$ rpki-client -vvf rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft File: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft (raw, json) Hash identifier: /kvFwpxI/LziEjTWsFDw56sNaUaSCVMVxKl2e1SO0+o= Subject key identifier: E6:B6:C6:52:DE:ED:BC:23:05:60:EA:4E:56:65:CF:51:07:54:70:80 Authority key identifier: EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 Certificate issuer: /CN=A91525A9/serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft Manifest number: E8 Signing time: Sun 19 May 2024 05:50:49 +0000 Manifest this update: Sun 19 May 2024 05:50:48 +0000 Manifest next update: Sun 26 May 2024 05:50:48 +0000 Files and hashes: 1: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl (hash: t+QAtY9Xs6Ay7+eRc9r/0kJ3M1fzvldlZpdlJwkWUHI=) 2: D9E8CA9EB14711EDA5FF9C18C4F9AE02.roa (hash: absC+mdF2fjhVbmM8K4PV/l6PndTGDZNLXnyQdhxxX0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91525A9/serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Validity Not Before: May 19 05:50:48 2024 GMT Not After : May 26 05:50:48 2024 GMT Subject: CN=66499338-ac66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c1:46:57:16:f8:2c:d8:6e:32:a0:88:a8:3d: 0a:4d:d3:87:a4:00:57:5b:44:af:a6:62:58:ce:c9: 38:fa:be:8f:07:96:79:4b:86:83:44:53:bc:dc:63: 77:0f:68:32:5d:d4:df:ef:b0:7e:1d:80:2c:15:5b: e4:9d:93:9f:1e:e3:06:d1:df:35:58:dc:38:8c:c3: bb:f4:fc:89:5e:a5:bc:5a:d6:3e:09:15:ff:36:2b: 62:26:b8:5b:35:75:51:cc:d1:97:39:f4:dd:05:96: 27:b6:6d:e4:21:27:4d:d5:d6:16:dd:40:8d:41:06: a6:30:87:32:21:be:0c:cc:85:3b:af:17:99:62:9b: bc:93:56:fb:94:56:ab:70:f5:76:c8:be:38:9c:f6: 9c:41:3b:a7:db:45:3e:8e:38:d4:c0:50:26:85:7e: 4d:36:d7:b8:a8:77:cb:f6:46:57:6e:97:f1:2b:78: 71:fd:c9:89:5c:16:7d:ee:f8:fc:fc:bd:79:99:aa: fe:97:fd:93:b3:c8:08:a6:50:df:e9:26:7f:6f:25: 53:7d:5c:6f:e5:b8:2e:c4:38:ce:3a:fd:ab:7c:73: 4f:44:9c:34:83:4a:07:d4:6a:4b:9b:6b:8f:76:dd: 18:1c:a5:b6:2d:de:4f:ad:94:f6:58:06:20:58:02: c9:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:B6:C6:52:DE:ED:BC:23:05:60:EA:4E:56:65:CF:51:07:54:70:80 X509v3 Authority Key Identifier: keyid:EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:71:27:64:c4:13:a5:28:2a:c5:f1:e4:77:73:3f:02:e2:93: 76:0c:f3:b1:0e:be:bf:94:7e:27:c6:31:8b:0d:35:1b:9c:6e: 3c:9d:2d:7c:b2:1b:20:82:af:12:4d:68:4e:81:d2:00:0c:62: 29:25:91:90:6f:03:9e:60:7f:0f:6f:30:b6:e7:1c:dc:b0:24: 4d:bc:24:4f:af:24:a4:01:68:e3:39:30:b7:fe:8f:53:f5:2b: 38:09:ac:41:7d:2e:a3:1f:5e:75:43:bb:9e:70:30:30:c8:73: 69:7b:4b:5c:e7:94:6e:c0:80:06:1b:32:a2:05:84:83:1e:a3: 51:b6:ee:aa:f2:f6:a9:dc:36:ad:19:7c:74:48:25:10:9e:82: fc:9c:71:a8:92:5f:3e:d3:32:c7:92:70:3b:25:5c:bb:7b:b6: c5:77:19:4c:c9:cd:ba:c8:ed:ab:3e:4e:43:e9:63:f8:e3:28: 32:7a:00:6d:c0:5c:66:7a:fe:d7:da:de:78:a3:46:91:34:15: 5d:e2:e9:8a:cd:3b:83:19:dc:9f:0b:84:af:29:53:36:93:99: 7f:2a:b8:29:22:38:5d:d3:06:ee:19:3d:54:a2:d7:c0:16:5d: 6c:12:63:32:8b:b7:a5:65:8f:d0:d5:e6:5e:39:d2:22:03:01: a4:43:57:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI1QTkxMTAvBgNVBAUTKEVCQzNEN0ZDRkIxMzRGNTM4RkMxOUY5OEFEODk4QzBG M0YwNzRGMjAwHhcNMjQwNTE5MDU1MDQ4WhcNMjQwNTI2MDU1MDQ4WjAYMRYwFAYD VQQDEw02NjQ5OTMzOC1hYzY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxMFGVxb4LNhuMqCIqD0KTdOHpABXW0SvpmJYzsk4+r6PB5Z5S4aDRFO83GN3 D2gyXdTf77B+HYAsFVvknZOfHuMG0d81WNw4jMO79PyJXqW8WtY+CRX/NitiJrhb NXVRzNGXOfTdBZYntm3kISdN1dYW3UCNQQamMIcyIb4MzIU7rxeZYpu8k1b7lFar cPV2yL44nPacQTun20U+jjjUwFAmhX5NNte4qHfL9kZXbpfxK3hx/cmJXBZ97vj8 /L15mar+l/2Ts8gIplDf6SZ/byVTfVxv5bguxDjOOv2rfHNPRJw0g0oH1GpLm2uP dt0YHKW2Ld5PrZT2WAYgWALJ/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOa2xlLe 7bwjBWDqTlZlz1EHVHCAMB8GA1UdIwQYMBaAFOvD1/z7E09Tj8GfmK2JjA8/B08g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjVBOS8yNjE4ODQwRUIx NDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQxT1B3Wi1ZclltTUR6OEhU eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY4UFhfUHNUVDFPUHdaLVlyWW1NRHo4SFR5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjVBOS8yNjE4ODQwRUIxNDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQx T1B3Wi1ZclltTUR6OEhUeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6cSdkxBOlKCrF8eR3cz8C4pN2DPOxDr6/lH4nxjGLDTUbnG48nS18 shsggq8STWhOgdIADGIpJZGQbwOeYH8PbzC25xzcsCRNvCRPrySkAWjjOTC3/o9T 9Ss4CaxBfS6jH151Q7uecDAwyHNpe0tc55RuwIAGGzKiBYSDHqNRtu6q8vap3Dat GXx0SCUQnoL8nHGokl8+0zLHknA7JVy7e7bFdxlMyc26yO2rPk5D6WP44ygyegBt wFxmev7X2t54o0aRNBVd4umKzTuDGdyfC4SvKVM2k5l/KrgpIjhd0wbuGT1UotfA Fl1sEmMyi7elZY/Q1eZeOdIiAwGkQ1ei -----END CERTIFICATE-----Generated at Sun May 19 07:40:39 2024 by rpki-client on console-fra.rpki-client.org