$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.mft File: 49O0eIJzzkWSmwmYOr9ktdRNHwg.mft (raw, json) Hash identifier: LSqqA1vjWUe9jmA0V+zFUv7rRpgEQYapt/UrkP/uV9A= Subject key identifier: D7:72:DF:9B:B2:25:A6:D1:88:1F:5E:C2:4C:2F:72:F2:11:5D:C6:74 Authority key identifier: E3:D3:B4:78:82:73:CE:45:92:9B:09:98:3A:BF:64:B5:D4:4D:1F:08 Certificate issuer: /CN=A91FF634/serialNumber=E3D3B4788273CE45929B09983ABF64B5D44D1F08 Certificate serial: 1064 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/49O0eIJzzkWSmwmYOr9ktdRNHwg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.mft Manifest number: 104E Signing time: Wed 08 May 2024 18:04:39 +0000 Manifest this update: Wed 08 May 2024 18:04:38 +0000 Manifest next update: Wed 15 May 2024 18:04:38 +0000 Files and hashes: 1: 49O0eIJzzkWSmwmYOr9ktdRNHwg.crl (hash: 8B3q/noiedfGp/2Wa0ClLpYtDi8LJ1lCUEkXy1sTOXM=) 2: 97F937E440BC11EAA2B89432C4F9AE02.roa (hash: h4w3R++k5N2fKCBL4XYVOAI91zAPSdTO27DUBoN7QB0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.crl rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/49O0eIJzzkWSmwmYOr9ktdRNHwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4196 (0x1064) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF634/serialNumber=E3D3B4788273CE45929B09983ABF64B5D44D1F08 Validity Not Before: May 8 18:04:38 2024 GMT Not After : May 15 18:04:38 2024 GMT Subject: CN=663bbeb6-68e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8a:84:be:58:bd:ae:d7:31:2b:e6:f8:7e:7e: 4a:ab:fd:1b:8b:90:35:fe:7d:4f:33:b9:ac:72:3c: 3e:70:ae:da:aa:bd:70:d5:38:3c:7e:f8:40:6c:e0: 3e:c7:80:24:09:65:cd:d9:2c:2b:07:68:77:3b:7c: ab:e3:75:c6:43:c8:e6:2b:9b:cc:3e:42:4e:9d:cc: 64:d2:a5:4d:88:ab:9c:5f:f0:94:79:6b:d5:3c:81: a7:32:a3:2b:4e:9e:f6:9b:f7:14:34:0c:9f:bb:fb: 1f:63:92:b5:dc:99:8c:86:60:88:9c:ac:40:95:8b: 9c:f1:49:c8:d5:ef:18:08:69:46:01:62:01:b2:f5: 82:fa:6c:7c:a0:db:19:5f:96:45:2c:1d:ac:89:67: 60:36:c7:ea:be:ad:9f:83:00:ac:6d:77:d4:ed:24: ea:a5:9d:b9:e0:70:3d:0f:39:a5:85:38:14:42:b5: 28:81:e6:34:d3:2c:93:1a:de:d0:46:ab:8f:ca:3c: 9e:90:b1:5e:bc:86:a7:cd:12:89:a4:ce:06:56:b9: 57:01:42:8c:c5:12:47:97:38:83:fa:1f:52:5d:5e: 04:d9:01:f7:70:bd:a2:cb:52:34:0f:b4:40:9d:3b: c9:21:c1:3f:51:66:64:b3:05:21:ce:0b:1e:af:a6: c0:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:72:DF:9B:B2:25:A6:D1:88:1F:5E:C2:4C:2F:72:F2:11:5D:C6:74 X509v3 Authority Key Identifier: keyid:E3:D3:B4:78:82:73:CE:45:92:9B:09:98:3A:BF:64:B5:D4:4D:1F:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/49O0eIJzzkWSmwmYOr9ktdRNHwg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:b3:cd:1d:0b:25:9b:e6:a3:a1:80:40:39:d3:91:1f:b3:d3: 4a:ef:ae:98:40:f2:d3:30:96:b7:a1:4b:bb:db:26:6a:22:f1: a8:c7:cc:46:2e:a3:5a:04:6b:fb:31:e9:92:20:bd:7b:0d:9c: 0b:c6:84:80:80:09:43:56:29:69:73:9f:2e:67:57:0e:de:ac: b0:10:a9:45:23:97:8e:8f:eb:68:3a:2a:0f:5d:37:75:a2:35: 14:cc:9b:8c:b0:d7:f4:e1:00:5f:00:76:07:7b:65:07:4a:c3: 8a:eb:ed:8a:af:ac:d4:c6:26:90:83:f7:94:c7:ed:8e:31:aa: b0:c0:14:94:a2:8f:7f:e6:ec:7a:70:fd:9f:9f:de:94:84:43: 0d:22:8a:c5:94:6e:4e:72:f5:a0:15:be:49:98:e7:27:df:4c: 71:26:46:20:9b:79:bd:be:5b:c2:ee:aa:45:2f:46:19:76:5d: 3a:4e:f7:dc:30:6e:b6:74:c8:b4:c1:d8:71:f4:a0:5f:b3:6a: 6a:51:6a:0b:b5:e2:dd:37:f8:70:6d:28:6f:ff:4b:18:42:34: ef:b0:37:aa:50:6e:9c:c2:17:c0:58:2a:f1:04:9e:e6:f2:36: 94:d0:37:31:21:c8:35:2c:62:68:15:a7:c3:8d:6b:c4:87:5a: fe:00:aa:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY2MzQxMTAvBgNVBAUTKEUzRDNCNDc4ODI3M0NFNDU5MjlCMDk5ODNBQkY2NEI1 RDQ0RDFGMDgwHhcNMjQwNTA4MTgwNDM4WhcNMjQwNTE1MTgwNDM4WjAYMRYwFAYD VQQDEw02NjNiYmViNi02OGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwYqEvli9rtcxK+b4fn5Kq/0bi5A1/n1PM7mscjw+cK7aqr1w1Tg8fvhAbOA+ x4AkCWXN2SwrB2h3O3yr43XGQ8jmK5vMPkJOncxk0qVNiKucX/CUeWvVPIGnMqMr Tp72m/cUNAyfu/sfY5K13JmMhmCInKxAlYuc8UnI1e8YCGlGAWIBsvWC+mx8oNsZ X5ZFLB2siWdgNsfqvq2fgwCsbXfU7STqpZ254HA9DzmlhTgUQrUogeY00yyTGt7Q RquPyjyekLFevIanzRKJpM4GVrlXAUKMxRJHlziD+h9SXV4E2QH3cL2iy1I0D7RA nTvJIcE/UWZkswUhzgser6bAcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNdy35uy JabRiB9ewkwvcvIRXcZ0MB8GA1UdIwQYMBaAFOPTtHiCc85FkpsJmDq/ZLXUTR8I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjYzNC8xMzI3QTczRTE3 MjkxMUU5OEREMThFMjNDNEY5QUUwMi80OU8wZUlKenprV1Ntd21ZT3I5a3RkUk5I d2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ5TzBlSUp6emtXU213bVlPcjlrdGRSTkh3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjYzNC8xMzI3QTczRTE3MjkxMUU5OEREMThFMjNDNEY5QUUwMi80OU8wZUlKenpr V1Ntd21ZT3I5a3RkUk5Id2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2s80dCyWb5qOhgEA505Efs9NK766YQPLTMJa3oUu72yZqIvGox8xG LqNaBGv7MemSIL17DZwLxoSAgAlDVilpc58uZ1cO3qywEKlFI5eOj+toOioPXTd1 ojUUzJuMsNf04QBfAHYHe2UHSsOK6+2Kr6zUxiaQg/eUx+2OMaqwwBSUoo9/5ux6 cP2fn96UhEMNIorFlG5OcvWgFb5JmOcn30xxJkYgm3m9vlvC7qpFL0YZdl06Tvfc MG62dMi0wdhx9KBfs2pqUWoLteLdN/hwbShv/0sYQjTvsDeqUG6cwhfAWCrxBJ7m 8jaU0DcxIcg1LGJoFafDjWvEh1r+AKrA -----END CERTIFICATE-----Generated at Wed May 8 21:04:06 2024 by rpki-client on console-fra.rpki-client.org