$ rpki-client -vvf rpki.apnic.net/member_repository/A91B85FC/8816EFF8493411EAAD84BF1EC4F9AE02/V09tVmTqm98xXPZMjl5n0mODwgU.mft File: V09tVmTqm98xXPZMjl5n0mODwgU.mft (raw, json) Hash identifier: eL4WJfk63iu2lU8J+xLpiCQT7JMuP6cD9hIDgL0vA8U= Subject key identifier: 42:57:D3:7B:21:26:73:AC:5D:09:89:C5:14:AE:32:AE:B3:2E:8A:F1 Authority key identifier: 57:4F:6D:56:64:EA:9B:DF:31:5C:F6:4C:8E:5E:67:D2:63:83:C2:05 Certificate issuer: /CN=A91B85FC/serialNumber=574F6D5664EA9BDF315CF64C8E5E67D26383C205 Certificate serial: 0A25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V09tVmTqm98xXPZMjl5n0mODwgU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B85FC/8816EFF8493411EAAD84BF1EC4F9AE02/V09tVmTqm98xXPZMjl5n0mODwgU.mft Manifest number: 0A20 Signing time: Sat 18 May 2024 20:35:19 +0000 Manifest this update: Sat 18 May 2024 20:35:18 +0000 Manifest next update: Sat 25 May 2024 20:35:18 +0000 Files and hashes: 1: V09tVmTqm98xXPZMjl5n0mODwgU.crl (hash: 05RMMT0XC8jJnwXxUJkXbkx0t3p6PU4VzLI1IvLgzz8=) 2: 52216250493611EAA0968624C4F9AE02.roa (hash: WGGHcW/1qFo1xTJ57s27DMiHNZ7jYjj6vDk/JDV7bw0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B85FC/8816EFF8493411EAAD84BF1EC4F9AE02/V09tVmTqm98xXPZMjl5n0mODwgU.crl rsync://rpki.apnic.net/member_repository/A91B85FC/8816EFF8493411EAAD84BF1EC4F9AE02/V09tVmTqm98xXPZMjl5n0mODwgU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V09tVmTqm98xXPZMjl5n0mODwgU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2597 (0xa25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B85FC/serialNumber=574F6D5664EA9BDF315CF64C8E5E67D26383C205 Validity Not Before: May 18 20:35:18 2024 GMT Not After : May 25 20:35:18 2024 GMT Subject: CN=66491106-c619 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e9:27:91:fa:43:1d:3c:a4:92:33:54:06:5f: fb:aa:63:d9:28:e1:4d:13:25:40:02:d1:a2:66:fd: 7f:ef:ca:f0:23:99:9f:f1:84:c1:0a:06:01:6b:c2: a6:de:2c:31:19:0d:e2:1e:bb:96:ae:c7:0c:26:ef: 14:19:39:09:c4:41:c0:eb:61:c4:41:da:e4:25:09: c7:76:1d:a8:e9:a2:9a:8a:be:ef:5d:28:99:ec:e9: e1:c9:60:7b:95:4b:b8:ac:4f:f7:60:ff:5f:8a:04: f6:59:d8:a2:6d:3b:b7:c2:e5:5b:ca:28:67:e6:a6: 6d:8d:05:11:f8:6a:e6:e6:fe:fd:9a:f2:c0:4b:09: d9:c3:cb:05:19:aa:c2:bb:b4:39:02:77:bd:2a:e7: 7e:0b:dc:79:f0:f0:e0:62:5b:1d:6b:3e:9e:38:b9: a6:fe:0f:b4:69:b7:97:ba:57:36:41:d9:1a:c9:af: 12:58:a2:96:8b:5e:0c:8b:1c:7f:36:72:6e:d9:7e: 3b:34:14:88:18:cc:ca:68:a7:7a:bd:87:c3:86:40: e3:e0:a9:25:04:9a:54:0e:70:34:af:fa:0d:a5:97: ab:72:b0:02:62:b2:44:9c:d1:43:7b:c0:e9:17:61: c5:a4:2d:f2:3e:e6:9f:a9:0c:3f:fe:8f:c7:7d:13: 9c:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:57:D3:7B:21:26:73:AC:5D:09:89:C5:14:AE:32:AE:B3:2E:8A:F1 X509v3 Authority Key Identifier: keyid:57:4F:6D:56:64:EA:9B:DF:31:5C:F6:4C:8E:5E:67:D2:63:83:C2:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B85FC/8816EFF8493411EAAD84BF1EC4F9AE02/V09tVmTqm98xXPZMjl5n0mODwgU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V09tVmTqm98xXPZMjl5n0mODwgU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B85FC/8816EFF8493411EAAD84BF1EC4F9AE02/V09tVmTqm98xXPZMjl5n0mODwgU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:53:32:eb:18:ae:24:82:e9:10:3e:ea:45:ac:69:97:27:ca: 38:dd:95:51:fd:38:61:28:65:df:97:e5:d6:4a:10:44:1a:47: 83:3e:48:d6:59:28:4c:ad:85:f3:75:1c:8f:e0:3c:db:a9:2a: 39:04:f8:02:c5:e5:c6:3a:5d:80:df:1f:2a:2d:4e:1c:7c:99: 66:16:01:b4:e3:09:2b:7c:d7:59:c2:a9:67:50:62:db:d3:1d: 51:ba:13:70:dc:0c:59:6d:e4:1d:e0:ca:d8:b2:c2:34:d5:ff: 60:bc:cf:fa:85:10:2d:92:65:02:0e:49:08:d9:8f:14:e6:e5: b4:41:f2:c1:7a:ce:52:3d:37:c8:ea:95:41:d1:1a:84:f2:f5: 04:57:29:4d:02:2c:02:56:4f:72:5e:4b:cb:75:61:1d:29:e6: 4a:38:ec:e9:8f:9d:b4:27:e3:1b:89:57:be:0c:02:68:60:2b: 6e:1f:6f:42:d4:c8:c0:a8:21:16:43:81:eb:4d:5c:e3:44:aa: f3:15:e7:76:54:83:a7:b4:a4:8f:63:b4:8d:b2:5e:8a:84:4d: 5a:f4:a0:9f:c0:d7:c1:8d:6a:9a:33:3e:0f:0d:90:97:93:b4: 89:ec:7e:b8:fa:e8:45:78:81:aa:6f:b6:ac:24:26:f0:cf:2d: 17:99:85:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjg1RkMxMTAvBgNVBAUTKDU3NEY2RDU2NjRFQTlCREYzMTVDRjY0QzhFNUU2N0Qy NjM4M0MyMDUwHhcNMjQwNTE4MjAzNTE4WhcNMjQwNTI1MjAzNTE4WjAYMRYwFAYD VQQDEw02NjQ5MTEwNi1jNjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOknkfpDHTykkjNUBl/7qmPZKOFNEyVAAtGiZv1/78rwI5mf8YTBCgYBa8Km 3iwxGQ3iHruWrscMJu8UGTkJxEHA62HEQdrkJQnHdh2o6aKair7vXSiZ7OnhyWB7 lUu4rE/3YP9figT2WdiibTu3wuVbyihn5qZtjQUR+Grm5v79mvLASwnZw8sFGarC u7Q5Ane9Kud+C9x58PDgYlsdaz6eOLmm/g+0abeXulc2Qdkaya8SWKKWi14Mixx/ NnJu2X47NBSIGMzKaKd6vYfDhkDj4KklBJpUDnA0r/oNpZercrACYrJEnNFDe8Dp F2HFpC3yPuafqQw//o/HfROcTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEJX03sh JnOsXQmJxRSuMq6zLorxMB8GA1UdIwQYMBaAFFdPbVZk6pvfMVz2TI5eZ9Jjg8IF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODVGQy84ODE2RUZGODQ5 MzQxMUVBQUQ4NEJGMUVDNEY5QUUwMi9WMDl0Vm1UcW05OHhYUFpNamw1bjBtT0R3 Z1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1YwOXRWbVRxbTk4eFhQWk1qbDVuMG1PRHdnVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODVGQy84ODE2RUZGODQ5MzQxMUVBQUQ4NEJGMUVDNEY5QUUwMi9WMDl0Vm1UcW05 OHhYUFpNamw1bjBtT0R3Z1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwUzLrGK4kgukQPupFrGmXJ8o43ZVR/ThhKGXfl+XWShBEGkeDPkjW WShMrYXzdRyP4DzbqSo5BPgCxeXGOl2A3x8qLU4cfJlmFgG04wkrfNdZwqlnUGLb 0x1RuhNw3AxZbeQd4MrYssI01f9gvM/6hRAtkmUCDkkI2Y8U5uW0QfLBes5SPTfI 6pVB0RqE8vUEVylNAiwCVk9yXkvLdWEdKeZKOOzpj520J+MbiVe+DAJoYCtuH29C 1MjAqCEWQ4HrTVzjRKrzFed2VIOntKSPY7SNsl6KhE1a9KCfwNfBjWqaMz4PDZCX k7SJ7H64+uhFeIGqb7asJCbwzy0XmYUZ -----END CERTIFICATE-----Generated at Sat May 18 21:24:23 2024 by rpki-client on console-fra.rpki-client.org