$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft File: -gfo6rqEcKil_kuhPnXZ5f6jOyc.mft (raw, json) Hash identifier: OTbU+Kh0XW7wdwmfb3ZGWxI5HM9AL/qPNYAgpna4ugs= Subject key identifier: 56:7C:60:48:89:A8:64:29:21:96:BC:54:7C:A9:48:B4:50:80:94:01 Authority key identifier: FA:07:E8:EA:BA:84:70:A8:A5:FE:4B:A1:3E:75:D9:E5:FE:A3:3B:27 Certificate issuer: /CN=A91F9FA2/serialNumber=FA07E8EABA8470A8A5FE4BA13E75D9E5FEA33B27 Certificate serial: 08F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft Manifest number: 08ED Signing time: Thu 02 May 2024 21:27:14 +0000 Manifest this update: Thu 02 May 2024 21:27:13 +0000 Manifest next update: Thu 09 May 2024 21:27:13 +0000 Files and hashes: 1: -gfo6rqEcKil_kuhPnXZ5f6jOyc.crl (hash: EjhQ5r7QKEAY9cvTdAcj2xTeAkHWjwU7ZSlrWpjafjc=) 2: 0893031C846611EA9B99E043C4F9AE02.roa (hash: +4vEjQDzFMfcTakIiGJFd0hIS0rT096BdM+YIUk8vVM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.crl rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 21:27:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2291 (0x8f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9FA2/serialNumber=FA07E8EABA8470A8A5FE4BA13E75D9E5FEA33B27 Validity Not Before: May 2 21:27:13 2024 GMT Not After : May 9 21:27:13 2024 GMT Subject: CN=66340532-ddcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ce:2e:c9:bb:b4:84:cd:f1:70:3d:aa:ac:72: 66:2d:c5:b5:4a:a1:8e:4c:25:83:f8:2b:a9:7f:fb: 3e:82:cf:47:13:e7:fa:ba:9e:32:88:f5:db:08:d4: 3b:5b:1a:42:4b:2a:6e:e6:93:83:f9:69:b0:fe:1b: 1d:ee:a2:9a:e5:3c:c8:96:9a:bd:ef:37:94:c4:95: 67:4a:66:bc:0f:15:d6:ec:3d:47:d5:a8:f8:d5:be: 03:0e:7a:67:84:f7:65:6f:ff:63:33:12:a0:aa:35: 8e:67:07:ba:7b:4a:7a:06:dd:49:ce:df:a7:bb:67: f7:85:c1:5b:76:fa:23:e6:02:e0:85:db:6d:8e:72: b9:3d:f6:ae:e3:1a:32:19:2b:17:86:dd:bc:2c:04: e9:46:b0:89:ee:3b:0a:b8:93:0e:b2:81:0b:15:49: 98:73:75:e1:4f:5b:20:ba:61:89:29:e2:42:8e:7f: 3b:2e:34:f9:c6:9b:35:fb:a2:b1:0d:b8:ca:31:4c: 22:93:5f:89:21:5d:1e:d2:54:54:89:0c:16:0f:8b: db:c3:24:3c:0d:c6:c5:bb:3e:28:6e:5d:18:76:ec: 5b:8e:56:f6:89:b5:26:42:97:22:72:a4:41:40:28: 2f:27:17:22:19:3a:dc:bb:2b:74:f1:42:94:cb:a4: f3:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:7C:60:48:89:A8:64:29:21:96:BC:54:7C:A9:48:B4:50:80:94:01 X509v3 Authority Key Identifier: keyid:FA:07:E8:EA:BA:84:70:A8:A5:FE:4B:A1:3E:75:D9:E5:FE:A3:3B:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:87:1f:27:75:6f:03:a9:4e:1b:4a:50:b4:57:a1:18:93:c1: f1:bb:8f:82:95:10:9e:3d:63:de:c1:97:47:c9:47:fe:2a:8f: 06:9b:e3:fc:f5:c4:12:fa:e8:5f:90:0f:42:34:6a:08:4f:7e: 3f:17:bc:58:08:b7:f8:7a:ff:c7:e3:f3:c0:3b:2d:3e:27:86: 00:70:4d:b5:6a:f0:c4:f2:1d:70:33:e9:2a:a3:eb:d8:7e:cd: db:da:ab:9d:27:27:76:bd:a6:54:95:df:dd:ce:05:0e:df:a4: 4e:ae:1a:3e:8e:a2:8a:ad:53:3c:94:5f:48:21:44:9c:03:f3: 0b:bf:97:d8:fb:80:e7:f5:25:39:a5:7a:1d:33:d5:ab:34:d0: 52:9b:52:58:78:ae:84:9b:43:c5:9a:15:4a:9f:55:57:59:3d: 9b:05:99:23:8a:9b:2b:39:cb:a4:7f:4e:dc:26:06:82:f3:c1: f9:0d:72:fa:9f:c7:b1:a9:b4:8b:6d:df:8c:ea:ec:ba:e0:39: 52:ea:01:74:3a:99:a8:de:4a:6c:8f:37:64:f0:14:ea:ed:c1: 17:6a:c6:5e:91:e1:74:22:b5:f4:5a:cd:cf:70:86:cd:97:81: a8:b7:9d:c7:fc:e9:bd:55:26:1e:41:30:ed:74:ea:79:0c:36: 48:08:65:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlGQTIxMTAvBgNVBAUTKEZBMDdFOEVBQkE4NDcwQThBNUZFNEJBMTNFNzVEOUU1 RkVBMzNCMjcwHhcNMjQwNTAyMjEyNzEzWhcNMjQwNTA5MjEyNzEzWjAYMRYwFAYD VQQDEw02NjM0MDUzMi1kZGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArM4uybu0hM3xcD2qrHJmLcW1SqGOTCWD+Cupf/s+gs9HE+f6up4yiPXbCNQ7 WxpCSypu5pOD+Wmw/hsd7qKa5TzIlpq97zeUxJVnSma8DxXW7D1H1aj41b4DDnpn hPdlb/9jMxKgqjWOZwe6e0p6Bt1Jzt+nu2f3hcFbdvoj5gLghdttjnK5Pfau4xoy GSsXht28LATpRrCJ7jsKuJMOsoELFUmYc3XhT1sgumGJKeJCjn87LjT5xps1+6Kx DbjKMUwik1+JIV0e0lRUiQwWD4vbwyQ8DcbFuz4obl0Yduxbjlb2ibUmQpcicqRB QCgvJxciGTrcuyt08UKUy6TzZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFZ8YEiJ qGQpIZa8VHypSLRQgJQBMB8GA1UdIwQYMBaAFPoH6Oq6hHCopf5LoT512eX+ozsn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUZBMi8xQzg4QjAzQTg0 NjQxMUVBQTk5NDE1NDBDNEY5QUUwMi8tZ2ZvNnJxRWNLaWxfa3VoUG5YWjVmNmpP eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1nZm82cnFFY0tpbF9rdWhQblhaNWY2ak95Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUZBMi8xQzg4QjAzQTg0NjQxMUVBQTk5NDE1NDBDNEY5QUUwMi8tZ2ZvNnJxRWNL aWxfa3VoUG5YWjVmNmpPeWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDPhx8ndW8DqU4bSlC0V6EYk8Hxu4+ClRCePWPewZdHyUf+Ko8Gm+P8 9cQS+uhfkA9CNGoIT34/F7xYCLf4ev/H4/PAOy0+J4YAcE21avDE8h1wM+kqo+vY fs3b2qudJyd2vaZUld/dzgUO36ROrho+jqKKrVM8lF9IIUScA/MLv5fY+4Dn9SU5 pXodM9WrNNBSm1JYeK6Em0PFmhVKn1VXWT2bBZkjipsrOcukf07cJgaC88H5DXL6 n8exqbSLbd+M6uy64DlS6gF0Opmo3kpsjzdk8BTq7cEXasZekeF0IrX0Ws3PcIbN l4Got53H/Om9VSYeQTDtdOp5DDZICGVn -----END CERTIFICATE-----Generated at Thu May 2 22:13:25 2024 by rpki-client on console-fra.rpki-client.org