$ rpki-client -vvf rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft File: 7aOF1FcjseHfKXP2K10jovv9JoY.mft (raw, json) Hash identifier: HBW/HYeXSb0/0TYHr1IErtMoKk6FK4EIuhzfGL7aC8U= Subject key identifier: 1D:54:75:4A:64:26:A1:23:40:53:00:74:AF:29:90:1F:A2:C9:24:A2 Authority key identifier: ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86 Certificate issuer: /CN=A91F147C/serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686 Certificate serial: 01D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft Manifest number: 01CE Signing time: Fri 03 May 2024 04:28:36 +0000 Manifest this update: Fri 03 May 2024 04:28:35 +0000 Manifest next update: Fri 10 May 2024 04:28:35 +0000 Files and hashes: 1: 7aOF1FcjseHfKXP2K10jovv9JoY.crl (hash: 9baY4JLedpB+Po+Xf546Szd5fE5gEBvmsSa1OzNfyAo=) 2: F95633FE01EC11ED84469937C4F9AE02.roa (hash: PAgf7XDeffE3KOwuZNUH7PCHSYuNPjMYJulxpgdyLbE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.crl rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 465 (0x1d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F147C/serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686 Validity Not Before: May 3 04:28:35 2024 GMT Not After : May 10 04:28:35 2024 GMT Subject: CN=663467f4-2548 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ea:e4:c5:f8:5b:76:1e:97:8c:e7:ca:d5:8b: 18:b2:69:4e:f7:57:b6:b4:e6:c3:09:e9:11:27:60: 63:81:71:32:e7:82:03:81:fb:18:34:b6:47:d3:dc: d1:62:03:02:08:52:2c:92:a2:82:cc:a5:b3:1d:98: 9c:b3:88:27:65:a1:5b:f7:ed:3b:f0:1a:33:74:be: e5:3d:d7:ea:39:d3:fe:2b:4e:f2:31:05:47:cf:d5: 9b:70:99:a5:74:ee:ba:f8:a9:7e:ff:95:cc:64:69: df:b4:79:74:e7:66:f1:72:cb:84:d7:98:d2:40:ca: f2:79:24:b8:e9:3f:cb:ea:af:b2:e6:2f:bd:1b:18: a1:f3:73:9f:51:1a:43:41:c6:c9:f2:74:8f:b6:3b: fe:fc:c7:08:a6:f3:34:76:79:83:d3:63:b8:0e:2a: e9:68:f8:34:66:c8:6d:9f:72:85:00:c6:76:8f:47: 44:84:5a:03:f1:aa:dd:1a:9b:51:92:a4:a3:af:fe: fb:07:e8:e4:34:18:1d:c0:33:31:e0:7d:23:4b:63: f1:87:df:9d:5d:9d:f3:09:4e:07:22:28:2f:6a:3f: 9c:33:1a:2e:55:fb:ae:1e:09:bf:dc:9a:b7:55:db: 2c:d8:f8:e0:86:cd:21:81:3d:0b:87:a0:34:20:6e: 8e:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:54:75:4A:64:26:A1:23:40:53:00:74:AF:29:90:1F:A2:C9:24:A2 X509v3 Authority Key Identifier: keyid:ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:9a:cb:e5:37:ba:06:d5:64:e0:ad:fc:2e:c1:f8:34:50:22: fe:99:a9:bb:40:f8:d1:9b:37:2b:d5:30:81:8e:d2:93:72:25: 7c:ac:9d:f2:78:cd:23:f7:cb:c6:17:56:87:ad:fe:1c:9f:21: 06:d1:9a:6a:b7:84:92:3a:f1:89:c8:2a:ad:39:e1:fb:25:76: 91:df:49:b5:29:c9:63:d7:80:f9:c7:25:89:08:30:c9:9a:1b: 5f:69:81:1b:46:28:99:41:4d:97:28:72:c8:e4:e5:58:a3:3d: 73:33:10:28:b3:30:9a:45:b2:3a:5b:9a:88:29:7a:f7:56:81: 56:23:17:8b:87:36:d0:26:be:9f:5a:04:de:de:3b:cb:cd:bd: 03:a6:89:32:af:0b:70:a2:b4:68:df:19:82:b3:a0:f3:6a:5d: 91:3e:de:92:fb:b3:6b:4e:c9:82:60:32:96:5e:a9:e4:19:12: c5:95:9c:a0:0b:09:5a:59:68:00:45:16:13:dd:cc:17:5a:93: e7:ce:40:e4:3b:e2:ac:f6:f3:0d:01:bf:b7:2a:d3:75:5d:84: 84:f3:dd:dc:d1:3d:15:67:74:04:dc:40:08:f0:04:7d:44:0a: 18:a4:f4:3a:62:9a:ab:ce:53:5b:24:f7:a9:3e:a4:d0:5f:21: dd:cf:e7:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE0N0MxMTAvBgNVBAUTKEVEQTM4NUQ0NTcyM0IxRTFERjI5NzNGNjJCNUQyM0Ey RkJGRDI2ODYwHhcNMjQwNTAzMDQyODM1WhcNMjQwNTEwMDQyODM1WjAYMRYwFAYD VQQDEw02NjM0NjdmNC0yNTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2erkxfhbdh6XjOfK1YsYsmlO91e2tObDCekRJ2BjgXEy54IDgfsYNLZH09zR YgMCCFIskqKCzKWzHZics4gnZaFb9+078BozdL7lPdfqOdP+K07yMQVHz9WbcJml dO66+Kl+/5XMZGnftHl052bxcsuE15jSQMryeSS46T/L6q+y5i+9Gxih83OfURpD QcbJ8nSPtjv+/McIpvM0dnmD02O4DirpaPg0Zshtn3KFAMZ2j0dEhFoD8ardGptR kqSjr/77B+jkNBgdwDMx4H0jS2Pxh9+dXZ3zCU4HIigvaj+cMxouVfuuHgm/3Jq3 Vdss2Pjghs0hgT0Lh6A0IG6OKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB1UdUpk JqEjQFMAdK8pkB+iySSiMB8GA1UdIwQYMBaAFO2jhdRXI7Hh3ylz9itdI6L7/SaG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTQ3Qy83RTBGNTg3MjAx RTkxMUVEQUY4QkRFMzBDNEY5QUUwMi83YU9GMUZjanNlSGZLWFAySzEwam92djlK b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdhT0YxRmNqc2VIZktYUDJLMTBqb3Z2OUpvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTQ3Qy83RTBGNTg3MjAxRTkxMUVEQUY4QkRFMzBDNEY5QUUwMi83YU9GMUZjanNl SGZLWFAySzEwam92djlKb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAmsvlN7oG1WTgrfwuwfg0UCL+mam7QPjRmzcr1TCBjtKTciV8rJ3y eM0j98vGF1aHrf4cnyEG0Zpqt4SSOvGJyCqtOeH7JXaR30m1Kclj14D5xyWJCDDJ mhtfaYEbRiiZQU2XKHLI5OVYoz1zMxAoszCaRbI6W5qIKXr3VoFWIxeLhzbQJr6f WgTe3jvLzb0DpokyrwtworRo3xmCs6Dzal2RPt6S+7NrTsmCYDKWXqnkGRLFlZyg CwlaWWgARRYT3cwXWpPnzkDkO+Ks9vMNAb+3KtN1XYSE893c0T0VZ3QE3EAI8AR9 RAoYpPQ6YpqrzlNbJPepPqTQXyHdz+dQ -----END CERTIFICATE-----Generated at Fri May 3 06:29:25 2024 by rpki-client on console-fra.rpki-client.org