$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.mft File: W2pwDO4aU9VRnlolxk0a0ro3zac.mft (raw, json) Hash identifier: bLU+FUMifWS7kMy07XB1uUPC6I4IRlOHlxb615TrnvM= Subject key identifier: DA:7C:97:62:5E:39:22:CE:7A:E3:5D:7E:26:EF:42:2B:3B:AF:50:18 Authority key identifier: 5B:6A:70:0C:EE:1A:53:D5:51:9E:5A:25:C6:4D:1A:D2:BA:37:CD:A7 Certificate issuer: /CN=A91AAB94/serialNumber=5B6A700CEE1A53D5519E5A25C64D1AD2BA37CDA7 Certificate serial: 01A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W2pwDO4aU9VRnlolxk0a0ro3zac.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.mft Manifest number: 01A6 Signing time: Fri 31 May 2024 05:17:46 +0000 Manifest this update: Fri 31 May 2024 05:17:46 +0000 Manifest next update: Fri 07 Jun 2024 05:17:46 +0000 Files and hashes: 1: W2pwDO4aU9VRnlolxk0a0ro3zac.crl (hash: hQfEFsP7E1T5RbYaenc2SsF5XZsLF214XC7eHTTXLL0=) 2: 53AA673C16A911ED88058C80C4F9AE02.roa (hash: wIiTlgjGYw/GgiDbkbEV5PsTMcyG6vgWt/UNipW+wJg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.crl rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W2pwDO4aU9VRnlolxk0a0ro3zac.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 05:17:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 425 (0x1a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAB94/serialNumber=5B6A700CEE1A53D5519E5A25C64D1AD2BA37CDA7 Validity Not Before: May 31 05:17:46 2024 GMT Not After : Jun 7 05:17:46 2024 GMT Subject: CN=66595d7a-6734 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:3a:b6:8a:d3:1b:31:b3:bb:dd:6b:c6:50:f6: 57:b1:6a:f4:b7:b0:f8:86:e4:71:1e:af:f6:1c:57: 2e:a9:76:54:93:25:9c:73:7a:06:88:96:d1:9e:dc: e3:6d:9a:ab:67:a2:68:1a:1b:65:f4:6d:73:61:04: 99:10:a8:aa:95:28:8b:f4:e1:2e:0d:15:64:cb:8c: 22:bf:b8:e0:a9:2f:40:8f:22:8c:97:65:3e:b5:04: be:fb:ae:0c:d5:7d:14:ae:1d:84:d4:5e:3d:89:9e: fb:07:bc:c8:83:c4:f5:ad:0b:a7:ff:86:00:43:eb: 2c:a5:d9:61:a5:20:51:16:53:fe:9b:43:81:16:ef: 2b:0f:58:eb:c7:5a:45:71:af:de:4a:a1:75:8f:d5: 12:c6:23:92:db:e2:8d:6b:86:de:16:57:67:9f:11: b0:cf:5f:9b:d5:fe:f7:c5:5a:cc:45:96:cc:ba:45: 4e:17:5d:cb:41:ff:d9:6f:d4:48:f7:21:bf:a3:7e: 2b:4b:f4:cb:b7:bb:1b:d3:d3:24:b0:62:f7:a9:67: ab:0e:7a:5d:35:00:27:71:2f:e6:b3:76:de:a6:89: c1:09:b4:fb:10:04:84:38:ff:ab:54:f7:18:4f:cf: fa:c7:e4:3a:1b:22:ff:a1:9c:20:ba:9a:18:78:8c: 2f:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:7C:97:62:5E:39:22:CE:7A:E3:5D:7E:26:EF:42:2B:3B:AF:50:18 X509v3 Authority Key Identifier: keyid:5B:6A:70:0C:EE:1A:53:D5:51:9E:5A:25:C6:4D:1A:D2:BA:37:CD:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W2pwDO4aU9VRnlolxk0a0ro3zac.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:63:c7:57:9d:1b:2e:3d:af:d2:05:5d:b2:17:7c:43:7d:2f: 8a:33:8c:ae:07:92:08:f9:0c:da:f4:de:db:65:fc:04:da:cb: 13:ec:e1:26:52:75:34:4b:93:53:c1:36:54:f1:2b:3a:69:55: 1a:ae:8c:de:23:52:f7:c2:99:08:0e:d2:b8:ff:ae:47:6c:dc: 14:d6:c3:87:86:40:07:65:ee:d5:ad:45:88:58:04:88:04:a6: ab:3a:57:b9:76:2a:c6:41:55:65:c9:c8:69:83:ac:cb:d2:1e: 06:e5:be:3c:8c:85:b4:91:62:fd:c2:f2:d9:2a:be:42:2a:dc: 26:67:5d:eb:cf:41:33:17:3d:fa:45:c3:80:c3:a4:38:ac:44: 77:b3:d4:16:08:1f:c1:27:ab:3c:58:fa:ff:fa:19:56:0c:70: c3:db:b3:5c:5d:5a:8c:73:56:19:46:0c:92:81:bb:14:43:f7: 94:66:1c:8d:ad:b0:3d:d8:33:7e:5f:09:35:4e:03:70:13:c0: 72:6f:a2:e9:22:9a:e0:84:b3:0a:7f:7f:5e:5c:d6:58:ad:05: 89:4f:09:2c:c4:04:0e:ae:61:83:9c:be:6f:29:72:68:10:41: 5b:0c:3b:0c:d5:1a:1b:b8:40:92:b8:c7:74:a4:d5:4a:c8:5d: e9:74:a9:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFCOTQxMTAvBgNVBAUTKDVCNkE3MDBDRUUxQTUzRDU1MTlFNUEyNUM2NEQxQUQy QkEzN0NEQTcwHhcNMjQwNTMxMDUxNzQ2WhcNMjQwNjA3MDUxNzQ2WjAYMRYwFAYD VQQDEw02NjU5NWQ3YS02NzM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuDq2itMbMbO73WvGUPZXsWr0t7D4huRxHq/2HFcuqXZUkyWcc3oGiJbRntzj bZqrZ6JoGhtl9G1zYQSZEKiqlSiL9OEuDRVky4wiv7jgqS9AjyKMl2U+tQS++64M 1X0Urh2E1F49iZ77B7zIg8T1rQun/4YAQ+sspdlhpSBRFlP+m0OBFu8rD1jrx1pF ca/eSqF1j9USxiOS2+KNa4beFldnnxGwz1+b1f73xVrMRZbMukVOF13LQf/Zb9RI 9yG/o34rS/TLt7sb09MksGL3qWerDnpdNQAncS/ms3beponBCbT7EASEOP+rVPcY T8/6x+Q6GyL/oZwgupoYeIwvgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNp8l2Je OSLOeuNdfibvQis7r1AYMB8GA1UdIwQYMBaAFFtqcAzuGlPVUZ5aJcZNGtK6N82n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUI5NC83MDcwMjNGQTE2 QTYxMUVEQUMzQ0ExN0RDNEY5QUUwMi9XMnB3RE80YVU5VlJubG9seGswYTBybzN6 YWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1cycHdETzRhVTlWUm5sb2x4azBhMHJvM3phYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUI5NC83MDcwMjNGQTE2QTYxMUVEQUMzQ0ExN0RDNEY5QUUwMi9XMnB3RE80YVU5 VlJubG9seGswYTBybzN6YWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGY8dXnRsuPa/SBV2yF3xDfS+KM4yuB5II+Qza9N7bZfwE2ssT7OEm UnU0S5NTwTZU8Ss6aVUarozeI1L3wpkIDtK4/65HbNwU1sOHhkAHZe7VrUWIWASI BKarOle5dirGQVVlychpg6zL0h4G5b48jIW0kWL9wvLZKr5CKtwmZ13rz0EzFz36 RcOAw6Q4rER3s9QWCB/BJ6s8WPr/+hlWDHDD27NcXVqMc1YZRgySgbsUQ/eUZhyN rbA92DN+Xwk1TgNwE8Byb6LpIprghLMKf39eXNZYrQWJTwksxAQOrmGDnL5vKXJo EEFbDDsM1RobuECSuMd0pNVKyF3pdKms -----END CERTIFICATE-----Generated at Fri May 31 05:53:52 2024 by rpki-client on console-fra.rpki-client.org