$ rpki-client -vvf rpki.apnic.net/member_repository/A91E96BC/6687EF22D14D11EE9DB4180FC4F9AE02/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.mft File: 7RHrTDSAQZnqd1AO3bvu4Qt1Sas.mft (raw, json) Hash identifier: UW2/ntSD0+9hF7hCu6rAc8pvyltulR3Wmjtv5sVgEFE= Subject key identifier: 42:9F:02:0D:A5:83:A4:C1:66:DD:19:7E:D4:21:CE:42:E5:0A:28:2E Authority key identifier: ED:11:EB:4C:34:80:41:99:EA:77:50:0E:DD:BB:EE:E1:0B:75:49:AB Certificate issuer: /CN=A91E96BC/serialNumber=ED11EB4C34804199EA77500EDDBBEEE10B7549AB Certificate serial: 36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E96BC/6687EF22D14D11EE9DB4180FC4F9AE02/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.mft Manifest number: 31 Signing time: Fri 17 May 2024 08:35:22 +0000 Manifest this update: Fri 17 May 2024 08:35:21 +0000 Manifest next update: Fri 24 May 2024 08:35:21 +0000 Files and hashes: 1: 7RHrTDSAQZnqd1AO3bvu4Qt1Sas.crl (hash: mL4f9EF6PWpFWF1J2jQInPLCKjawZLThQFZHY17Ja4Y=) 2: 29E1D8AAE82511EE9E51342EC4F9AE02.roa (hash: V8csm2Ikjq+/lOdjXY5y7sLhjKHzTZep/E3tm4lTIOs=) 3: 29686394E82511EE9E51342EC4F9AE02.roa (hash: oA8Wx4epliD0nx79Vzkz7YyyCt3NzUldrv8TpsAyH8A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E96BC/6687EF22D14D11EE9DB4180FC4F9AE02/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.crl rsync://rpki.apnic.net/member_repository/A91E96BC/6687EF22D14D11EE9DB4180FC4F9AE02/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 08:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E96BC/serialNumber=ED11EB4C34804199EA77500EDDBBEEE10B7549AB Validity Not Before: May 17 08:35:21 2024 GMT Not After : May 24 08:35:21 2024 GMT Subject: CN=664716ca-9a11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:fc:fc:2a:f1:84:c7:34:ac:6c:2a:90:42:fd: d6:fe:35:7f:6f:bd:52:46:19:77:22:21:35:64:dc: 28:d3:bd:9c:2e:8c:a5:be:ce:cf:19:55:46:3e:26: 36:e8:d5:fc:28:c6:b6:83:4c:cc:81:df:63:87:e4: 9e:73:02:0d:55:48:2c:f2:b8:41:67:43:a6:31:47: 4c:2b:44:d8:d2:57:53:39:b9:c1:36:7a:a2:73:c1: 39:29:8d:56:c3:e4:ad:3c:53:b8:cb:9d:97:3d:18: 13:9e:fe:ae:a0:f7:1c:ac:b0:ac:ff:19:82:9e:52: 79:52:32:3b:4e:5e:ab:94:bf:dd:88:06:e3:00:e5: 03:21:c0:a3:dc:37:1a:49:93:61:80:dd:87:77:75: 15:24:92:de:9d:9e:5b:b6:61:6e:a5:79:60:8f:e6: 1b:b1:8e:12:01:05:78:17:76:42:9a:3b:f5:92:11: 9f:42:ba:b8:b6:62:cb:58:0c:1f:21:66:4b:cb:2d: 4b:ab:f7:eb:07:4b:8a:89:4a:e3:66:32:4b:d9:7e: 0d:60:79:e2:dc:48:62:66:11:82:7c:56:79:76:28: 54:23:f9:cc:10:4d:9d:1b:6f:9d:51:6d:0d:d5:7f: 62:39:36:3a:84:62:22:6d:5d:a1:d4:0d:41:e7:f1: 40:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:9F:02:0D:A5:83:A4:C1:66:DD:19:7E:D4:21:CE:42:E5:0A:28:2E X509v3 Authority Key Identifier: keyid:ED:11:EB:4C:34:80:41:99:EA:77:50:0E:DD:BB:EE:E1:0B:75:49:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E96BC/6687EF22D14D11EE9DB4180FC4F9AE02/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E96BC/6687EF22D14D11EE9DB4180FC4F9AE02/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:21:4a:8b:70:ca:72:92:35:f7:8d:61:95:d8:59:9e:69:09: 73:91:5a:5a:40:f5:65:e6:05:9b:84:39:02:78:9b:7a:ec:f4: f2:2d:0e:f8:8b:8a:fa:9f:81:3f:48:31:59:63:a6:b9:33:90: 18:51:69:a0:34:91:2d:2d:74:8c:25:2d:ab:9f:59:20:26:07: 30:5b:0d:ec:56:f9:90:7d:d5:b9:7c:ad:2d:57:e6:0b:ad:4f: 54:7d:d0:46:a6:c1:ef:95:f2:79:5d:e6:63:24:4f:e3:62:2c: ca:36:cc:a3:77:68:95:d2:75:7e:43:79:f9:ec:88:95:6f:1e: d6:40:3f:c1:ec:d0:84:7f:0f:ac:fe:1c:1a:20:48:b5:60:0e: 5f:c6:f9:6e:49:73:82:4b:cb:39:0f:e4:3b:70:85:00:e0:25: 68:c5:a6:69:48:e3:cf:64:35:6c:95:60:22:16:34:16:13:db: 97:52:84:2b:c5:9b:6a:0b:2a:7b:8b:7b:96:36:ec:2c:d4:c5: 4a:62:21:10:d8:6b:50:f0:ef:7b:2a:f8:75:1c:1a:c7:e4:42: 61:c0:3a:00:0b:68:cc:f1:87:ea:48:59:5a:b2:25:b4:e7:5a: bd:0d:fe:b6:0a:19:b4:8d:37:97:03:d8:66:9e:b2:10:8f:1d: a1:ec:18:fb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF OTZCQzExMC8GA1UEBRMoRUQxMUVCNEMzNDgwNDE5OUVBNzc1MDBFRERCQkVFRTEw Qjc1NDlBQjAeFw0yNDA1MTcwODM1MjFaFw0yNDA1MjQwODM1MjFaMBgxFjAUBgNV BAMTDTY2NDcxNmNhLTlhMTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC//Pwq8YTHNKxsKpBC/db+NX9vvVJGGXciITVk3CjTvZwujKW+zs8ZVUY+Jjbo 1fwoxraDTMyB32OH5J5zAg1VSCzyuEFnQ6YxR0wrRNjSV1M5ucE2eqJzwTkpjVbD 5K08U7jLnZc9GBOe/q6g9xyssKz/GYKeUnlSMjtOXquUv92IBuMA5QMhwKPcNxpJ k2GA3Yd3dRUkkt6dnlu2YW6leWCP5huxjhIBBXgXdkKaO/WSEZ9Curi2YstYDB8h ZkvLLUur9+sHS4qJSuNmMkvZfg1geeLcSGJmEYJ8Vnl2KFQj+cwQTZ0bb51RbQ3V f2I5NjqEYiJtXaHUDUHn8UDPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQp8CDaWD pMFm3Rl+1CHOQuUKKC4wHwYDVR0jBBgwFoAU7RHrTDSAQZnqd1AO3bvu4Qt1Sasw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU5NkJDLzY2ODdFRjIyRDE0 RDExRUU5REI0MTgwRkM0RjlBRTAyLzdSSHJURFNBUVpucWQxQU8zYnZ1NFF0MVNh cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN1JIclREU0FRWm5xZDFBTzNidnU0UXQxU2FzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU5 NkJDLzY2ODdFRjIyRDE0RDExRUU5REI0MTgwRkM0RjlBRTAyLzdSSHJURFNBUVpu cWQxQU8zYnZ1NFF0MVNhcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGwhSotwynKSNfeNYZXYWZ5pCXORWlpA9WXmBZuEOQJ4m3rs9PItDviL ivqfgT9IMVljprkzkBhRaaA0kS0tdIwlLaufWSAmBzBbDexW+ZB91bl8rS1X5gut T1R90Eamwe+V8nld5mMkT+NiLMo2zKN3aJXSdX5DefnsiJVvHtZAP8Hs0IR/D6z+ HBogSLVgDl/G+W5Jc4JLyzkP5DtwhQDgJWjFpmlI489kNWyVYCIWNBYT25dShCvF m2oLKnuLe5Y27CzUxUpiIRDYa1Dw73sq+HUcGsfkQmHAOgALaMzxh+pIWVqyJbTn Wr0N/rYKGbSNN5cD2GaeshCPHaHsGPs= -----END CERTIFICATE-----Generated at Fri May 17 10:10:53 2024 by rpki-client on console-fra.rpki-client.org