$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft File: l85Wj2RoJWRz-Es4s84D6jVJ64k.mft (raw, json) Hash identifier: rElb/eJ/Ijzx4tw1Py3WL+u5SYFhnb9W/5siqH+iO1Q= Subject key identifier: 06:96:BF:9B:19:18:33:DF:23:55:7A:04:D9:2E:D7:30:DB:B6:C8:EA Authority key identifier: 97:CE:56:8F:64:68:25:64:73:F8:4B:38:B3:CE:03:EA:35:49:EB:89 Certificate issuer: /CN=A91FCABC/serialNumber=97CE568F6468256473F84B38B3CE03EA3549EB89 Certificate serial: B3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft Manifest number: B1 Signing time: Fri 17 May 2024 06:38:25 +0000 Manifest this update: Fri 17 May 2024 06:38:24 +0000 Manifest next update: Fri 24 May 2024 06:38:24 +0000 Files and hashes: 1: l85Wj2RoJWRz-Es4s84D6jVJ64k.crl (hash: YCf7waBKq5MC5XnW7KCNaxmcVOY4+KwOpSoVcMckI9o=) 2: 35BBCFB005C111EEA3A8584CC4F9AE02.roa (hash: Zj5KzXH90Eacni+/EF4/NifCxTnojynFkhBANYb65sQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.crl rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 179 (0xb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCABC/serialNumber=97CE568F6468256473F84B38B3CE03EA3549EB89 Validity Not Before: May 17 06:38:24 2024 GMT Not After : May 24 06:38:24 2024 GMT Subject: CN=6646fb61-4b5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c3:ce:f9:ca:93:b1:d7:50:12:46:66:aa:5e: e2:09:62:c5:2a:ef:02:2b:b1:08:d0:6f:e7:92:11: 50:40:c3:41:dd:2a:7b:31:9b:99:09:ac:62:81:33: 3a:c4:45:5a:ec:5f:07:01:31:1a:87:5a:18:e2:27: 7c:af:6c:c1:c0:2a:d8:85:40:87:36:2b:e4:2e:e4: 55:6a:d7:05:40:62:fa:11:e5:39:a6:f3:53:2e:75: 64:1f:18:09:fc:d5:a8:1d:50:02:6e:ea:0c:0d:aa: f9:74:cc:04:f7:2e:71:36:76:fd:be:02:f3:c2:67: 78:40:6d:57:86:a6:eb:bb:f0:e9:31:3e:ae:fb:1e: 32:96:58:7d:b0:68:ef:8a:ee:8c:de:14:de:06:4c: e3:2b:4d:47:b4:64:1f:c4:c5:94:05:e6:ed:a8:ee: 45:1a:52:fd:50:5e:cc:e4:7a:01:41:42:06:94:9a: 52:b9:fd:f8:9a:b4:78:1f:12:50:6f:43:4a:6c:ba: 48:15:b4:5f:cf:3d:24:85:b8:35:c0:78:c8:96:08: 4a:1b:32:ff:c5:26:e6:1e:75:da:6f:fa:80:33:a1: 47:4f:e6:a9:ad:6f:6e:eb:fd:74:7b:4f:51:b9:6f: 40:60:8d:67:ab:fb:f3:07:7a:22:1d:23:23:1a:c1: 30:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:96:BF:9B:19:18:33:DF:23:55:7A:04:D9:2E:D7:30:DB:B6:C8:EA X509v3 Authority Key Identifier: keyid:97:CE:56:8F:64:68:25:64:73:F8:4B:38:B3:CE:03:EA:35:49:EB:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:ed:00:d7:bc:5a:f3:1a:ac:49:f4:49:0e:1a:2b:e1:ef:0b: a2:d6:29:05:c4:25:07:6d:9d:9d:23:5e:c0:6b:de:da:0b:5e: 46:3e:2b:88:57:d8:f6:0e:5c:f6:5b:5f:5e:f0:aa:a4:43:8c: 28:d0:d9:d2:83:c7:b8:6c:30:2d:1d:01:65:80:cd:bf:b4:94: 53:b4:92:be:bd:58:24:90:94:8e:1d:02:7d:c7:fd:d1:7c:46: ec:6e:20:d7:b0:9b:82:60:d0:39:6b:52:05:54:19:ea:95:8c: 14:47:27:ee:b9:1b:b7:c1:f0:bc:8d:21:d4:cf:79:eb:5f:2a: 81:03:e9:ba:79:8d:64:ba:2a:b0:b5:91:60:c7:c9:f1:9f:20: 86:55:ab:5d:be:a8:a2:2a:a9:ce:75:af:7e:d9:34:92:fa:75: bc:31:60:3d:36:02:3c:7d:18:28:f8:5a:90:ff:94:f4:57:a2: 0a:51:6e:8f:74:22:99:20:3e:8a:d2:a8:55:85:39:5b:f8:f6: 06:c3:5d:f0:bc:b1:ad:5a:e0:1b:fb:17:b3:e7:e9:3f:7c:57: b8:93:e2:ef:fd:81:fb:03:b4:c0:8b:b0:ab:80:c7:9c:51:f7: c9:28:2f:2c:67:cd:05:2c:ed:3e:4b:c3:b0:c9:28:0c:83:16: fc:17:17:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNBQkMxMTAvBgNVBAUTKDk3Q0U1NjhGNjQ2ODI1NjQ3M0Y4NEIzOEIzQ0UwM0VB MzU0OUVCODkwHhcNMjQwNTE3MDYzODI0WhcNMjQwNTI0MDYzODI0WjAYMRYwFAYD VQQDEw02NjQ2ZmI2MS00YjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtsPO+cqTsddQEkZmql7iCWLFKu8CK7EI0G/nkhFQQMNB3Sp7MZuZCaxigTM6 xEVa7F8HATEah1oY4id8r2zBwCrYhUCHNivkLuRVatcFQGL6EeU5pvNTLnVkHxgJ /NWoHVACbuoMDar5dMwE9y5xNnb9vgLzwmd4QG1Xhqbru/DpMT6u+x4yllh9sGjv iu6M3hTeBkzjK01HtGQfxMWUBebtqO5FGlL9UF7M5HoBQUIGlJpSuf34mrR4HxJQ b0NKbLpIFbRfzz0khbg1wHjIlghKGzL/xSbmHnXab/qAM6FHT+aprW9u6/10e09R uW9AYI1nq/vzB3oiHSMjGsEwfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAaWv5sZ GDPfI1V6BNku1zDbtsjqMB8GA1UdIwQYMBaAFJfOVo9kaCVkc/hLOLPOA+o1SeuJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0FCQy9DNTUxNjQxMjA1 QjkxMUVFQTkxMzBCMzdDNEY5QUUwMi9sODVXajJSb0pXUnotRXM0czg0RDZqVko2 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2w4NVdqMlJvSldSei1FczRzODRENmpWSjY0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0FCQy9DNTUxNjQxMjA1QjkxMUVFQTkxMzBCMzdDNEY5QUUwMi9sODVXajJSb0pX UnotRXM0czg0RDZqVko2NGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw7QDXvFrzGqxJ9EkOGivh7wui1ikFxCUHbZ2dI17Aa97aC15GPiuI V9j2Dlz2W19e8KqkQ4wo0NnSg8e4bDAtHQFlgM2/tJRTtJK+vVgkkJSOHQJ9x/3R fEbsbiDXsJuCYNA5a1IFVBnqlYwURyfuuRu3wfC8jSHUz3nrXyqBA+m6eY1kuiqw tZFgx8nxnyCGVatdvqiiKqnOda9+2TSS+nW8MWA9NgI8fRgo+FqQ/5T0V6IKUW6P dCKZID6K0qhVhTlb+PYGw13wvLGtWuAb+xez5+k/fFe4k+Lv/YH7A7TAi7CrgMec UffJKC8sZ80FLO0+S8OwySgMgxb8Fxd3 -----END CERTIFICATE-----Generated at Fri May 17 08:13:56 2024 by rpki-client on console-fra.rpki-client.org