$ rpki-client -vvf rpki.apnic.net/member_repository/A91B43D7/E9F5D93E652411EB983F1B11C4F9AE02/8rcLSXMivuZoIO0_ziiqeW2wkVM.mft File: 8rcLSXMivuZoIO0_ziiqeW2wkVM.mft (raw, json) Hash identifier: rZIBqe+aa+s+ZSI1bFF6ezx5zDDW1DbGbsZzj5H4V5w= Subject key identifier: 71:2A:B7:52:23:FD:27:1B:F6:93:B5:89:FE:3C:BB:C3:7F:19:A9:51 Authority key identifier: F2:B7:0B:49:73:22:BE:E6:68:20:ED:3F:CE:28:AA:79:6D:B0:91:53 Certificate issuer: /CN=A91B43D7/serialNumber=F2B70B497322BEE66820ED3FCE28AA796DB09153 Certificate serial: 05EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8rcLSXMivuZoIO0_ziiqeW2wkVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B43D7/E9F5D93E652411EB983F1B11C4F9AE02/8rcLSXMivuZoIO0_ziiqeW2wkVM.mft Manifest number: 05EA Signing time: Sun 19 May 2024 00:00:36 +0000 Manifest this update: Sun 19 May 2024 00:00:35 +0000 Manifest next update: Sun 26 May 2024 00:00:35 +0000 Files and hashes: 1: 8rcLSXMivuZoIO0_ziiqeW2wkVM.crl (hash: rW3Lt5CY/k4Ez0in+brTDcpWamHPMKW4FeaAJibAoFw=) 2: 643961CCB39811EBBD3F524CC4F9AE02.roa (hash: taFGAacxq2sm6Y1QRRo3KlRLFJEopO93ww8dAQZR/68=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B43D7/E9F5D93E652411EB983F1B11C4F9AE02/8rcLSXMivuZoIO0_ziiqeW2wkVM.crl rsync://rpki.apnic.net/member_repository/A91B43D7/E9F5D93E652411EB983F1B11C4F9AE02/8rcLSXMivuZoIO0_ziiqeW2wkVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8rcLSXMivuZoIO0_ziiqeW2wkVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1518 (0x5ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B43D7/serialNumber=F2B70B497322BEE66820ED3FCE28AA796DB09153 Validity Not Before: May 19 00:00:35 2024 GMT Not After : May 26 00:00:35 2024 GMT Subject: CN=66494124-1352 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:f7:76:7f:49:00:d8:6c:99:27:4a:15:13:0d: 4b:77:d7:0f:53:e5:b5:46:b4:01:59:ad:c8:cd:54: bd:85:17:fa:30:68:de:e9:02:3d:85:2b:0b:49:83: 9d:09:ff:de:b6:85:22:c5:61:97:84:81:ab:c2:23: 19:3b:73:b5:30:b3:46:45:8c:24:89:af:58:1a:03: c1:67:bb:20:f7:2b:aa:56:ac:48:94:fc:0a:eb:29: a6:d4:4a:84:64:b1:86:b9:27:ae:30:54:60:13:97: f0:26:ea:13:fb:af:a6:14:08:b6:ef:ef:c6:08:ff: 1c:3f:a0:bb:ae:66:ab:f3:6d:1c:46:01:fe:59:45: ac:e8:67:5b:3b:93:25:3f:ec:bb:bb:62:d3:1a:3e: 11:e2:9b:ea:9d:60:16:29:4a:13:e3:78:32:7f:08: a8:db:3c:31:50:9a:1e:3f:11:aa:49:da:47:3a:34: bc:e2:0e:0f:5f:5b:77:a8:30:b1:b0:52:23:9c:53: 4a:dd:f8:52:7b:38:fc:30:88:58:2e:b2:2a:1d:53: 90:3f:6a:dc:39:f1:b6:9f:16:a3:95:6c:f3:c6:2d: cf:d0:9b:7e:fd:e2:7c:9f:66:eb:5a:7e:71:e8:b1: 22:8b:df:39:7a:9a:c6:7d:da:6c:02:15:b0:6b:4a: e9:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:2A:B7:52:23:FD:27:1B:F6:93:B5:89:FE:3C:BB:C3:7F:19:A9:51 X509v3 Authority Key Identifier: keyid:F2:B7:0B:49:73:22:BE:E6:68:20:ED:3F:CE:28:AA:79:6D:B0:91:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B43D7/E9F5D93E652411EB983F1B11C4F9AE02/8rcLSXMivuZoIO0_ziiqeW2wkVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8rcLSXMivuZoIO0_ziiqeW2wkVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B43D7/E9F5D93E652411EB983F1B11C4F9AE02/8rcLSXMivuZoIO0_ziiqeW2wkVM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:5f:5d:0e:40:d6:8d:68:58:fd:ee:02:4b:5b:9c:e0:dc:34: db:9a:1a:25:0e:04:af:88:d3:a5:63:83:fb:0d:8b:ca:9e:03: 0a:3a:b3:b3:10:76:44:e2:7b:d5:7d:9a:bf:24:c6:71:92:9d: 7b:07:91:7f:d3:e1:2b:93:96:88:56:12:ac:d5:fa:80:32:7f: 4e:5d:c4:95:0f:b1:1a:6b:63:3e:a7:c8:a1:2c:93:b4:b4:f6: e9:0b:9f:82:05:5f:05:92:15:cd:4d:ec:be:d4:94:87:17:0a: 13:26:68:56:96:be:30:d5:52:1d:b8:e7:32:c4:bc:52:88:09: 10:8f:ab:5e:35:20:86:b4:cd:82:f6:1a:c4:57:9a:4f:b3:cc: ff:aa:16:c0:f5:3e:8f:3c:12:49:06:39:df:1e:a6:a3:d0:03: 48:1f:3a:54:af:27:5e:cd:f7:25:df:94:93:3a:f0:73:2e:9a: 0f:a4:c3:ad:ae:2e:43:35:4f:9c:18:fb:79:40:8a:d8:62:21: 57:43:22:f7:58:01:c9:b3:0a:19:92:20:a3:09:30:7e:63:63: 90:61:dd:b9:a8:6a:5a:5d:ce:30:95:cd:29:7f:0e:a0:c1:72: 92:4a:12:5d:e4:74:36:31:9a:4b:e4:7b:c1:61:d4:13:47:bd: b4:5c:69:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQzRDcxMTAvBgNVBAUTKEYyQjcwQjQ5NzMyMkJFRTY2ODIwRUQzRkNFMjhBQTc5 NkRCMDkxNTMwHhcNMjQwNTE5MDAwMDM1WhcNMjQwNTI2MDAwMDM1WjAYMRYwFAYD VQQDEw02NjQ5NDEyNC0xMzUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7vd2f0kA2GyZJ0oVEw1Ld9cPU+W1RrQBWa3IzVS9hRf6MGje6QI9hSsLSYOd Cf/etoUixWGXhIGrwiMZO3O1MLNGRYwkia9YGgPBZ7sg9yuqVqxIlPwK6ymm1EqE ZLGGuSeuMFRgE5fwJuoT+6+mFAi27+/GCP8cP6C7rmar820cRgH+WUWs6GdbO5Ml P+y7u2LTGj4R4pvqnWAWKUoT43gyfwio2zwxUJoePxGqSdpHOjS84g4PX1t3qDCx sFIjnFNK3fhSezj8MIhYLrIqHVOQP2rcOfG2nxajlWzzxi3P0Jt+/eJ8n2brWn5x 6LEii985eprGfdpsAhWwa0rpFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHEqt1Ij /Scb9pO1if48u8N/GalRMB8GA1UdIwQYMBaAFPK3C0lzIr7maCDtP84oqnltsJFT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDNENy9FOUY1RDkzRTY1 MjQxMUVCOTgzRjFCMTFDNEY5QUUwMi84cmNMU1hNaXZ1Wm9JTzBfemlpcWVXMndr Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhyY0xTWE1pdnVab0lPMF96aWlxZVcyd2tWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDNENy9FOUY1RDkzRTY1MjQxMUVCOTgzRjFCMTFDNEY5QUUwMi84cmNMU1hNaXZ1 Wm9JTzBfemlpcWVXMndrVk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeX10OQNaNaFj97gJLW5zg3DTbmholDgSviNOlY4P7DYvKngMKOrOz EHZE4nvVfZq/JMZxkp17B5F/0+Erk5aIVhKs1fqAMn9OXcSVD7Eaa2M+p8ihLJO0 tPbpC5+CBV8FkhXNTey+1JSHFwoTJmhWlr4w1VIduOcyxLxSiAkQj6teNSCGtM2C 9hrEV5pPs8z/qhbA9T6PPBJJBjnfHqaj0ANIHzpUrydezfcl35STOvBzLpoPpMOt ri5DNU+cGPt5QIrYYiFXQyL3WAHJswoZkiCjCTB+Y2OQYd25qGpaXc4wlc0pfw6g wXKSShJd5HQ2MZpL5HvBYdQTR720XGnj -----END CERTIFICATE-----Generated at Sun May 19 00:59:42 2024 by rpki-client on console-fra.rpki-client.org