$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDBE8/9D363178152B11EB9BD4EB46C4F9AE02/81QJOUhm-0CKDRiOC30AzFpzlI4.mft File: 81QJOUhm-0CKDRiOC30AzFpzlI4.mft (raw, json) Hash identifier: utRTTEarr8tz0FyUydo1j1hChQkBS3PGgNwzhLhaBo8= Subject key identifier: 15:E8:52:6D:F8:86:53:EC:B8:CB:B5:43:69:25:7B:CF:8E:C9:54:C0 Authority key identifier: F3:54:09:39:48:66:FB:40:8A:0D:18:8E:0B:7D:00:CC:5A:73:94:8E Certificate issuer: /CN=A91FDBE8/serialNumber=F35409394866FB408A0D188E0B7D00CC5A73948E Certificate serial: 06C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/81QJOUhm-0CKDRiOC30AzFpzlI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDBE8/9D363178152B11EB9BD4EB46C4F9AE02/81QJOUhm-0CKDRiOC30AzFpzlI4.mft Manifest number: 06B9 Signing time: Tue 30 Apr 2024 23:29:41 +0000 Manifest this update: Tue 30 Apr 2024 23:29:40 +0000 Manifest next update: Tue 07 May 2024 23:29:40 +0000 Files and hashes: 1: 81QJOUhm-0CKDRiOC30AzFpzlI4.crl (hash: fjsiA0QEvnQ2EXtaLX04b45flXyv1Je3dY0ctUbf7r8=) 2: 407DD9CED09211EE843A0F22C4F9AE02.roa (hash: wly0OY68balPh51i2R2GQUE7saurtGWpYNvp4HO031M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDBE8/9D363178152B11EB9BD4EB46C4F9AE02/81QJOUhm-0CKDRiOC30AzFpzlI4.crl rsync://rpki.apnic.net/member_repository/A91FDBE8/9D363178152B11EB9BD4EB46C4F9AE02/81QJOUhm-0CKDRiOC30AzFpzlI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/81QJOUhm-0CKDRiOC30AzFpzlI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 23:29:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1732 (0x6c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDBE8/serialNumber=F35409394866FB408A0D188E0B7D00CC5A73948E Validity Not Before: Apr 30 23:29:40 2024 GMT Not After : May 7 23:29:40 2024 GMT Subject: CN=66317ee4-89d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:05:df:68:d1:0d:33:d3:42:87:4d:d2:01:91: c0:7c:d3:88:9e:2b:df:cc:f1:37:6c:3a:98:8c:3b: 0b:1b:7d:c2:93:c3:49:eb:36:b2:69:e3:0d:3e:20: d7:cb:9c:33:38:8d:cf:5c:c6:e1:07:70:6c:fc:dd: 0e:44:60:ad:70:9f:17:fe:3f:7b:c3:14:e0:49:97: 50:1c:60:57:12:31:87:58:15:e3:73:a4:52:5d:c7: 65:5c:5d:d6:1d:54:5b:af:9b:0d:96:06:8c:e4:f5: 9d:4d:2e:3b:12:93:ff:c5:96:dc:3b:0b:8c:0a:72: 57:00:fa:28:21:fb:fc:7b:47:bb:f9:41:13:8a:22: b3:6a:39:97:c8:97:9a:1d:b6:c3:19:95:cc:49:d5: 65:ce:c1:8d:71:64:e2:7c:fb:7b:71:ae:07:a2:c8: ff:e2:88:be:1b:9b:be:d5:df:11:e0:a8:50:84:fa: 89:61:96:f5:22:b7:84:b2:bd:b6:27:44:ce:17:68: 13:f4:10:5f:be:dc:72:0e:a0:1d:a9:64:8b:66:5a: 56:a8:2a:c0:79:26:72:70:44:e4:25:46:d5:41:9e: 1d:d0:0f:56:da:b4:13:cb:da:b9:8d:8e:8a:d4:dd: 38:84:d1:f4:c1:e7:f7:ab:6a:04:18:e6:eb:31:ea: f3:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:E8:52:6D:F8:86:53:EC:B8:CB:B5:43:69:25:7B:CF:8E:C9:54:C0 X509v3 Authority Key Identifier: keyid:F3:54:09:39:48:66:FB:40:8A:0D:18:8E:0B:7D:00:CC:5A:73:94:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDBE8/9D363178152B11EB9BD4EB46C4F9AE02/81QJOUhm-0CKDRiOC30AzFpzlI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/81QJOUhm-0CKDRiOC30AzFpzlI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDBE8/9D363178152B11EB9BD4EB46C4F9AE02/81QJOUhm-0CKDRiOC30AzFpzlI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:57:29:ca:ef:20:6b:90:15:20:fb:7d:79:04:f5:9e:70:08: 77:67:f2:f9:ac:6a:e1:ed:31:81:a3:e7:65:70:1e:dc:c1:8f: 31:80:0b:f5:fb:db:fd:d5:d0:b4:1d:7b:84:e3:ae:cd:c2:93: 66:33:44:55:a7:6b:b5:c8:67:af:d8:53:3e:1b:0a:c3:9b:0a: 13:43:f5:a4:d3:94:fe:b2:7a:de:1e:98:e3:d7:f9:1a:6f:dd: 54:ec:13:15:ca:37:5d:37:5c:1d:a3:06:4a:b1:ca:8a:e9:ae: 67:01:9c:f5:75:77:e9:fa:43:f5:c7:26:72:45:b4:67:3b:26: 5e:51:83:06:cc:86:b7:8e:74:5c:ea:5e:4f:46:62:b4:ca:a3: c2:18:bc:73:5d:34:4a:79:79:d1:01:c2:2f:34:94:5c:f0:3b: 16:bf:dc:3b:d4:d9:8f:1a:3a:a2:91:fc:de:09:fb:07:d4:f3: 07:39:82:0f:c6:40:d0:d2:76:76:95:8b:c5:13:62:21:12:8f: 2d:9c:90:36:e7:b5:da:f5:74:5a:fd:c1:c5:ae:6a:15:31:c5: fb:36:c0:3a:dc:cc:f9:ba:51:21:16:94:b5:ef:a6:d4:3c:18: 7a:67:8e:1b:48:8b:c1:8a:f0:b9:33:ee:c2:bd:d0:72:51:47: 81:b0:61:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRCRTgxMTAvBgNVBAUTKEYzNTQwOTM5NDg2NkZCNDA4QTBEMTg4RTBCN0QwMEND NUE3Mzk0OEUwHhcNMjQwNDMwMjMyOTQwWhcNMjQwNTA3MjMyOTQwWjAYMRYwFAYD VQQDEw02NjMxN2VlNC04OWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArQXfaNENM9NCh03SAZHAfNOInivfzPE3bDqYjDsLG33Ck8NJ6zayaeMNPiDX y5wzOI3PXMbhB3Bs/N0ORGCtcJ8X/j97wxTgSZdQHGBXEjGHWBXjc6RSXcdlXF3W HVRbr5sNlgaM5PWdTS47EpP/xZbcOwuMCnJXAPooIfv8e0e7+UETiiKzajmXyJea HbbDGZXMSdVlzsGNcWTifPt7ca4Hosj/4oi+G5u+1d8R4KhQhPqJYZb1IreEsr22 J0TOF2gT9BBfvtxyDqAdqWSLZlpWqCrAeSZycETkJUbVQZ4d0A9W2rQTy9q5jY6K 1N04hNH0wef3q2oEGObrMerzyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBXoUm34 hlPsuMu1Q2kle8+OyVTAMB8GA1UdIwQYMBaAFPNUCTlIZvtAig0Yjgt9AMxac5SO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREJFOC85RDM2MzE3ODE1 MkIxMUVCOUJENEVCNDZDNEY5QUUwMi84MVFKT1VobS0wQ0tEUmlPQzMwQXpGcHps STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzgxUUpPVWhtLTBDS0RSaU9DMzBBekZwemxJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REJFOC85RDM2MzE3ODE1MkIxMUVCOUJENEVCNDZDNEY5QUUwMi84MVFKT1VobS0w Q0tEUmlPQzMwQXpGcHpsSTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTVynK7yBrkBUg+315BPWecAh3Z/L5rGrh7TGBo+dlcB7cwY8xgAv1 +9v91dC0HXuE467NwpNmM0RVp2u1yGev2FM+GwrDmwoTQ/Wk05T+snreHpjj1/ka b91U7BMVyjddN1wdowZKscqK6a5nAZz1dXfp+kP1xyZyRbRnOyZeUYMGzIa3jnRc 6l5PRmK0yqPCGLxzXTRKeXnRAcIvNJRc8DsWv9w71NmPGjqikfzeCfsH1PMHOYIP xkDQ0nZ2lYvFE2IhEo8tnJA257Xa9XRa/cHFrmoVMcX7NsA63Mz5ulEhFpS176bU PBh6Z44bSIvBivC5M+7CvdByUUeBsGHM -----END CERTIFICATE-----Generated at Wed May 1 00:24:04 2024 by rpki-client on console-fra.rpki-client.org