$ rpki-client -vvf rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft File: mgZOprZttN4gyTzAQbhaFwbIBnI.mft (raw, json) Hash identifier: hj/DwcFm+2Sv3D38vHBYGfVwvkFN4cYzSKD4om+dm5o= Subject key identifier: 08:FE:B4:CE:FF:9E:F0:72:4C:64:6D:9E:A6:E4:2C:35:E8:4E:04:CC Authority key identifier: 9A:06:4E:A6:B6:6D:B4:DE:20:C9:3C:C0:41:B8:5A:17:06:C8:06:72 Certificate issuer: /CN=A913A5BD/serialNumber=9A064EA6B66DB4DE20C93CC041B85A1706C80672 Certificate serial: 0195 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft Manifest number: 0191 Signing time: Sun 19 May 2024 04:42:12 +0000 Manifest this update: Sun 19 May 2024 04:42:11 +0000 Manifest next update: Sun 26 May 2024 04:42:11 +0000 Files and hashes: 1: mgZOprZttN4gyTzAQbhaFwbIBnI.crl (hash: DcH7xHiUvP2gnjXs5/FCXK+mxbJ/4AzYaGJMNIiPc1I=) 2: C6B3DBFE1CF911EDBAE62F45C4F9AE02.roa (hash: KNUSUG9icP8Pvhz1F1p7tJVMNn5LFGkVNJkPaQqPTVA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.crl rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 405 (0x195) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A5BD/serialNumber=9A064EA6B66DB4DE20C93CC041B85A1706C80672 Validity Not Before: May 19 04:42:11 2024 GMT Not After : May 26 04:42:11 2024 GMT Subject: CN=66498323-df08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:29:71:29:14:a2:83:92:99:a6:6c:40:0c:f6: f1:e6:94:17:14:fd:63:9d:dd:bf:3d:f5:09:9a:27: 66:d5:17:82:6d:5f:46:df:55:b3:af:1e:88:1e:4c: f0:69:96:b0:16:01:e7:07:dc:d9:33:cf:92:66:ab: 12:70:db:32:ec:0a:32:b6:6f:1c:b7:4a:e4:8b:b6: 1a:77:70:9f:27:76:52:40:59:bf:b1:3b:8e:a2:09: eb:32:55:c7:cd:06:45:c0:3f:09:69:40:66:61:e7: 35:ee:31:f2:87:76:68:34:3b:30:b9:74:7e:6e:77: c3:4d:9e:3c:de:22:c5:a5:38:d0:9e:88:cb:9d:65: f2:0f:d2:d1:32:4c:66:66:ea:9d:ec:8d:39:da:a1: be:99:dd:90:09:27:8a:71:fc:5a:b5:c8:4d:16:87: a0:d5:ec:aa:34:47:d2:ff:74:72:6a:a4:da:e0:f6: 44:ce:7b:c3:c9:e0:0b:70:92:81:0b:b5:7f:f0:b8: eb:c3:7c:0f:2e:17:e8:d4:ff:c7:43:af:e1:5d:f4: 31:7a:88:08:65:84:b0:9d:c5:c0:40:3f:86:dc:30: 3e:c7:17:c6:35:02:fb:17:47:8e:86:ff:85:a2:2a: 2f:7f:eb:63:94:b0:cc:4d:d2:c8:4a:c8:92:e9:3f: 2c:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:FE:B4:CE:FF:9E:F0:72:4C:64:6D:9E:A6:E4:2C:35:E8:4E:04:CC X509v3 Authority Key Identifier: keyid:9A:06:4E:A6:B6:6D:B4:DE:20:C9:3C:C0:41:B8:5A:17:06:C8:06:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:ba:1c:d3:55:02:7c:24:f0:66:1a:c6:69:f8:fd:03:d2:d7: 2e:87:fe:21:4c:d7:b4:52:35:d7:ad:65:ce:76:9c:ea:50:2d: a8:2b:fd:32:f6:e3:d0:dd:a9:16:ea:97:4a:1d:e3:00:74:f2: 9d:6d:6e:25:f9:f3:48:b4:40:5c:ad:50:a7:ba:05:f9:b2:8e: c2:63:11:49:e6:9c:a1:a7:fe:4d:57:2f:f3:4c:f7:e1:08:75: 87:00:08:56:ed:6e:ba:61:1d:62:82:de:91:7b:9f:92:60:94: b9:10:52:55:78:2f:25:ec:f1:a0:04:ad:85:31:2e:1a:af:4a: 3a:91:c2:a5:9c:42:3a:db:8b:27:a4:27:57:c3:3e:ce:cc:5e: 09:91:83:a3:f5:14:49:8e:45:43:bd:d0:2e:78:f4:de:ac:11: 52:d9:d9:fb:30:d0:5f:29:9a:be:85:fb:bd:c1:46:c8:1c:5e: dc:be:d0:68:6b:ee:11:21:20:ff:d7:3c:b7:1f:ea:b1:fa:7d: 8b:0b:00:16:4c:94:45:e1:ff:b2:dc:14:51:ad:11:54:25:c3: ef:4a:84:88:c2:25:85:0c:92:10:2c:b3:dc:1f:25:72:12:95: c1:43:e2:8e:f7:59:36:f0:91:92:19:21:51:a8:6a:74:3d:ab: bd:d2:b0:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E1QkQxMTAvBgNVBAUTKDlBMDY0RUE2QjY2REI0REUyMEM5M0NDMDQxQjg1QTE3 MDZDODA2NzIwHhcNMjQwNTE5MDQ0MjExWhcNMjQwNTI2MDQ0MjExWjAYMRYwFAYD VQQDEw02NjQ5ODMyMy1kZjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ClxKRSig5KZpmxADPbx5pQXFP1jnd2/PfUJmidm1ReCbV9G31Wzrx6IHkzw aZawFgHnB9zZM8+SZqsScNsy7Aoytm8ct0rki7Yad3CfJ3ZSQFm/sTuOognrMlXH zQZFwD8JaUBmYec17jHyh3ZoNDswuXR+bnfDTZ483iLFpTjQnojLnWXyD9LRMkxm Zuqd7I052qG+md2QCSeKcfxatchNFoeg1eyqNEfS/3RyaqTa4PZEznvDyeALcJKB C7V/8Ljrw3wPLhfo1P/HQ6/hXfQxeogIZYSwncXAQD+G3DA+xxfGNQL7F0eOhv+F oiovf+tjlLDMTdLISsiS6T8sFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAj+tM7/ nvByTGRtnqbkLDXoTgTMMB8GA1UdIwQYMBaAFJoGTqa2bbTeIMk8wEG4WhcGyAZy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTVCRC81NEVFRjUxNDFD RjcxMUVEQTAwRkQzNDNDNEY5QUUwMi9tZ1pPcHJadHRONGd5VHpBUWJoYUZ3YklC bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21nWk9wclp0dE40Z3lUekFRYmhhRndiSUJuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTVCRC81NEVFRjUxNDFDRjcxMUVEQTAwRkQzNDNDNEY5QUUwMi9tZ1pPcHJadHRO NGd5VHpBUWJoYUZ3YklCbkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDMuhzTVQJ8JPBmGsZp+P0D0tcuh/4hTNe0UjXXrWXOdpzqUC2oK/0y 9uPQ3akW6pdKHeMAdPKdbW4l+fNItEBcrVCnugX5so7CYxFJ5pyhp/5NVy/zTPfh CHWHAAhW7W66YR1igt6Re5+SYJS5EFJVeC8l7PGgBK2FMS4ar0o6kcKlnEI624sn pCdXwz7OzF4JkYOj9RRJjkVDvdAuePTerBFS2dn7MNBfKZq+hfu9wUbIHF7cvtBo a+4RISD/1zy3H+qx+n2LCwAWTJRF4f+y3BRRrRFUJcPvSoSIwiWFDJIQLLPcHyVy EpXBQ+KO91k28JGSGSFRqGp0Pau90rA8 -----END CERTIFICATE-----Generated at Sun May 19 05:48:50 2024 by rpki-client on console-fra.rpki-client.org