$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft File: csG8nD23m0PzVvI_lWiEjJz7jdU.mft (raw, json) Hash identifier: klgRZFie1/x0p+iwe2auorx/kyuAT7SgnUEl3VKrxP8= Subject key identifier: F0:3A:4B:03:3B:C9:84:57:CB:D3:F6:2F:38:57:B7:4A:75:26:7C:CA Authority key identifier: 72:C1:BC:9C:3D:B7:9B:43:F3:56:F2:3F:95:68:84:8C:9C:FB:8D:D5 Certificate issuer: /CN=A91820CE/serialNumber=72C1BC9C3DB79B43F356F23F9568848C9CFB8DD5 Certificate serial: 05E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/csG8nD23m0PzVvI_lWiEjJz7jdU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft Manifest number: 05DB Signing time: Sun 19 May 2024 00:03:09 +0000 Manifest this update: Sun 19 May 2024 00:03:08 +0000 Manifest next update: Sun 26 May 2024 00:03:08 +0000 Files and hashes: 1: csG8nD23m0PzVvI_lWiEjJz7jdU.crl (hash: wW8XrJ5lJooGmHTYNvgSYOjSVacylks4NYAUUz/rIno=) 2: EB292D8A6BF811EB8E899650C4F9AE02.roa (hash: haQ1wVHCjiOBIUnT4Cwar2Iew7eXxoRUFslAJoKYOBs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.crl rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/csG8nD23m0PzVvI_lWiEjJz7jdU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1504 (0x5e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CE/serialNumber=72C1BC9C3DB79B43F356F23F9568848C9CFB8DD5 Validity Not Before: May 19 00:03:08 2024 GMT Not After : May 26 00:03:08 2024 GMT Subject: CN=664941bc-0765 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:88:b0:d1:74:e2:32:0b:2a:07:6c:d1:a8:74: e7:07:96:ba:99:15:e1:62:38:25:8f:5c:e0:f2:b0: e8:cc:ef:55:6a:e0:4d:24:cb:07:a0:fc:5b:74:0c: 56:16:1a:a2:66:e7:b8:55:26:7e:1f:78:fe:08:f9: 58:67:f5:7d:ac:a9:fa:4a:dd:ae:df:50:82:c2:59: a3:55:13:a4:ab:d5:16:3b:6f:27:e4:b8:f5:f3:0b: 56:f1:c1:7e:21:69:6f:ce:01:a1:91:54:a5:6e:f6: 08:74:da:2b:dc:69:e7:ef:36:f2:14:67:14:bb:43: 2f:5e:d1:ae:42:16:8f:14:7a:51:3c:01:ba:68:15: d5:3c:7f:6c:fa:00:c9:23:2f:39:9f:cb:a8:d0:ad: 52:82:d4:db:db:d0:67:f8:42:a7:ab:4e:18:97:ef: 31:d8:a8:12:75:b4:45:76:de:e8:5f:8c:4a:36:cb: e4:a2:2b:a5:64:bc:41:96:d4:61:a0:92:99:65:34: d3:36:bd:05:79:ab:cd:de:ef:3c:65:2c:72:f4:e9: 2d:dc:6e:ee:35:e4:59:56:29:89:93:23:49:62:30: d8:78:22:d6:4c:6f:09:3c:32:67:c6:08:c8:1f:8d: e1:11:93:91:2c:a2:9b:bb:d7:38:18:ce:0e:6f:31: 38:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:3A:4B:03:3B:C9:84:57:CB:D3:F6:2F:38:57:B7:4A:75:26:7C:CA X509v3 Authority Key Identifier: keyid:72:C1:BC:9C:3D:B7:9B:43:F3:56:F2:3F:95:68:84:8C:9C:FB:8D:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/csG8nD23m0PzVvI_lWiEjJz7jdU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:80:17:73:0d:25:e6:27:ab:c2:31:be:0d:0d:68:ff:db:49: c9:f8:af:11:01:56:63:f7:cc:b3:48:cb:81:be:14:45:58:ff: af:2b:40:b5:33:59:36:af:9d:01:2a:5c:36:35:ef:ed:13:a6: 8c:1c:ec:f0:57:7d:47:48:c2:e6:a2:7e:3d:ce:c8:1b:24:27: e9:de:7e:bd:ab:9b:4c:38:87:ce:1d:31:38:bc:8b:c9:9f:5d: 92:3a:36:8a:13:cf:16:dc:1a:92:2f:39:1c:bd:f3:21:3d:5a: 88:40:58:3f:ed:30:c8:e9:53:a0:38:47:fc:69:b5:9a:51:b8: 78:b3:f0:51:b9:e5:b2:a4:ad:61:93:31:e4:bb:b2:81:a2:82: af:15:88:7e:7a:99:24:38:21:bd:e1:66:5d:4b:7d:09:16:f3: 1a:28:54:14:89:a7:2a:b3:b2:0a:25:28:a2:c2:94:b2:f6:08: 28:d0:70:d2:c8:59:15:16:af:21:f3:e9:95:22:39:1c:77:32: 75:c5:20:a5:16:5e:96:e3:76:2a:ff:00:db:02:28:7f:d4:21: 35:f4:fa:32:e6:cb:31:b9:fc:38:24:9b:4f:45:f8:dd:ae:eb: dd:1a:84:fa:00:3c:3b:4b:1b:87:ef:b9:f2:9b:e3:8f:51:64: b5:33:c0:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIwQ0UxMTAvBgNVBAUTKDcyQzFCQzlDM0RCNzlCNDNGMzU2RjIzRjk1Njg4NDhD OUNGQjhERDUwHhcNMjQwNTE5MDAwMzA4WhcNMjQwNTI2MDAwMzA4WjAYMRYwFAYD VQQDEw02NjQ5NDFiYy0wNzY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr4iw0XTiMgsqB2zRqHTnB5a6mRXhYjglj1zg8rDozO9VauBNJMsHoPxbdAxW FhqiZue4VSZ+H3j+CPlYZ/V9rKn6St2u31CCwlmjVROkq9UWO28n5Lj18wtW8cF+ IWlvzgGhkVSlbvYIdNor3Gnn7zbyFGcUu0MvXtGuQhaPFHpRPAG6aBXVPH9s+gDJ Iy85n8uo0K1SgtTb29Bn+EKnq04Yl+8x2KgSdbRFdt7oX4xKNsvkoiulZLxBltRh oJKZZTTTNr0FeavN3u88ZSxy9Okt3G7uNeRZVimJkyNJYjDYeCLWTG8JPDJnxgjI H43hEZORLKKbu9c4GM4ObzE4jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPA6SwM7 yYRXy9P2LzhXt0p1JnzKMB8GA1UdIwQYMBaAFHLBvJw9t5tD81byP5VohIyc+43V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjBDRS9CNzMwNjlDNjZC RTkxMUVCQjdENTU2MERDNEY5QUUwMi9jc0c4bkQyM20wUHpWdklfbFdpRWpKejdq ZFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NzRzhuRDIzbTBQelZ2SV9sV2lFakp6N2pkVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjBDRS9CNzMwNjlDNjZCRTkxMUVCQjdENTU2MERDNEY5QUUwMi9jc0c4bkQyM20w UHpWdklfbFdpRWpKejdqZFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCngBdzDSXmJ6vCMb4NDWj/20nJ+K8RAVZj98yzSMuBvhRFWP+vK0C1 M1k2r50BKlw2Ne/tE6aMHOzwV31HSMLmon49zsgbJCfp3n69q5tMOIfOHTE4vIvJ n12SOjaKE88W3BqSLzkcvfMhPVqIQFg/7TDI6VOgOEf8abWaUbh4s/BRueWypK1h kzHku7KBooKvFYh+epkkOCG94WZdS30JFvMaKFQUiacqs7IKJSiiwpSy9ggo0HDS yFkVFq8h8+mVIjkcdzJ1xSClFl6W43Yq/wDbAih/1CE19Poy5ssxufw4JJtPRfjd ruvdGoT6ADw7SxuH77nym+OPUWS1M8Cr -----END CERTIFICATE-----Generated at Sun May 19 00:59:42 2024 by rpki-client on console-fra.rpki-client.org