$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft File: 3W8BT4rUXahdDhbys3aHZ5REhbM.mft (raw, json) Hash identifier: o6RJDYqtmQoeOY8mAQGZFUA3iJMg4F64O8fbnML9xXI= Subject key identifier: 4B:5E:F6:2F:A8:5E:33:B3:04:87:F5:AF:66:49:3F:82:79:26:96:E6 Authority key identifier: DD:6F:01:4F:8A:D4:5D:A8:5D:0E:16:F2:B3:76:87:67:94:44:85:B3 Certificate issuer: /CN=A91E8458/serialNumber=DD6F014F8AD45DA85D0E16F2B3768767944485B3 Certificate serial: 0705 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft Manifest number: 0700 Signing time: Sat 04 May 2024 22:50:19 +0000 Manifest this update: Sat 04 May 2024 22:50:18 +0000 Manifest next update: Sat 11 May 2024 22:50:18 +0000 Files and hashes: 1: 3W8BT4rUXahdDhbys3aHZ5REhbM.crl (hash: 2hrEMk5qEuuR2xb9dXJRPoo6/I5Wll8va9oGeWLb5wM=) 2: FAE7339CF7B911EA91318653C4F9AE02.roa (hash: Zo13ZbklXiV5KnDTyJL8a80G8CmYR1LoLevv07Onz6c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.crl rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1797 (0x705) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8458/serialNumber=DD6F014F8AD45DA85D0E16F2B3768767944485B3 Validity Not Before: May 4 22:50:18 2024 GMT Not After : May 11 22:50:18 2024 GMT Subject: CN=6636bbaa-2a93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:92:16:c9:0e:95:44:a0:92:85:d4:32:fd:f3: dc:4e:8d:2d:f3:26:d1:43:2f:f3:84:d4:fa:51:bc: 29:f0:73:a5:14:22:52:7d:02:4a:31:7e:74:79:42: 9e:00:22:57:12:38:4d:96:06:e9:02:6b:7c:8c:b9: 27:36:fe:c3:a9:f0:76:34:7e:61:86:0a:1c:31:0f: 60:64:af:f2:89:9d:10:5e:55:4d:ba:ba:5d:1d:a4: 46:3e:ce:a8:8a:b5:e4:1c:03:83:9e:0e:58:b8:1c: 95:a2:d0:8e:c8:60:9f:dd:17:eb:35:25:57:b9:03: 6d:49:45:a9:2e:8a:5f:d0:11:c4:5e:b1:0f:9f:c8: cd:a1:35:3a:cc:cb:0a:40:ae:25:0e:4e:b3:b1:3d: 62:4f:11:8b:a2:d4:e2:4c:87:fe:a5:7f:90:7e:42: 3a:2d:c2:10:bf:dd:e2:4b:4e:f8:09:e5:d8:a9:31: 50:45:28:cc:c6:f8:0a:c7:a5:2d:5b:30:96:c7:c5: ac:e3:7b:1d:e7:f1:63:7b:3e:1a:bc:6d:3f:06:51: 88:ed:1a:bd:51:99:4f:4d:3a:63:84:5a:f0:74:cc: ce:9a:ce:f4:e0:19:dc:c5:93:02:d2:c6:b0:65:dc: 16:c7:f8:ea:78:73:3d:9a:f6:cf:9d:ec:9b:93:7f: 73:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:5E:F6:2F:A8:5E:33:B3:04:87:F5:AF:66:49:3F:82:79:26:96:E6 X509v3 Authority Key Identifier: keyid:DD:6F:01:4F:8A:D4:5D:A8:5D:0E:16:F2:B3:76:87:67:94:44:85:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:fb:58:eb:88:d2:c9:3b:f1:30:f0:18:6e:77:7e:ec:af:9d: d1:25:48:ca:13:58:e0:95:bd:86:33:14:66:7d:b6:cf:eb:19: 07:1e:d9:bd:04:70:89:41:9d:a8:8d:43:41:f5:ad:63:bc:0a: c9:ea:f5:3b:f5:f7:35:2b:eb:ea:42:70:72:56:31:fc:47:8a: c3:b6:eb:78:2d:b3:d2:61:c1:c9:8f:4a:fb:12:ba:57:6c:db: cb:da:d4:83:e4:a6:9e:c1:68:cd:ef:35:23:cc:10:ee:70:f5: a8:1f:94:be:73:dc:8a:74:dc:26:67:91:ee:8e:80:cd:7f:19: 04:21:2a:6b:5f:a0:09:7e:1a:1d:cf:b1:38:34:fb:27:f4:80: 93:27:01:cc:9c:aa:e5:07:92:cb:17:ba:d2:49:13:94:75:49: aa:c1:bb:fe:4b:7a:4e:b0:50:27:d2:69:75:8b:e7:34:26:c7: a0:1d:4d:68:29:d5:fe:f0:de:d4:6d:da:c5:34:4e:2a:c5:0e: 9f:84:09:d7:b9:d3:2b:17:70:f3:00:f2:e4:c3:9d:73:87:dd: 1c:e1:85:3c:f8:d7:19:84:fe:84:7c:15:bf:9c:1e:bc:85:26: ec:c5:64:fc:ce:76:b9:37:99:00:7d:9a:ad:e2:32:e9:50:c9: 4b:49:2e:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg0NTgxMTAvBgNVBAUTKERENkYwMTRGOEFENDVEQTg1RDBFMTZGMkIzNzY4NzY3 OTQ0NDg1QjMwHhcNMjQwNTA0MjI1MDE4WhcNMjQwNTExMjI1MDE4WjAYMRYwFAYD VQQDEw02NjM2YmJhYS0yYTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJIWyQ6VRKCShdQy/fPcTo0t8ybRQy/zhNT6Ubwp8HOlFCJSfQJKMX50eUKe ACJXEjhNlgbpAmt8jLknNv7DqfB2NH5hhgocMQ9gZK/yiZ0QXlVNurpdHaRGPs6o irXkHAODng5YuByVotCOyGCf3RfrNSVXuQNtSUWpLopf0BHEXrEPn8jNoTU6zMsK QK4lDk6zsT1iTxGLotTiTIf+pX+QfkI6LcIQv93iS074CeXYqTFQRSjMxvgKx6Ut WzCWx8Ws43sd5/Fjez4avG0/BlGI7Rq9UZlPTTpjhFrwdMzOms704BncxZMC0saw ZdwWx/jqeHM9mvbPneybk39zwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEte9i+o XjOzBIf1r2ZJP4J5JpbmMB8GA1UdIwQYMBaAFN1vAU+K1F2oXQ4W8rN2h2eURIWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODQ1OC9GOEFGMTIwMkY2 MTUxMUVBODM3NzAwNkNDNEY5QUUwMi8zVzhCVDRyVVhhaGREaGJ5czNhSFo1UkVo Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNXOEJUNHJVWGFoZERoYnlzM2FIWjVSRWhiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODQ1OC9GOEFGMTIwMkY2MTUxMUVBODM3NzAwNkNDNEY5QUUwMi8zVzhCVDRyVVhh aGREaGJ5czNhSFo1UkVoYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAo+1jriNLJO/Ew8Bhud37sr53RJUjKE1jglb2GMxRmfbbP6xkHHtm9 BHCJQZ2ojUNB9a1jvArJ6vU79fc1K+vqQnByVjH8R4rDtut4LbPSYcHJj0r7ErpX bNvL2tSD5KaewWjN7zUjzBDucPWoH5S+c9yKdNwmZ5HujoDNfxkEISprX6AJfhod z7E4NPsn9ICTJwHMnKrlB5LLF7rSSROUdUmqwbv+S3pOsFAn0ml1i+c0JsegHU1o KdX+8N7UbdrFNE4qxQ6fhAnXudMrF3DzAPLkw51zh90c4YU8+NcZhP6EfBW/nB68 hSbsxWT8zna5N5kAfZqt4jLpUMlLSS5j -----END CERTIFICATE-----Generated at Sun May 5 00:12:34 2024 by rpki-client on console-fra.rpki-client.org