$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft File: a-Q-axOWQ8tMGebfcyO1A8STEds.mft (raw, json) Hash identifier: fvVyC5yp+gApFNzO8miN+buzZ0llidfSL35BJ57FHsM= Subject key identifier: 47:EC:33:46:46:2A:E7:71:9C:89:01:58:7B:7B:5F:1F:8D:88:99:CC Authority key identifier: 6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB Certificate issuer: /CN=A91E8D27/serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Certificate serial: 332D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft Manifest number: 3317 Signing time: Tue 30 Apr 2024 15:35:57 +0000 Manifest this update: Tue 30 Apr 2024 15:35:57 +0000 Manifest next update: Tue 07 May 2024 15:35:57 +0000 Files and hashes: 1: a-Q-axOWQ8tMGebfcyO1A8STEds.crl (hash: fIZntiXF8F1PZ0ZNlLkpBSrQqr2gMIc2zRx7B/qOnVo=) 2: DF04503A238911EDBAFA790DC4F9AE02.roa (hash: DOIoFfPOJgl62OZkobg1Vi1veyazlCKHk2nbi99GX7M=) 3: 9CA4F39C23A811ED95ECB53FC4F9AE02.roa (hash: XjFxEVk+QowNgV0F7XV7as/tWm3Uvwzq3LMmF9H1qMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 15:35:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13101 (0x332d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D27/serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Validity Not Before: Apr 30 15:35:57 2024 GMT Not After : May 7 15:35:57 2024 GMT Subject: CN=66310fdd-eddb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:78:6b:24:ca:f9:1e:66:4a:19:62:53:7b:fc: 04:56:fc:04:88:51:96:32:5e:58:31:ce:45:ea:f0: 8b:eb:16:33:f9:e7:ec:99:68:c5:28:a3:d8:9e:bf: b4:91:c8:0f:cc:ed:6e:d0:e3:6d:d1:5f:f6:ee:cd: 63:8a:e7:11:8d:a0:b1:74:bf:69:c2:ea:72:d1:cc: 92:3a:aa:bb:55:b8:d5:de:d5:a8:76:cd:bd:a4:84: 05:27:09:d1:20:19:69:1a:b9:ef:d7:51:57:aa:80: ef:40:f3:5c:a6:12:77:b9:c0:8c:d9:2c:5c:3c:70: 64:eb:7b:19:3f:01:8a:80:2c:9a:6d:24:7b:60:a8: d3:d2:5a:1f:28:7c:00:76:92:6c:1f:44:38:ab:53: 5f:66:57:0a:5d:01:f9:62:e5:34:c2:99:8f:3a:e1: 14:3e:2a:a2:ae:00:9a:a8:70:ad:ab:fc:9a:df:05: 61:d8:a1:c1:e5:c5:44:44:3e:3e:d3:ef:e3:bb:f5: 25:71:d8:cb:01:c7:2f:7c:1b:fa:5a:42:ac:a6:9d: 18:b6:ad:e7:30:3b:5f:ab:71:f1:69:dc:08:0f:b8: e7:2a:18:3a:1c:7b:b7:b2:7a:70:54:d4:e2:b5:23: 4c:c0:92:d8:0c:6a:8b:1f:15:fb:e3:6a:0d:ed:2c: e4:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:EC:33:46:46:2A:E7:71:9C:89:01:58:7B:7B:5F:1F:8D:88:99:CC X509v3 Authority Key Identifier: keyid:6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:41:9d:98:25:44:9d:b0:53:1d:28:8e:3c:a5:8d:76:2c:fb: 16:12:84:07:ea:a3:c4:27:82:43:40:d4:03:d1:b8:df:5a:b9: 96:e5:91:56:10:4f:ab:b0:c1:ab:09:db:29:68:92:05:9d:34: cf:40:c7:6b:86:9a:63:89:77:7a:f0:3f:6c:06:08:b6:72:63: 1e:69:6d:c3:2a:de:51:3d:e7:75:0a:8c:61:78:d7:95:78:ed: c4:75:b5:fa:28:1f:38:bf:ef:5e:1e:c0:fb:bd:e3:90:98:1c: f0:6c:5e:07:2a:d4:18:ba:34:b3:33:e3:96:6e:59:07:a9:0a: 0c:7e:64:e2:a2:42:c0:1d:a1:7a:b4:5a:f8:c2:55:ae:3b:51: 65:58:b6:61:c2:a2:cb:d8:db:e9:29:83:64:6b:4f:1e:26:4b: 0f:d9:22:af:df:9c:4d:dc:a6:74:32:69:9d:bd:09:d9:89:78: d8:3d:70:56:87:02:77:85:c4:64:e7:cf:d7:be:53:89:63:63: fb:11:33:f4:f2:b9:d8:ce:e4:60:05:d9:aa:85:5b:ca:54:c7: 26:84:39:c5:ad:3e:0a:3d:c3:0f:0a:ac:c3:96:35:e5:f9:48: db:af:74:9c:b0:de:20:1f:50:45:90:0b:5b:3f:e1:a8:79:5a: 3b:d5:59:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMy0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjcxMTAvBgNVBAUTKDZCRTQzRTZCMTM5NjQzQ0I0QzE5RTZERjczMjNCNTAz QzQ5MzExREIwHhcNMjQwNDMwMTUzNTU3WhcNMjQwNTA3MTUzNTU3WjAYMRYwFAYD VQQDEw02NjMxMGZkZC1lZGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoXhrJMr5HmZKGWJTe/wEVvwEiFGWMl5YMc5F6vCL6xYz+efsmWjFKKPYnr+0 kcgPzO1u0ONt0V/27s1jiucRjaCxdL9pwupy0cySOqq7VbjV3tWods29pIQFJwnR IBlpGrnv11FXqoDvQPNcphJ3ucCM2SxcPHBk63sZPwGKgCyabSR7YKjT0lofKHwA dpJsH0Q4q1NfZlcKXQH5YuU0wpmPOuEUPiqirgCaqHCtq/ya3wVh2KHB5cVERD4+ 0+/ju/UlcdjLAccvfBv6WkKspp0Ytq3nMDtfq3HxadwID7jnKhg6HHu3snpwVNTi tSNMwJLYDGqLHxX742oN7SzksQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEfsM0ZG KudxnIkBWHt7Xx+NiJnMMB8GA1UdIwQYMBaAFGvkPmsTlkPLTBnm33MjtQPEkxHb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyNy9DMEM1ODA3MDQy RTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4dE1HZWJmY3lPMUE4U1RF ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EtUS1heE9XUTh0TUdlYmZjeU8xQThTVEVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQyNy9DMEM1ODA3MDQyRTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4 dE1HZWJmY3lPMUE4U1RFZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/QZ2YJUSdsFMdKI48pY12LPsWEoQH6qPEJ4JDQNQD0bjfWrmW5ZFW EE+rsMGrCdspaJIFnTTPQMdrhppjiXd68D9sBgi2cmMeaW3DKt5RPed1CoxheNeV eO3EdbX6KB84v+9eHsD7veOQmBzwbF4HKtQYujSzM+OWblkHqQoMfmTiokLAHaF6 tFr4wlWuO1FlWLZhwqLL2NvpKYNka08eJksP2SKv35xN3KZ0MmmdvQnZiXjYPXBW hwJ3hcRk58/XvlOJY2P7ETP08rnYzuRgBdmqhVvKVMcmhDnFrT4KPcMPCqzDljXl +Ujbr3ScsN4gH1BFkAtbP+GoeVo71VlS -----END CERTIFICATE-----Generated at Tue Apr 30 18:57:41 2024 by rpki-client on console-fra.rpki-client.org