$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft File: cNpFkZHpBoa9sKxHq9owqcPhdPo.mft (raw, json) Hash identifier: 6iUGHwOHBVCfXTzfJwd0Gn+bZF6j7EbVGkcsjN/CjO8= Subject key identifier: D7:6D:1F:3F:70:5C:6B:21:A4:E2:F3:13:49:EC:6C:A9:02:F3:CD:A1 Authority key identifier: 70:DA:45:91:91:E9:06:86:BD:B0:AC:47:AB:DA:30:A9:C3:E1:74:FA Certificate issuer: /CN=A91AF145/serialNumber=70DA459191E90686BDB0AC47ABDA30A9C3E174FA Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNpFkZHpBoa9sKxHq9owqcPhdPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft Manifest number: 97 Signing time: Sun 19 May 2024 06:58:22 +0000 Manifest this update: Sun 19 May 2024 06:58:22 +0000 Manifest next update: Sun 26 May 2024 06:58:22 +0000 Files and hashes: 1: cNpFkZHpBoa9sKxHq9owqcPhdPo.crl (hash: u0kR1k9KVtnTUslZd99uixCg8KInwoGeUeHsNaIqgTc=) 2: 971B23D236EA11EE802E9246C4F9AE02.roa (hash: fD87KQzwm9qKp1IVjcCJ2vaovBXqn6b5QBx0LG3czZE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.crl rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNpFkZHpBoa9sKxHq9owqcPhdPo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF145/serialNumber=70DA459191E90686BDB0AC47ABDA30A9C3E174FA Validity Not Before: May 19 06:58:22 2024 GMT Not After : May 26 06:58:22 2024 GMT Subject: CN=6649a30e-0ac2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ba:ae:d9:71:a4:f1:c0:c9:ed:2c:80:40:c1: d5:4a:99:2f:27:54:2a:ae:c8:7d:27:e6:92:75:72: 7f:1d:72:ce:18:fa:69:e9:0b:f8:f1:ea:4e:be:54: 11:0f:04:e3:7e:2e:9c:74:db:b1:22:f9:9e:9e:d5: fd:b9:e1:6f:d5:2d:41:b0:4d:bc:8e:d2:2f:e8:76: a4:d8:ec:ad:79:0f:4b:6b:d3:28:b9:c1:31:ed:35: 22:e4:df:b1:ed:57:4d:9f:7a:eb:1d:ec:69:90:94: fd:62:45:b9:ea:33:25:0d:47:31:de:f4:5f:7f:be: 6c:41:60:9a:66:42:79:65:bd:97:bd:f5:03:41:ae: 64:99:cf:c5:6d:92:32:cd:4a:5d:04:62:1f:0f:97: 73:c3:6f:27:bd:44:12:a3:d8:44:df:f1:38:7c:d6: 8a:45:b8:69:53:a5:d0:38:c1:f7:48:21:2b:24:20: ac:cf:94:e5:a2:60:9e:da:53:97:d9:c2:08:12:34: 8a:59:ec:d9:b0:e5:dd:1f:91:af:e9:af:ae:17:d8: 7d:d4:33:df:a9:6a:74:de:80:53:ad:ca:5a:9c:4e: fc:c1:a5:ee:70:7d:d2:d2:27:3b:9f:91:90:5e:90: e3:67:35:a2:ff:c7:9d:f9:1b:7f:e7:ff:c1:cc:74: 57:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:6D:1F:3F:70:5C:6B:21:A4:E2:F3:13:49:EC:6C:A9:02:F3:CD:A1 X509v3 Authority Key Identifier: keyid:70:DA:45:91:91:E9:06:86:BD:B0:AC:47:AB:DA:30:A9:C3:E1:74:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNpFkZHpBoa9sKxHq9owqcPhdPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:16:08:6b:34:dc:62:de:61:63:ec:08:2e:e7:ef:17:e4:01: 21:45:b8:05:e8:da:ea:08:68:6a:74:29:08:37:33:e0:64:32: ce:46:89:ec:19:a7:37:b1:97:61:c1:96:b3:32:65:a3:cd:77: 77:be:2b:42:30:9d:38:a5:a5:48:ed:b5:b2:2c:77:81:ef:1b: 03:fd:d0:18:12:14:c8:ae:72:23:c3:bb:0e:6a:59:9c:7c:d6: 10:6b:d0:f6:9e:4a:90:f1:94:7f:3b:be:8b:5c:c4:bb:04:46: 01:60:a0:78:8d:4c:05:b0:d3:ca:0a:18:98:36:25:50:92:80: 8b:8b:b8:e3:e1:f2:c0:ff:58:c8:bd:f4:bd:f6:b3:67:33:87: 96:dd:92:71:3e:6e:95:42:30:71:73:81:60:ab:73:31:52:8b: 7c:56:69:fc:a3:8b:8b:d3:95:45:a0:c4:a9:ef:de:b1:97:75: 86:ee:22:ed:24:8e:de:a9:90:ee:04:f5:31:8a:b0:ad:37:d3: 71:9c:73:be:c7:ca:ab:f3:ea:1f:77:97:31:06:d2:59:65:fa: 47:27:96:85:4d:3f:b8:0f:01:0f:d5:db:7a:8b:d6:91:7d:2a: 37:58:15:3d:64:69:25:3e:f4:b9:38:07:58:f4:09:62:75:13: 1d:ed:57:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYxNDUxMTAvBgNVBAUTKDcwREE0NTkxOTFFOTA2ODZCREIwQUM0N0FCREEzMEE5 QzNFMTc0RkEwHhcNMjQwNTE5MDY1ODIyWhcNMjQwNTI2MDY1ODIyWjAYMRYwFAYD VQQDEw02NjQ5YTMwZS0wYWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2rqu2XGk8cDJ7SyAQMHVSpkvJ1Qqrsh9J+aSdXJ/HXLOGPpp6Qv48epOvlQR DwTjfi6cdNuxIvmentX9ueFv1S1BsE28jtIv6Hak2OyteQ9La9MoucEx7TUi5N+x 7VdNn3rrHexpkJT9YkW56jMlDUcx3vRff75sQWCaZkJ5Zb2XvfUDQa5kmc/FbZIy zUpdBGIfD5dzw28nvUQSo9hE3/E4fNaKRbhpU6XQOMH3SCErJCCsz5TlomCe2lOX 2cIIEjSKWezZsOXdH5Gv6a+uF9h91DPfqWp03oBTrcpanE78waXucH3S0ic7n5GQ XpDjZzWi/8ed+Rt/5//BzHRXpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNdtHz9w XGshpOLzE0nsbKkC882hMB8GA1UdIwQYMBaAFHDaRZGR6QaGvbCsR6vaMKnD4XT6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjE0NS8yNzgwNzNDRTM2 RUExMUVFQUUxMEFBNDVDNEY5QUUwMi9jTnBGa1pIcEJvYTlzS3hIcTlvd3FjUGhk UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NOcEZrWkhwQm9hOXNLeEhxOW93cWNQaGRQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjE0NS8yNzgwNzNDRTM2RUExMUVFQUUxMEFBNDVDNEY5QUUwMi9jTnBGa1pIcEJv YTlzS3hIcTlvd3FjUGhkUG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlFghrNNxi3mFj7Agu5+8X5AEhRbgF6NrqCGhqdCkINzPgZDLORons Gac3sZdhwZazMmWjzXd3vitCMJ04paVI7bWyLHeB7xsD/dAYEhTIrnIjw7sOalmc fNYQa9D2nkqQ8ZR/O76LXMS7BEYBYKB4jUwFsNPKChiYNiVQkoCLi7jj4fLA/1jI vfS99rNnM4eW3ZJxPm6VQjBxc4Fgq3MxUot8Vmn8o4uL05VFoMSp796xl3WG7iLt JI7eqZDuBPUxirCtN9NxnHO+x8qr8+ofd5cxBtJZZfpHJ5aFTT+4DwEP1dt6i9aR fSo3WBU9ZGklPvS5OAdY9AlidRMd7VcO -----END CERTIFICATE-----Generated at Sun May 19 07:40:44 2024 by rpki-client on console-fra.rpki-client.org