$ rpki-client -vvf rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft File: C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft (raw, json) Hash identifier: Pba9kSxxU/t069XfENAcXVSvvQbY02+cEbgXpAsUCGQ= Subject key identifier: 93:92:68:99:82:23:A6:5D:3E:22:94:9C:E5:62:F3:76:1A:B9:BC:5A Authority key identifier: 0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54 Certificate issuer: /CN=A91892EB/serialNumber=0B6CDF3FACC680B786926DE139F1E0F674440654 Certificate serial: 0519 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft Manifest number: 0506 Signing time: Sun 19 May 2024 01:13:08 +0000 Manifest this update: Sun 19 May 2024 01:13:08 +0000 Manifest next update: Sun 26 May 2024 01:13:08 +0000 Files and hashes: 1: C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl (hash: 0q1/ADSbd7OrClTJmTzXq4Pfo4Pf7jB9+12vcWqIIxE=) 2: 387532CEE46D11EE8DBC2937C4F9AE02.roa (hash: THe2dLSCaytER/CkmGGHqUlPTmiSwyrbJ1sKQgPcRs0=) 3: F4DC3C2AC59211EBAA9C5B7BC4F9AE02.roa (hash: Ze/5Ss1fPC8M1V3+E26f6JP5bbKklJOutErrb5oHX4Q=) 4: F5BE1E346FFD11EE83D3D154C4F9AE02.roa (hash: WSQLdtW7Z6EU3ra5whvjET8ewZcAkg4bKox6pR3esLU=) 5: D4413B92007C11EE99460918C4F9AE02.roa (hash: 4sz/a4x9x/YNnYX/FkoyxBOtX/penwPLHxDGTUOHwNo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1305 (0x519) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91892EB/serialNumber=0B6CDF3FACC680B786926DE139F1E0F674440654 Validity Not Before: May 19 01:13:08 2024 GMT Not After : May 26 01:13:08 2024 GMT Subject: CN=66495224-6b2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:22:83:11:36:d7:01:0c:d1:9e:ab:0e:b6:01: b9:68:e7:21:31:a7:d3:04:17:60:8d:c4:3c:48:8c: 41:95:b7:2d:70:7b:5e:36:9b:75:dd:58:03:d6:6d: b4:0b:b9:ff:44:d6:f8:21:59:c1:92:3a:fc:1f:a2: 4d:2c:5f:01:94:b5:04:3b:9a:5a:8d:0b:f8:0b:c1: 36:26:2d:65:6c:ae:80:21:78:7b:1b:5c:fe:42:ea: c2:3d:1d:b5:f8:06:ce:bf:31:a2:10:49:4c:8d:06: dd:c9:bd:90:e0:cf:a7:7d:8a:4d:ae:8c:27:2a:03: 64:26:04:46:1b:7e:53:0e:a7:41:3d:f0:ff:5e:a2: fc:56:24:f8:37:b3:71:ee:08:67:20:1d:80:98:ee: 10:8a:e9:81:14:65:b7:61:85:f8:b8:bc:8f:02:36: 7c:06:90:db:97:af:8e:23:6a:40:14:97:7c:7b:f5: 04:f9:3a:97:6e:51:24:79:fe:3f:f6:cb:a0:b7:c0: 74:27:98:1d:de:2a:6a:7a:eb:3b:d2:94:a8:27:cf: 05:80:da:06:c7:c3:cc:01:37:f9:59:7e:21:3d:d4: 6f:e1:f0:4e:cb:e1:7d:1e:83:61:d0:6c:55:3f:72: 68:c9:69:28:95:d8:d1:69:5f:70:de:ec:e9:8a:18: 6f:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:92:68:99:82:23:A6:5D:3E:22:94:9C:E5:62:F3:76:1A:B9:BC:5A X509v3 Authority Key Identifier: keyid:0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:43:f8:e8:49:5a:50:82:0b:1d:f5:54:95:7f:c4:fd:5b:3f: 74:ca:30:32:be:7b:46:f8:74:b8:d6:67:b1:f3:52:f2:e2:46: b3:5a:21:b9:ee:79:7e:c8:46:8d:b7:5a:50:0d:ec:c7:a2:d7: 63:c0:1c:0b:ab:fa:2f:b1:e0:9a:8c:a0:06:7d:b5:89:59:85: f0:29:81:39:4f:de:6c:ac:9f:e6:53:b2:15:79:8c:ed:71:b5: 29:db:b8:7c:dc:f9:a5:0a:46:ee:da:58:9b:33:76:9a:9c:a6: b0:e0:30:7f:e9:0d:df:3a:18:1b:a3:51:03:8e:c4:30:20:77: a3:29:7c:85:e4:f2:a4:fa:49:6e:52:a2:c3:31:17:35:1a:34: 58:68:bd:e8:02:73:ad:91:17:23:0c:16:b2:b7:d6:7a:39:d8: 6f:d9:25:6f:70:49:2a:a2:d9:6a:f9:c1:56:4f:aa:fa:ce:82: bd:1b:bf:90:5f:b5:6d:63:fc:ff:94:f4:fc:16:fb:77:9a:70: 39:d5:a4:c9:98:c7:dd:38:da:fa:a1:98:28:68:3c:bb:60:a8: 29:0f:e6:f6:53:63:17:a0:5d:43:4e:e2:7f:6d:0a:1b:2f:31: 1c:94:13:ed:93:41:d5:5d:02:2d:a1:b7:54:f0:72:32:2e:0f: e2:18:cc:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyRUIxMTAvBgNVBAUTKDBCNkNERjNGQUNDNjgwQjc4NjkyNkRFMTM5RjFFMEY2 NzQ0NDA2NTQwHhcNMjQwNTE5MDExMzA4WhcNMjQwNTI2MDExMzA4WjAYMRYwFAYD VQQDEw02NjQ5NTIyNC02YjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwyKDETbXAQzRnqsOtgG5aOchMafTBBdgjcQ8SIxBlbctcHteNpt13VgD1m20 C7n/RNb4IVnBkjr8H6JNLF8BlLUEO5pajQv4C8E2Ji1lbK6AIXh7G1z+QurCPR21 +AbOvzGiEElMjQbdyb2Q4M+nfYpNrownKgNkJgRGG35TDqdBPfD/XqL8ViT4N7Nx 7ghnIB2AmO4QiumBFGW3YYX4uLyPAjZ8BpDbl6+OI2pAFJd8e/UE+TqXblEkef4/ 9sugt8B0J5gd3ipqeus70pSoJ88FgNoGx8PMATf5WX4hPdRv4fBOy+F9HoNh0GxV P3JoyWkoldjRaV9w3uzpihhvWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJOSaJmC I6ZdPiKUnOVi83YaubxaMB8GA1UdIwQYMBaAFAts3z+sxoC3hpJt4Tnx4PZ0RAZU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTJFQi9GRDAwODFERUM1 NjcxMUVCQUZFQTYwMkJDNEY5QUUwMi9DMnpmUDZ6R2dMZUdrbTNoT2ZIZzluUkVC bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MyemZQNnpHZ0xlR2ttM2hPZkhnOW5SRUJsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTJFQi9GRDAwODFERUM1NjcxMUVCQUZFQTYwMkJDNEY5QUUwMi9DMnpmUDZ6R2dM ZUdrbTNoT2ZIZzluUkVCbFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDIQ/joSVpQggsd9VSVf8T9Wz90yjAyvntG+HS41mex81Ly4kazWiG5 7nl+yEaNt1pQDezHotdjwBwLq/ovseCajKAGfbWJWYXwKYE5T95srJ/mU7IVeYzt cbUp27h83PmlCkbu2libM3aanKaw4DB/6Q3fOhgbo1EDjsQwIHejKXyF5PKk+klu UqLDMRc1GjRYaL3oAnOtkRcjDBayt9Z6Odhv2SVvcEkqotlq+cFWT6r6zoK9G7+Q X7VtY/z/lPT8Fvt3mnA51aTJmMfdONr6oZgoaDy7YKgpD+b2U2MXoF1DTuJ/bQob LzEclBPtk0HVXQItobdU8HIyLg/iGMy3 -----END CERTIFICATE-----Generated at Sun May 19 01:47:13 2024 by rpki-client on console-fra.rpki-client.org