41:a9:08:c2:21: 63:33:eb:12:20:cf:68:fb:c0:4f:95:81:6d:25:65: c3:c8:2a:ac:29:ac:3b:f8:04:9c:63:a0:25:ca:83: 5e:96:45:7a:cd:f5:4d:ef:91:8b:57:9f:bb:89:36: 14:99:81:77:71:97:75:b4:6a:72:52:88:27:09:fd: 46:a8:9c:a4:f9:0f:4d:7c:7c:63:5c:cd:af:ac:ad: be:3d:69:75:d7:8c:82:2a:17:7c:74:ab:6f:ec:bc: cf:d5:c9:7b:ad:ec:95:bf:b3:02:90:6b:63:b1:b1: 65:d0:3c:d0:78:a5:cc:bd:0b:94:e9:2a:0a:ed:ab: 11:17:7b:9d:51:1e:a0:4d:1a:9c:41:94:be:1e:09: c8:27:a7:b5:6e:02:ce:5c:49:6d:ea:1b:71:77:7f: 2d:4c:06:8a:7c:7e:eb:96:3b:ea:c8:da:e3:b0:aa: a6:89:a3:53:0f:da:f3:71:17:dd:6e:22:bf:03:5e: 8b:d9:66:bf:9d:ab:84:d5:d0:8c:d6:61:6c:16:f8: 70:32:0a:1d:46:66:09:c8:ea:14:e7:8a:55:c8:db: 9d:57:fa:4d:52:92:aa:fe:27:7d:9d:83:2c:c3:ac: 4b:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:E6:F4:8B:D2:96:F4:7B:8E:D2:44:A8:10:D2:8A:5A:DF:1C:FF:6B X509v3 Authority Key Identifier: keyid:68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:c5:70:86:9d:97:4d:69:b9:89:89:06:dc:8b:f7:f1:dc:a7: 67:7e:34:49:30:d7:48:8e:c7:e5:f5:b2:9f:ba:ab:68:dd:71: 6b:61:0c:29:ab:f6:08:0c:e8:8c:57:cd:b6:c8:c7:f6:fe:cd: 48:17:9b:8f:2d:55:1c:fa:db:b6:e3:5d:a0:c3:5e:6b:d9:8f: 48:cd:52:46:fa:e7:8b:57:e7:e3:cd:8e:7d:1a:9b:17:81:9c: da:cb:2e:f8:63:fd:fa:51:44:9d:2f:50:9a:2b:b9:f2:1b:95: b6:a6:ff:54:ec:fb:e9:20:41:38:92:d8:92:55:83:ae:48:5c: 2f:4f:1b:43:a1:64:f7:51:88:f0:50:a4:52:00:ab:ff:f7:77: fc:93:8d:ef:f0:19:7e:ea:f9:b8:02:a6:27:04:0a:00:b9:b5: 63:e8:36:56:90:4a:25:39:af:e0:d9:79:f6:be:53:8b:49:71: e6:d0:de:93:3d:fe:d8:75:d0:1a:29:e4:f0:f1:0e:e2:c1:a7: d4:ce:02:08:91:1f:64:a1:db:01:ef:5f:be:6d:f5:43:f4:d3: 1f:e2:2a:eb:f0:18:80:bf:c6:d4:78:28:c5:c8:20:96:f4:9c: fd:17:18:7a:7f:72:c0:8a:e5:a6:3f:84:86:6d:5d:cf:3e:e9: 25:79:bb:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKDY4NkFGNDFCQzMzREFFRjgyOEZBQjRBRTRBM0EwRDU4 N0JBRDBEM0YwHhcNMjQwNTAzMDEzMjM3WhcNMjQwNTEwMDEzMjM3WjAYMRYwFAYD VQQDEw02NjM0M2ViNi0yNWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7/aAXySxM7FZE1iNDjo286KiawTIBe0jQakIwiFjM+sSIM9o+8BPlYFtJWXD yCqsKaw7+AScY6AlyoNelkV6zfVN75GLV5+7iTYUmYF3cZd1tGpyUognCf1GqJyk +Q9NfHxjXM2vrK2+PWl114yCKhd8dKtv7LzP1cl7reyVv7MCkGtjsbFl0DzQeKXM vQuU6SoK7asRF3udUR6gTRqcQZS+HgnIJ6e1bgLOXElt6htxd38tTAaKfH7rljvq yNrjsKqmiaNTD9rzcRfdbiK/A16L2Wa/nauE1dCM1mFsFvhwMgodRmYJyOoU54pV yNudV/pNUpKq/id9nYMsw6xL4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAXm9IvS lvR7jtJEqBDSilrfHP9rMB8GA1UdIwQYMBaAFGhq9BvDPa74KPq0rko6DVh7rQ0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9BNzBBOEZFRUQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2Z28tclN1U2pvTldIdXRE VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FHcjBHOE05cnZnby1yU3VTam9OV0h1dERUOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQzRC9BNzBBOEZFRUQ4QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2 Z28tclN1U2pvTldIdXREVDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsxXCGnZdNabmJiQbci/fx3KdnfjRJMNdIjsfl9bKfuqto3XFrYQwp q/YIDOiMV822yMf2/s1IF5uPLVUc+tu2412gw15r2Y9IzVJG+ueLV+fjzY59GpsX gZzayy74Y/36UUSdL1CaK7nyG5W2pv9U7PvpIEE4ktiSVYOuSFwvTxtDoWT3UYjw UKRSAKv/93f8k43v8Bl+6vm4AqYnBAoAubVj6DZWkEolOa/g2Xn2vlOLSXHm0N6T Pf7YddAaKeTw8Q7iwafUzgIIkR9kodsB71++bfVD9NMf4irr8BiAv8bUeCjFyCCW 9Jz9Fxh6f3LAiuWmP4SGbV3PPuklebtz -----END CERTIFICATE-----Generated at Fri May 3 04:45:29 2024 by rpki-client on console-fra.rpki-client.org