$ rpki-client -vvf rpki.apnic.net/member_repository/A91976E2/47C44AD8AE8911EC8A8D3368C4F9AE02/cQovxyPTd706pfsnGkrolOV6dFQ.mft File: cQovxyPTd706pfsnGkrolOV6dFQ.mft (raw, json) Hash identifier: 9UC0yt6dwCOcPJCUrnWaL2cpxTM5h8yBzDfOatmBVOc= Subject key identifier: 85:19:BC:6C:2F:92:8B:53:11:90:90:3C:F2:9A:27:FA:80:57:A6:7C Authority key identifier: 71:0A:2F:C7:23:D3:77:BD:3A:A5:FB:27:1A:4A:E8:94:E5:7A:74:54 Certificate issuer: /CN=A91976E2/serialNumber=710A2FC723D377BD3AA5FB271A4AE894E57A7454 Certificate serial: 02B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQovxyPTd706pfsnGkrolOV6dFQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91976E2/47C44AD8AE8911EC8A8D3368C4F9AE02/cQovxyPTd706pfsnGkrolOV6dFQ.mft Manifest number: 02AE Signing time: Sun 19 May 2024 03:33:43 +0000 Manifest this update: Sun 19 May 2024 03:33:43 +0000 Manifest next update: Sun 26 May 2024 03:33:43 +0000 Files and hashes: 1: cQovxyPTd706pfsnGkrolOV6dFQ.crl (hash: F2+sZquO08DBSJbuM5XXZ2HU0YtIJ133TDpHidOyMrA=) 2: 02F03EBCD2F111ECB0DB7850C4F9AE02.roa (hash: Q0fNfLOcKzzEZus7R55E69tTYXEUxIWv89YZB7PtU84=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91976E2/47C44AD8AE8911EC8A8D3368C4F9AE02/cQovxyPTd706pfsnGkrolOV6dFQ.crl rsync://rpki.apnic.net/member_repository/A91976E2/47C44AD8AE8911EC8A8D3368C4F9AE02/cQovxyPTd706pfsnGkrolOV6dFQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQovxyPTd706pfsnGkrolOV6dFQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 691 (0x2b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91976E2/serialNumber=710A2FC723D377BD3AA5FB271A4AE894E57A7454 Validity Not Before: May 19 03:33:43 2024 GMT Not After : May 26 03:33:43 2024 GMT Subject: CN=66497317-e906 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c8:49:a9:b6:9d:ed:e5:30:62:5d:40:31:ff: 7b:46:36:02:db:70:ca:5a:51:82:3d:22:d4:6f:eb: 2b:79:00:df:6b:a2:2d:05:66:3c:5f:e2:51:45:35: 54:8b:8f:d7:0c:91:b2:e5:66:2f:35:d7:08:80:15: 98:65:85:4f:24:7b:f2:45:fe:80:ef:9e:cf:8c:65: 5b:4f:96:de:ad:fb:0b:02:85:f3:e3:61:c3:27:8e: a2:d1:2f:a6:ba:93:47:69:b6:53:74:86:c6:3d:41: 78:73:98:2c:6b:44:64:49:8a:ac:c1:35:d8:29:11: dd:50:3f:d0:e4:f8:dc:a4:a6:75:6b:d2:b5:24:6b: 6d:5a:63:3d:75:85:a7:44:ad:9e:51:02:49:9e:3c: 0e:a3:21:81:2f:a5:4e:89:c5:8e:9e:26:39:c5:45: 7d:ea:fb:97:14:2b:b6:73:c9:4c:23:ec:59:0b:e0: de:68:25:ef:d9:a5:43:a2:bc:64:59:80:a9:5c:b7: ef:54:2e:83:dd:d3:c1:88:00:27:81:b4:37:72:3c: c3:7d:a3:47:8a:ab:4e:37:65:c3:85:af:9f:a4:c8: e7:82:8b:62:a0:55:2c:d6:44:1d:eb:e2:32:52:52: 57:10:05:c0:95:3e:6e:02:4a:3b:f4:4e:de:91:67: f0:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:19:BC:6C:2F:92:8B:53:11:90:90:3C:F2:9A:27:FA:80:57:A6:7C X509v3 Authority Key Identifier: keyid:71:0A:2F:C7:23:D3:77:BD:3A:A5:FB:27:1A:4A:E8:94:E5:7A:74:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91976E2/47C44AD8AE8911EC8A8D3368C4F9AE02/cQovxyPTd706pfsnGkrolOV6dFQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQovxyPTd706pfsnGkrolOV6dFQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91976E2/47C44AD8AE8911EC8A8D3368C4F9AE02/cQovxyPTd706pfsnGkrolOV6dFQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:03:30:93:62:83:c9:1b:58:50:52:52:56:f9:72:60:6f:8f: 0f:2c:11:f2:a2:e6:f6:41:25:10:6d:38:d8:69:79:f1:22:7e: 3c:27:0c:60:ad:2c:56:22:d3:7a:31:90:d8:ac:c4:2f:93:30: 1b:09:79:35:d2:4f:b1:d2:a3:35:42:65:1e:51:f8:27:38:43: f0:77:a3:63:d0:99:57:65:f6:06:4b:07:2c:de:a5:d9:ee:07: f4:34:84:33:f9:2d:3c:81:75:7f:a3:38:7d:2d:5f:c2:e1:63: 9c:43:05:e6:f5:7c:06:81:51:7d:62:16:3b:fd:d2:58:90:26: 2a:e2:ac:c8:08:07:ab:1e:1c:9b:9a:eb:62:d1:18:c4:bc:8f: a0:13:bd:16:4b:71:c8:b3:96:79:cb:15:d6:3b:78:cd:e8:f7: 44:bb:5d:cc:9e:38:5f:69:c1:52:4f:9f:62:eb:65:eb:42:6c: dc:63:17:fd:ff:0c:61:4c:36:79:f4:c6:b2:3e:90:85:d4:2b: e3:7c:b3:e2:67:bc:47:fa:a9:e1:29:7b:c0:f9:c0:14:0f:40: af:ed:90:60:9a:da:28:8c:ad:63:ae:9f:27:b9:8e:99:01:4b: dd:a5:71:4c:19:78:92:91:c7:8a:7d:94:48:a0:09:03:e5:0f: 60:01:02:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc2RTIxMTAvBgNVBAUTKDcxMEEyRkM3MjNEMzc3QkQzQUE1RkIyNzFBNEFFODk0 RTU3QTc0NTQwHhcNMjQwNTE5MDMzMzQzWhcNMjQwNTI2MDMzMzQzWjAYMRYwFAYD VQQDEw02NjQ5NzMxNy1lOTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsMhJqbad7eUwYl1AMf97RjYC23DKWlGCPSLUb+sreQDfa6ItBWY8X+JRRTVU i4/XDJGy5WYvNdcIgBWYZYVPJHvyRf6A757PjGVbT5berfsLAoXz42HDJ46i0S+m upNHabZTdIbGPUF4c5gsa0RkSYqswTXYKRHdUD/Q5PjcpKZ1a9K1JGttWmM9dYWn RK2eUQJJnjwOoyGBL6VOicWOniY5xUV96vuXFCu2c8lMI+xZC+DeaCXv2aVDorxk WYCpXLfvVC6D3dPBiAAngbQ3cjzDfaNHiqtON2XDha+fpMjngotioFUs1kQd6+Iy UlJXEAXAlT5uAko79E7ekWfw/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIUZvGwv kotTEZCQPPKaJ/qAV6Z8MB8GA1UdIwQYMBaAFHEKL8cj03e9OqX7JxpK6JTlenRU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzZFMi80N0M0NEFEOEFF ODkxMUVDOEE4RDMzNjhDNEY5QUUwMi9jUW92eHlQVGQ3MDZwZnNuR2tyb2xPVjZk RlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NRb3Z4eVBUZDcwNnBmc25Ha3JvbE9WNmRGUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzZFMi80N0M0NEFEOEFFODkxMUVDOEE4RDMzNjhDNEY5QUUwMi9jUW92eHlQVGQ3 MDZwZnNuR2tyb2xPVjZkRlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIAzCTYoPJG1hQUlJW+XJgb48PLBHyoub2QSUQbTjYaXnxIn48Jwxg rSxWItN6MZDYrMQvkzAbCXk10k+x0qM1QmUeUfgnOEPwd6Nj0JlXZfYGSwcs3qXZ 7gf0NIQz+S08gXV/ozh9LV/C4WOcQwXm9XwGgVF9YhY7/dJYkCYq4qzICAerHhyb muti0RjEvI+gE70WS3HIs5Z5yxXWO3jN6PdEu13MnjhfacFST59i62XrQmzcYxf9 /wxhTDZ59MayPpCF1CvjfLPiZ7xH+qnhKXvA+cAUD0Cv7ZBgmtoojK1jrp8nuY6Z AUvdpXFMGXiSkceKfZRIoAkD5Q9gAQIr -----END CERTIFICATE-----Generated at Sun May 19 04:22:05 2024 by rpki-client on console-fra.rpki-client.org