$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft File: i0b6Eepu4jUJnkhDPIJJehl7nXw.mft (raw, json) Hash identifier: +k00kaGs+qi80jf5C6QchfeXk6qoqn3jxOtqtrGPwvo= Subject key identifier: 2F:1A:03:10:14:DB:9D:82:D7:7B:E3:68:FB:9E:E1:4A:D8:7A:F1:90 Authority key identifier: 8B:46:FA:11:EA:6E:E2:35:09:9E:48:43:3C:82:49:7A:19:7B:9D:7C Certificate issuer: /CN=A91FB03A/serialNumber=8B46FA11EA6EE235099E48433C82497A197B9D7C Certificate serial: 0149 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0b6Eepu4jUJnkhDPIJJehl7nXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft Manifest number: 0141 Signing time: Wed 01 May 2024 05:17:09 +0000 Manifest this update: Wed 01 May 2024 05:17:09 +0000 Manifest next update: Wed 08 May 2024 05:17:09 +0000 Files and hashes: 1: i0b6Eepu4jUJnkhDPIJJehl7nXw.crl (hash: IdmxB/5mNydMuS/IuWxCmVKjpTcw1NvBiGY7X53Sag8=) 2: 0B3B85D63A1B11EDAE662B14C4F9AE02.roa (hash: GQNwSDUwzmX4l5wsYUCHS1XYZfJoT7fdlpD23IsAxJ8=) 3: 0BF33B7C3A1B11EDAE662B14C4F9AE02.roa (hash: Eo0BohzaoHsq9WS4rYAJO6lxA8uatGkVav6XDwgjJJA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.crl rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0b6Eepu4jUJnkhDPIJJehl7nXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 329 (0x149) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB03A/serialNumber=8B46FA11EA6EE235099E48433C82497A197B9D7C Validity Not Before: May 1 05:17:09 2024 GMT Not After : May 8 05:17:09 2024 GMT Subject: CN=6631d055-78cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:06:58:ca:da:ed:b1:b9:42:6f:11:a7:bc:96: 65:97:92:4a:2f:16:d6:dc:1d:d1:e0:84:78:1e:2a: f5:01:48:d8:77:7c:fc:91:f1:a9:91:41:db:f6:07: 66:08:0a:38:0f:1b:c3:2b:02:33:13:d8:fd:70:66: 57:f0:bd:bb:a8:8c:fd:85:8a:b3:1e:af:97:c7:2f: 99:28:36:4d:12:9c:d8:68:bd:1d:20:79:6e:fc:64: 1b:ab:a5:bf:93:9f:04:15:a6:04:20:b8:f6:4d:ab: 7d:23:07:0a:13:9d:9e:0f:ea:5b:20:e2:61:43:94: bc:25:4d:26:79:9a:3a:13:c5:8f:e2:8c:fe:10:6f: da:aa:b2:ed:a2:b4:d6:16:85:04:84:e6:af:e6:c5: e1:a8:09:8f:af:81:56:87:fc:c8:d1:2e:67:44:e8: 9c:6b:47:8a:0d:87:30:4c:65:4a:3b:21:1d:a5:ae: 3b:e1:5e:c5:58:d6:78:87:8d:e0:c9:17:9b:05:18: 84:33:0a:22:9b:03:30:80:ce:d6:7e:e8:42:63:f7: 29:a7:e7:c7:2c:30:7c:66:09:d3:05:0e:a0:02:80: 27:38:dc:9d:8c:b9:ef:10:2b:ed:2d:e8:93:e4:54: e7:e8:7e:7f:f2:ab:28:0d:87:ad:d6:71:eb:3c:88: 65:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:1A:03:10:14:DB:9D:82:D7:7B:E3:68:FB:9E:E1:4A:D8:7A:F1:90 X509v3 Authority Key Identifier: keyid:8B:46:FA:11:EA:6E:E2:35:09:9E:48:43:3C:82:49:7A:19:7B:9D:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0b6Eepu4jUJnkhDPIJJehl7nXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:15:62:0c:ec:d8:af:97:c2:3e:b3:e7:0b:9f:9f:34:2a:9d: 60:4f:84:9c:92:12:a5:84:ea:6f:ea:f5:32:a4:33:42:1b:3d: 12:1e:f8:a4:12:65:ea:07:b7:65:3e:28:a9:86:c4:a3:1d:62: d7:40:2c:40:8e:21:92:bf:25:c7:a2:02:c3:77:6e:ee:7c:f3: 07:28:50:38:c6:29:65:80:1b:79:b4:8b:a1:bc:7b:e3:17:8a: 6d:8c:d1:74:40:33:ae:1a:1d:d0:4d:ba:e9:e5:f5:5e:81:21: 6e:1a:38:5c:67:da:3b:25:59:f1:7e:3e:4c:0e:ae:c9:9e:65: 06:1d:bf:11:84:bd:9a:04:07:aa:53:28:7e:9c:4a:f9:7e:39: 18:6f:8f:a4:92:f8:48:6b:98:c4:2f:9e:8a:25:ea:bb:5e:4c: 1e:dc:e9:8e:73:02:b7:25:50:65:2c:cc:07:60:85:ac:31:4b: 19:98:6e:61:98:45:1e:52:2e:70:7d:ba:ed:ba:d2:4d:a6:84: 45:cf:cd:5c:a7:cf:d5:28:ed:74:74:9e:ac:42:56:69:07:0b: 28:e1:fd:a0:28:55:0e:80:69:0b:93:2c:3c:07:ce:41:9c:66: 77:2c:8c:14:9c:c5:3e:62:d5:cb:9e:9f:fa:09:95:e8:aa:71: 67:f8:c8:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkIwM0ExMTAvBgNVBAUTKDhCNDZGQTExRUE2RUUyMzUwOTlFNDg0MzNDODI0OTdB MTk3QjlEN0MwHhcNMjQwNTAxMDUxNzA5WhcNMjQwNTA4MDUxNzA5WjAYMRYwFAYD VQQDEw02NjMxZDA1NS03OGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAswZYytrtsblCbxGnvJZll5JKLxbW3B3R4IR4Hir1AUjYd3z8kfGpkUHb9gdm CAo4DxvDKwIzE9j9cGZX8L27qIz9hYqzHq+Xxy+ZKDZNEpzYaL0dIHlu/GQbq6W/ k58EFaYEILj2Tat9IwcKE52eD+pbIOJhQ5S8JU0meZo6E8WP4oz+EG/aqrLtorTW FoUEhOav5sXhqAmPr4FWh/zI0S5nROica0eKDYcwTGVKOyEdpa474V7FWNZ4h43g yRebBRiEMwoimwMwgM7WfuhCY/cpp+fHLDB8ZgnTBQ6gAoAnONydjLnvECvtLeiT 5FTn6H5/8qsoDYet1nHrPIhlZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC8aAxAU 252C13vjaPue4UrYevGQMB8GA1UdIwQYMBaAFItG+hHqbuI1CZ5IQzyCSXoZe518 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjAzQS9ERkM2OEQ2NDNB MTYxMUVEOTE1MkJGMEVDNEY5QUUwMi9pMGI2RWVwdTRqVUpua2hEUElKSmVobDdu WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2kwYjZFZXB1NGpVSm5raERQSUpKZWhsN25Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjAzQS9ERkM2OEQ2NDNBMTYxMUVEOTE1MkJGMEVDNEY5QUUwMi9pMGI2RWVwdTRq VUpua2hEUElKSmVobDduWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgFWIM7Nivl8I+s+cLn580Kp1gT4SckhKlhOpv6vUypDNCGz0SHvik EmXqB7dlPiiphsSjHWLXQCxAjiGSvyXHogLDd27ufPMHKFA4xillgBt5tIuhvHvj F4ptjNF0QDOuGh3QTbrp5fVegSFuGjhcZ9o7JVnxfj5MDq7JnmUGHb8RhL2aBAeq Uyh+nEr5fjkYb4+kkvhIa5jEL56KJeq7Xkwe3OmOcwK3JVBlLMwHYIWsMUsZmG5h mEUeUi5wfbrtutJNpoRFz81cp8/VKO10dJ6sQlZpBwso4f2gKFUOgGkLkyw8B85B nGZ3LIwUnMU+YtXLnp/6CZXoqnFn+Mi9 -----END CERTIFICATE-----Generated at Wed May 1 05:59:15 2024 by rpki-client on console-fra.rpki-client.org