$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft File: N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft (raw, json) Hash identifier: +LfsyVJvEGWs1Z/mlUQSHk7U9Rdx8fUBxhBKhQG6xnw= Subject key identifier: 0D:5A:D4:C8:8B:B1:9A:FF:EC:53:8C:75:67:F8:D3:C7:7E:D7:83:B1 Authority key identifier: 37:B6:2A:77:25:1C:52:A0:4B:33:B8:2D:2E:D0:20:4C:92:7A:42:9A Certificate issuer: /CN=A91FDA40/serialNumber=37B62A77251C52A04B33B82D2ED0204C927A429A Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft Manifest number: DD Signing time: Sun 05 May 2024 06:04:17 +0000 Manifest this update: Sun 05 May 2024 06:04:17 +0000 Manifest next update: Sun 12 May 2024 06:04:17 +0000 Files and hashes: 1: N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl (hash: Lo7cxzBBUdu8U8cygHZ6oD8djrRQawt40uwszuQo0Bc=) 2: FB0EDA2EBBDD11EDB989924CC4F9AE02.roa (hash: GXx8FdjG685RCAz/YmEI88HRu+xpURI396sesAeLPCk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 06:04:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDA40/serialNumber=37B62A77251C52A04B33B82D2ED0204C927A429A Validity Not Before: May 5 06:04:17 2024 GMT Not After : May 12 06:04:17 2024 GMT Subject: CN=66372161-d335 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:99:09:7b:8a:9a:f9:ec:91:6b:04:67:e6:20: eb:65:e5:09:28:b2:9f:21:e1:9b:9d:7d:93:9e:6f: 3b:f4:d7:01:e6:67:d7:b9:0b:71:82:45:0d:ab:20: 6f:98:18:2a:3c:89:51:12:52:c7:45:85:a3:61:86: d9:d9:56:0d:e2:eb:07:a3:0e:44:6a:eb:8b:5b:51: 88:5e:6c:b9:48:48:93:9c:b2:f7:4f:73:d8:ea:c1: a3:36:4f:e8:48:2c:4a:60:82:04:a0:a3:8e:12:82: df:63:57:d6:c4:8b:2d:80:d0:d8:f8:d0:73:b7:06: 1e:84:ad:ae:df:c1:ac:e5:8c:74:b1:13:e8:ab:cd: 9c:97:79:d2:3e:54:19:ab:95:3b:99:31:df:e6:b5: a7:58:d6:9e:b9:bf:72:4f:2b:b0:f2:a3:6e:a2:21: 98:b1:da:b8:91:19:99:57:f2:2f:fc:3d:fb:0e:09: 56:8b:49:bc:63:a9:ec:c7:db:7e:f4:5a:4b:3c:04: 63:f6:de:0b:80:72:df:bc:09:51:b1:d7:c5:89:f0: 2c:a0:a1:a9:cb:be:ce:6c:39:c9:fe:39:63:af:07: af:9f:30:50:78:85:2d:bb:8a:75:ad:d8:75:41:b2: ea:74:ad:a2:4c:85:70:07:24:56:2e:87:54:9c:75: d3:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:5A:D4:C8:8B:B1:9A:FF:EC:53:8C:75:67:F8:D3:C7:7E:D7:83:B1 X509v3 Authority Key Identifier: keyid:37:B6:2A:77:25:1C:52:A0:4B:33:B8:2D:2E:D0:20:4C:92:7A:42:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:3a:a0:09:a8:08:93:88:21:da:77:f1:9a:d9:6a:76:91:a9: 3b:10:06:e0:28:f7:32:b9:7f:1c:31:23:8e:10:ca:bb:94:54: 62:8f:b2:0b:54:d5:df:f5:8d:f8:ca:d4:6b:c9:9d:a9:1c:b8: 72:ea:05:90:09:d9:5d:9e:0e:b5:2f:a8:df:af:ef:cc:9e:44: 37:23:66:f4:e5:3f:91:98:e2:cd:ff:ed:d6:91:2b:66:54:f4: 42:a8:c1:1c:36:7a:90:dd:a3:83:f0:d5:bc:7f:08:db:07:fe: ca:cb:b8:ab:47:3e:e5:ba:f1:81:df:20:22:34:c0:29:fd:2d: 94:76:9a:49:3a:60:90:92:13:0f:34:e9:f8:f1:f0:88:c5:45: 17:a8:28:4e:b4:d2:3c:6f:0c:bb:8a:ae:74:ab:f5:f2:cf:d7: fb:e9:fd:54:bb:11:c0:34:66:e3:36:46:77:64:07:65:e8:c6: 69:2f:6b:b2:34:65:8d:a2:e3:19:7b:c0:b0:40:19:fd:4f:7d: ab:06:d5:fd:3f:0e:7d:9a:8a:36:2d:26:04:c0:8a:be:84:d2: c1:b2:8e:00:84:7b:75:69:29:d6:3b:32:d5:af:31:be:01:c6: e5:50:a4:18:06:6b:9f:f1:1f:d6:07:75:84:60:f9:99:8b:0b: 6d:ae:86:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRBNDAxMTAvBgNVBAUTKDM3QjYyQTc3MjUxQzUyQTA0QjMzQjgyRDJFRDAyMDRD OTI3QTQyOUEwHhcNMjQwNTA1MDYwNDE3WhcNMjQwNTEyMDYwNDE3WjAYMRYwFAYD VQQDEw02NjM3MjE2MS1kMzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp5kJe4qa+eyRawRn5iDrZeUJKLKfIeGbnX2Tnm879NcB5mfXuQtxgkUNqyBv mBgqPIlRElLHRYWjYYbZ2VYN4usHow5EauuLW1GIXmy5SEiTnLL3T3PY6sGjNk/o SCxKYIIEoKOOEoLfY1fWxIstgNDY+NBztwYehK2u38Gs5Yx0sRPoq82cl3nSPlQZ q5U7mTHf5rWnWNaeub9yTyuw8qNuoiGYsdq4kRmZV/Iv/D37DglWi0m8Y6nsx9t+ 9FpLPARj9t4LgHLfvAlRsdfFifAsoKGpy77ObDnJ/jljrwevnzBQeIUtu4p1rdh1 QbLqdK2iTIVwByRWLodUnHXTFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA1a1MiL sZr/7FOMdWf408d+14OxMB8GA1UdIwQYMBaAFDe2KnclHFKgSzO4LS7QIEySekKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREE0MC85NkYwRDcwQ0JC REExMUVEODg3OEVGNDdDNEY5QUUwMi9ON1lxZHlVY1VxQkxNN2d0THRBZ1RKSjZR cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL043WXFkeVVjVXFCTE03Z3RMdEFnVEpKNlFwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REE0MC85NkYwRDcwQ0JCREExMUVEODg3OEVGNDdDNEY5QUUwMi9ON1lxZHlVY1Vx QkxNN2d0THRBZ1RKSjZRcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/OqAJqAiTiCHad/Ga2Wp2kak7EAbgKPcyuX8cMSOOEMq7lFRij7IL VNXf9Y34ytRryZ2pHLhy6gWQCdldng61L6jfr+/MnkQ3I2b05T+RmOLN/+3WkStm VPRCqMEcNnqQ3aOD8NW8fwjbB/7Ky7irRz7luvGB3yAiNMAp/S2UdppJOmCQkhMP NOn48fCIxUUXqChOtNI8bwy7iq50q/Xyz9f76f1UuxHANGbjNkZ3ZAdl6MZpL2uy NGWNouMZe8CwQBn9T32rBtX9Pw59moo2LSYEwIq+hNLBso4AhHt1aSnWOzLVrzG+ AcblUKQYBmuf8R/WB3WEYPmZiwttroZt -----END CERTIFICATE-----Generated at Sun May 5 08:39:17 2024 by rpki-client on console-fra.rpki-client.org