$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5C49/8A87EFC21A4811EB8F143246C4F9AE02/RBbomFjaZ3sM2jO4ey6Miv0cYHg.mft File: RBbomFjaZ3sM2jO4ey6Miv0cYHg.mft (raw, json) Hash identifier: cZcbv5R48ZCgJOwlGYBjr6TTxcpEonH8Cql7aumNLkc= Subject key identifier: 3D:F8:BB:0C:2D:57:A8:3C:63:0B:10:81:58:E9:F0:89:73:1E:EB:DC Authority key identifier: 44:16:E8:98:58:DA:67:7B:0C:DA:33:B8:7B:2E:8C:8A:FD:1C:60:78 Certificate issuer: /CN=A91E5C49/serialNumber=4416E89858DA677B0CDA33B87B2E8C8AFD1C6078 Certificate serial: 06A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RBbomFjaZ3sM2jO4ey6Miv0cYHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5C49/8A87EFC21A4811EB8F143246C4F9AE02/RBbomFjaZ3sM2jO4ey6Miv0cYHg.mft Manifest number: 0D41 Signing time: Thu 02 May 2024 23:23:21 +0000 Manifest this update: Thu 02 May 2024 23:23:20 +0000 Manifest next update: Thu 09 May 2024 23:23:20 +0000 Files and hashes: 1: RBbomFjaZ3sM2jO4ey6Miv0cYHg.crl (hash: csE2mdAzI9zLSJDs03pql3iTvrfDAtWCG/HUZjpcjlk=) 2: 84FDF25A396711ED8AF52966C4F9AE02.roa (hash: EBXyk7J1juUSCo9ffavc5zkC50I9TkO5JanIZPMY63A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5C49/8A87EFC21A4811EB8F143246C4F9AE02/RBbomFjaZ3sM2jO4ey6Miv0cYHg.crl rsync://rpki.apnic.net/member_repository/A91E5C49/8A87EFC21A4811EB8F143246C4F9AE02/RBbomFjaZ3sM2jO4ey6Miv0cYHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RBbomFjaZ3sM2jO4ey6Miv0cYHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 23:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1702 (0x6a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5C49/serialNumber=4416E89858DA677B0CDA33B87B2E8C8AFD1C6078 Validity Not Before: May 2 23:23:20 2024 GMT Not After : May 9 23:23:20 2024 GMT Subject: CN=66342069-3039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0f:99:fd:b7:8a:84:19:69:09:d7:98:8e:9c: e9:70:ff:24:f3:ac:dc:e1:ed:a2:b6:a0:9c:72:6a: 29:28:67:44:49:f0:33:52:65:b2:48:fa:d0:ca:7d: 6a:52:b0:1b:44:3f:62:a8:b3:ca:35:ef:0a:a3:c6: 2f:f1:2d:b9:67:3a:51:04:af:46:c7:48:28:94:f5: 52:88:b6:94:fe:4a:a2:3b:47:c8:f3:1d:bf:a3:01: ad:45:26:70:e3:38:ac:95:fb:9a:55:93:4a:bd:1b: f3:6c:8f:ed:14:39:76:c4:19:fb:72:20:24:32:dc: 68:5d:b2:1d:bd:75:84:ce:4d:7c:b2:1e:24:64:dc: 12:d6:29:3e:0f:67:07:69:12:e5:39:cd:33:a2:3a: 7d:f8:c4:6f:d6:69:d2:86:dc:ad:9a:c5:09:db:0d: 6e:c6:40:db:ca:0d:95:5b:f2:d9:7e:1c:87:5d:7d: dc:ed:c3:1b:1b:d9:e6:6d:bb:ff:3a:ba:f7:b7:a3: 99:f7:ad:9d:c0:e6:4f:ac:62:db:3e:d0:3d:85:b6: ad:bb:29:10:7e:f4:14:61:e2:ca:a9:32:42:96:da: 85:2e:32:7f:66:9d:cf:67:33:e7:9b:59:34:f2:78: 6b:b6:cb:6f:03:a9:a9:7e:b7:eb:c9:95:8d:8e:70: 10:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:F8:BB:0C:2D:57:A8:3C:63:0B:10:81:58:E9:F0:89:73:1E:EB:DC X509v3 Authority Key Identifier: keyid:44:16:E8:98:58:DA:67:7B:0C:DA:33:B8:7B:2E:8C:8A:FD:1C:60:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5C49/8A87EFC21A4811EB8F143246C4F9AE02/RBbomFjaZ3sM2jO4ey6Miv0cYHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RBbomFjaZ3sM2jO4ey6Miv0cYHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5C49/8A87EFC21A4811EB8F143246C4F9AE02/RBbomFjaZ3sM2jO4ey6Miv0cYHg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:a9:d7:06:be:ec:45:d8:af:ae:7e:53:74:d2:7a:02:72:ce: ba:44:89:7b:58:b0:fd:eb:68:ac:97:bc:49:00:43:65:ee:73: ef:27:8c:a0:9a:44:3c:e9:22:af:b3:f7:8e:ea:39:3b:b8:c0: 28:a4:a0:50:6e:04:cb:86:97:2c:27:88:1f:63:35:10:f6:27: 42:ae:6e:b6:0d:84:2d:c2:3c:b6:15:f1:6d:d3:48:ec:6f:e0: 48:84:72:4e:cc:ce:a5:cc:75:31:36:73:cb:bb:b4:4f:79:82: ff:7b:be:29:a7:f1:5c:2f:e1:63:31:85:4f:15:e9:01:7f:df: 7b:93:ac:82:fd:19:11:c6:2d:28:9e:68:c0:47:a1:50:c1:23: 60:ec:43:e2:4d:e7:21:bb:40:0b:9b:eb:52:23:9f:47:b7:8e: 9a:d3:f6:fe:24:f6:9b:a3:05:f7:76:f2:9e:45:65:18:4d:8a: 6d:66:bd:42:45:5a:d8:05:1b:09:b6:cd:e0:20:6a:d5:a4:fa: 9f:34:58:be:c8:e5:90:cd:95:3f:5d:9c:95:e4:25:04:d1:f7: cf:98:c1:f3:7b:f9:bf:4e:91:82:c0:af:53:88:d7:f4:49:b6: 31:5a:a6:72:2e:fa:14:0b:15:70:33:c4:34:92:7a:e2:13:f8: b5:7b:d4:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVDNDkxMTAvBgNVBAUTKDQ0MTZFODk4NThEQTY3N0IwQ0RBMzNCODdCMkU4QzhB RkQxQzYwNzgwHhcNMjQwNTAyMjMyMzIwWhcNMjQwNTA5MjMyMzIwWjAYMRYwFAYD VQQDEw02NjM0MjA2OS0zMDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuA+Z/beKhBlpCdeYjpzpcP8k86zc4e2itqCccmopKGdESfAzUmWySPrQyn1q UrAbRD9iqLPKNe8Ko8Yv8S25ZzpRBK9Gx0golPVSiLaU/kqiO0fI8x2/owGtRSZw 4zislfuaVZNKvRvzbI/tFDl2xBn7ciAkMtxoXbIdvXWEzk18sh4kZNwS1ik+D2cH aRLlOc0zojp9+MRv1mnShtytmsUJ2w1uxkDbyg2VW/LZfhyHXX3c7cMbG9nmbbv/ Orr3t6OZ962dwOZPrGLbPtA9hbatuykQfvQUYeLKqTJCltqFLjJ/Zp3PZzPnm1k0 8nhrtstvA6mpfrfryZWNjnAQPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD34uwwt V6g8YwsQgVjp8IlzHuvcMB8GA1UdIwQYMBaAFEQW6JhY2md7DNozuHsujIr9HGB4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUM0OS84QTg3RUZDMjFB NDgxMUVCOEYxNDMyNDZDNEY5QUUwMi9SQmJvbUZqYVozc00yak80ZXk2TWl2MGNZ SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JCYm9tRmphWjNzTTJqTzRleTZNaXYwY1lIZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUM0OS84QTg3RUZDMjFBNDgxMUVCOEYxNDMyNDZDNEY5QUUwMi9SQmJvbUZqYVoz c00yak80ZXk2TWl2MGNZSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVqdcGvuxF2K+uflN00noCcs66RIl7WLD962isl7xJAENl7nPvJ4yg mkQ86SKvs/eO6jk7uMAopKBQbgTLhpcsJ4gfYzUQ9idCrm62DYQtwjy2FfFt00js b+BIhHJOzM6lzHUxNnPLu7RPeYL/e74pp/FcL+FjMYVPFekBf997k6yC/RkRxi0o nmjAR6FQwSNg7EPiTechu0ALm+tSI59Ht46a0/b+JPabowX3dvKeRWUYTYptZr1C RVrYBRsJts3gIGrVpPqfNFi+yOWQzZU/XZyV5CUE0ffPmMHze/m/TpGCwK9TiNf0 SbYxWqZyLvoUCxVwM8Q0knriE/i1e9Sb -----END CERTIFICATE-----Generated at Fri May 3 00:28:41 2024 by rpki-client on console-fra.rpki-client.org