$ rpki-client -vvf rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/vNgnSl8YLOQAgCwIPo0VQi-bthE.mft File: vNgnSl8YLOQAgCwIPo0VQi-bthE.mft (raw, json) Hash identifier: ymiiURn5z9c+lbnGARUdHCyNFs3lKCQ+UPtZsRNHRmc= Subject key identifier: C5:55:E3:50:61:E1:89:CE:B1:3C:EB:AE:AC:15:3E:3E:8A:19:9C:82 Authority key identifier: BC:D8:27:4A:5F:18:2C:E4:00:80:2C:08:3E:8D:15:42:2F:9B:B6:11 Certificate issuer: /CN=A91554E6/serialNumber=BCD8274A5F182CE400802C083E8D15422F9BB611 Certificate serial: 0211 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNgnSl8YLOQAgCwIPo0VQi-bthE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/vNgnSl8YLOQAgCwIPo0VQi-bthE.mft Manifest number: 027C Signing time: Sun 19 May 2024 04:08:32 +0000 Manifest this update: Sun 19 May 2024 04:08:31 +0000 Manifest next update: Sun 26 May 2024 04:08:31 +0000 Files and hashes: 1: vNgnSl8YLOQAgCwIPo0VQi-bthE.crl (hash: YJOkrFdkupvywbOdZc0diqShuL80rNgCASkyh9l6ggQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/vNgnSl8YLOQAgCwIPo0VQi-bthE.crl rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/vNgnSl8YLOQAgCwIPo0VQi-bthE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNgnSl8YLOQAgCwIPo0VQi-bthE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 529 (0x211) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91554E6/serialNumber=BCD8274A5F182CE400802C083E8D15422F9BB611 Validity Not Before: May 19 04:08:31 2024 GMT Not After : May 26 04:08:31 2024 GMT Subject: CN=66497b40-4238 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0b:88:c2:16:a6:94:1f:a6:b4:cd:75:95:2d: b6:9d:74:0a:de:fd:12:c1:89:68:76:3e:17:44:14: 0c:a7:31:dc:2a:ea:1b:83:c0:d1:8d:de:c2:d6:70: 04:b1:e0:51:6b:40:55:11:ba:a4:3a:f3:e2:48:14: ec:2a:54:99:d5:60:c5:07:0e:7e:12:25:45:f3:63: 82:af:d8:b1:4f:20:cd:11:dc:62:ee:21:0a:53:4e: 3a:1f:1d:43:cd:30:1f:49:c0:52:8d:30:df:43:4b: 4a:8f:44:25:52:16:9a:f0:b9:09:d4:bf:84:67:13: d6:56:e0:49:67:c8:76:83:45:d6:75:42:bf:b6:19: 7d:25:93:4e:0c:bf:83:ea:4e:f2:08:76:1c:b9:f8: f8:91:c2:7e:af:16:28:42:ed:1d:13:98:84:ba:ff: 8b:68:f7:f8:07:72:b0:ba:57:04:81:b3:ee:a1:50: 84:aa:c0:b3:6b:e3:a6:09:85:fd:53:b1:03:69:6a: 0a:97:16:38:05:56:c8:c1:06:38:82:74:a4:e1:40: 9a:d8:ed:05:71:ea:7d:32:9c:38:0b:13:b9:69:12: 9a:67:37:9f:a3:b2:8e:c0:b1:ff:b8:e0:01:70:82: 87:e8:de:8e:45:17:15:40:c3:95:67:c6:b1:42:f7: 68:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:55:E3:50:61:E1:89:CE:B1:3C:EB:AE:AC:15:3E:3E:8A:19:9C:82 X509v3 Authority Key Identifier: keyid:BC:D8:27:4A:5F:18:2C:E4:00:80:2C:08:3E:8D:15:42:2F:9B:B6:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/vNgnSl8YLOQAgCwIPo0VQi-bthE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNgnSl8YLOQAgCwIPo0VQi-bthE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/vNgnSl8YLOQAgCwIPo0VQi-bthE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:80:d9:e3:b8:86:01:91:5f:a9:2c:71:a5:44:57:e0:bd:16: 91:f7:60:81:1a:91:9f:33:2f:38:af:0f:6f:78:52:bf:d0:73: 11:f9:99:37:63:a0:9e:3e:e9:25:d8:a7:f9:5a:14:da:bb:a1: 63:1f:ea:98:cb:be:4c:c5:41:72:dc:62:75:1d:0d:14:29:c0: 36:a2:d3:77:10:00:19:83:0f:5f:17:59:ed:23:af:77:25:b3: 39:d6:1d:31:5f:bd:52:39:e9:63:ae:d8:4b:35:6d:79:3a:af: 89:15:5f:ff:95:39:2b:e1:49:22:59:82:29:cd:a4:52:86:4d: 87:10:da:61:2d:4b:a4:e2:bb:12:de:ec:12:cd:db:04:76:2f: b8:ae:3d:70:92:b1:fa:fb:54:79:1d:09:0c:de:20:1a:76:ba: f3:c7:8e:5d:60:f4:32:a6:87:47:c6:15:0c:f1:26:83:00:54: 73:f5:05:74:1b:77:55:09:2d:a8:c9:18:e4:0f:ab:e5:62:db: 68:6a:4c:15:25:b2:0a:2e:0d:0f:bf:b5:36:2b:1d:aa:a5:93: 31:9d:b1:0c:67:0b:44:57:40:bd:cc:b8:2c:04:d0:16:7b:51: 61:4a:8a:00:5c:23:1c:64:d8:fc:55:b1:c9:3b:ab:8d:17:15: 8d:92:02:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU0RTYxMTAvBgNVBAUTKEJDRDgyNzRBNUYxODJDRTQwMDgwMkMwODNFOEQxNTQy MkY5QkI2MTEwHhcNMjQwNTE5MDQwODMxWhcNMjQwNTI2MDQwODMxWjAYMRYwFAYD VQQDEw02NjQ5N2I0MC00MjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwQuIwhamlB+mtM11lS22nXQK3v0SwYlodj4XRBQMpzHcKuobg8DRjd7C1nAE seBRa0BVEbqkOvPiSBTsKlSZ1WDFBw5+EiVF82OCr9ixTyDNEdxi7iEKU046Hx1D zTAfScBSjTDfQ0tKj0QlUhaa8LkJ1L+EZxPWVuBJZ8h2g0XWdUK/thl9JZNODL+D 6k7yCHYcufj4kcJ+rxYoQu0dE5iEuv+LaPf4B3KwulcEgbPuoVCEqsCza+OmCYX9 U7EDaWoKlxY4BVbIwQY4gnSk4UCa2O0Fcep9Mpw4CxO5aRKaZzefo7KOwLH/uOAB cIKH6N6ORRcVQMOVZ8axQvdofwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMVV41Bh 4YnOsTzrrqwVPj6KGZyCMB8GA1UdIwQYMBaAFLzYJ0pfGCzkAIAsCD6NFUIvm7YR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTRFNi85RjA2Nzc0OEVE NEIxMUVDQUI4RkFBNzdDNEY5QUUwMi92TmduU2w4WUxPUUFnQ3dJUG8wVlFpLWJ0 aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZOZ25TbDhZTE9RQWdDd0lQbzBWUWktYnRoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTRFNi85RjA2Nzc0OEVENEIxMUVDQUI4RkFBNzdDNEY5QUUwMi92TmduU2w4WUxP UUFnQ3dJUG8wVlFpLWJ0aEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBgNnjuIYBkV+pLHGlRFfgvRaR92CBGpGfMy84rw9veFK/0HMR+Zk3 Y6CePukl2Kf5WhTau6FjH+qYy75MxUFy3GJ1HQ0UKcA2otN3EAAZgw9fF1ntI693 JbM51h0xX71SOeljrthLNW15Oq+JFV//lTkr4UkiWYIpzaRShk2HENphLUuk4rsS 3uwSzdsEdi+4rj1wkrH6+1R5HQkM3iAadrrzx45dYPQypodHxhUM8SaDAFRz9QV0 G3dVCS2oyRjkD6vlYttoakwVJbIKLg0Pv7U2Kx2qpZMxnbEMZwtEV0C9zLgsBNAW e1FhSooAXCMcZNj8VbHJO6uNFxWNkgJL -----END CERTIFICATE-----Generated at Sun May 19 04:56:55 2024 by rpki-client on console-fra.rpki-client.org