$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft File: cwYbqQQBgewK602PbgA_g4_JxI8.mft (raw, json) Hash identifier: AooO2t0pvAqKlyk6AZE91jyNXi4MT4TGQ/+Tbf64svo= Subject key identifier: E9:79:0A:8B:E7:97:A9:29:C7:F0:1C:90:D1:1A:32:23:6E:E3:C8:FC Authority key identifier: 73:06:1B:A9:04:01:81:EC:0A:EB:4D:8F:6E:00:3F:83:8F:C9:C4:8F Certificate issuer: /CN=A91B65AC/serialNumber=73061BA9040181EC0AEB4D8F6E003F838FC9C48F Certificate serial: 24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cwYbqQQBgewK602PbgA_g4_JxI8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft Manifest number: 23 Signing time: Sun 19 May 2024 08:33:35 +0000 Manifest this update: Sun 19 May 2024 08:33:35 +0000 Manifest next update: Sun 26 May 2024 08:33:35 +0000 Files and hashes: 1: cwYbqQQBgewK602PbgA_g4_JxI8.crl (hash: k3ixM9UGq1CCFyMof+BxtxaBbw1OTufyKyiaDDMyYpY=) 2: 7D2E766CE5AF11EE9A0A642FC4F9AE02.roa (hash: FB0V4RMdFHeXRpqHQF3eni47ItP+S5H4Tlgoc4AQRYQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.crl rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cwYbqQQBgewK602PbgA_g4_JxI8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65AC/serialNumber=73061BA9040181EC0AEB4D8F6E003F838FC9C48F Validity Not Before: May 19 08:33:35 2024 GMT Not After : May 26 08:33:35 2024 GMT Subject: CN=6649b95f-776d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c8:f6:5e:c9:fc:4f:2b:ea:9d:56:45:cf:b1: ae:64:00:d8:50:f9:a0:82:93:67:8c:3a:a9:ca:79: b2:36:ca:ef:e8:a6:2f:ff:83:4e:57:fc:6e:1f:d5: 68:24:60:30:c6:99:2b:26:16:c3:19:87:47:b0:9c: 0c:6d:6f:dc:61:b6:b4:4f:d9:54:ca:bc:87:6e:2e: 59:52:8e:df:a2:80:ef:02:36:e5:88:84:0b:cf:fe: a7:90:1e:ba:5c:04:30:82:fb:d3:0a:43:0a:fe:06: ce:04:aa:71:0b:70:2d:1f:83:23:07:0c:80:af:0f: 55:51:a5:92:15:3f:00:a3:8a:a4:31:55:cd:d4:b9: 2b:7a:34:ea:ec:09:4a:1f:de:17:73:3e:50:a0:23: a7:d8:f1:b0:9b:bd:08:36:d6:7d:34:9b:82:40:f4: 03:4d:fa:2b:13:60:14:2b:b8:7d:c0:58:2a:1b:63: 5e:57:e2:b7:22:90:7d:f3:70:24:30:2e:01:4c:59: 19:50:34:83:b3:c8:ea:20:0a:10:4a:cf:cf:aa:7e: ec:87:dc:f7:86:75:c2:33:3b:c5:1e:3b:c3:25:a0: 02:8f:37:c7:d3:f2:e6:ae:87:e0:84:01:23:49:e4: ce:79:f4:91:5a:23:dd:9d:d1:a9:f4:0d:c3:8c:4b: 04:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:79:0A:8B:E7:97:A9:29:C7:F0:1C:90:D1:1A:32:23:6E:E3:C8:FC X509v3 Authority Key Identifier: keyid:73:06:1B:A9:04:01:81:EC:0A:EB:4D:8F:6E:00:3F:83:8F:C9:C4:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cwYbqQQBgewK602PbgA_g4_JxI8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:0a:27:2a:3c:a3:d3:e2:4d:2b:3a:49:fe:8a:b4:63:85:f9: 22:4f:dd:04:84:a8:7c:14:c1:da:37:34:77:e1:9f:f1:08:62: d9:3b:df:06:1e:4f:c4:16:fe:06:73:63:f4:03:21:44:2e:6a: ec:ed:8c:8d:76:ad:c5:9c:7a:1f:55:e2:4f:e7:e2:0f:b0:59: 5b:7b:57:70:55:54:89:34:2e:c3:9c:4b:43:15:ea:f4:5b:f4: 3e:39:3a:d7:75:9a:12:68:ec:71:e1:e7:f3:f0:36:ff:b4:09: 3c:1b:d5:52:18:66:6a:50:4c:fd:49:0d:a4:24:01:b7:9e:ce: 28:45:ca:75:89:f7:f8:68:8d:dc:92:67:c7:28:79:74:7c:8b: 8f:47:5f:14:d5:19:8d:8e:07:5e:6d:81:ad:8d:46:93:e5:66: 5b:67:cf:c8:5e:2e:32:8f:67:60:4e:e1:4b:1a:44:09:95:62: 5e:87:0f:78:32:36:12:54:dc:42:6e:bd:56:99:94:f4:51:09: df:56:0f:80:4a:7e:a4:00:54:d7:54:a8:59:cb:04:e1:fd:55: 36:26:12:de:7f:05:b8:bf:a5:e1:5e:64:6d:af:58:fe:0a:2a: c6:6c:ed:aa:6c:48:54:be:76:b8:ca:b0:9f:3e:11:b2:0b:0b: 5a:9e:9e:6c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NjVBQzExMC8GA1UEBRMoNzMwNjFCQTkwNDAxODFFQzBBRUI0RDhGNkUwMDNGODM4 RkM5QzQ4RjAeFw0yNDA1MTkwODMzMzVaFw0yNDA1MjYwODMzMzVaMBgxFjAUBgNV BAMTDTY2NDliOTVmLTc3NmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtyPZeyfxPK+qdVkXPsa5kANhQ+aCCk2eMOqnKebI2yu/opi//g05X/G4f1Wgk YDDGmSsmFsMZh0ewnAxtb9xhtrRP2VTKvIduLllSjt+igO8CNuWIhAvP/qeQHrpc BDCC+9MKQwr+Bs4EqnELcC0fgyMHDICvD1VRpZIVPwCjiqQxVc3UuSt6NOrsCUof 3hdzPlCgI6fY8bCbvQg21n00m4JA9ANN+isTYBQruH3AWCobY15X4rcikH3zcCQw LgFMWRlQNIOzyOogChBKz8+qfuyH3PeGdcIzO8UeO8MloAKPN8fT8uauh+CEASNJ 5M559JFaI92d0an0DcOMSwQXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6XkKi+eX qSnH8ByQ0RoyI27jyPwwHwYDVR0jBBgwFoAUcwYbqQQBgewK602PbgA/g4/JxI8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2NUFDL0Q0RjNEQjlFRTFF MDExRUVBRjZFMUU2OEM0RjlBRTAyL2N3WWJxUVFCZ2V3SzYwMlBiZ0FfZzRfSnhJ OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY3dZYnFRUUJnZXdLNjAyUGJnQV9nNF9KeEk4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2 NUFDL0Q0RjNEQjlFRTFFMDExRUVBRjZFMUU2OEM0RjlBRTAyL2N3WWJxUVFCZ2V3 SzYwMlBiZ0FfZzRfSnhJOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKQKJyo8o9PiTSs6Sf6KtGOF+SJP3QSEqHwUwdo3NHfhn/EIYtk73wYe T8QW/gZzY/QDIUQuauztjI12rcWceh9V4k/n4g+wWVt7V3BVVIk0LsOcS0MV6vRb 9D45Otd1mhJo7HHh5/PwNv+0CTwb1VIYZmpQTP1JDaQkAbeezihFynWJ9/hojdyS Z8coeXR8i49HXxTVGY2OB15tga2NRpPlZltnz8heLjKPZ2BO4UsaRAmVYl6HD3gy NhJU3EJuvVaZlPRRCd9WD4BKfqQAVNdUqFnLBOH9VTYmEt5/Bbi/peFeZG2vWP4K KsZs7apsSFS+drjKsJ8+EbILC1qenmw= -----END CERTIFICATE-----Generated at Sun May 19 09:04:14 2024 by rpki-client on console-fra.rpki-client.org