$ rpki-client -vvf rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.mft File: -QbZf3qofIbamQOdI27NtR0jH3o.mft (raw, json) Hash identifier: EnSagmUUupjMsppvQso5JEJOoynUpHhv6J55AiFkcZQ= Subject key identifier: CB:C9:54:6B:47:90:AC:1C:54:A1:A3:E1:30:13:82:70:4C:64:E3:9A Authority key identifier: F9:06:D9:7F:7A:A8:7C:86:DA:99:03:9D:23:6E:CD:B5:1D:23:1F:7A Certificate issuer: /CN=A919FE97/serialNumber=F906D97F7AA87C86DA99039D236ECDB51D231F7A Certificate serial: 05B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-QbZf3qofIbamQOdI27NtR0jH3o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.mft Manifest number: 05AC Signing time: Sun 19 May 2024 00:15:07 +0000 Manifest this update: Sun 19 May 2024 00:15:06 +0000 Manifest next update: Sun 26 May 2024 00:15:06 +0000 Files and hashes: 1: -QbZf3qofIbamQOdI27NtR0jH3o.crl (hash: RshcH4coB6z8iu5xkBTu/JgeFx+/PXYBvbDWqcORxIE=) 2: 06EFF1D07D4B11EBA736017DC4F9AE02.roa (hash: iko0TAKPXlXdkQUZL7210qZyr/BZRegUTs2UUc4OgEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.crl rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-QbZf3qofIbamQOdI27NtR0jH3o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1460 (0x5b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FE97/serialNumber=F906D97F7AA87C86DA99039D236ECDB51D231F7A Validity Not Before: May 19 00:15:06 2024 GMT Not After : May 26 00:15:06 2024 GMT Subject: CN=6649448a-b608 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:82:4b:95:0d:5d:ad:ca:7b:00:42:c8:3c:cd: 19:e2:31:ec:41:8e:7e:ea:60:f7:c2:1b:72:5f:b1: 63:ad:2d:93:82:72:4c:52:75:61:27:3e:03:d5:bd: a8:88:36:88:66:d1:7c:6c:f8:6c:d5:56:d8:b6:c9: 25:cd:9e:1b:56:08:0d:32:34:50:8b:c3:e6:c0:cd: c7:e1:1e:86:57:00:83:e7:a3:2a:96:21:6a:81:ae: 80:93:48:89:ee:d7:56:82:3c:16:e7:58:ef:c2:55: 6c:b8:ad:7f:48:ae:1b:0b:68:15:7a:8f:58:84:16: b6:33:e5:5c:6c:4c:54:ab:bc:10:03:02:96:a2:bc: 23:f8:bb:f4:e9:6d:5d:e2:f5:59:3c:10:d1:d0:63: 2c:f2:37:35:0d:65:1b:4e:f8:6b:dd:83:c3:74:49: fb:1f:d5:6c:23:e3:c3:83:d2:3d:1a:c9:0c:b5:3e: 99:55:3d:c1:3e:f5:8f:18:62:f7:b1:d7:1a:e0:4e: 05:13:3b:85:48:0f:c7:27:d0:3b:cb:7f:b2:de:e3: a0:0c:73:81:2b:e2:63:c0:ea:5e:96:a0:9f:ea:b9: 81:f8:ef:92:ea:01:07:52:1b:94:13:08:c1:a9:82: cc:56:f0:57:94:b6:ae:65:e9:6e:6a:a9:97:7b:6d: eb:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:C9:54:6B:47:90:AC:1C:54:A1:A3:E1:30:13:82:70:4C:64:E3:9A X509v3 Authority Key Identifier: keyid:F9:06:D9:7F:7A:A8:7C:86:DA:99:03:9D:23:6E:CD:B5:1D:23:1F:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-QbZf3qofIbamQOdI27NtR0jH3o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:8d:cb:ff:83:35:3c:e5:24:e3:4c:62:6c:aa:1d:ae:c3:ed: 77:3b:73:6d:b9:b8:25:e8:81:2c:68:7d:50:3e:51:a5:3a:10: 58:97:bb:e4:e1:f7:6d:a5:3d:2e:0a:55:29:13:7a:6b:5d:a0: b4:45:0b:07:2c:4d:2a:d3:a4:15:69:9d:ae:07:49:34:50:ee: c4:90:c1:6e:c8:92:b2:64:8b:d2:50:4a:a9:ff:c9:3f:23:50: 90:e3:60:1f:f0:69:72:3e:4a:79:42:2e:79:e2:ef:aa:05:31: 78:cb:45:b8:ac:bc:14:6d:75:77:16:77:55:83:57:fc:0b:9e: e9:51:07:7c:c1:b4:06:f5:be:c3:53:73:a5:92:45:62:44:05: 9d:8b:5d:24:61:8a:39:52:03:40:51:8b:e8:9f:01:9e:9e:33: a2:ef:96:fa:fe:b4:b1:e0:31:48:8e:59:69:35:e7:5e:0f:85: dd:0a:f7:21:d9:1e:3d:a4:b6:ef:9b:b1:fd:00:f0:28:2e:7b: df:83:c3:db:31:de:06:66:b1:1e:40:1c:64:a3:7a:85:7b:64: 31:e0:16:d9:8e:63:50:91:53:1e:fe:80:00:bd:f2:9a:6e:4f: 05:94:0e:65:a9:a6:5b:29:26:ba:73:3e:1d:fe:f9:79:e8:09: 88:ee:73:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZFOTcxMTAvBgNVBAUTKEY5MDZEOTdGN0FBODdDODZEQTk5MDM5RDIzNkVDREI1 MUQyMzFGN0EwHhcNMjQwNTE5MDAxNTA2WhcNMjQwNTI2MDAxNTA2WjAYMRYwFAYD VQQDEw02NjQ5NDQ4YS1iNjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtoJLlQ1drcp7AELIPM0Z4jHsQY5+6mD3whtyX7FjrS2TgnJMUnVhJz4D1b2o iDaIZtF8bPhs1VbYtsklzZ4bVggNMjRQi8PmwM3H4R6GVwCD56MqliFqga6Ak0iJ 7tdWgjwW51jvwlVsuK1/SK4bC2gVeo9YhBa2M+VcbExUq7wQAwKWorwj+Lv06W1d 4vVZPBDR0GMs8jc1DWUbTvhr3YPDdEn7H9VsI+PDg9I9GskMtT6ZVT3BPvWPGGL3 sdca4E4FEzuFSA/HJ9A7y3+y3uOgDHOBK+JjwOpelqCf6rmB+O+S6gEHUhuUEwjB qYLMVvBXlLauZeluaqmXe23rDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMvJVGtH kKwcVKGj4TATgnBMZOOaMB8GA1UdIwQYMBaAFPkG2X96qHyG2pkDnSNuzbUdIx96 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkU5Ny9EMjE4MzAyRTdE NDcxMUVCOTMxMjFGNThDNEY5QUUwMi8tUWJaZjNxb2ZJYmFtUU9kSTI3TnRSMGpI M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1RYlpmM3FvZkliYW1RT2RJMjdOdFIwakgzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkU5Ny9EMjE4MzAyRTdENDcxMUVCOTMxMjFGNThDNEY5QUUwMi8tUWJaZjNxb2ZJ YmFtUU9kSTI3TnRSMGpIM28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCjcv/gzU85STjTGJsqh2uw+13O3Ntubgl6IEsaH1QPlGlOhBYl7vk 4fdtpT0uClUpE3prXaC0RQsHLE0q06QVaZ2uB0k0UO7EkMFuyJKyZIvSUEqp/8k/ I1CQ42Af8GlyPkp5Qi554u+qBTF4y0W4rLwUbXV3FndVg1f8C57pUQd8wbQG9b7D U3OlkkViRAWdi10kYYo5UgNAUYvonwGenjOi75b6/rSx4DFIjllpNedeD4XdCvch 2R49pLbvm7H9APAoLnvfg8PbMd4GZrEeQBxko3qFe2Qx4BbZjmNQkVMe/oAAvfKa bk8FlA5lqaZbKSa6cz4d/vl56AmI7nOX -----END CERTIFICATE-----Generated at Sun May 19 00:59:42 2024 by rpki-client on console-fra.rpki-client.org