$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.mft File: fBlP7bilyMl2697IST3zw_CMyOI.mft (raw, json) Hash identifier: x6aoNkDpPdzKFrId2de+1RQ6kWtaGQ9wSfxPPIDR6OM= Subject key identifier: 63:ED:B1:5F:B3:BF:15:90:D1:4B:8C:09:DF:F4:14:FD:E6:E9:B9:73 Authority key identifier: 7C:19:4F:ED:B8:A5:C8:C9:76:EB:DE:C8:49:3D:F3:C3:F0:8C:C8:E2 Certificate issuer: /CN=A91BE056/serialNumber=7C194FEDB8A5C8C976EBDEC8493DF3C3F08CC8E2 Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fBlP7bilyMl2697IST3zw_CMyOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.mft Manifest number: 2A Signing time: Sun 19 May 2024 01:44:26 +0000 Manifest this update: Sun 19 May 2024 01:44:26 +0000 Manifest next update: Sun 26 May 2024 01:44:26 +0000 Files and hashes: 1: fBlP7bilyMl2697IST3zw_CMyOI.crl (hash: 7HuF3BqchGt+WkAW4Ocf58/tKxQSUiyblDh7Sjrt4R4=) 2: D6406BBCD7A311EE8B9C577CC4F9AE02.roa (hash: WIfVvZT+V2Z1akkMsXQjkEbJurR3SnLoQoZ+2ME8w24=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.crl rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fBlP7bilyMl2697IST3zw_CMyOI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE056/serialNumber=7C194FEDB8A5C8C976EBDEC8493DF3C3F08CC8E2 Validity Not Before: May 19 01:44:26 2024 GMT Not After : May 26 01:44:26 2024 GMT Subject: CN=6649597a-a7a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:7a:20:5e:c0:41:17:76:c6:91:e1:5e:12:a9: 76:99:ea:e1:58:df:e4:d5:1c:ce:14:7c:cf:56:c6: 7c:d1:7b:8a:ec:3f:51:4b:d2:eb:0a:04:8a:d5:24: 5d:41:88:ca:07:c5:33:8e:8f:23:03:bc:a4:c7:5e: 22:60:23:ce:e7:27:d1:7b:08:44:ca:c8:78:a6:12: 4d:d1:5b:d6:36:3f:e7:26:b0:68:82:f5:24:92:4a: 70:6b:12:45:ee:a9:a4:be:f9:67:05:fa:79:ba:d8: eb:c5:ec:9d:bb:bd:9d:b8:f1:c4:d6:1f:cb:de:f5: af:83:fe:04:01:1b:d4:c9:c8:d5:fb:9b:39:53:33: 16:91:a0:78:99:6d:f9:f9:18:a3:7c:9a:59:ee:cf: 68:25:e3:93:c2:e1:1e:a5:39:10:85:dc:09:57:4c: fb:c5:f9:36:fd:51:c3:77:e9:b6:81:fa:88:d7:5b: c7:90:d6:25:45:93:10:83:48:2b:05:e2:21:e3:3e: d5:4f:31:7b:12:1d:f7:40:b5:ec:58:ae:98:76:0b: e3:9c:06:62:d2:25:0f:70:5b:b1:e2:e4:65:5a:5d: 99:a5:84:f8:b6:4b:c9:69:75:9f:73:4e:65:ec:68: 3f:a4:4e:7b:5a:d9:61:5e:53:72:a9:80:6d:e9:62: 31:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:ED:B1:5F:B3:BF:15:90:D1:4B:8C:09:DF:F4:14:FD:E6:E9:B9:73 X509v3 Authority Key Identifier: keyid:7C:19:4F:ED:B8:A5:C8:C9:76:EB:DE:C8:49:3D:F3:C3:F0:8C:C8:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fBlP7bilyMl2697IST3zw_CMyOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:20:f0:a6:8f:92:fd:28:31:1d:64:d4:40:78:40:b4:d0:63: 6c:bc:14:ee:a2:64:1c:75:fe:a2:db:34:7c:df:9d:cc:23:87: 28:2f:73:c2:49:e9:bd:f0:d7:2c:b8:fa:1b:d1:a9:e3:36:29: 66:e9:5e:f2:1d:98:30:5a:d2:09:53:ab:02:26:5b:cc:48:d1: 27:1d:32:c6:66:23:37:ea:5d:85:b4:b6:72:80:f4:71:05:89: d1:ef:0b:cb:3d:dd:93:54:fe:5a:ba:f6:06:61:da:fd:17:57: ec:fd:1a:f2:f1:a7:5d:dc:56:cb:4a:d5:76:4e:06:85:4a:9a: 7e:e4:33:16:1d:2a:1d:6f:04:ad:93:d2:8a:6e:42:c0:f4:f7: 94:d6:7b:03:52:3b:8b:ba:25:08:c6:ca:ff:e0:64:5e:d3:62: e7:79:92:d1:af:ae:8f:81:d9:1d:67:e5:ce:d9:4c:20:ae:a3: 56:c3:3b:8f:11:cc:46:ab:fe:bc:b9:49:b5:10:09:56:71:32: 24:d2:04:ab:c5:7b:ca:ac:8c:e3:04:f6:7f:b8:69:05:95:a5: c5:95:48:20:06:3e:f5:bf:52:ea:5b:14:b1:3b:8a:5f:01:ca: 8e:0c:62:76:63:4d:4b:05:95:82:6c:b3:9a:44:4a:1d:ca:94: 91:3e:0e:3b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RTA1NjExMC8GA1UEBRMoN0MxOTRGRURCOEE1QzhDOTc2RUJERUM4NDkzREYzQzNG MDhDQzhFMjAeFw0yNDA1MTkwMTQ0MjZaFw0yNDA1MjYwMTQ0MjZaMBgxFjAUBgNV BAMTDTY2NDk1OTdhLWE3YTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDueiBewEEXdsaR4V4SqXaZ6uFY3+TVHM4UfM9WxnzRe4rsP1FL0usKBIrVJF1B iMoHxTOOjyMDvKTHXiJgI87nJ9F7CETKyHimEk3RW9Y2P+cmsGiC9SSSSnBrEkXu qaS++WcF+nm62OvF7J27vZ248cTWH8ve9a+D/gQBG9TJyNX7mzlTMxaRoHiZbfn5 GKN8mlnuz2gl45PC4R6lORCF3AlXTPvF+Tb9UcN36baB+ojXW8eQ1iVFkxCDSCsF 4iHjPtVPMXsSHfdAtexYrph2C+OcBmLSJQ9wW7Hi5GVaXZmlhPi2S8lpdZ9zTmXs aD+kTnta2WFeU3KpgG3pYjFFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUY+2xX7O/ FZDRS4wJ3/QU/ebpuXMwHwYDVR0jBBgwFoAUfBlP7bilyMl2697IST3zw/CMyOIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJFMDU2LzAwM0UxMTU4RDc4 QjExRUVBMkVCRDcxMkM0RjlBRTAyL2ZCbFA3YmlseU1sMjY5N0lTVDN6d19DTXlP SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZkJsUDdiaWx5TWwyNjk3SVNUM3p3X0NNeU9JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJF MDU2LzAwM0UxMTU4RDc4QjExRUVBMkVCRDcxMkM0RjlBRTAyL2ZCbFA3YmlseU1s MjY5N0lTVDN6d19DTXlPSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE8g8KaPkv0oMR1k1EB4QLTQY2y8FO6iZBx1/qLbNHzfncwjhygvc8JJ 6b3w1yy4+hvRqeM2KWbpXvIdmDBa0glTqwImW8xI0ScdMsZmIzfqXYW0tnKA9HEF idHvC8s93ZNU/lq69gZh2v0XV+z9GvLxp13cVstK1XZOBoVKmn7kMxYdKh1vBK2T 0opuQsD095TWewNSO4u6JQjGyv/gZF7TYud5ktGvro+B2R1n5c7ZTCCuo1bDO48R zEar/ry5SbUQCVZxMiTSBKvFe8qsjOME9n+4aQWVpcWVSCAGPvW/UupbFLE7il8B yo4MYnZjTUsFlYJss5pESh3KlJE+Djs= -----END CERTIFICATE-----Generated at Sun May 19 02:39:37 2024 by rpki-client on console-fra.rpki-client.org