$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft File: r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft (raw, json) Hash identifier: sMYhj55Ycfdc7wSaVNDrOw8UEyHn4naf/8hJ+X1Nexk= Subject key identifier: 9F:17:7B:E7:DD:FB:EA:DD:9E:AA:20:52:22:EF:C0:08:C4:BA:A0:D9 Authority key identifier: AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 Certificate issuer: /CN=A91F3F02/serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Certificate serial: 0EDF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft Manifest number: 0EB7 Signing time: Mon 06 May 2024 18:23:36 +0000 Manifest this update: Mon 06 May 2024 18:23:36 +0000 Manifest next update: Mon 13 May 2024 18:23:36 +0000 Files and hashes: 1: r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl (hash: 9rpVoVoUkTXnDPuUvO6L5NQfttGCBqXs9UfYN7cXeoU=) 2: 4BF23558026D11EBB136622CC4F9AE02.roa (hash: w7wu9wh9fif0tC5nr5NEZaPxJ5u4oaVCyGFKNUO3P1g=) 3: B3876B1821C911EB991D562EC4F9AE02.roa (hash: USMDrnzBwJmamUvpte7xS0PSkXwmOeAxXXKzfdcnaAk=) 4: B2B2930C21C911EB991D562EC4F9AE02.roa (hash: Ie5a2mrg7iBg5iP9NZxouePSHfivE6daItg36Wl1oIo=) 5: 8663E8B6658A11E9930DC678C4F9AE02.roa (hash: kfBYSdXVDNoiIg5IMlTmLe+hJgwzf1uU7v01KyKBquc=) 6: F98DEF9A231F11EB99F53580C4F9AE02.roa (hash: eNEfpEaWRFqtSHA7IEDxP9/+f8SDOPNrI7h/l9GylIc=) 7: E049FDF87A4511EBBB2D0A52C4F9AE02.roa (hash: 9vwYcXBwFADBgJCI4CTKPXBa1XtNu/WmiFxKAzXdPV8=) 8: B490CD0621C911EB991D562EC4F9AE02.roa (hash: 7KMheVLAT8YCXJLXPEky62Zj4bucGUVaCMyCFR9w3eU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 18:23:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3807 (0xedf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3F02/serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Validity Not Before: May 6 18:23:36 2024 GMT Not After : May 13 18:23:36 2024 GMT Subject: CN=66392028-8d80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:aa:8e:1c:31:c7:a1:36:cb:ed:5e:c4:84:8b: 48:77:f9:88:5f:ec:eb:dd:c0:90:57:99:6d:6e:c8: e5:5c:ae:78:a6:33:50:ab:b9:69:f6:55:6f:3b:4d: dc:45:8a:e0:a2:72:bb:05:bb:99:99:e1:ea:ed:02: b6:5a:ec:7b:3f:98:c8:5f:48:87:d7:71:4e:0b:74: cd:84:d4:15:4b:57:90:27:fc:91:30:18:94:66:e8: 7b:a5:d1:77:50:3a:bf:5d:b4:2c:d1:bc:70:69:b0: a0:f6:34:bd:80:81:c2:20:f5:0f:00:ac:35:51:17: e5:7a:73:dd:29:57:3c:82:a2:bc:8d:b9:75:fe:7b: 12:e7:47:85:f9:66:48:57:eb:7f:8c:2c:38:23:f6: 0f:1a:88:22:ca:81:3f:d1:ce:0e:c8:66:2b:9c:02: 21:a9:95:80:48:5e:ec:e2:c0:4e:35:51:78:1a:8b: 5b:d8:cd:e2:b9:97:59:95:39:f8:bb:12:4e:ed:70: 0a:d4:31:d5:03:69:be:c2:de:55:5c:33:15:6f:65: 6b:aa:de:6d:82:ce:fd:00:06:36:3b:36:cf:1e:ab: 9a:8d:13:fa:6a:d2:e5:6d:32:37:aa:4e:57:1d:3f: 2b:74:5f:32:c6:b1:d9:09:26:1f:2e:b9:44:ef:03: 7e:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:17:7B:E7:DD:FB:EA:DD:9E:AA:20:52:22:EF:C0:08:C4:BA:A0:D9 X509v3 Authority Key Identifier: keyid:AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dc:c7:0b:a1:7f:cc:ac:89:ce:56:b6:6f:8d:fc:0c:44:44:99: d2:04:be:5c:71:bc:88:33:26:5e:46:a2:bf:e4:e0:42:fa:6c: 6a:90:55:d1:0c:12:f3:17:a6:b8:c2:ad:e9:0c:8d:18:57:0e: 9f:76:e2:02:cf:50:d0:14:1a:ba:b0:14:92:82:30:34:45:d1: 79:f8:9f:ea:cf:50:a2:d7:2d:85:67:55:19:fc:bb:63:14:fc: 46:9d:3a:37:c6:0c:7a:78:8b:35:dd:52:90:29:d7:1e:b3:7a: e7:08:85:4d:83:ee:04:c2:1e:00:ab:08:ff:cd:01:f1:7b:85: 54:a3:d6:47:c5:2c:1b:bc:60:48:8b:15:55:1e:c3:58:d6:dc: f7:2f:37:fa:40:85:12:7f:9c:3f:53:80:ff:1e:67:d7:ca:68: fa:6f:5f:0a:e5:84:97:98:8e:dd:cd:d8:f8:53:1b:41:bb:ff: b4:cf:fb:22:ff:aa:24:4f:2b:f5:a0:62:a5:ca:de:93:de:ca: ac:a6:35:21:e6:e0:9f:b9:a1:38:f1:7d:6a:a2:6f:f6:2a:c4: af:2e:c8:9f:29:f6:67:60:f6:5c:c2:b8:16:5a:35:d8:02:dd: 92:32:a0:d4:fa:03:4a:c7:77:73:55:ae:23:0a:47:22:75:53: ae:25:77:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNGMDIxMTAvBgNVBAUTKEFGNDQ3ODA4MTNCQjZDMDVFOTk3NTQ1QjA4RDM3OTM2 RkZBQzQ2NjEwHhcNMjQwNTA2MTgyMzM2WhcNMjQwNTEzMTgyMzM2WjAYMRYwFAYD VQQDEw02NjM5MjAyOC04ZDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3KqOHDHHoTbL7V7EhItId/mIX+zr3cCQV5ltbsjlXK54pjNQq7lp9lVvO03c RYrgonK7BbuZmeHq7QK2Wux7P5jIX0iH13FOC3TNhNQVS1eQJ/yRMBiUZuh7pdF3 UDq/XbQs0bxwabCg9jS9gIHCIPUPAKw1URflenPdKVc8gqK8jbl1/nsS50eF+WZI V+t/jCw4I/YPGogiyoE/0c4OyGYrnAIhqZWASF7s4sBONVF4Gotb2M3iuZdZlTn4 uxJO7XAK1DHVA2m+wt5VXDMVb2Vrqt5tgs79AAY2OzbPHquajRP6atLlbTI3qk5X HT8rdF8yxrHZCSYfLrlE7wN+AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ8Xe+fd ++rdnqogUiLvwAjEuqDZMB8GA1UdIwQYMBaAFK9EeAgTu2wF6ZdUWwjTeTb/rEZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0YwMi9DQ0FCNTc1MDYz RjAxMUU5QTlCQ0ExNDFDNEY5QUUwMi9yMFI0Q0JPN2JBWHBsMVJiQ05ONU52LXNS bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IwUjRDQk83YkFYcGwxUmJDTk41TnYtc1JtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0YwMi9DQ0FCNTc1MDYzRjAxMUU5QTlCQ0ExNDFDNEY5QUUwMi9yMFI0Q0JPN2JB WHBsMVJiQ05ONU52LXNSbUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDcxwuhf8ysic5Wtm+N/AxERJnSBL5ccbyIMyZeRqK/5OBC+mxqkFXR DBLzF6a4wq3pDI0YVw6fduICz1DQFBq6sBSSgjA0RdF5+J/qz1Ci1y2FZ1UZ/Ltj FPxGnTo3xgx6eIs13VKQKdces3rnCIVNg+4Ewh4Aqwj/zQHxe4VUo9ZHxSwbvGBI ixVVHsNY1tz3Lzf6QIUSf5w/U4D/HmfXymj6b18K5YSXmI7dzdj4UxtBu/+0z/si /6okTyv1oGKlyt6T3sqspjUh5uCfuaE48X1qom/2KsSvLsifKfZnYPZcwrgWWjXY At2SMqDU+gNKx3dzVa4jCkcidVOuJXfp -----END CERTIFICATE-----Generated at Mon May 6 20:19:23 2024 by rpki-client on console-fra.rpki-client.org