$ rpki-client -vvf rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.mft File: PurfFFrim0gkCj-6OvvZSajxU10.mft (raw, json) Hash identifier: e/eTXiyNIl6FLML6TrRA1kBPATLyFupU/2mFCZ85Yyk= Subject key identifier: 99:3D:C7:F6:9C:3B:61:AD:13:00:3F:80:12:B9:1B:81:46:EC:F1:F6 Authority key identifier: 3E:EA:DF:14:5A:E2:9B:48:24:0A:3F:BA:3A:FB:D9:49:A8:F1:53:5D Certificate issuer: /CN=A91F823E/serialNumber=3EEADF145AE29B48240A3FBA3AFBD949A8F1535D Certificate serial: 0240 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PurfFFrim0gkCj-6OvvZSajxU10.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.mft Manifest number: 023D Signing time: Wed 01 May 2024 04:17:58 +0000 Manifest this update: Wed 01 May 2024 04:17:58 +0000 Manifest next update: Wed 08 May 2024 04:17:58 +0000 Files and hashes: 1: PurfFFrim0gkCj-6OvvZSajxU10.crl (hash: IzJVI998SsokY92tWA83sSpO8hC3x7DhJwzC+jSCXjk=) 2: B3481ED4D5B611ECA61EEC28C4F9AE02.roa (hash: o8+kpkkcUlfY/bs7XStrTS+t+OkNW4hpa6KuuucmgCo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.crl rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PurfFFrim0gkCj-6OvvZSajxU10.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 576 (0x240) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F823E/serialNumber=3EEADF145AE29B48240A3FBA3AFBD949A8F1535D Validity Not Before: May 1 04:17:58 2024 GMT Not After : May 8 04:17:58 2024 GMT Subject: CN=6631c276-0d33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e7:b9:3c:5d:5d:ef:2c:39:a8:19:24:f9:26: c0:34:9c:2b:60:63:3a:dc:28:27:ca:57:6e:b0:5c: 0b:87:53:59:65:e8:07:5a:ee:9f:3c:f6:42:ee:79: 4a:29:3f:ba:aa:2a:de:57:20:43:a8:16:13:8d:ad: 7c:65:96:6c:2d:5b:44:e5:87:0b:07:d8:29:07:e4: 79:66:91:a5:f5:a4:bc:8a:64:94:77:35:c6:6a:e1: 21:47:6f:0e:e7:2f:5b:89:6e:5e:75:a3:44:0d:19: 70:fd:d1:27:41:7a:4a:1d:ae:3b:4a:6a:ce:df:a0: 9b:06:f2:e1:db:70:cc:e1:83:60:22:8c:c4:af:b6: 36:3c:80:b3:d1:12:b6:64:5a:ec:b0:d5:0a:2a:4a: c1:10:ca:08:c3:71:c6:90:b5:12:ee:44:e3:60:f0: f1:d5:64:75:66:a2:e0:7f:28:91:8c:b9:47:92:fe: fa:f6:63:76:1b:c6:d0:05:07:e6:49:e9:25:87:00: ba:37:f7:d7:2b:4e:d7:24:0f:6f:20:80:22:c1:a2: 0c:e9:67:cf:45:39:6b:68:05:26:b6:0a:47:23:8c: c6:56:6f:92:11:c4:51:db:c2:84:b4:a0:75:4f:88: f6:18:11:56:c5:b3:97:74:af:67:5b:aa:a8:b8:62: e5:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:3D:C7:F6:9C:3B:61:AD:13:00:3F:80:12:B9:1B:81:46:EC:F1:F6 X509v3 Authority Key Identifier: keyid:3E:EA:DF:14:5A:E2:9B:48:24:0A:3F:BA:3A:FB:D9:49:A8:F1:53:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PurfFFrim0gkCj-6OvvZSajxU10.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:27:35:f9:b4:84:22:5a:c0:01:14:9e:63:65:fa:37:0d:8e: a5:f6:4b:07:61:29:1c:fa:e1:56:10:00:e6:63:c2:b0:0d:3c: b6:91:c6:00:ac:6f:64:f5:33:89:b6:10:39:cb:9b:7c:6e:61: 58:63:57:24:d2:88:89:bd:aa:ee:9e:56:fd:36:98:fb:91:61: 38:c5:78:2b:e1:1f:ca:cd:67:61:0d:0f:91:b0:4b:a8:40:be: c8:ca:ed:5c:e2:8a:6e:05:1b:87:53:74:9c:5b:e3:b4:fd:97: 2a:e9:f3:99:53:52:9b:ed:17:1d:86:7f:2c:34:42:4d:13:8f: 3a:2a:ed:6f:db:2c:af:e5:c5:24:44:2a:f3:5b:c7:38:76:08: 66:22:77:33:be:7e:09:09:b6:28:46:cc:fc:b9:82:eb:e7:4a: e0:a8:36:83:85:3f:16:fa:32:bc:bb:7a:72:13:45:6c:a8:6b: f0:cb:75:26:bd:14:6b:97:17:ac:90:f4:2d:55:06:d0:29:6f: ce:8c:aa:b7:b6:71:7a:d0:7a:55:bd:7b:7d:1b:73:a9:0d:e9: af:2d:75:4a:c8:94:ad:af:be:a5:38:8f:f3:10:11:59:60:ca: 6c:e4:e1:b9:c0:57:17:38:7a:bf:36:39:db:0f:55:c2:e8:68: de:4d:ad:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgyM0UxMTAvBgNVBAUTKDNFRUFERjE0NUFFMjlCNDgyNDBBM0ZCQTNBRkJEOTQ5 QThGMTUzNUQwHhcNMjQwNTAxMDQxNzU4WhcNMjQwNTA4MDQxNzU4WjAYMRYwFAYD VQQDEw02NjMxYzI3Ni0wZDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAree5PF1d7yw5qBkk+SbANJwrYGM63CgnyldusFwLh1NZZegHWu6fPPZC7nlK KT+6qireVyBDqBYTja18ZZZsLVtE5YcLB9gpB+R5ZpGl9aS8imSUdzXGauEhR28O 5y9biW5edaNEDRlw/dEnQXpKHa47SmrO36CbBvLh23DM4YNgIozEr7Y2PICz0RK2 ZFrssNUKKkrBEMoIw3HGkLUS7kTjYPDx1WR1ZqLgfyiRjLlHkv769mN2G8bQBQfm SeklhwC6N/fXK07XJA9vIIAiwaIM6WfPRTlraAUmtgpHI4zGVm+SEcRR28KEtKB1 T4j2GBFWxbOXdK9nW6qouGLlzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJk9x/ac O2GtEwA/gBK5G4FG7PH2MB8GA1UdIwQYMBaAFD7q3xRa4ptIJAo/ujr72Umo8VNd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODIzRS83RDY5QTgzQ0Q1 QjExMUVDOTM1MUU2MjBDNEY5QUUwMi9QdXJmRkZyaW0wZ2tDai02T3Z2WlNhanhV MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B1cmZGRnJpbTBna0NqLTZPdnZaU2FqeFUxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODIzRS83RDY5QTgzQ0Q1QjExMUVDOTM1MUU2MjBDNEY5QUUwMi9QdXJmRkZyaW0w Z2tDai02T3Z2WlNhanhVMTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcJzX5tIQiWsABFJ5jZfo3DY6l9ksHYSkc+uFWEADmY8KwDTy2kcYA rG9k9TOJthA5y5t8bmFYY1ck0oiJvarunlb9Npj7kWE4xXgr4R/KzWdhDQ+RsEuo QL7Iyu1c4opuBRuHU3ScW+O0/Zcq6fOZU1Kb7Rcdhn8sNEJNE486Ku1v2yyv5cUk RCrzW8c4dghmInczvn4JCbYoRsz8uYLr50rgqDaDhT8W+jK8u3pyE0VsqGvwy3Um vRRrlxeskPQtVQbQKW/OjKq3tnF60HpVvXt9G3OpDemvLXVKyJStr76lOI/zEBFZ YMps5OG5wFcXOHq/NjnbD1XC6GjeTa2N -----END CERTIFICATE-----Generated at Wed May 1 05:59:15 2024 by rpki-client on console-fra.rpki-client.org