$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft File: Od1jNTmfErgZIRzpGqfc9i9tgbw.mft (raw, json) Hash identifier: L0U5jXEozN6rdTZrJUEpoBA3SYJfChbLf8j5+3AVCLw= Subject key identifier: 34:6D:E1:25:0C:4C:14:C1:EF:B6:3E:CE:E2:A3:4D:99:AA:A1:8D:40 Authority key identifier: 39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC Certificate issuer: /CN=A91EBB2D/serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Certificate serial: 0294 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft Manifest number: 028D Signing time: Fri 03 May 2024 03:46:15 +0000 Manifest this update: Fri 03 May 2024 03:46:15 +0000 Manifest next update: Fri 10 May 2024 03:46:15 +0000 Files and hashes: 1: Od1jNTmfErgZIRzpGqfc9i9tgbw.crl (hash: J+FcrHW0YdKYQRcihNwYKNoM+L4MMfUDFHRTac1j2oM=) 2: 8FA9D71068D611EEAD2D927FC4F9AE02.roa (hash: 6tlBwsncsPFDS2KjOCcMlnxZ6xN1xmgFM4Emgr76J4Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 660 (0x294) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBB2D/serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Validity Not Before: May 3 03:46:15 2024 GMT Not After : May 10 03:46:15 2024 GMT Subject: CN=66345e07-3006 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:4e:de:c7:32:3a:70:84:5f:69:b8:b7:75:21: 28:1f:fc:2a:98:08:56:47:67:b0:68:df:5a:6e:bd: 29:95:1a:a2:76:24:d2:1e:24:33:51:f0:5c:26:61: 15:08:9d:50:1d:ae:61:eb:14:fd:c4:84:33:5a:63: 12:5a:0f:f5:dd:92:5f:4b:5d:71:d1:01:df:ed:73: a8:65:c9:63:c4:77:73:be:0b:f5:2a:62:2a:f2:97: 68:9e:60:39:ee:9a:7c:c1:44:97:b8:89:c5:8d:64: e7:9d:7a:55:e0:22:f6:05:ad:e7:70:22:27:a8:f9: f6:e1:2e:f8:7b:88:78:46:0a:45:06:ba:a7:2f:1c: 46:99:92:94:e5:57:4e:ad:83:92:a9:19:11:3c:74: 5b:fa:d0:06:f3:ac:07:b2:65:b0:2d:c2:a9:fa:f7: 32:51:fc:e0:a0:39:ca:c4:70:20:71:83:95:a5:87: a9:86:a1:6f:4e:71:39:5a:7a:3d:c0:33:39:b6:05: 70:93:8c:5b:db:f6:ea:37:8f:9d:3b:c2:25:66:16: 46:d8:48:c7:28:0c:83:1f:c7:7b:82:80:47:fe:e4: 49:68:a0:3c:d6:e1:ad:57:a9:be:5e:a7:99:92:f3: 29:b7:5b:bc:30:72:e0:4f:45:d1:96:72:74:56:43: be:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:6D:E1:25:0C:4C:14:C1:EF:B6:3E:CE:E2:A3:4D:99:AA:A1:8D:40 X509v3 Authority Key Identifier: keyid:39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:fe:02:89:ab:34:00:08:4b:a9:49:4c:11:da:c9:43:8c:28: 0e:bc:db:e9:64:05:5d:98:ba:42:e5:e6:87:27:2b:b5:8a:0f: a6:e0:8f:ad:64:e7:94:83:60:00:2a:c0:4a:7b:13:28:7a:11: 9d:b0:aa:27:b4:a8:62:fd:dd:73:cb:02:b8:dc:9b:ea:c1:b0: d3:31:ee:3e:3a:2b:1a:3e:e8:58:93:42:9d:c1:42:b3:b2:07: 41:79:be:aa:ca:f4:74:40:f0:7b:da:7d:62:f5:05:95:aa:b8: a4:7e:e4:41:eb:d5:a1:59:dc:fe:db:21:a2:2a:4c:ba:66:bf: ef:d1:99:f0:fb:0a:63:7d:a5:f2:e3:64:00:35:20:be:bf:4d: 32:2f:18:13:ce:31:2c:eb:b1:8d:f5:2d:fc:70:6a:58:85:d2: 26:2e:91:98:94:6e:18:0d:dd:8f:3a:04:c7:72:de:b2:3a:ac: 5e:1b:8c:5f:d1:a6:84:4c:26:34:d9:74:e6:fc:59:1b:29:fa: 27:97:cb:38:fc:19:81:d1:fa:4a:3f:05:90:ff:cf:0f:ab:2b: c4:1e:72:7e:d1:69:25:48:6e:ce:29:80:7b:00:75:70:22:5a: c0:cd:92:7b:7e:ca:27:a5:a7:53:78:a6:2d:84:a7:56:90:2a: de:60:11:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCMkQxMTAvBgNVBAUTKDM5REQ2MzM1Mzk5RjEyQjgxOTIxMUNFOTFBQTdEQ0Y2 MkY2RDgxQkMwHhcNMjQwNTAzMDM0NjE1WhcNMjQwNTEwMDM0NjE1WjAYMRYwFAYD VQQDEw02NjM0NWUwNy0zMDA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtU7exzI6cIRfabi3dSEoH/wqmAhWR2ewaN9abr0plRqidiTSHiQzUfBcJmEV CJ1QHa5h6xT9xIQzWmMSWg/13ZJfS11x0QHf7XOoZcljxHdzvgv1KmIq8pdonmA5 7pp8wUSXuInFjWTnnXpV4CL2Ba3ncCInqPn24S74e4h4RgpFBrqnLxxGmZKU5VdO rYOSqRkRPHRb+tAG86wHsmWwLcKp+vcyUfzgoDnKxHAgcYOVpYephqFvTnE5Wno9 wDM5tgVwk4xb2/bqN4+dO8IlZhZG2EjHKAyDH8d7goBH/uRJaKA81uGtV6m+XqeZ kvMpt1u8MHLgT0XRlnJ0VkO+hwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDRt4SUM TBTB77Y+zuKjTZmqoY1AMB8GA1UdIwQYMBaAFDndYzU5nxK4GSEc6Rqn3PYvbYG8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkIyRC85NjVCRDU3RUI4 OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVyZ1pJUnpwR3FmYzlpOXRn YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09kMWpOVG1mRXJnWklSenBHcWZjOWk5dGdidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkIyRC85NjVCRDU3RUI4OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVy Z1pJUnpwR3FmYzlpOXRnYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBq/gKJqzQACEupSUwR2slDjCgOvNvpZAVdmLpC5eaHJyu1ig+m4I+t ZOeUg2AAKsBKexMoehGdsKontKhi/d1zywK43JvqwbDTMe4+OisaPuhYk0KdwUKz sgdBeb6qyvR0QPB72n1i9QWVqrikfuRB69WhWdz+2yGiKky6Zr/v0Znw+wpjfaXy 42QANSC+v00yLxgTzjEs67GN9S38cGpYhdImLpGYlG4YDd2POgTHct6yOqxeG4xf 0aaETCY02XTm/FkbKfonl8s4/BmB0fpKPwWQ/88PqyvEHnJ+0WklSG7OKYB7AHVw IlrAzZJ7fsonpadTeKYthKdWkCreYBHG -----END CERTIFICATE-----Generated at Fri May 3 04:45:30 2024 by rpki-client on console-fra.rpki-client.org