$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft File: rI34tAewexNnm3HFASus3eJQHnE.mft (raw, json) Hash identifier: WxOx+xJ6I+3aXiP1NX65eXBeW+8pChs7aBczfS8oHTY= Subject key identifier: 5D:0E:86:DB:B0:C4:D3:91:EB:21:EA:BC:E4:ED:45:73:18:A3:9B:09 Authority key identifier: AC:8D:F8:B4:07:B0:7B:13:67:9B:71:C5:01:2B:AC:DD:E2:50:1E:71 Certificate issuer: /CN=A91FC43D/serialNumber=AC8DF8B407B07B13679B71C5012BACDDE2501E71 Certificate serial: 21DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rI34tAewexNnm3HFASus3eJQHnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft Manifest number: 21D0 Signing time: Sat 04 May 2024 16:15:39 +0000 Manifest this update: Sat 04 May 2024 16:15:38 +0000 Manifest next update: Sat 11 May 2024 16:15:38 +0000 Files and hashes: 1: rI34tAewexNnm3HFASus3eJQHnE.crl (hash: d8AJUCgLcP9XQY1cgBcIlwa9iSZFHpioX0vQ22f/tJw=) 2: 2D55F42CB0F611E5B464E359C4F9AE02.roa (hash: vliIpmgTB1HlCz+XfLtcjXrJa6gI3PEAORK2hHT7Frs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.crl rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rI34tAewexNnm3HFASus3eJQHnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 16:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8669 (0x21dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC43D/serialNumber=AC8DF8B407B07B13679B71C5012BACDDE2501E71 Validity Not Before: May 4 16:15:38 2024 GMT Not After : May 11 16:15:38 2024 GMT Subject: CN=66365f2a-8d10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:6f:25:83:af:e5:31:f4:4e:52:77:b3:d9:c4: b4:e6:ea:bc:b6:63:5f:1f:a8:3e:ac:7b:8f:04:71: ef:86:3e:10:eb:4d:ad:f3:bc:fa:a9:ba:f3:ae:1d: 99:29:66:d7:18:78:b5:3d:01:10:a6:3b:17:ac:02: 3b:0c:15:7f:41:dc:88:35:6e:73:85:95:75:a8:4b: ed:f5:58:2b:29:63:1d:90:10:92:f4:26:c1:a9:f4: b3:4f:6b:4a:73:7d:a0:7e:78:04:82:04:bf:77:8b: 19:04:2b:5f:d0:52:c3:ec:90:49:1f:e2:09:f1:7e: 42:41:57:a0:be:b6:54:f2:e4:8f:ab:8a:8d:0f:e9: 2a:08:29:18:4b:60:c3:6b:6d:cf:5a:fd:99:93:74: 90:94:0f:5e:d0:17:9f:99:61:3e:e5:82:a5:c0:35: 76:dc:ea:ec:54:ed:09:9e:6d:e1:31:5d:38:a5:4a: 1f:7b:e6:77:51:a0:d4:c7:cf:04:4c:bc:66:4f:64: 59:9b:2e:7e:c5:b3:b8:65:dd:e1:0d:07:d3:43:1d: c9:91:2e:81:2d:ca:d5:e3:82:ba:d7:a0:83:1d:15: 77:80:ee:d8:0b:01:8d:01:20:1c:6b:e0:70:9c:2e: d7:32:48:93:c9:53:d7:9f:4e:b8:20:87:cc:ad:41: 9f:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:0E:86:DB:B0:C4:D3:91:EB:21:EA:BC:E4:ED:45:73:18:A3:9B:09 X509v3 Authority Key Identifier: keyid:AC:8D:F8:B4:07:B0:7B:13:67:9B:71:C5:01:2B:AC:DD:E2:50:1E:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rI34tAewexNnm3HFASus3eJQHnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:77:fe:0c:6e:1f:98:01:09:5b:60:5b:4f:f6:b7:f2:66:9e: 97:96:10:94:61:37:5a:1f:76:dd:9e:62:14:83:bf:e5:50:cb: 87:97:b2:fb:eb:99:5c:d9:22:6c:ef:c0:3a:34:4c:5c:a0:89: d1:6a:ca:5e:d1:46:bf:88:55:ee:3d:e4:5a:9b:59:07:63:9b: 0e:d3:b4:78:bb:08:48:b1:fe:6f:cc:8e:32:ad:e5:0a:46:87: d9:f6:fe:e4:6e:ca:e9:82:9c:ea:ba:e0:0d:20:d8:5f:25:36: 3c:a0:84:2e:56:da:5f:45:40:e0:d0:e8:d1:16:a2:66:4f:99: d0:e5:a4:67:89:c5:bf:b9:e0:a6:1a:ed:d9:f1:f0:ad:4d:59: 15:e8:55:4a:81:79:2c:cc:f2:04:cf:d8:ab:94:5e:3e:30:a2: 41:82:84:c5:43:12:01:2e:cd:5c:86:c7:7c:c3:a5:89:a3:64: 8a:88:a4:4c:94:29:16:e0:e2:32:22:53:e8:62:4c:60:ec:bd: 19:1a:9c:2c:54:90:2e:e0:d8:c6:08:b2:79:c5:54:4e:e4:7e: 21:27:c9:44:b1:e7:00:53:22:06:0c:ea:64:df:c4:ee:a1:9d: 80:66:53:a0:9a:c8:1d:ce:68:54:1a:96:2e:97:83:23:ae:44: 82:23:91:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICId0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM0M0QxMTAvBgNVBAUTKEFDOERGOEI0MDdCMDdCMTM2NzlCNzFDNTAxMkJBQ0RE RTI1MDFFNzEwHhcNMjQwNTA0MTYxNTM4WhcNMjQwNTExMTYxNTM4WjAYMRYwFAYD VQQDEw02NjM2NWYyYS04ZDEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA528lg6/lMfROUnez2cS05uq8tmNfH6g+rHuPBHHvhj4Q602t87z6qbrzrh2Z KWbXGHi1PQEQpjsXrAI7DBV/QdyINW5zhZV1qEvt9VgrKWMdkBCS9CbBqfSzT2tK c32gfngEggS/d4sZBCtf0FLD7JBJH+IJ8X5CQVegvrZU8uSPq4qND+kqCCkYS2DD a23PWv2Zk3SQlA9e0BefmWE+5YKlwDV23OrsVO0Jnm3hMV04pUofe+Z3UaDUx88E TLxmT2RZmy5+xbO4Zd3hDQfTQx3JkS6BLcrV44K616CDHRV3gO7YCwGNASAca+Bw nC7XMkiTyVPXn064IIfMrUGfFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF0Ohtuw xNOR6yHqvOTtRXMYo5sJMB8GA1UdIwQYMBaAFKyN+LQHsHsTZ5txxQErrN3iUB5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzQzRC9FREIyOEU3RUE0 ODAxMUU1ODMzNzg4ODZDNEY5QUUwMi9ySTM0dEFld2V4Tm5tM0hGQVN1czNlSlFI bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JJMzR0QWV3ZXhObm0zSEZBU3VzM2VKUUhuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzQzRC9FREIyOEU3RUE0ODAxMUU1ODMzNzg4ODZDNEY5QUUwMi9ySTM0dEFld2V4 Tm5tM0hGQVN1czNlSlFIbkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChd/4Mbh+YAQlbYFtP9rfyZp6XlhCUYTdaH3bdnmIUg7/lUMuHl7L7 65lc2SJs78A6NExcoInRaspe0Ua/iFXuPeRam1kHY5sO07R4uwhIsf5vzI4yreUK RofZ9v7kbsrpgpzquuANINhfJTY8oIQuVtpfRUDg0OjRFqJmT5nQ5aRnicW/ueCm Gu3Z8fCtTVkV6FVKgXkszPIEz9irlF4+MKJBgoTFQxIBLs1chsd8w6WJo2SKiKRM lCkW4OIyIlPoYkxg7L0ZGpwsVJAu4NjGCLJ5xVRO5H4hJ8lEsecAUyIGDOpk38Tu oZ2AZlOgmsgdzmhUGpYul4MjrkSCI5FH -----END CERTIFICATE-----Generated at Sat May 4 17:19:51 2024 by rpki-client on console-fra.rpki-client.org