$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft File: 5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft (raw, json) Hash identifier: 4g2h/YbogLPLDVPy+kj7N3IDINPvx60X7cW5T149N/E= Subject key identifier: DC:95:E3:E5:AB:13:CD:1C:70:2E:FC:11:1E:98:91:36:5B:D5:4D:6E Authority key identifier: E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 Certificate issuer: /CN=A91B9B0D/serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Certificate serial: 0590 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft Manifest number: 058C Signing time: Sun 19 May 2024 00:29:45 +0000 Manifest this update: Sun 19 May 2024 00:29:44 +0000 Manifest next update: Sun 26 May 2024 00:29:44 +0000 Files and hashes: 1: 5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl (hash: sxSSrrrna21kI5Sfvw+2D4jF9g3vCX1YKmoPws6gZic=) 2: 3F9CDA68179911EDB9008D18C4F9AE02.roa (hash: zlvr9/gJaaOwUJm+5jV4Slmz0tKdwG2ThIYLDzxv4/g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1424 (0x590) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9B0D/serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Validity Not Before: May 19 00:29:44 2024 GMT Not After : May 26 00:29:44 2024 GMT Subject: CN=664947f8-dc24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ee:b9:43:37:73:ba:7d:4f:f3:e2:23:d2:ba: a0:e5:97:5b:60:46:a9:13:88:e0:53:73:09:61:b8: 95:fd:fe:64:20:81:54:0a:50:70:7e:40:e1:18:21: 39:54:e8:98:ca:24:ab:44:e5:21:58:8c:36:8d:83: a2:c5:80:52:8b:6c:86:2e:fb:66:d1:99:2b:66:a7: 1c:ab:86:b9:41:c2:65:a2:08:e0:da:21:da:05:70: a5:b8:3c:9f:9c:f5:7b:f1:ef:a9:e6:81:a0:c4:a5: 1e:7a:19:7a:a2:90:e7:81:2c:fa:fe:e7:f0:55:2c: 1b:7a:40:2d:47:ff:9c:4f:79:e5:d5:0b:16:11:1c: 7e:45:31:a7:58:1f:a6:14:a2:5f:19:ce:9e:6c:17: d5:fa:62:42:b2:dd:97:c9:2a:67:49:ce:27:0a:d5: 93:1a:7a:c1:9a:71:9c:76:e6:e6:ed:e1:c9:68:fb: a0:52:c4:f6:fe:a9:fe:42:e8:f7:f2:75:83:13:ee: bb:ae:46:90:e6:3f:cc:0c:e9:06:60:22:e8:20:0e: 7c:22:11:eb:6e:a5:97:51:4f:c3:55:1b:80:ea:e9: 92:fd:88:2f:0d:5c:f5:e3:f7:b2:c6:ea:5c:94:80: 35:0e:56:1c:5f:70:6f:a9:b9:b2:0b:c9:da:3e:af: f4:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:95:E3:E5:AB:13:CD:1C:70:2E:FC:11:1E:98:91:36:5B:D5:4D:6E X509v3 Authority Key Identifier: keyid:E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:2f:1d:eb:b8:b0:77:e9:2b:f6:bf:5c:7f:17:8a:22:f0:85: c7:71:92:e5:39:25:ce:e5:20:90:13:97:15:62:f6:57:71:5e: 14:70:8e:f6:f5:99:01:72:0a:a0:b3:39:5c:01:be:7b:40:83: b8:a2:44:c5:ec:f0:a4:4d:ff:ff:03:6b:8f:aa:a4:97:d4:89: 30:af:69:19:99:2f:ad:67:12:e0:fd:ec:14:b0:a7:1d:31:56: b2:03:93:09:11:b5:f0:3e:81:ec:f9:ee:59:81:ef:a0:20:2b: 7d:69:ca:ed:87:52:cc:4d:3a:23:b0:6f:3a:31:29:e8:f8:ad: 9d:04:cc:d7:7b:c1:19:d4:d4:9f:b2:42:6b:dc:95:02:9e:08: b8:53:0b:07:74:75:37:e3:4e:1b:d5:f1:1b:ec:3c:2b:99:01: 3a:4d:8e:66:0f:69:d2:58:03:f0:99:23:be:bc:28:2f:95:59: 7f:fe:31:11:53:ed:09:ed:54:66:3c:50:ef:40:51:0f:f7:c7: 39:3a:4d:74:e0:bb:6d:b4:6b:a6:8b:e8:0f:9e:4d:b0:c8:c9: dc:e9:97:5d:e4:60:94:34:a8:b0:ef:5b:23:f9:b0:43:82:fc: a3:b2:ac:db:2d:ea:d6:e4:ff:29:7e:86:06:bb:ec:9e:6e:56: 5d:2a:11:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlCMEQxMTAvBgNVBAUTKEU0RDYyRDMxMjk3RjE3RTQ5QzQyRkE3QTdCNjYyMzYy NEFEOTQxNzUwHhcNMjQwNTE5MDAyOTQ0WhcNMjQwNTI2MDAyOTQ0WjAYMRYwFAYD VQQDEw02NjQ5NDdmOC1kYzI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1e65Qzdzun1P8+Ij0rqg5ZdbYEapE4jgU3MJYbiV/f5kIIFUClBwfkDhGCE5 VOiYyiSrROUhWIw2jYOixYBSi2yGLvtm0ZkrZqccq4a5QcJlogjg2iHaBXCluDyf nPV78e+p5oGgxKUeehl6opDngSz6/ufwVSwbekAtR/+cT3nl1QsWERx+RTGnWB+m FKJfGc6ebBfV+mJCst2XySpnSc4nCtWTGnrBmnGcdubm7eHJaPugUsT2/qn+Quj3 8nWDE+67rkaQ5j/MDOkGYCLoIA58IhHrbqWXUU/DVRuA6umS/YgvDVz14/eyxupc lIA1DlYcX3BvqbmyC8naPq/06wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNyV4+Wr E80ccC78ER6YkTZb1U1uMB8GA1UdIwQYMBaAFOTWLTEpfxfknEL6entmI2JK2UF1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUIwRC9BMjhFQ0JDMDhB QjYxMUVCODIzN0Q0MTRDNEY5QUUwMi81Tll0TVNsX0YtU2NRdnA2ZTJZallrclpR WFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVOWXRNU2xfRi1TY1F2cDZlMllqWWtyWlFYVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUIwRC9BMjhFQ0JDMDhBQjYxMUVCODIzN0Q0MTRDNEY5QUUwMi81Tll0TVNsX0Yt U2NRdnA2ZTJZallrclpRWFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmLx3ruLB36Sv2v1x/F4oi8IXHcZLlOSXO5SCQE5cVYvZXcV4UcI72 9ZkBcgqgszlcAb57QIO4okTF7PCkTf//A2uPqqSX1Ikwr2kZmS+tZxLg/ewUsKcd MVayA5MJEbXwPoHs+e5Zge+gICt9acrth1LMTTojsG86MSno+K2dBMzXe8EZ1NSf skJr3JUCngi4UwsHdHU3404b1fEb7DwrmQE6TY5mD2nSWAPwmSO+vCgvlVl//jER U+0J7VRmPFDvQFEP98c5Ok104LtttGumi+gPnk2wyMnc6Zdd5GCUNKiw71sj+bBD gvyjsqzbLerW5P8pfoYGu+yeblZdKhGW -----END CERTIFICATE-----Generated at Sun May 19 00:59:42 2024 by rpki-client on console-fra.rpki-client.org