$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft File: 2cZrDkILkTQXPVU9FqoLFGt3R3M.mft (raw, json) Hash identifier: pFaejbSbhwhwsusTfnkBFWQ6W2oGUUknxQPXqCG/OtE= Subject key identifier: 10:11:84:50:74:28:74:0F:F1:55:73:81:09:2E:06:F3:7C:4F:2E:ED Authority key identifier: D9:C6:6B:0E:42:0B:91:34:17:3D:55:3D:16:AA:0B:14:6B:77:47:73 Certificate issuer: /CN=A91B9B0D/serialNumber=D9C66B0E420B9134173D553D16AA0B146B774773 Certificate serial: 058F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cZrDkILkTQXPVU9FqoLFGt3R3M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft Manifest number: 058B Signing time: Sun 19 May 2024 00:29:42 +0000 Manifest this update: Sun 19 May 2024 00:29:42 +0000 Manifest next update: Sun 26 May 2024 00:29:42 +0000 Files and hashes: 1: 2cZrDkILkTQXPVU9FqoLFGt3R3M.crl (hash: 0XyTn6peCUVWMmSY2cqbItgfU87uyTN2JISXxScn0Xc=) 2: E0147FC48AB811EB92252D18C4F9AE02.roa (hash: gA+NfOWbDBv8IXwjf8ktmuZIleh2hqE2x08cTtO6IXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.crl rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cZrDkILkTQXPVU9FqoLFGt3R3M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1423 (0x58f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9B0D/serialNumber=D9C66B0E420B9134173D553D16AA0B146B774773 Validity Not Before: May 19 00:29:42 2024 GMT Not After : May 26 00:29:42 2024 GMT Subject: CN=664947f6-6800 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:7d:02:02:7d:b7:c5:f2:0e:2e:8b:e4:b3:c3: 27:20:30:71:26:9b:cf:24:f8:39:ce:07:9f:4b:1e: 68:23:1b:13:1c:5f:7c:44:14:7c:dd:92:26:e4:f6: 13:9f:da:f5:03:a9:c7:5c:79:cc:43:66:ee:70:9d: e0:76:e2:4f:3c:6d:e3:12:14:6a:f9:f8:48:88:9f: 4c:81:0e:20:52:7c:ee:62:b2:3f:3d:d1:2b:f6:a9: 9b:95:38:98:d3:aa:3b:82:20:a1:88:86:cc:cd:8a: 9e:de:18:2e:5e:9e:19:56:d6:9f:31:4d:8d:1e:0a: cb:c6:ae:c9:cc:85:df:02:8c:74:3e:94:55:d2:5c: dd:2d:17:9d:e3:eb:d4:eb:1d:89:66:08:6d:81:94: 49:58:f2:84:ba:96:fd:ad:bc:16:a9:00:e1:ec:7c: 1f:88:92:5a:d8:42:8b:57:8d:2a:10:49:54:83:00: ec:60:50:28:15:a4:ee:14:d0:ed:62:b2:4d:15:51: b0:e4:b6:8a:ee:7f:9a:48:3a:a5:a0:8f:65:64:5f: 14:0b:47:0d:7e:6d:7a:da:3b:69:a2:20:83:ce:d2: 94:d1:a7:20:06:4a:c0:50:e0:91:4f:fa:0f:0c:4b: 83:c8:94:4f:99:4b:65:e4:52:dc:71:13:64:e0:c3: 83:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:11:84:50:74:28:74:0F:F1:55:73:81:09:2E:06:F3:7C:4F:2E:ED X509v3 Authority Key Identifier: keyid:D9:C6:6B:0E:42:0B:91:34:17:3D:55:3D:16:AA:0B:14:6B:77:47:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cZrDkILkTQXPVU9FqoLFGt3R3M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:de:93:3c:82:e6:85:33:74:32:d1:6c:d8:a5:54:b7:1d:81: 04:dd:48:cd:63:df:0a:4d:9c:4b:e7:8c:23:01:27:9f:75:fd: 49:94:85:af:55:01:3a:88:ba:27:27:53:ab:aa:d7:66:44:d7: d3:b9:fb:96:7b:9c:56:e9:5c:91:15:e4:d6:16:6d:ab:a7:51: 81:d3:b8:32:60:cd:4f:98:e9:03:4a:74:6a:a6:5a:12:2b:44: b2:47:c1:06:d7:f4:41:e7:bc:f5:06:b0:2a:79:ac:98:08:2d: 13:29:3c:b0:ab:dc:38:dd:7f:c2:44:a4:f6:9e:2d:d2:15:39: db:52:c4:73:e0:e6:6b:60:c2:8f:5e:5d:23:38:08:fc:d7:74: 8a:de:dd:ab:8b:dd:a4:d5:a1:73:bd:8c:ee:26:81:36:b9:34: b5:fc:15:52:01:e6:67:82:c9:ef:3d:11:df:30:cd:4d:14:b4: 90:d6:2a:8a:00:bd:d0:28:74:6a:d6:63:3e:76:91:84:99:df: 91:68:38:99:cf:99:c1:3c:91:e6:03:6d:91:b8:2a:47:ef:6e: af:e4:b7:92:43:f1:d9:f3:db:a0:b8:03:bb:7b:84:07:86:d4: 0b:fc:58:b4:21:d2:76:fd:87:c8:08:99:0c:69:9b:58:6f:02: 03:f7:92:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlCMEQxMTAvBgNVBAUTKEQ5QzY2QjBFNDIwQjkxMzQxNzNENTUzRDE2QUEwQjE0 NkI3NzQ3NzMwHhcNMjQwNTE5MDAyOTQyWhcNMjQwNTI2MDAyOTQyWjAYMRYwFAYD VQQDEw02NjQ5NDdmNi02ODAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3X0CAn23xfIOLovks8MnIDBxJpvPJPg5zgefSx5oIxsTHF98RBR83ZIm5PYT n9r1A6nHXHnMQ2bucJ3gduJPPG3jEhRq+fhIiJ9MgQ4gUnzuYrI/PdEr9qmblTiY 06o7giChiIbMzYqe3hguXp4ZVtafMU2NHgrLxq7JzIXfAox0PpRV0lzdLRed4+vU 6x2JZghtgZRJWPKEupb9rbwWqQDh7HwfiJJa2EKLV40qEElUgwDsYFAoFaTuFNDt YrJNFVGw5LaK7n+aSDqloI9lZF8UC0cNfm162jtpoiCDztKU0acgBkrAUOCRT/oP DEuDyJRPmUtl5FLccRNk4MODVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBARhFB0 KHQP8VVzgQkuBvN8Ty7tMB8GA1UdIwQYMBaAFNnGaw5CC5E0Fz1VPRaqCxRrd0dz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUIwRC85OEI3MjgwRThB QjYxMUVCODIzN0Q0MTRDNEY5QUUwMi8yY1pyRGtJTGtUUVhQVlU5RnFvTEZHdDNS M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJjWnJEa0lMa1RRWFBWVTlGcW9MRkd0M1IzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUIwRC85OEI3MjgwRThBQjYxMUVCODIzN0Q0MTRDNEY5QUUwMi8yY1pyRGtJTGtU UVhQVlU5RnFvTEZHdDNSM00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBp3pM8guaFM3Qy0WzYpVS3HYEE3UjNY98KTZxL54wjASefdf1JlIWv VQE6iLonJ1OrqtdmRNfTufuWe5xW6VyRFeTWFm2rp1GB07gyYM1PmOkDSnRqploS K0SyR8EG1/RB57z1BrAqeayYCC0TKTywq9w43X/CRKT2ni3SFTnbUsRz4OZrYMKP Xl0jOAj813SK3t2ri92k1aFzvYzuJoE2uTS1/BVSAeZngsnvPRHfMM1NFLSQ1iqK AL3QKHRq1mM+dpGEmd+RaDiZz5nBPJHmA22RuCpH726v5LeSQ/HZ89uguAO7e4QH htQL/Fi0IdJ2/YfICJkMaZtYbwID95Kt -----END CERTIFICATE-----Generated at Sun May 19 00:59:42 2024 by rpki-client on console-fra.rpki-client.org