$ rpki-client -vvf rpki.apnic.net/member_repository/A91757CB/4ED212DCF2F811EEA3506738C4F9AE02/FzXLqe4W_oXz0oP6W7lHnZryzIY.mft File: FzXLqe4W_oXz0oP6W7lHnZryzIY.mft (raw, json) Hash identifier: dYBRTfdX+PiOy5fhU9Hj9RVK8KIxOAvmPabca9LVJH4= Subject key identifier: CB:D8:B4:C4:FA:9A:E8:0C:7B:78:22:81:DF:2E:F2:11:09:1D:89:96 Authority key identifier: 17:35:CB:A9:EE:16:FE:85:F3:D2:83:FA:5B:B9:47:9D:9A:F2:CC:86 Certificate issuer: /CN=A91757CB/serialNumber=1735CBA9EE16FE85F3D283FA5BB9479D9AF2CC86 Certificate serial: 16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FzXLqe4W_oXz0oP6W7lHnZryzIY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91757CB/4ED212DCF2F811EEA3506738C4F9AE02/FzXLqe4W_oXz0oP6W7lHnZryzIY.mft Manifest number: 16 Signing time: Sun 19 May 2024 08:43:57 +0000 Manifest this update: Sun 19 May 2024 08:43:56 +0000 Manifest next update: Sun 26 May 2024 08:43:56 +0000 Files and hashes: 1: FzXLqe4W_oXz0oP6W7lHnZryzIY.crl (hash: e51UBK0pgJJqarXWgDzOQulZTBajhAipiEnkgSYNOrY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91757CB/4ED212DCF2F811EEA3506738C4F9AE02/FzXLqe4W_oXz0oP6W7lHnZryzIY.crl rsync://rpki.apnic.net/member_repository/A91757CB/4ED212DCF2F811EEA3506738C4F9AE02/FzXLqe4W_oXz0oP6W7lHnZryzIY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FzXLqe4W_oXz0oP6W7lHnZryzIY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91757CB/serialNumber=1735CBA9EE16FE85F3D283FA5BB9479D9AF2CC86 Validity Not Before: May 19 08:43:56 2024 GMT Not After : May 26 08:43:56 2024 GMT Subject: CN=6649bbcd-8d48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:44:9e:5d:d6:16:12:86:36:ef:f8:1e:0a:a3: 16:8d:59:d0:7e:df:94:03:68:fa:53:c8:c6:16:41: 41:8c:f8:68:14:91:1d:86:24:73:71:d3:24:4a:f3: 83:c4:e9:24:1d:4b:d1:0f:b3:6a:7c:8c:b1:f3:ee: 82:d0:16:51:07:50:54:cc:03:d6:6b:a8:bc:62:0e: 88:09:ef:11:db:78:2b:5e:e4:37:ce:93:cb:87:85: 0a:5a:3a:0d:02:2f:b4:31:6a:59:bc:23:c5:8b:8b: 02:1b:ae:67:83:1f:b8:0a:e4:78:b8:b6:91:85:2b: 2d:44:72:a9:bd:89:ad:c7:1a:e4:c4:39:d4:db:5f: 67:90:41:90:53:14:38:d6:86:23:35:8b:57:21:12: 60:69:48:93:70:9f:98:05:b0:cd:be:db:7e:3a:5f: cc:3a:fc:4f:ae:88:25:e1:fc:09:9f:eb:a8:15:be: 1d:d6:58:58:08:9c:0f:7f:33:1d:ce:7d:4c:8e:78: ae:91:ac:1c:5b:d6:be:c2:da:b6:d7:b3:6c:d2:a7: bd:8b:98:c1:6f:5a:6b:16:54:32:34:8f:f2:12:96: 07:7c:aa:08:6e:d5:4f:65:2c:1b:1c:77:ef:1d:a7: 6a:04:cc:a5:c2:ff:d8:1e:5a:13:3f:95:12:fd:75: e0:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:D8:B4:C4:FA:9A:E8:0C:7B:78:22:81:DF:2E:F2:11:09:1D:89:96 X509v3 Authority Key Identifier: keyid:17:35:CB:A9:EE:16:FE:85:F3:D2:83:FA:5B:B9:47:9D:9A:F2:CC:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91757CB/4ED212DCF2F811EEA3506738C4F9AE02/FzXLqe4W_oXz0oP6W7lHnZryzIY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FzXLqe4W_oXz0oP6W7lHnZryzIY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91757CB/4ED212DCF2F811EEA3506738C4F9AE02/FzXLqe4W_oXz0oP6W7lHnZryzIY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:d1:e5:7e:16:e8:31:28:3b:a0:e1:0c:05:57:b6:f5:a1:75: 5f:c4:bd:8a:8d:03:fc:6c:bb:e1:5b:7f:e7:fa:99:b1:19:c4: 8b:ad:ae:d9:64:9e:c7:7f:fc:0c:8f:b0:7c:10:3c:dc:77:88: 08:72:dc:cc:f7:5d:23:61:19:95:b0:c0:bd:f0:53:cd:5d:06: 11:17:e3:b0:8d:8a:94:e5:80:e7:27:36:52:41:aa:6d:50:db: f8:65:b8:70:4c:6d:71:b1:91:08:18:7f:5c:c0:3b:5e:5a:98: c7:a7:ac:86:fe:1c:dc:a0:5d:96:59:e2:de:b2:bc:39:29:aa: ca:0f:b2:d5:e8:f9:79:01:04:f2:19:fb:0f:72:a0:c7:60:0c: ed:b6:02:ab:87:15:e1:49:b7:b9:93:69:94:33:69:84:84:4a: df:3f:7f:eb:bf:e7:32:15:8d:0e:00:1f:58:c8:6c:cf:ba:c8: 0b:b6:41:65:f2:90:30:47:44:e2:88:d5:57:c8:d9:4b:a8:30: 0e:fc:38:d9:06:a4:12:90:02:af:b5:ad:bc:a2:e6:3f:8a:88: 8c:8b:b5:1b:a4:89:6a:6c:76:0c:69:e3:88:fd:ff:66:99:e8: 62:bd:a1:b8:49:21:21:43:e2:62:ca:44:98:21:65:c8:8d:c2: d0:aa:93:fa -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NTdDQjExMC8GA1UEBRMoMTczNUNCQTlFRTE2RkU4NUYzRDI4M0ZBNUJCOTQ3OUQ5 QUYyQ0M4NjAeFw0yNDA1MTkwODQzNTZaFw0yNDA1MjYwODQzNTZaMBgxFjAUBgNV BAMTDTY2NDliYmNkLThkNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHRJ5d1hYShjbv+B4KoxaNWdB+35QDaPpTyMYWQUGM+GgUkR2GJHNx0yRK84PE 6SQdS9EPs2p8jLHz7oLQFlEHUFTMA9ZrqLxiDogJ7xHbeCte5DfOk8uHhQpaOg0C L7Qxalm8I8WLiwIbrmeDH7gK5Hi4tpGFKy1Ecqm9ia3HGuTEOdTbX2eQQZBTFDjW hiM1i1chEmBpSJNwn5gFsM2+2346X8w6/E+uiCXh/Amf66gVvh3WWFgInA9/Mx3O fUyOeK6RrBxb1r7C2rbXs2zSp72LmMFvWmsWVDI0j/ISlgd8qghu1U9lLBscd+8d p2oEzKXC/9geWhM/lRL9deAtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUy9i0xPqa 6Ax7eCKB3y7yEQkdiZYwHwYDVR0jBBgwFoAUFzXLqe4W/oXz0oP6W7lHnZryzIYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1N0NCLzRFRDIxMkRDRjJG ODExRUVBMzUwNjczOEM0RjlBRTAyL0Z6WExxZTRXX29YejBvUDZXN2xIblpyeXpJ WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRnpYTHFlNFdfb1h6MG9QNlc3bEhuWnJ5eklZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1 N0NCLzRFRDIxMkRDRjJGODExRUVBMzUwNjczOEM0RjlBRTAyL0Z6WExxZTRXX29Y ejBvUDZXN2xIblpyeXpJWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACDR5X4W6DEoO6DhDAVXtvWhdV/EvYqNA/xsu+Fbf+f6mbEZxIutrtlk nsd//AyPsHwQPNx3iAhy3Mz3XSNhGZWwwL3wU81dBhEX47CNipTlgOcnNlJBqm1Q 2/hluHBMbXGxkQgYf1zAO15amMenrIb+HNygXZZZ4t6yvDkpqsoPstXo+XkBBPIZ +w9yoMdgDO22AquHFeFJt7mTaZQzaYSESt8/f+u/5zIVjQ4AH1jIbM+6yAu2QWXy kDBHROKI1VfI2UuoMA78ONkGpBKQAq+1rbyi5j+KiIyLtRukiWpsdgxp44j9/2aZ 6GK9obhJISFD4mLKRJghZciNwtCqk/o= -----END CERTIFICATE-----Generated at Sun May 19 09:38:26 2024 by rpki-client on console-fra.rpki-client.org