$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft File: 2nWrD7Oqh1r631o4-FK9zB3YJvc.mft (raw, json) Hash identifier: LXSztAzC6+9L0iR502z69O+7QZkv+NsmsqNugQ/lZOo= Subject key identifier: 1C:B5:E3:D6:92:E6:23:32:30:E3:0F:53:7F:51:80:7A:B1:34:92:D4 Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 Certificate issuer: /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Certificate serial: C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft Manifest number: C0 Signing time: Fri 03 May 2024 06:30:26 +0000 Manifest this update: Fri 03 May 2024 06:30:26 +0000 Manifest next update: Fri 10 May 2024 06:30:26 +0000 Files and hashes: 1: 2nWrD7Oqh1r631o4-FK9zB3YJvc.crl (hash: EDMaj6pn2nrvQm4aIxtQLwqWSDse9mjkGcX1gEFeZgI=) 2: 261D3B8AEE4611ED9BEFED31C4F9AE02.roa (hash: YCQgXX3rn1VYOPR234XDjqwFnKone0kRhynQvA6PZ44=) 3: 004C5F7EEE7011EDAA7EBB38C4F9AE02.roa (hash: wuA3iShW2pNUAEzwE136YDNG0zc9gEfmAoYRC7hXq7E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 06:30:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Validity Not Before: May 3 06:30:26 2024 GMT Not After : May 10 06:30:26 2024 GMT Subject: CN=66348482-b6ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:17:5b:5a:85:04:b3:c5:d0:d7:ba:a2:cd:1c: 12:bb:64:ca:c1:58:bb:15:f1:01:97:94:bb:30:fc: ea:e0:5f:97:ff:fa:ef:80:94:59:cd:1f:33:9c:43: 9d:89:07:dd:f0:5c:4e:45:73:4b:20:71:bd:a8:cc: 5a:09:9a:57:b4:3a:12:e8:6d:a5:33:59:a4:93:2d: e3:2c:98:49:4b:f7:13:95:33:c0:28:ff:9d:5d:ef: 15:6c:f3:ea:2f:47:37:66:68:b1:d1:83:c6:77:db: b5:e2:2f:35:0e:ce:9c:4e:27:22:5e:88:07:6b:41: bb:b2:b2:52:c3:59:7e:1f:62:51:3f:19:fc:e4:f7: c0:31:68:61:ff:74:f9:e8:7d:c2:04:e3:61:67:7c: 08:3a:ed:c2:38:0b:c0:d1:fd:e6:74:8a:69:a5:9d: be:27:9b:da:59:c7:f4:0e:31:24:81:d2:de:41:b9: 16:f3:de:88:d3:6c:96:92:9d:48:20:67:a1:4a:79: 21:2e:55:e4:99:9a:0b:b8:6f:5d:25:ba:07:91:c2: 1b:5d:b9:b5:e7:39:9a:32:b0:28:2f:f0:3f:7b:67: d9:0f:d7:21:71:9c:59:ab:b0:4e:55:b3:be:18:3c: eb:e8:23:05:cb:e0:a1:5c:50:e2:11:63:2d:07:8a: b0:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:B5:E3:D6:92:E6:23:32:30:E3:0F:53:7F:51:80:7A:B1:34:92:D4 X509v3 Authority Key Identifier: keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:51:a3:c9:08:24:70:f0:5d:75:10:09:94:26:0e:74:19:16: eb:f5:c4:07:74:e0:73:eb:34:16:0a:a3:d1:98:5a:e9:75:69: 95:14:8e:ab:2e:87:22:e5:96:4e:44:4a:80:f8:63:b5:e9:68: 72:dd:78:54:2a:37:40:0e:af:1f:d5:e6:1c:b0:fc:5e:31:29: f0:7c:57:4a:11:ae:e1:1a:c4:6b:73:3c:31:20:df:20:0a:94: 30:e1:7c:e9:96:6c:9c:17:63:01:dc:e0:f6:37:13:96:7d:6a: 31:bc:64:d0:43:fb:2e:c7:bd:02:eb:18:ab:f1:7d:0a:8c:5b: 44:12:ba:53:12:0b:0b:06:a5:88:2a:de:d0:89:42:ff:5a:e0: fa:80:f3:bb:75:2b:27:6d:0c:3b:3b:a7:74:27:fb:f0:0d:dc: 61:93:aa:fe:cf:14:c0:93:68:58:5e:bf:a8:2e:7e:51:47:4f: 9b:d7:30:63:c7:dc:13:8f:15:06:e6:d5:9d:1a:11:3d:b6:98: f1:ce:73:d1:f5:52:87:f4:92:f1:bb:12:4e:1f:72:0d:69:19: e0:b9:fe:09:5d:dc:71:85:3e:d6:77:30:0a:45:52:ab:82:52: 3d:bf:22:54:6b:41:9a:94:49:0d:6e:b2:72:c3:5f:9e:6e:eb: 60:57:62:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGQkIxMTAvBgNVBAUTKERBNzVBQjBGQjNBQTg3NUFGQURGNUEzOEY4NTJCREND MUREODI2RjcwHhcNMjQwNTAzMDYzMDI2WhcNMjQwNTEwMDYzMDI2WjAYMRYwFAYD VQQDEw02NjM0ODQ4Mi1iNmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxxdbWoUEs8XQ17qizRwSu2TKwVi7FfEBl5S7MPzq4F+X//rvgJRZzR8znEOd iQfd8FxORXNLIHG9qMxaCZpXtDoS6G2lM1mkky3jLJhJS/cTlTPAKP+dXe8VbPPq L0c3Zmix0YPGd9u14i81Ds6cTiciXogHa0G7srJSw1l+H2JRPxn85PfAMWhh/3T5 6H3CBONhZ3wIOu3COAvA0f3mdIpppZ2+J5vaWcf0DjEkgdLeQbkW896I02yWkp1I IGehSnkhLlXkmZoLuG9dJboHkcIbXbm15zmaMrAoL/A/e2fZD9chcZxZq7BOVbO+ GDzr6CMFy+ChXFDiEWMtB4qwNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBy149aS 5iMyMOMPU39RgHqxNJLUMB8GA1UdIwQYMBaAFNp1qw+zqoda+t9aOPhSvcwd2Cb3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUZCQi9EODk2QjVDOEVB NkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgxcjYzMW80LUZLOXpCM1lK dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuV3JEN09xaDFyNjMxbzQtRks5ekIzWUp2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUZCQi9EODk2QjVDOEVBNkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgx cjYzMW80LUZLOXpCM1lKdmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEUaPJCCRw8F11EAmUJg50GRbr9cQHdOBz6zQWCqPRmFrpdWmVFI6r Loci5ZZOREqA+GO16Why3XhUKjdADq8f1eYcsPxeMSnwfFdKEa7hGsRrczwxIN8g CpQw4XzplmycF2MB3OD2NxOWfWoxvGTQQ/sux70C6xir8X0KjFtEErpTEgsLBqWI Kt7QiUL/WuD6gPO7dSsnbQw7O6d0J/vwDdxhk6r+zxTAk2hYXr+oLn5RR0+b1zBj x9wTjxUG5tWdGhE9tpjxznPR9VKH9JLxuxJOH3INaRnguf4JXdxxhT7WdzAKRVKr glI9vyJUa0GalEkNbrJyw1+ebutgV2L1 -----END CERTIFICATE-----Generated at Fri May 3 09:09:37 2024 by rpki-client on console-fra.rpki-client.org