$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft File: mG5BZ9azgH9J98JgDWD5wmCacJY.mft (raw, json) Hash identifier: OBGs/KSXIdPoRJjYo6zo3Wz3pvHhxuVN3Gzvge+lhnc= Subject key identifier: FB:43:29:40:56:4E:E9:94:35:FB:DE:12:C3:E4:38:60:17:2F:85:DA Authority key identifier: 98:6E:41:67:D6:B3:80:7F:49:F7:C2:60:0D:60:F9:C2:60:9A:70:96 Certificate issuer: /CN=A91F3806/serialNumber=986E4167D6B3807F49F7C2600D60F9C2609A7096 Certificate serial: 0B5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mG5BZ9azgH9J98JgDWD5wmCacJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft Manifest number: 0B5A Signing time: Tue 14 May 2024 19:42:11 +0000 Manifest this update: Tue 14 May 2024 19:42:10 +0000 Manifest next update: Tue 21 May 2024 19:42:10 +0000 Files and hashes: 1: mG5BZ9azgH9J98JgDWD5wmCacJY.crl (hash: yoN8/lGGtknrnNqG8Em9W02r6uZEmLYI+qev4J85j/w=) 2: 4E54AA4C0B7E11EA9D8BA43CC4F9AE02.roa (hash: Ik5pp1wylHpAiU/ckyI2KJfx9vwcLeasLT5oJCTCKc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.crl rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mG5BZ9azgH9J98JgDWD5wmCacJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 19:09:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2911 (0xb5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3806/serialNumber=986E4167D6B3807F49F7C2600D60F9C2609A7096 Validity Not Before: May 14 19:42:10 2024 GMT Not After : May 21 19:42:10 2024 GMT Subject: CN=6643be93-4789 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:17:87:79:cd:0a:62:67:3a:21:ea:d6:bb:57: 45:92:b5:3d:05:a4:4e:bf:9d:c9:bf:99:fd:7d:67: ae:4c:dc:38:f4:1b:eb:9d:4f:c4:29:24:65:0a:4d: a0:b6:4a:4d:6d:15:83:96:ef:e0:10:ca:21:04:90: 2a:5c:b3:69:c9:db:1f:96:e5:fc:e5:15:54:3f:45: 25:a8:b4:25:54:51:44:95:81:36:62:cb:1f:57:32: ef:aa:3b:81:0c:d4:43:96:7c:12:ef:ad:d3:79:d5: 0d:dd:fd:d0:9a:ad:59:34:dd:87:05:1a:91:27:67: a1:92:02:1c:89:c1:16:e6:15:19:91:d6:62:2a:49: 83:a2:43:ea:09:26:da:df:bf:19:f4:fa:2b:e8:0a: b3:ed:1e:96:25:6f:72:ef:56:92:23:a6:9b:63:93: d0:4d:d1:73:1b:d4:0e:07:ef:e4:fd:89:10:5b:69: 94:4a:7e:b0:5f:21:63:0e:c7:51:3e:20:a9:0b:a0: ff:80:1f:ad:df:b8:03:b7:42:57:13:d8:fd:a1:4e: b1:b4:c8:fe:c7:0d:bd:c0:cd:a3:1e:b5:18:ed:17: e6:f5:d3:46:d7:b1:1b:cd:be:d8:08:60:02:26:fc: bb:82:ef:b6:4e:ec:cd:e1:a4:f0:a2:ee:2b:c6:b4: 78:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:43:29:40:56:4E:E9:94:35:FB:DE:12:C3:E4:38:60:17:2F:85:DA X509v3 Authority Key Identifier: keyid:98:6E:41:67:D6:B3:80:7F:49:F7:C2:60:0D:60:F9:C2:60:9A:70:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mG5BZ9azgH9J98JgDWD5wmCacJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:b7:c8:d9:ea:06:55:a4:95:e9:03:c2:4b:53:6f:13:c1:af: c8:27:05:f0:a6:65:e4:e2:fb:ab:87:08:4f:b8:47:e0:c2:b6: e9:da:e0:4f:ab:88:90:23:e6:13:fb:e0:27:30:f7:20:1d:6a: ef:cf:a7:48:ca:6e:3c:c3:df:e2:05:3a:62:4f:e2:9e:64:3a: 18:ab:78:ad:ac:5c:28:c8:b5:39:a5:ab:4c:8a:74:cf:8f:cc: 3c:52:51:bb:18:92:97:6a:9a:49:10:d7:d9:19:90:3d:7f:b8: 9e:33:ee:74:e2:42:08:b0:bf:62:c7:da:cf:1e:5a:a4:58:46: 1e:a4:b2:3b:ae:1b:ae:a6:38:f4:2c:bd:51:c3:1a:f5:36:30: c4:fa:12:da:11:9d:0b:92:b6:17:1d:ca:43:fa:13:52:e9:61: de:60:aa:5d:69:d1:09:5d:66:01:52:1f:39:0e:01:a5:4a:4e: a1:2d:c9:67:32:d7:4c:c9:fe:42:8f:3d:af:f0:6f:9f:87:f6: 98:aa:f6:8c:38:b7:4e:75:31:c5:66:2f:4d:9e:5b:b2:a8:91: 4b:bc:38:f0:e9:03:4b:de:46:e6:77:d5:84:1b:5f:d9:41:f9: 29:69:5e:10:ce:73:71:3c:60:cc:37:f9:02:54:1f:52:c0:c6: 1a:15:1c:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC18wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM4MDYxMTAvBgNVBAUTKDk4NkU0MTY3RDZCMzgwN0Y0OUY3QzI2MDBENjBGOUMy NjA5QTcwOTYwHhcNMjQwNTE0MTk0MjEwWhcNMjQwNTIxMTk0MjEwWjAYMRYwFAYD VQQDEw02NjQzYmU5My00Nzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwReHec0KYmc6IerWu1dFkrU9BaROv53Jv5n9fWeuTNw49BvrnU/EKSRlCk2g tkpNbRWDlu/gEMohBJAqXLNpydsfluX85RVUP0UlqLQlVFFElYE2YssfVzLvqjuB DNRDlnwS763TedUN3f3Qmq1ZNN2HBRqRJ2ehkgIcicEW5hUZkdZiKkmDokPqCSba 378Z9Por6Aqz7R6WJW9y71aSI6abY5PQTdFzG9QOB+/k/YkQW2mUSn6wXyFjDsdR PiCpC6D/gB+t37gDt0JXE9j9oU6xtMj+xw29wM2jHrUY7Rfm9dNG17Ebzb7YCGAC Jvy7gu+2TuzN4aTwou4rxrR4IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPtDKUBW TumUNfveEsPkOGAXL4XaMB8GA1UdIwQYMBaAFJhuQWfWs4B/SffCYA1g+cJgmnCW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzgwNi9CNDcyRkUyQTBC N0MxMUVBODA4M0U5MzZDNEY5QUUwMi9tRzVCWjlhemdIOUo5OEpnRFdENXdtQ2Fj SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21HNUJaOWF6Z0g5Sjk4SmdEV0Q1d21DYWNKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzgwNi9CNDcyRkUyQTBCN0MxMUVBODA4M0U5MzZDNEY5QUUwMi9tRzVCWjlhemdI OUo5OEpnRFdENXdtQ2FjSlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnt8jZ6gZVpJXpA8JLU28Twa/IJwXwpmXk4vurhwhPuEfgwrbp2uBP q4iQI+YT++AnMPcgHWrvz6dIym48w9/iBTpiT+KeZDoYq3itrFwoyLU5patMinTP j8w8UlG7GJKXappJENfZGZA9f7ieM+504kIIsL9ix9rPHlqkWEYepLI7rhuupjj0 LL1Rwxr1NjDE+hLaEZ0LkrYXHcpD+hNS6WHeYKpdadEJXWYBUh85DgGlSk6hLcln MtdMyf5Cjz2v8G+fh/aYqvaMOLdOdTHFZi9NnluyqJFLvDjw6QNL3kbmd9WEG1/Z QfkpaV4QznNxPGDMN/kCVB9SwMYaFRxo -----END CERTIFICATE-----Generated at Tue May 14 20:52:17 2024 by rpki-client on console-fra.rpki-client.org