$ rpki-client -vvf rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft File: t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft (raw, json) Hash identifier: q2EDpDgEQ5kThdSn0UTgbmCbx8dJ4RfsHEgW801Ty3M= Subject key identifier: FC:1F:18:A1:32:1A:11:20:A8:47:75:E5:72:45:22:E8:27:81:FF:DD Authority key identifier: B7:DC:E1:41:12:A0:29:82:F5:75:7C:AB:8D:34:91:03:2C:8E:18:FA Certificate issuer: /CN=A91F91EB/serialNumber=B7DCE14112A02982F5757CAB8D3491032C8E18FA Certificate serial: 0BC5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft Manifest number: 0BC0 Signing time: Sat 04 May 2024 19:19:12 +0000 Manifest this update: Sat 04 May 2024 19:19:11 +0000 Manifest next update: Sat 11 May 2024 19:19:11 +0000 Files and hashes: 1: t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl (hash: mZaD5BI8c7lU2y+WQIO4ToDqlrRbvNE60fBwwHbmaRc=) 2: 8D243F849A6D11EA8674310DC4F9AE02.roa (hash: l2tSQDCSf2XRgRWJUI18n4GUTvN3dXNn8MNTFuFtKko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3013 (0xbc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F91EB/serialNumber=B7DCE14112A02982F5757CAB8D3491032C8E18FA Validity Not Before: May 4 19:19:11 2024 GMT Not After : May 11 19:19:11 2024 GMT Subject: CN=66368a2f-eedf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:c5:d0:fd:78:82:58:ba:81:0f:2a:4a:9c:96: 98:6f:6a:69:64:1d:ba:7c:98:8b:7b:28:2b:93:2d: d6:17:db:da:ca:ad:d7:aa:ef:c5:71:df:48:1f:a2: a0:7e:49:c2:5b:00:c8:45:c8:23:bb:5e:11:06:31: 33:ad:07:2f:44:10:88:62:bd:1b:03:ef:59:c5:e8: 8b:c6:f7:00:3f:b5:dc:b9:7c:aa:91:1a:2d:d4:be: 1d:9f:e2:f6:19:d1:68:91:20:88:d9:b8:2f:c7:0f: bf:db:c2:eb:44:d9:63:3c:e4:e9:56:eb:23:28:27: 4d:04:c2:9e:60:b3:61:5a:51:54:20:e7:98:33:fa: 39:46:9e:d0:52:f7:52:38:fc:3c:f1:3a:a2:2e:26: f9:49:0a:58:66:a6:dc:ea:9d:e2:4c:e7:84:8d:96: e4:f5:99:f1:15:04:4a:2f:b0:30:ce:44:76:27:bc: fa:9f:0f:39:73:cd:6a:d1:71:79:b9:de:70:d4:e9: b7:5e:e9:e6:57:30:85:21:0a:36:3d:13:8b:22:0b: 76:56:48:a8:e9:02:29:6d:db:4d:b3:3c:bb:f6:01: c8:1f:db:50:75:8d:82:d2:d1:57:f6:1c:0e:fb:d2: 62:49:99:10:3f:eb:2e:3a:b1:86:d7:d1:2d:e3:d3: 7e:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:1F:18:A1:32:1A:11:20:A8:47:75:E5:72:45:22:E8:27:81:FF:DD X509v3 Authority Key Identifier: keyid:B7:DC:E1:41:12:A0:29:82:F5:75:7C:AB:8D:34:91:03:2C:8E:18:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:ef:42:1d:91:ab:6e:f8:d6:1b:69:19:79:86:8d:5c:e3:76: f2:e0:18:6a:52:c7:1d:b2:b7:66:8b:13:b0:90:c5:06:5a:3a: 3f:b1:dd:9e:aa:d7:6b:91:47:a2:4e:dc:74:cc:f6:ce:a3:de: 05:9d:cd:5d:ee:14:73:a3:ed:06:9d:92:04:ff:02:5a:66:68: 5c:ad:17:f0:9c:82:b1:97:3f:8c:44:5a:59:0e:1e:5c:41:7c: 84:25:9c:93:d1:82:3a:7a:cb:e0:0f:71:b8:ef:ff:1d:1c:f4: 11:b7:0e:ae:e7:3c:97:f8:d7:5a:79:a3:4b:87:ba:ed:e3:a4: dd:8a:85:7f:f1:18:2f:3b:ea:72:c2:05:74:1c:41:95:f4:03: 10:76:6d:a9:8e:ae:e2:90:76:20:8c:a7:9a:1d:b1:fb:b1:43: 78:ee:9b:48:45:b1:99:f4:66:21:ae:03:ae:bf:4f:6b:61:ed: c6:6a:30:03:34:a2:61:44:f8:da:0a:88:33:00:52:6c:58:b6: 18:e7:f4:06:9a:ed:25:a0:58:fc:ab:3d:25:a0:63:eb:40:6b: 5b:42:de:2d:75:8c:b5:4f:7d:cd:19:ff:7a:2d:50:4e:a5:30: 41:d4:e1:69:de:4a:4c:48:65:7c:fd:77:97:4f:0d:15:a0:82: c7:b5:91:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjkxRUIxMTAvBgNVBAUTKEI3RENFMTQxMTJBMDI5ODJGNTc1N0NBQjhEMzQ5MTAz MkM4RTE4RkEwHhcNMjQwNTA0MTkxOTExWhcNMjQwNTExMTkxOTExWjAYMRYwFAYD VQQDEw02NjM2OGEyZi1lZWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA58XQ/XiCWLqBDypKnJaYb2ppZB26fJiLeygrky3WF9vayq3Xqu/Fcd9IH6Kg fknCWwDIRcgju14RBjEzrQcvRBCIYr0bA+9ZxeiLxvcAP7XcuXyqkRot1L4dn+L2 GdFokSCI2bgvxw+/28LrRNljPOTpVusjKCdNBMKeYLNhWlFUIOeYM/o5Rp7QUvdS OPw88TqiLib5SQpYZqbc6p3iTOeEjZbk9ZnxFQRKL7AwzkR2J7z6nw85c81q0XF5 ud5w1Om3XunmVzCFIQo2PROLIgt2Vkio6QIpbdtNszy79gHIH9tQdY2C0tFX9hwO +9JiSZkQP+suOrGG19Et49N+sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPwfGKEy GhEgqEd15XJFIugngf/dMB8GA1UdIwQYMBaAFLfc4UESoCmC9XV8q400kQMsjhj6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTFFQi80OTdGMkJEOEY3 MDUxMUU5QURCQTQ1MUZDNEY5QUUwMi90OXpoUVJLZ0tZTDFkWHlyalRTUkF5eU9H UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3Q5emhRUktnS1lMMWRYeXJqVFNSQXl5T0dQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OTFFQi80OTdGMkJEOEY3MDUxMUU5QURCQTQ1MUZDNEY5QUUwMi90OXpoUVJLZ0tZ TDFkWHlyalRTUkF5eU9HUG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCV70Idkatu+NYbaRl5ho1c43by4BhqUscdsrdmixOwkMUGWjo/sd2e qtdrkUeiTtx0zPbOo94Fnc1d7hRzo+0GnZIE/wJaZmhcrRfwnIKxlz+MRFpZDh5c QXyEJZyT0YI6esvgD3G47/8dHPQRtw6u5zyX+NdaeaNLh7rt46TdioV/8RgvO+py wgV0HEGV9AMQdm2pjq7ikHYgjKeaHbH7sUN47ptIRbGZ9GYhrgOuv09rYe3GajAD NKJhRPjaCogzAFJsWLYY5/QGmu0loFj8qz0loGPrQGtbQt4tdYy1T33NGf96LVBO pTBB1OFp3kpMSGV8/XeXTw0VoILHtZEc -----END CERTIFICATE-----Generated at Sat May 4 20:37:20 2024 by rpki-client on console-fra.rpki-client.org