$ rpki-client -vvf rpki.apnic.net/member_repository/A91316E5/51F9835C46D011EE81F2073FC4F9AE02/c5h-zOd-ROs2ZR4JjTN1D6hk5nY.mft File: c5h-zOd-ROs2ZR4JjTN1D6hk5nY.mft (raw, json) Hash identifier: NwYao4FEoac+4J8xeqSXEF+4DudbF6s1wHNgpvB7nrg= Subject key identifier: 76:53:53:66:8A:46:1E:E4:F6:11:12:5E:D6:9D:AF:D8:D2:72:7D:EA Authority key identifier: 73:98:7E:CC:E7:7E:44:EB:36:65:1E:09:8D:33:75:0F:A8:64:E6:76 Certificate issuer: /CN=A91316E5/serialNumber=73987ECCE77E44EB36651E098D33750FA864E676 Certificate serial: 8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5h-zOd-ROs2ZR4JjTN1D6hk5nY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91316E5/51F9835C46D011EE81F2073FC4F9AE02/c5h-zOd-ROs2ZR4JjTN1D6hk5nY.mft Manifest number: 89 Signing time: Sun 19 May 2024 07:05:09 +0000 Manifest this update: Sun 19 May 2024 07:05:09 +0000 Manifest next update: Sun 26 May 2024 07:05:09 +0000 Files and hashes: 1: c5h-zOd-ROs2ZR4JjTN1D6hk5nY.crl (hash: KFY+hpmp29G0epxJynWWmCguZK1M6EfQFcoVzWDrAQU=) 2: C1A8182646D011EE8BE5AE80C4F9AE02.roa (hash: KeggYVwnlwgqRHF3L8K4e5669HAwGpPRs/sC4sVbBpY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91316E5/51F9835C46D011EE81F2073FC4F9AE02/c5h-zOd-ROs2ZR4JjTN1D6hk5nY.crl rsync://rpki.apnic.net/member_repository/A91316E5/51F9835C46D011EE81F2073FC4F9AE02/c5h-zOd-ROs2ZR4JjTN1D6hk5nY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5h-zOd-ROs2ZR4JjTN1D6hk5nY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91316E5/serialNumber=73987ECCE77E44EB36651E098D33750FA864E676 Validity Not Before: May 19 07:05:09 2024 GMT Not After : May 26 07:05:09 2024 GMT Subject: CN=6649a4a5-ef63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:36:1f:8f:15:00:40:b3:01:e4:de:ad:9d:3d: d5:6a:85:32:ea:31:da:73:60:dc:0d:cb:bc:f5:e1: 13:3a:10:48:94:3c:2d:87:d1:86:24:57:49:99:36: ed:8f:14:6b:55:4e:ce:a2:d9:a2:f1:dd:79:82:9c: 43:d2:81:78:25:8b:92:6a:14:3e:cd:df:8b:e5:6d: 7f:ad:e7:bc:cb:5e:55:35:12:8f:e1:62:ff:07:c0: b2:3a:cb:8b:cc:dd:07:77:8b:07:17:2a:a2:f8:ae: d8:60:ad:ad:79:07:5b:91:95:4a:47:1e:b1:d0:cb: 6c:f0:ea:33:37:39:70:97:ae:f6:f5:7f:ba:96:5c: 92:1c:b6:01:0b:2e:3d:40:bd:81:78:c5:d9:3d:f6: 81:40:e3:66:5a:46:a5:c4:93:a9:c4:bd:54:86:87: 3d:e0:95:f1:32:e0:78:ab:bd:f8:0c:57:36:15:e2: 82:10:dd:0d:d2:ad:a1:37:21:0b:9a:d6:92:a6:02: f1:51:5c:3b:7e:5a:79:13:6d:40:08:d4:1f:61:a0: 53:c5:fd:34:8a:08:6d:c5:be:23:7a:c2:18:b2:1c: 27:39:e2:3e:d8:10:c9:c6:94:0e:1b:8b:4f:c3:97: 83:05:b3:1a:28:e5:47:cb:65:53:4a:76:c9:6c:e3: ff:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:53:53:66:8A:46:1E:E4:F6:11:12:5E:D6:9D:AF:D8:D2:72:7D:EA X509v3 Authority Key Identifier: keyid:73:98:7E:CC:E7:7E:44:EB:36:65:1E:09:8D:33:75:0F:A8:64:E6:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91316E5/51F9835C46D011EE81F2073FC4F9AE02/c5h-zOd-ROs2ZR4JjTN1D6hk5nY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5h-zOd-ROs2ZR4JjTN1D6hk5nY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91316E5/51F9835C46D011EE81F2073FC4F9AE02/c5h-zOd-ROs2ZR4JjTN1D6hk5nY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:a0:87:17:49:f0:ee:5f:7e:59:0b:9f:5e:8b:76:a7:e5:c3: 79:c3:71:77:5b:53:18:15:b9:28:e4:06:d8:e0:47:e2:b8:e4: 65:3a:75:80:50:df:81:79:18:d8:0e:96:c2:25:f9:e6:38:e3: 16:00:98:22:8b:ae:d9:0e:22:10:49:1f:f6:5b:0f:ae:56:c4: 8d:68:c2:51:1c:93:7d:e3:e5:a4:0e:4d:57:47:29:de:18:4e: a3:2a:a4:94:de:15:ce:a7:15:a6:8b:14:7c:8e:52:e9:d6:c4: a7:31:f0:4e:f8:72:51:5b:28:47:1c:a6:42:72:7b:2c:99:a1: 5d:0f:2f:66:98:80:ed:45:ba:9b:eb:38:e2:51:0f:ed:39:76: ba:30:61:f2:c1:fe:19:30:ee:2c:3a:3f:68:29:2e:05:a4:b6: 9e:39:26:e8:9e:3c:2c:ca:91:e9:71:44:13:ec:47:e4:22:fd: ab:d3:33:19:43:37:a0:e5:05:6c:f1:f9:62:cf:df:c1:8d:4e: f4:82:09:bd:b3:55:9c:0c:32:4e:01:e4:7b:8c:1f:c5:49:34: c1:f6:c8:96:7d:c2:dc:5f:ff:8c:45:0a:ed:10:65:90:3c:ef: c6:1d:bd:47:e0:8b:2d:ae:13:5a:b8:ae:b9:44:cd:2f:a1:43: 38:39:d9:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE2RTUxMTAvBgNVBAUTKDczOTg3RUNDRTc3RTQ0RUIzNjY1MUUwOThEMzM3NTBG QTg2NEU2NzYwHhcNMjQwNTE5MDcwNTA5WhcNMjQwNTI2MDcwNTA5WjAYMRYwFAYD VQQDEw02NjQ5YTRhNS1lZjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzYfjxUAQLMB5N6tnT3VaoUy6jHac2DcDcu89eETOhBIlDwth9GGJFdJmTbt jxRrVU7Ootmi8d15gpxD0oF4JYuSahQ+zd+L5W1/ree8y15VNRKP4WL/B8CyOsuL zN0Hd4sHFyqi+K7YYK2teQdbkZVKRx6x0Mts8OozNzlwl6729X+6llySHLYBCy49 QL2BeMXZPfaBQONmWkalxJOpxL1Uhoc94JXxMuB4q734DFc2FeKCEN0N0q2hNyEL mtaSpgLxUVw7flp5E21ACNQfYaBTxf00ightxb4jesIYshwnOeI+2BDJxpQOG4tP w5eDBbMaKOVHy2VTSnbJbOP/qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHZTU2aK Rh7k9hESXtadr9jScn3qMB8GA1UdIwQYMBaAFHOYfsznfkTrNmUeCY0zdQ+oZOZ2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTZFNS81MUY5ODM1QzQ2 RDAxMUVFODFGMjA3M0ZDNEY5QUUwMi9jNWgtek9kLVJPczJaUjRKalROMUQ2aGs1 blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2M1aC16T2QtUk9zMlpSNEpqVE4xRDZoazVuWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTZFNS81MUY5ODM1QzQ2RDAxMUVFODFGMjA3M0ZDNEY5QUUwMi9jNWgtek9kLVJP czJaUjRKalROMUQ2aGs1blkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKoIcXSfDuX35ZC59ei3an5cN5w3F3W1MYFbko5AbY4EfiuORlOnWA UN+BeRjYDpbCJfnmOOMWAJgii67ZDiIQSR/2Ww+uVsSNaMJRHJN94+WkDk1XRyne GE6jKqSU3hXOpxWmixR8jlLp1sSnMfBO+HJRWyhHHKZCcnssmaFdDy9mmIDtRbqb 6zjiUQ/tOXa6MGHywf4ZMO4sOj9oKS4FpLaeOSbonjwsypHpcUQT7EfkIv2r0zMZ Qzeg5QVs8fliz9/BjU70ggm9s1WcDDJOAeR7jB/FSTTB9siWfcLcX/+MRQrtEGWQ PO/GHb1H4IstrhNauK65RM0voUM4Odkf -----END CERTIFICATE-----Generated at Sun May 19 07:40:38 2024 by rpki-client on console-fra.rpki-client.org