$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9AF0/F162DA4E9F9711E59488860FC4F9AE02/USYZ3gwdG7Pld5lO4MX_MNSRzQ4.mft File: USYZ3gwdG7Pld5lO4MX_MNSRzQ4.mft (raw, json) Hash identifier: roytk/zj8YHCyP7lz+NlTIA09RPnxDEVSjxd7pKz/ik= Subject key identifier: B7:85:C2:25:DA:AF:7D:A6:4C:8F:54:3D:B2:10:CA:A5:D0:4D:47:AF Authority key identifier: 51:26:19:DE:0C:1D:1B:B3:E5:77:99:4E:E0:C5:FF:30:D4:91:CD:0E Certificate issuer: /CN=A91B9AF0/serialNumber=512619DE0C1D1BB3E577994EE0C5FF30D491CD0E Certificate serial: 062D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USYZ3gwdG7Pld5lO4MX_MNSRzQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9AF0/F162DA4E9F9711E59488860FC4F9AE02/USYZ3gwdG7Pld5lO4MX_MNSRzQ4.mft Manifest number: 21DB Signing time: Sat 18 May 2024 16:12:27 +0000 Manifest this update: Sat 18 May 2024 16:12:27 +0000 Manifest next update: Sat 25 May 2024 16:12:27 +0000 Files and hashes: 1: USYZ3gwdG7Pld5lO4MX_MNSRzQ4.crl (hash: b8q18OKey3tJL0OMUBDJURnChFN5yqwLO7u1Gqyp8GY=) 2: CCC98C06516B11EBB8942876C4F9AE02.roa (hash: /fhtNcmyrQNnPwOcUtGVdfswzaZcrcFxrWX1S+M7JVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9AF0/F162DA4E9F9711E59488860FC4F9AE02/USYZ3gwdG7Pld5lO4MX_MNSRzQ4.crl rsync://rpki.apnic.net/member_repository/A91B9AF0/F162DA4E9F9711E59488860FC4F9AE02/USYZ3gwdG7Pld5lO4MX_MNSRzQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USYZ3gwdG7Pld5lO4MX_MNSRzQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1581 (0x62d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9AF0/serialNumber=512619DE0C1D1BB3E577994EE0C5FF30D491CD0E Validity Not Before: May 18 16:12:27 2024 GMT Not After : May 25 16:12:27 2024 GMT Subject: CN=6648d36b-86aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c9:48:e0:d1:e6:1b:d3:a5:6e:02:61:2f:b9: f4:ab:84:8f:e7:87:8d:69:e8:66:fb:22:22:80:89: 34:df:45:fa:ae:83:ad:f0:32:a8:11:2c:15:17:da: b9:0d:3c:48:bf:91:a4:a3:78:92:6d:b9:d9:27:e8: ca:63:2c:f8:bb:b4:c7:07:05:8a:7e:7e:e3:fe:8e: 4a:80:c9:bc:b5:47:11:84:07:54:94:a0:ff:59:61: de:d1:2b:54:54:e7:89:74:27:64:45:27:0b:78:9e: c5:a8:b5:2c:00:85:3a:9e:3c:10:90:8e:6d:85:69: 94:48:60:fc:b3:65:9f:86:c5:7b:ba:2a:b2:48:b3: eb:71:8c:6b:42:af:d0:31:0b:de:81:8f:b3:91:51: 3f:ce:2d:f6:e4:7f:03:7f:49:24:eb:e1:33:ce:fb: 5c:e8:00:42:00:f7:83:a6:2a:33:12:33:85:44:c1: 83:12:14:98:8a:87:66:4b:01:54:9b:dc:18:d4:36: 58:64:8c:93:c2:51:4f:8a:14:8f:5f:24:7e:1f:f2: d6:6a:bb:91:b3:ef:2f:67:4c:b8:27:ef:b2:25:f3: 7e:6d:da:24:61:f8:a9:5a:dc:00:a1:ef:c4:ca:f7: c4:09:c9:19:da:38:07:7c:1d:c6:d1:1f:69:a8:20: 41:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:85:C2:25:DA:AF:7D:A6:4C:8F:54:3D:B2:10:CA:A5:D0:4D:47:AF X509v3 Authority Key Identifier: keyid:51:26:19:DE:0C:1D:1B:B3:E5:77:99:4E:E0:C5:FF:30:D4:91:CD:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9AF0/F162DA4E9F9711E59488860FC4F9AE02/USYZ3gwdG7Pld5lO4MX_MNSRzQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USYZ3gwdG7Pld5lO4MX_MNSRzQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9AF0/F162DA4E9F9711E59488860FC4F9AE02/USYZ3gwdG7Pld5lO4MX_MNSRzQ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:3a:c1:00:39:31:f9:f0:9c:6d:b3:cd:e4:74:89:e0:5c:91: 26:37:28:16:68:29:56:88:ba:35:d6:59:fb:5c:4a:10:c9:fc: f3:3b:3c:0a:9f:d2:7e:64:b8:f8:44:39:40:fb:b8:2e:d5:50: cd:e0:78:39:94:77:6a:7e:ae:30:84:64:a7:72:89:d5:17:3c: 81:6e:b6:78:4d:87:29:5a:60:b2:12:67:88:00:3e:a6:5b:cf: 4b:8d:9e:c8:88:79:3d:87:a9:49:cb:ea:e4:0b:d0:89:1a:e7: f1:82:5d:29:b8:74:1d:7a:be:11:81:28:61:bf:cc:0b:99:1f: 4e:6f:20:26:73:0a:bb:f6:7e:1b:f0:5d:c7:60:ff:4f:0c:4c: 38:fb:20:f3:c4:ae:c6:6b:50:d5:dd:1e:58:1d:be:ef:74:9f: 99:4d:ee:5d:66:3d:1b:30:47:3d:54:42:63:18:7a:77:e2:c0: b1:b5:f4:d5:bb:4c:37:43:86:bd:5b:7b:d3:3f:3a:bc:d8:07: bf:dd:60:66:a2:60:9c:eb:f7:da:a2:cf:fb:2e:c4:07:ee:3c: 25:b9:b5:2a:aa:00:87:1d:e8:7d:32:99:b3:8a:2b:6d:97:7a: 34:75:a4:50:84:99:1c:55:c1:d3:eb:93:4c:d5:99:5a:a2:92: 40:36:d9:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlBRjAxMTAvBgNVBAUTKDUxMjYxOURFMEMxRDFCQjNFNTc3OTk0RUUwQzVGRjMw RDQ5MUNEMEUwHhcNMjQwNTE4MTYxMjI3WhcNMjQwNTI1MTYxMjI3WjAYMRYwFAYD VQQDEw02NjQ4ZDM2Yi04NmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMlI4NHmG9OlbgJhL7n0q4SP54eNaehm+yIigIk030X6roOt8DKoESwVF9q5 DTxIv5Gko3iSbbnZJ+jKYyz4u7THBwWKfn7j/o5KgMm8tUcRhAdUlKD/WWHe0StU VOeJdCdkRScLeJ7FqLUsAIU6njwQkI5thWmUSGD8s2WfhsV7uiqySLPrcYxrQq/Q MQvegY+zkVE/zi325H8Df0kk6+Ezzvtc6ABCAPeDpiozEjOFRMGDEhSYiodmSwFU m9wY1DZYZIyTwlFPihSPXyR+H/LWaruRs+8vZ0y4J++yJfN+bdokYfipWtwAoe/E yvfECckZ2jgHfB3G0R9pqCBBlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLeFwiXa r32mTI9UPbIQyqXQTUevMB8GA1UdIwQYMBaAFFEmGd4MHRuz5XeZTuDF/zDUkc0O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUFGMC9GMTYyREE0RTlG OTcxMUU1OTQ4ODg2MEZDNEY5QUUwMi9VU1laM2d3ZEc3UGxkNWxPNE1YX01OU1J6 UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTWVozZ3dkRzdQbGQ1bE80TVhfTU5TUnpRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUFGMC9GMTYyREE0RTlGOTcxMUU1OTQ4ODg2MEZDNEY5QUUwMi9VU1laM2d3ZEc3 UGxkNWxPNE1YX01OU1J6UTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHOsEAOTH58Jxts83kdIngXJEmNygWaClWiLo11ln7XEoQyfzzOzwK n9J+ZLj4RDlA+7gu1VDN4Hg5lHdqfq4whGSnconVFzyBbrZ4TYcpWmCyEmeIAD6m W89LjZ7IiHk9h6lJy+rkC9CJGufxgl0puHQder4RgShhv8wLmR9ObyAmcwq79n4b 8F3HYP9PDEw4+yDzxK7Ga1DV3R5YHb7vdJ+ZTe5dZj0bMEc9VEJjGHp34sCxtfTV u0w3Q4a9W3vTPzq82Ae/3WBmomCc6/faos/7LsQH7jwlubUqqgCHHeh9Mpmziitt l3o0daRQhJkcVcHT65NM1ZlaopJANtng -----END CERTIFICATE-----Generated at Sat May 18 16:57:54 2024 by rpki-client on console-fra.rpki-client.org