$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft File: g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft (raw, json) Hash identifier: Rx1AtICCeihmL3OP6lPV4CikVVUriqXeHYICpuWDJ4A= Subject key identifier: 5E:61:F3:E1:FB:A1:1E:C0:3F:38:9F:AD:F8:7B:A6:61:A9:27:03:37 Authority key identifier: 83:B6:E7:EA:23:BD:C3:A3:8D:60:B4:FF:A2:EF:F5:A1:8F:1D:CD:68 Certificate issuer: /CN=A91AB4BA/serialNumber=83B6E7EA23BDC3A38D60B4FFA2EFF5A18F1DCD68 Certificate serial: FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7bn6iO9w6ONYLT_ou_1oY8dzWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft Manifest number: F7 Signing time: Sun 19 May 2024 05:43:48 +0000 Manifest this update: Sun 19 May 2024 05:43:47 +0000 Manifest next update: Sun 26 May 2024 05:43:47 +0000 Files and hashes: 1: g7bn6iO9w6ONYLT_ou_1oY8dzWg.crl (hash: VwLlQPcJyxCdOB2UfMnROwEZwYCN1/bK6FXtavZ51kM=) 2: 93E8AC909CA111ED97E7FC20C4F9AE02.roa (hash: zju4K/C7v4F1RhA6Xn7FNtNsJOBeW7+E9YT9HJNBEfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.crl rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7bn6iO9w6ONYLT_ou_1oY8dzWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 250 (0xfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB4BA/serialNumber=83B6E7EA23BDC3A38D60B4FFA2EFF5A18F1DCD68 Validity Not Before: May 19 05:43:47 2024 GMT Not After : May 26 05:43:47 2024 GMT Subject: CN=66499193-6e27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:64:3b:1b:b9:25:49:55:6a:15:24:e4:57:49: 69:14:dd:80:c1:e3:ae:bd:2c:a1:7d:5c:97:61:f4: 5e:65:01:66:79:ac:bd:c2:27:fb:2d:af:88:63:41: 85:25:11:97:0b:57:d1:d0:73:e7:96:0f:26:f0:57: 1a:e9:51:4a:0d:bf:b9:40:33:9b:bf:36:4e:bd:b4: bb:b6:69:ab:04:19:3f:8e:ae:79:0a:96:79:1c:0c: 38:dc:02:19:70:07:64:ea:c2:2f:62:a3:df:46:8c: 98:e2:58:31:67:a3:49:93:0c:a0:c5:07:36:07:5b: e7:27:07:e5:03:81:fe:b2:08:da:a6:98:15:7a:04: 77:0f:15:b8:0a:1f:d7:df:4f:e2:8d:f5:22:2d:fe: 4d:1f:64:85:b4:c1:5e:86:7f:e9:9d:e3:d7:ac:f9: 47:68:e5:34:2d:a2:16:5e:0e:84:b1:2f:0d:b8:23: 58:bd:60:0a:59:93:81:15:2f:13:90:45:49:95:bd: 4d:db:45:de:48:13:4a:29:ab:6b:9a:57:bf:0c:da: 43:17:7a:cc:28:48:ba:51:d8:a2:ed:f3:08:0d:7a: c9:05:57:88:3a:55:5d:34:ff:8d:92:02:01:a8:59: d0:62:ac:34:42:42:57:8c:11:bd:e1:3e:2f:db:3e: d5:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:61:F3:E1:FB:A1:1E:C0:3F:38:9F:AD:F8:7B:A6:61:A9:27:03:37 X509v3 Authority Key Identifier: keyid:83:B6:E7:EA:23:BD:C3:A3:8D:60:B4:FF:A2:EF:F5:A1:8F:1D:CD:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7bn6iO9w6ONYLT_ou_1oY8dzWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:18:32:c0:59:df:f1:b0:8a:bb:96:52:0d:bd:93:e8:2b:30: d5:e2:79:d3:7c:1b:af:a6:ac:e7:ae:10:4e:a1:52:1f:c5:e7: 89:ac:e2:8e:1d:7a:96:7e:a0:ee:ef:d1:36:fa:23:80:53:d6: 83:5a:b9:41:79:1a:d3:12:91:94:af:f4:c4:b7:ef:8f:e9:56: 1e:51:18:7d:24:8c:53:d8:ce:23:8c:e0:ed:ef:72:f0:a0:66: 11:39:d2:24:9c:6e:e4:6e:35:e4:3f:fd:13:80:46:cf:f7:ab: d2:8a:cf:b8:22:a0:c0:e9:a6:f7:86:b0:82:3f:cb:53:05:da: d5:0b:57:b0:1a:3d:89:78:34:6c:8c:b8:66:ec:27:4e:30:42: 49:32:f5:18:f0:18:5b:50:4f:de:c1:f4:3d:11:10:d5:f5:26: 3b:4d:7c:e4:3c:15:8a:e3:d1:49:5a:a3:cb:e1:f0:9d:3c:fa: 92:70:63:d5:3f:14:4c:64:c5:2d:5c:47:09:10:26:eb:c2:99: 6d:0f:54:24:3d:da:76:68:7b:c1:ef:28:be:45:49:1a:96:c2: ea:eb:b3:45:79:93:0a:1a:29:64:9e:0a:d3:15:4b:81:25:e5: 0b:74:8b:f4:73:bc:e5:6a:37:c3:e0:d2:01:46:ab:4a:57:ea: 45:d8:e0:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI0QkExMTAvBgNVBAUTKDgzQjZFN0VBMjNCREMzQTM4RDYwQjRGRkEyRUZGNUEx OEYxRENENjgwHhcNMjQwNTE5MDU0MzQ3WhcNMjQwNTI2MDU0MzQ3WjAYMRYwFAYD VQQDEw02NjQ5OTE5My02ZTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmQ7G7klSVVqFSTkV0lpFN2AweOuvSyhfVyXYfReZQFmeay9wif7La+IY0GF JRGXC1fR0HPnlg8m8Fca6VFKDb+5QDObvzZOvbS7tmmrBBk/jq55CpZ5HAw43AIZ cAdk6sIvYqPfRoyY4lgxZ6NJkwygxQc2B1vnJwflA4H+sgjappgVegR3DxW4Ch/X 30/ijfUiLf5NH2SFtMFehn/pnePXrPlHaOU0LaIWXg6EsS8NuCNYvWAKWZOBFS8T kEVJlb1N20XeSBNKKatrmle/DNpDF3rMKEi6Udii7fMIDXrJBVeIOlVdNP+NkgIB qFnQYqw0QkJXjBG94T4v2z7V/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF5h8+H7 oR7APzifrfh7pmGpJwM3MB8GA1UdIwQYMBaAFIO25+ojvcOjjWC0/6Lv9aGPHc1o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjRCQS9DNzNFMTg0NDlD OUUxMUVEOTFCNzE2MURDNEY5QUUwMi9nN2JuNmlPOXc2T05ZTFRfb3VfMW9ZOGR6 V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3Ym42aU85dzZPTllMVF9vdV8xb1k4ZHpXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjRCQS9DNzNFMTg0NDlDOUUxMUVEOTFCNzE2MURDNEY5QUUwMi9nN2JuNmlPOXc2 T05ZTFRfb3VfMW9ZOGR6V2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbGDLAWd/xsIq7llINvZPoKzDV4nnTfBuvpqznrhBOoVIfxeeJrOKO HXqWfqDu79E2+iOAU9aDWrlBeRrTEpGUr/TEt++P6VYeURh9JIxT2M4jjODt73Lw oGYROdIknG7kbjXkP/0TgEbP96vSis+4IqDA6ab3hrCCP8tTBdrVC1ewGj2JeDRs jLhm7CdOMEJJMvUY8BhbUE/ewfQ9ERDV9SY7TXzkPBWK49FJWqPL4fCdPPqScGPV PxRMZMUtXEcJECbrwpltD1QkPdp2aHvB7yi+RUkalsLq67NFeZMKGilkngrTFUuB JeULdIv0c7zlajfD4NIBRqtKV+pF2ODV -----END CERTIFICATE-----Generated at Sun May 19 07:40:44 2024 by rpki-client on console-fra.rpki-client.org