$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft File: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft (raw, json) Hash identifier: u/P87UP2Y72oL88SaycjUu1/OFOLgoIahGIlDXQ0Kc8= Subject key identifier: 3B:F8:04:54:08:25:6E:39:93:FF:8B:9B:6E:5E:EA:D5:F5:33:DF:0C Authority key identifier: DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED Certificate issuer: /CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Certificate serial: 130B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft Manifest number: 12F1 Signing time: Thu 02 May 2024 15:42:48 +0000 Manifest this update: Thu 02 May 2024 15:42:47 +0000 Manifest next update: Thu 09 May 2024 15:42:47 +0000 Files and hashes: 1: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl (hash: C8dvpBfa1rccOuLIC8GRsSp8Tkdm18cF+MIblNrvuJs=) 2: 76C6BCF6B72811ECAEFC180DC4F9AE02.roa (hash: UdF7g1ZZlNrdrIFaYji9C/S2GIbheY2sGXF8Z4BwvuY=) 3: B969D2D0BA4A11EC90B53115C4F9AE02.roa (hash: ifwPWeDGkfRaTgzorLs2TjxP9qOhrc8+ETtMc3U/oLY=) 4: 49678FBCB72B11EC8C8E3017C4F9AE02.roa (hash: PWN8OADdXsFH8SqIr4epF2+j2//RugTAUQN7gJuxg+E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 15:42:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4875 (0x130b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Validity Not Before: May 2 15:42:47 2024 GMT Not After : May 9 15:42:47 2024 GMT Subject: CN=6633b477-f8fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:78:9f:03:58:b4:03:e0:af:e6:40:00:7f:d1: 4a:85:ad:93:7a:80:1f:2a:cb:b5:98:92:29:9c:25: 06:da:f4:f4:b4:95:6e:ce:29:dc:98:cc:93:ee:21: b9:18:2c:5d:10:fd:18:19:df:6d:b8:28:79:f3:b3: 6f:db:c1:1b:0c:30:39:ce:09:44:64:1f:cb:57:f4: b6:5c:b2:c2:c0:87:9b:a3:7c:73:d4:1d:7a:a0:4c: 17:b4:88:a6:96:d8:1e:f0:55:4e:1d:c7:07:0f:a8: cb:9a:42:a4:e9:c8:fd:11:9d:86:b9:d5:73:92:3b: 64:56:ed:ba:22:04:34:7f:bf:55:a5:2b:d3:02:65: d8:e8:89:eb:4b:af:3f:e9:09:f6:d5:56:ea:77:67: 7c:7f:14:b6:a3:ac:18:95:57:28:a9:45:68:f0:35: cb:ea:f3:58:0e:f1:ff:96:d8:59:93:45:2d:4b:79: 85:12:34:30:b9:42:73:ee:84:28:18:2c:75:31:92: 68:80:74:bd:35:80:bb:83:f5:39:82:dc:f0:32:de: df:50:0a:41:08:30:f7:75:60:99:77:1d:48:72:81: c5:16:ad:05:1d:51:c5:8b:3e:05:c5:d6:6c:ba:9d: 53:8d:b4:0b:34:5e:db:ee:ab:c3:12:c0:cd:0b:71: 60:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:F8:04:54:08:25:6E:39:93:FF:8B:9B:6E:5E:EA:D5:F5:33:DF:0C X509v3 Authority Key Identifier: keyid:DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:f9:60:97:60:99:7e:7c:24:a7:56:39:ed:bc:4d:01:c7:7c: ec:10:bc:23:b5:c3:68:bb:08:6d:9a:0e:e3:dd:eb:91:9b:aa: 3f:fd:aa:ef:23:8b:62:c8:e0:f5:4d:bb:ce:ac:d8:3f:87:2a: 18:2f:8b:58:2d:7a:2f:5b:ee:df:2e:7f:39:23:30:28:d8:3a: 49:8a:48:79:98:45:4a:54:92:46:4f:49:cc:50:32:3b:4d:e1: 5e:2b:9c:81:c7:9f:30:45:df:ab:f5:cb:03:ce:36:51:c9:a0: a0:20:23:be:d7:3b:3b:7f:b9:c4:ba:5d:1c:2f:df:84:59:12: 5e:eb:1e:c1:1f:c1:6c:1d:64:30:bc:7e:95:1d:f5:59:b3:25: 73:cb:74:70:9c:a6:12:a9:e0:39:c3:37:33:2c:80:57:46:69: a8:f5:9c:f1:e1:95:1d:a0:c7:58:85:c8:7d:b8:30:e1:c1:fe: 59:d2:34:51:46:7b:e3:ad:74:1d:1c:27:05:27:be:45:be:bb: 5a:63:47:9a:6c:23:da:9c:3d:e7:b8:48:61:52:30:50:14:dd: 5d:27:27:b7:7d:bf:f5:37:48:2b:1a:c8:62:00:ea:3c:00:2a: 50:2c:5b:6f:19:8e:36:d7:39:31:54:64:58:5c:16:ef:c3:50: 16:63:43:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKERBNEI1QzIxMjNCQTlEMEY4MDIzNzhEQURERDQ4MDFC NTY3MEEzRUQwHhcNMjQwNTAyMTU0MjQ3WhcNMjQwNTA5MTU0MjQ3WjAYMRYwFAYD VQQDEw02NjMzYjQ3Ny1mOGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsnifA1i0A+Cv5kAAf9FKha2TeoAfKsu1mJIpnCUG2vT0tJVuzincmMyT7iG5 GCxdEP0YGd9tuCh587Nv28EbDDA5zglEZB/LV/S2XLLCwIebo3xz1B16oEwXtIim ltge8FVOHccHD6jLmkKk6cj9EZ2GudVzkjtkVu26IgQ0f79VpSvTAmXY6InrS68/ 6Qn21Vbqd2d8fxS2o6wYlVcoqUVo8DXL6vNYDvH/lthZk0UtS3mFEjQwuUJz7oQo GCx1MZJogHS9NYC7g/U5gtzwMt7fUApBCDD3dWCZdx1IcoHFFq0FHVHFiz4FxdZs up1TjbQLNF7b7qvDEsDNC3FgTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDv4BFQI JW45k/+Lm25e6tX1M98MMB8GA1UdIwQYMBaAFNpLXCEjup0PgCN42t3UgBtWcKPt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wNzQ5NTg5MDkx ODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5RLUFJM2phM2RTQUcxWndv LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJrdGNJU082blEtQUkzamEzZFNBRzFad28tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wNzQ5NTg5MDkxODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5R LUFJM2phM2RTQUcxWndvLTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCD+WCXYJl+fCSnVjntvE0Bx3zsELwjtcNouwhtmg7j3euRm6o//arv I4tiyOD1TbvOrNg/hyoYL4tYLXovW+7fLn85IzAo2DpJikh5mEVKVJJGT0nMUDI7 TeFeK5yBx58wRd+r9csDzjZRyaCgICO+1zs7f7nEul0cL9+EWRJe6x7BH8FsHWQw vH6VHfVZsyVzy3RwnKYSqeA5wzczLIBXRmmo9Zzx4ZUdoMdYhch9uDDhwf5Z0jRR RnvjrXQdHCcFJ75FvrtaY0eabCPanD3nuEhhUjBQFN1dJye3fb/1N0grGshiAOo8 ACpQLFtvGY421zkxVGRYXBbvw1AWY0MU -----END CERTIFICATE-----Generated at Thu May 2 17:43:52 2024 by rpki-client on console-fra.rpki-client.org