$ rpki-client -vvf rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft File: cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft (raw, json) Hash identifier: 88BTgtlxJbByZwmPddF8qs+nmxymqnG9yzzBiMduONk= Subject key identifier: CA:B7:BF:16:FA:E6:81:09:3F:9F:76:20:12:4D:0C:D5:10:AF:9E:9E Authority key identifier: 71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0 Certificate issuer: /CN=A91238D6/serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0 Certificate serial: 21AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft Manifest number: 217C Signing time: Fri 31 May 2024 16:23:52 +0000 Manifest this update: Fri 31 May 2024 16:23:52 +0000 Manifest next update: Fri 07 Jun 2024 16:23:52 +0000 Files and hashes: 1: cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl (hash: b7S76+pDJB7X4yMfiGxamO4798AE7QbBLL1jJc18stk=) 2: BB62FBD82AEC11EA972CB627C4F9AE02.roa (hash: LsnjeTUuxOLKtM5budZzebjO2SOXU+50cZfWesTYy6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:23:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8620 (0x21ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91238D6/serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0 Validity Not Before: May 31 16:23:52 2024 GMT Not After : Jun 7 16:23:52 2024 GMT Subject: CN=6659f998-ffa2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:bd:f8:cb:0f:f7:e6:ed:a2:17:ef:90:ad:b7: e0:8a:af:dc:e7:8b:8e:98:50:8a:31:4b:ac:cc:c9: 21:b2:2b:f8:95:c2:1d:77:26:ea:20:98:ca:e0:2d: 6c:0f:73:6f:f9:84:4c:5f:f1:1d:e0:7e:d7:d5:7d: dd:6d:a1:4d:d3:a9:1f:16:78:fb:c5:7b:de:4d:fe: 35:09:c6:e1:b7:a9:51:dd:03:28:ea:c7:8f:e4:c4: 73:58:52:33:92:64:1f:83:cb:74:af:4d:cd:55:39: 20:c1:d9:2a:12:ab:00:97:ea:20:20:7e:94:4d:02: 50:59:a3:ec:e4:b4:ac:4c:0b:15:62:50:3b:0d:7d: 53:5a:06:25:6d:5c:d6:4d:26:b1:92:6f:b5:06:9a: c7:96:fc:d1:a1:cb:78:f1:ea:94:19:f9:0e:8e:a9: 64:9c:24:9c:66:3e:0b:b3:f6:77:88:3a:b7:3c:ee: d2:b6:0f:04:72:ab:08:98:fa:b1:d9:f2:94:5c:e3: eb:44:26:f3:78:d4:8c:1d:ca:3f:44:0b:f4:db:57: 24:60:c9:40:cd:b0:71:1c:57:99:02:58:48:16:b8: ff:b9:57:23:26:d1:f5:be:07:1b:6e:6e:d8:ff:e2: 06:7e:dd:83:b8:e4:0d:14:8f:81:ff:8d:d4:27:9a: 7d:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:B7:BF:16:FA:E6:81:09:3F:9F:76:20:12:4D:0C:D5:10:AF:9E:9E X509v3 Authority Key Identifier: keyid:71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:3c:bb:91:ab:e9:25:4a:af:a3:4b:99:a1:82:57:46:d7:b2: 78:01:52:aa:21:d2:ed:9b:43:7d:40:a6:83:5f:1f:5c:e5:9d: a1:7d:a1:3c:93:0e:05:97:17:af:80:dd:b8:ba:3a:13:9b:36: 3c:ec:0b:6c:3a:61:c7:c8:48:b4:c6:56:b1:0d:8e:61:97:64: 41:89:89:af:2c:3b:b5:41:68:33:6c:d2:02:64:ff:88:1b:bf: e8:e6:0b:6d:5a:d9:7f:ca:cb:64:d6:db:cf:b7:aa:33:54:b0: 49:9f:90:84:72:3c:96:ae:6e:af:49:d5:f7:da:f3:f6:45:b2: 74:94:2a:11:ae:73:b1:74:4c:6e:eb:64:f5:3b:75:f4:5d:bc: 83:c6:ee:e8:f5:d0:de:81:44:ba:6c:ea:8e:ca:56:16:ad:61: a2:85:5a:4b:01:ef:8f:63:83:85:a3:bd:15:a5:44:00:c2:6d: e1:00:94:77:06:81:a8:d6:19:a2:4f:f6:a0:17:c8:e1:9d:e7: fd:03:0d:91:51:92:48:4e:cc:bb:f7:dc:8d:ba:1b:11:de:f1: 4a:cc:2c:13:94:98:02:d9:be:31:53:fb:7a:d8:bc:cf:ae:bf: 2f:4b:e4:c8:e2:de:72:7d:f3:ad:63:9f:fc:c3:71:ff:b4:f2: 4c:e2:16:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4RDYxMTAvBgNVBAUTKDcxNEJBMjhERDgzNUE3RDQxOTcwMUZBRDM3MkEzNEI3 QzY2Q0ZBQTAwHhcNMjQwNTMxMTYyMzUyWhcNMjQwNjA3MTYyMzUyWjAYMRYwFAYD VQQDEw02NjU5Zjk5OC1mZmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwb34yw/35u2iF++Qrbfgiq/c54uOmFCKMUuszMkhsiv4lcIddybqIJjK4C1s D3Nv+YRMX/Ed4H7X1X3dbaFN06kfFnj7xXveTf41Ccbht6lR3QMo6seP5MRzWFIz kmQfg8t0r03NVTkgwdkqEqsAl+ogIH6UTQJQWaPs5LSsTAsVYlA7DX1TWgYlbVzW TSaxkm+1BprHlvzRoct48eqUGfkOjqlknCScZj4Ls/Z3iDq3PO7Stg8EcqsImPqx 2fKUXOPrRCbzeNSMHco/RAv021ckYMlAzbBxHFeZAlhIFrj/uVcjJtH1vgcbbm7Y /+IGft2DuOQNFI+B/43UJ5p9/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMq3vxb6 5oEJP592IBJNDNUQr56eMB8GA1UdIwQYMBaAFHFLoo3YNafUGXAfrTcqNLfGbPqg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzhENi8yODk5MDUzMEJF NTQxMUU1OERDQzQzNTdDNEY5QUUwMi9jVXVpamRnMXA5UVpjQi10TnlvMHQ4WnMt cUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NVdWlqZGcxcDlRWmNCLXROeW8wdDhacy1xQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzhENi8yODk5MDUzMEJFNTQxMUU1OERDQzQzNTdDNEY5QUUwMi9jVXVpamRnMXA5 UVpjQi10TnlvMHQ4WnMtcUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDIPLuRq+klSq+jS5mhgldG17J4AVKqIdLtm0N9QKaDXx9c5Z2hfaE8 kw4FlxevgN24ujoTmzY87AtsOmHHyEi0xlaxDY5hl2RBiYmvLDu1QWgzbNICZP+I G7/o5gttWtl/ystk1tvPt6ozVLBJn5CEcjyWrm6vSdX32vP2RbJ0lCoRrnOxdExu 62T1O3X0XbyDxu7o9dDegUS6bOqOylYWrWGihVpLAe+PY4OFo70VpUQAwm3hAJR3 BoGo1hmiT/agF8jhnef9Aw2RUZJITsy799yNuhsR3vFKzCwTlJgC2b4xU/t62LzP rr8vS+TI4t5yffOtY5/8w3H/tPJM4hY5 -----END CERTIFICATE-----Generated at Fri May 31 17:44:22 2024 by rpki-client on console-fra.rpki-client.org