$ rpki-client -vvf rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.mft File: jGb5wOZorJCB33ENYELfR0kLCrk.mft (raw, json) Hash identifier: +O7aidU1HL4/F/ni1aX/Nl6FQ9acUg1RcWt308sGorM= Subject key identifier: 0E:7B:EB:80:C3:99:05:D8:4D:31:BA:63:92:F9:A1:04:86:61:33:51 Authority key identifier: 8C:66:F9:C0:E6:68:AC:90:81:DF:71:0D:60:42:DF:47:49:0B:0A:B9 Certificate issuer: /CN=A91A97F0/serialNumber=8C66F9C0E668AC9081DF710D6042DF47490B0AB9 Certificate serial: 0B6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGb5wOZorJCB33ENYELfR0kLCrk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.mft Manifest number: 0B5C Signing time: Thu 30 May 2024 20:09:24 +0000 Manifest this update: Thu 30 May 2024 20:09:24 +0000 Manifest next update: Thu 06 Jun 2024 20:09:24 +0000 Files and hashes: 1: jGb5wOZorJCB33ENYELfR0kLCrk.crl (hash: HjqZ54wPyugILSwTk67pdzFaQFaQkFh9f1n9FTdG1cQ=) 2: 996294F0F6F811ECB7D4B564C4F9AE02.roa (hash: vzr5FLi/+HqX3i2PY9Ml2cOPQTizJVDGVELIBhdYlQU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.crl rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGb5wOZorJCB33ENYELfR0kLCrk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 20:09:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2925 (0xb6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A97F0/serialNumber=8C66F9C0E668AC9081DF710D6042DF47490B0AB9 Validity Not Before: May 30 20:09:24 2024 GMT Not After : Jun 6 20:09:24 2024 GMT Subject: CN=6658dcf4-8446 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:42:f3:43:01:7f:e3:94:ee:58:80:71:ae:bf: d8:a6:d4:c1:74:cf:ab:06:25:10:86:e1:73:61:a3: 2a:4f:16:e7:b2:ea:37:df:7c:2c:66:6b:7d:de:b1: 0b:c9:77:38:67:aa:39:a7:9d:8c:3e:73:87:e0:08: cf:38:ef:7b:0a:3c:86:7c:60:0f:d0:14:49:30:6b: a8:45:60:2a:92:f6:db:fe:0b:ef:7e:d3:d4:18:c2: 11:27:dd:df:f8:8b:a8:c8:b2:f7:94:e1:b8:29:0e: 2f:02:63:db:cf:83:1f:fd:d7:48:97:cf:9e:21:bc: 3d:7d:7e:eb:fc:79:75:e3:38:58:91:66:99:b8:5c: 21:88:a4:80:16:68:17:04:d8:32:8b:40:17:0b:27: 14:4e:4e:1b:6d:e0:62:47:1a:b6:46:ca:cf:3f:c9: 06:29:de:01:44:7c:f6:b5:bd:fe:39:74:52:7b:ea: a5:e5:4e:58:d5:d7:38:00:84:48:ca:b1:af:56:5d: 49:37:e9:33:f0:a8:4f:2e:cb:dc:24:ec:0d:d6:63: cf:31:bf:39:c1:b4:a2:06:60:51:82:d9:24:01:bd: ef:bf:a7:a2:c0:2a:3c:b0:54:d8:ae:93:ae:d5:9f: c5:66:a1:df:13:ca:f3:8c:12:66:54:68:bb:dc:3b: d3:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:7B:EB:80:C3:99:05:D8:4D:31:BA:63:92:F9:A1:04:86:61:33:51 X509v3 Authority Key Identifier: keyid:8C:66:F9:C0:E6:68:AC:90:81:DF:71:0D:60:42:DF:47:49:0B:0A:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGb5wOZorJCB33ENYELfR0kLCrk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:c7:75:2d:e4:8b:6d:34:91:2f:2a:8a:1f:9e:c6:f6:e4:d6: 6e:c1:e6:c9:ae:93:35:38:62:73:e9:fa:89:bf:04:c0:d9:7e: 8e:02:31:e6:8f:45:10:4d:ab:27:7d:ac:94:75:39:a0:d0:48: 2e:b8:e8:17:90:f2:42:23:02:d7:df:fd:ab:7a:83:21:59:ac: 44:44:7b:c7:35:96:a5:20:a7:e5:8b:95:db:4a:83:a6:a7:ca: 47:8b:eb:73:76:0a:31:4e:83:9f:3c:3a:58:ea:ee:3b:7f:2a: 11:87:45:86:1f:3e:8e:82:5a:1b:d0:50:d5:28:f6:8b:0b:08: 06:3c:4d:42:5f:48:fd:45:2e:5f:0a:ff:4c:e9:48:53:39:4f: a7:90:66:e3:9c:21:b9:9d:08:9a:6a:d4:bb:f8:9f:f6:40:c6: 54:c2:bb:bd:d2:2b:a2:5b:e8:6c:53:4b:f3:73:a6:88:08:ec: b7:03:0a:ba:12:bd:a0:b4:b9:1c:36:1d:f6:80:8f:88:3c:6e: 7c:42:51:4a:51:94:7e:63:89:a3:89:93:c9:37:d5:19:e7:00: a7:0c:cc:8a:00:d8:1f:88:11:20:a6:28:97:fc:0e:ee:70:17: 82:53:05:26:f7:c7:3a:5a:f4:1a:0f:26:60:b3:d8:d0:0f:c7: 30:0d:7f:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC20wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk3RjAxMTAvBgNVBAUTKDhDNjZGOUMwRTY2OEFDOTA4MURGNzEwRDYwNDJERjQ3 NDkwQjBBQjkwHhcNMjQwNTMwMjAwOTI0WhcNMjQwNjA2MjAwOTI0WjAYMRYwFAYD VQQDEw02NjU4ZGNmNC04NDQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtELzQwF/45TuWIBxrr/YptTBdM+rBiUQhuFzYaMqTxbnsuo333wsZmt93rEL yXc4Z6o5p52MPnOH4AjPOO97CjyGfGAP0BRJMGuoRWAqkvbb/gvvftPUGMIRJ93f +IuoyLL3lOG4KQ4vAmPbz4Mf/ddIl8+eIbw9fX7r/Hl14zhYkWaZuFwhiKSAFmgX BNgyi0AXCycUTk4bbeBiRxq2RsrPP8kGKd4BRHz2tb3+OXRSe+ql5U5Y1dc4AIRI yrGvVl1JN+kz8KhPLsvcJOwN1mPPMb85wbSiBmBRgtkkAb3vv6eiwCo8sFTYrpOu 1Z/FZqHfE8rzjBJmVGi73DvTfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA5764DD mQXYTTG6Y5L5oQSGYTNRMB8GA1UdIwQYMBaAFIxm+cDmaKyQgd9xDWBC30dJCwq5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTdGMC9BNjYzMTlGMDEy RDkxMUVBQTE2QTRCNjFDNEY5QUUwMi9qR2I1d09ab3JKQ0IzM0VOWUVMZlIwa0xD cmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pHYjV3T1pvckpDQjMzRU5ZRUxmUjBrTENyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTdGMC9BNjYzMTlGMDEyRDkxMUVBQTE2QTRCNjFDNEY5QUUwMi9qR2I1d09ab3JK Q0IzM0VOWUVMZlIwa0xDcmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGx3Ut5IttNJEvKoofnsb25NZuwebJrpM1OGJz6fqJvwTA2X6OAjHm j0UQTasnfayUdTmg0EguuOgXkPJCIwLX3/2reoMhWaxERHvHNZalIKfli5XbSoOm p8pHi+tzdgoxToOfPDpY6u47fyoRh0WGHz6Oglob0FDVKPaLCwgGPE1CX0j9RS5f Cv9M6UhTOU+nkGbjnCG5nQiaatS7+J/2QMZUwru90iuiW+hsU0vzc6aICOy3Awq6 Er2gtLkcNh32gI+IPG58QlFKUZR+Y4mjiZPJN9UZ5wCnDMyKANgfiBEgpiiX/A7u cBeCUwUm98c6WvQaDyZgs9jQD8cwDX8L -----END CERTIFICATE-----Generated at Thu May 30 21:37:30 2024 by rpki-client on console-fra.rpki-client.org