$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft File: CB6icKn0s2sOyJai0hSO5Ok-Xys.mft (raw, json) Hash identifier: 68WdM22xQlpaUBVhd6u5pOBZYmEUvwxMwWeZWzo2hMc= Subject key identifier: B1:39:91:10:3B:48:70:D4:33:70:C7:1C:34:AF:01:D2:E5:A1:AD:2F Authority key identifier: 08:1E:A2:70:A9:F4:B3:6B:0E:C8:96:A2:D2:14:8E:E4:E9:3E:5F:2B Certificate issuer: /CN=A91BB921/serialNumber=081EA270A9F4B36B0EC896A2D2148EE4E93E5F2B Certificate serial: 6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft Manifest number: 69 Signing time: Sun 19 May 2024 07:34:22 +0000 Manifest this update: Sun 19 May 2024 07:34:21 +0000 Manifest next update: Sun 26 May 2024 07:34:21 +0000 Files and hashes: 1: CB6icKn0s2sOyJai0hSO5Ok-Xys.crl (hash: 8E1wo0LUFv/HXviyhT2jhCJGRJPk98OelV4YqwgkmUg=) 2: 5A387584756311EEA256FD57C4F9AE02.roa (hash: rKlNDAL+YS5APh9mVe38YNcav6hea+4bXzjYijoMe5E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.crl rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB921/serialNumber=081EA270A9F4B36B0EC896A2D2148EE4E93E5F2B Validity Not Before: May 19 07:34:21 2024 GMT Not After : May 26 07:34:21 2024 GMT Subject: CN=6649ab7e-f7ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:45:12:1f:ce:18:12:f0:3e:21:bd:fe:b7:fa: 3a:31:e7:90:11:1b:67:69:fd:8f:8c:89:35:88:b1: 1a:1a:11:cf:14:16:25:c5:52:8a:9d:d2:8c:a5:8f: 61:1f:6a:fc:b0:26:58:34:1f:d3:01:3b:a2:a2:81: b8:1f:e6:a2:cf:c2:b1:64:76:a7:38:c5:d1:d5:14: 67:ce:20:f1:26:84:f5:25:f0:e6:59:17:35:6c:91: 73:65:77:83:c0:ee:ed:24:9e:18:92:7f:75:db:0d: 21:52:91:86:f9:fb:fd:c2:da:1f:1e:cf:9e:68:b1: 2e:9c:fb:58:f6:9b:93:72:60:0f:58:88:83:f3:9a: bd:32:8b:c3:e7:fa:99:f4:a1:f9:8c:37:5d:5e:16: 44:5b:4c:54:67:0e:af:ed:df:01:a2:fa:65:07:5f: 29:0e:78:9f:a2:30:07:ee:1b:c2:a6:d6:fc:d1:e6: 51:3d:36:c5:94:44:4c:20:e6:f4:d3:d8:f5:dc:cf: 38:73:b9:73:13:f1:f9:2e:56:ab:ca:e4:b6:7e:11: a4:28:56:b6:10:5b:b1:97:49:bf:c8:85:4a:4d:b1: a5:ee:8b:59:20:23:4a:89:32:98:7a:9a:51:7a:2c: 36:ee:df:d5:7b:9d:77:31:1b:57:b3:2b:b6:74:b3: a3:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:39:91:10:3B:48:70:D4:33:70:C7:1C:34:AF:01:D2:E5:A1:AD:2F X509v3 Authority Key Identifier: keyid:08:1E:A2:70:A9:F4:B3:6B:0E:C8:96:A2:D2:14:8E:E4:E9:3E:5F:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:a3:91:ec:c6:17:19:eb:aa:c6:cd:12:6e:86:89:f1:09:3c: b5:10:f0:22:66:8e:59:33:63:a4:8f:a8:9d:82:53:b7:0e:ab: 18:66:2e:26:00:e5:1d:9d:f9:8b:7f:85:c1:32:22:1a:a1:d6: cd:f2:87:3c:8c:40:9d:50:ac:3e:69:b0:ea:1a:c5:55:76:35: 74:42:11:38:f6:b9:09:1f:89:72:b6:e8:da:6b:fe:75:ad:80: e5:6c:11:01:cb:00:cc:f2:23:95:c2:16:06:44:c6:c3:45:f2: 4e:c6:d9:42:91:d5:35:8a:d5:ed:cf:b6:5f:a1:d7:9e:96:99: cc:e7:e0:82:bf:c8:93:70:a5:0c:22:7d:cd:ea:9d:ba:52:3d: 49:0e:9c:d2:b6:21:6e:77:62:05:75:e2:d7:74:50:2d:0a:fa: d3:76:75:75:aa:bb:47:98:df:e5:83:95:ad:61:fd:d3:ad:7d: 10:2c:79:67:52:6c:0c:fd:83:76:75:57:83:c3:e0:05:e5:db: 44:37:8c:62:bb:a8:1f:6c:72:c0:2b:dc:51:0f:e3:a1:84:54: ea:ab:c9:cb:73:e5:c9:0f:db:19:63:1e:2b:db:10:74:85:5b: 32:0f:e6:6e:53:d7:5d:a8:7c:b1:94:c9:c1:73:04:bc:a8:b5: 97:d3:d4:79 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBajANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QjkyMTExMC8GA1UEBRMoMDgxRUEyNzBBOUY0QjM2QjBFQzg5NkEyRDIxNDhFRTRF OTNFNUYyQjAeFw0yNDA1MTkwNzM0MjFaFw0yNDA1MjYwNzM0MjFaMBgxFjAUBgNV BAMTDTY2NDlhYjdlLWY3YmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDXRRIfzhgS8D4hvf63+jox55ARG2dp/Y+MiTWIsRoaEc8UFiXFUoqd0oylj2Ef avywJlg0H9MBO6Kigbgf5qLPwrFkdqc4xdHVFGfOIPEmhPUl8OZZFzVskXNld4PA 7u0knhiSf3XbDSFSkYb5+/3C2h8ez55osS6c+1j2m5NyYA9YiIPzmr0yi8Pn+pn0 ofmMN11eFkRbTFRnDq/t3wGi+mUHXykOeJ+iMAfuG8Km1vzR5lE9NsWUREwg5vTT 2PXczzhzuXMT8fkuVqvK5LZ+EaQoVrYQW7GXSb/IhUpNsaXui1kgI0qJMph6mlF6 LDbu39V7nXcxG1ezK7Z0s6OPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUsTmREDtI cNQzcMccNK8B0uWhrS8wHwYDVR0jBBgwFoAUCB6icKn0s2sOyJai0hSO5Ok+Xysw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCOTIxL0REQjhFMTRDNzU2 MjExRUVCQjgyNTI1N0M0RjlBRTAyL0NCNmljS24wczJzT3lKYWkwaFNPNU9rLVh5 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ0I2aWNLbjBzMnNPeUphaTBoU081T2stWHlzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJC OTIxL0REQjhFMTRDNzU2MjExRUVCQjgyNTI1N0M0RjlBRTAyL0NCNmljS24wczJz T3lKYWkwaFNPNU9rLVh5cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE+jkezGFxnrqsbNEm6GifEJPLUQ8CJmjlkzY6SPqJ2CU7cOqxhmLiYA 5R2d+Yt/hcEyIhqh1s3yhzyMQJ1QrD5psOoaxVV2NXRCETj2uQkfiXK26Npr/nWt gOVsEQHLAMzyI5XCFgZExsNF8k7G2UKR1TWK1e3Ptl+h156Wmczn4IK/yJNwpQwi fc3qnbpSPUkOnNK2IW53YgV14td0UC0K+tN2dXWqu0eY3+WDla1h/dOtfRAseWdS bAz9g3Z1V4PD4AXl20Q3jGK7qB9scsAr3FEP46GEVOqryctz5ckP2xljHivbEHSF WzIP5m5T112ofLGUycFzBLyotZfT1Hk= -----END CERTIFICATE-----Generated at Sun May 19 08:26:44 2024 by rpki-client on console-fra.rpki-client.org