$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE6D7/71A51574AEF211EEB293B480C4F9AE02/cM0CtmQkeah0RicVcG5qqaidosk.mft File: cM0CtmQkeah0RicVcG5qqaidosk.mft (raw, json) Hash identifier: J2J81OvD2EMU2FGTAInYXXmIMqyjAXWQS6SHDEfyMIc= Subject key identifier: A0:2C:81:4C:7A:4F:66:FD:04:3B:52:48:55:A4:B1:62:AF:E6:57:36 Authority key identifier: 70:CD:02:B6:64:24:79:A8:74:46:27:15:70:6E:6A:A9:A8:9D:A2:C9 Certificate issuer: /CN=A91BE6D7/serialNumber=70CD02B6642479A874462715706E6AA9A89DA2C9 Certificate serial: 52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM0CtmQkeah0RicVcG5qqaidosk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE6D7/71A51574AEF211EEB293B480C4F9AE02/cM0CtmQkeah0RicVcG5qqaidosk.mft Manifest number: 4C Signing time: Sun 19 May 2024 08:04:09 +0000 Manifest this update: Sun 19 May 2024 08:04:08 +0000 Manifest next update: Sun 26 May 2024 08:04:08 +0000 Files and hashes: 1: cM0CtmQkeah0RicVcG5qqaidosk.crl (hash: NYr5sFs+6vmUiyX6c1ws0dMQl7rTCBpR54932ShS14Q=) 2: 371059F4B8A311EEBDA30041C4F9AE02.roa (hash: aRUyVqIfJTn8kVpUhz1W3Sr47MqMAHCDZi0HqrTI2S4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE6D7/71A51574AEF211EEB293B480C4F9AE02/cM0CtmQkeah0RicVcG5qqaidosk.crl rsync://rpki.apnic.net/member_repository/A91BE6D7/71A51574AEF211EEB293B480C4F9AE02/cM0CtmQkeah0RicVcG5qqaidosk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM0CtmQkeah0RicVcG5qqaidosk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 82 (0x52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE6D7/serialNumber=70CD02B6642479A874462715706E6AA9A89DA2C9 Validity Not Before: May 19 08:04:08 2024 GMT Not After : May 26 08:04:08 2024 GMT Subject: CN=6649b278-a649 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:93:a0:c9:e4:4d:c9:4e:74:d0:e0:8b:98:2d: ff:8d:ab:41:f0:bc:87:14:b3:c5:cc:40:31:5c:b0: af:bc:59:23:1e:ac:66:f3:96:21:d0:fb:e9:22:f0: 9f:dd:66:18:15:5f:f8:9f:52:4d:58:64:6c:5f:53: ef:2d:5b:92:57:89:4d:76:0e:c2:83:0f:56:66:87: 95:94:3a:a7:5a:ec:ed:be:92:03:d0:29:87:96:09: f4:8e:a5:61:5e:cb:2a:d4:f5:b8:35:ef:71:b6:9a: 7c:12:32:33:92:6a:33:a3:a6:ac:32:77:84:99:ac: e8:cf:75:62:1e:3f:ec:a2:90:5d:78:8b:ca:1a:3e: 50:10:02:2b:1d:d0:5a:51:10:2f:47:1a:2e:cf:7e: cc:75:fd:aa:95:52:8b:94:1b:ec:08:c0:75:cb:61: 90:1e:f9:83:af:2b:3d:1a:86:26:00:a7:3e:57:1b: d8:1b:03:c3:f5:61:78:c8:39:80:0c:36:39:64:e0: 9e:02:43:90:e5:cf:c6:91:18:42:7c:0e:42:69:d8: 72:7d:ae:fc:d1:39:e0:0c:2c:17:f9:0f:13:06:63: e1:fd:d9:74:7a:fd:37:0a:72:04:e3:2a:91:54:9b: d3:c1:aa:70:e0:2c:65:4e:dc:48:8c:1d:cb:4e:f2: cd:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:2C:81:4C:7A:4F:66:FD:04:3B:52:48:55:A4:B1:62:AF:E6:57:36 X509v3 Authority Key Identifier: keyid:70:CD:02:B6:64:24:79:A8:74:46:27:15:70:6E:6A:A9:A8:9D:A2:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE6D7/71A51574AEF211EEB293B480C4F9AE02/cM0CtmQkeah0RicVcG5qqaidosk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM0CtmQkeah0RicVcG5qqaidosk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE6D7/71A51574AEF211EEB293B480C4F9AE02/cM0CtmQkeah0RicVcG5qqaidosk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:fb:cf:c8:e5:70:d6:ec:a1:6d:c9:53:4a:49:88:24:8d:70: 09:6b:42:14:c4:e0:78:cc:09:aa:91:37:31:10:46:4b:63:90: b8:4c:a4:07:e3:99:18:1a:6a:25:fa:59:94:88:f0:23:2a:5d: 81:b6:9a:63:1d:e0:3c:df:9c:e1:e5:25:ee:68:5a:22:b4:de: ee:23:7c:ae:9d:cc:0b:cd:13:a3:e9:6a:ac:15:9e:a7:49:25: 57:71:f7:cb:5a:e7:ba:68:28:f3:4e:0f:53:09:fd:4d:12:3e: 77:0d:0c:9e:7b:55:79:e2:63:cd:75:19:74:bc:91:e2:b9:e5: 27:40:5e:3f:c9:3d:de:eb:59:25:65:22:a0:64:ae:a5:e8:9b: 4e:d0:ed:f2:78:f8:e7:87:3a:cf:91:dd:aa:4d:69:60:94:43: 7e:7b:06:ab:95:d0:bc:6f:44:12:4a:af:e3:81:d1:43:48:00: 2b:e2:29:d2:c9:e2:ba:57:83:42:e3:91:0c:01:23:6b:d6:83: 1f:de:df:f3:8c:fd:5f:35:70:d7:8f:e6:1a:44:9c:24:76:ab: ce:69:74:39:d9:3b:fe:b0:7b:e4:64:e8:83:ed:37:7e:bb:20: de:ba:c1:ac:af:09:9c:82:8f:ba:90:d4:71:1e:e6:16:e9:11: 87:8d:e1:64 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RTZENzExMC8GA1UEBRMoNzBDRDAyQjY2NDI0NzlBODc0NDYyNzE1NzA2RTZBQTlB ODlEQTJDOTAeFw0yNDA1MTkwODA0MDhaFw0yNDA1MjYwODA0MDhaMBgxFjAUBgNV BAMTDTY2NDliMjc4LWE2NDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7k6DJ5E3JTnTQ4IuYLf+Nq0HwvIcUs8XMQDFcsK+8WSMerGbzliHQ++ki8J/d ZhgVX/ifUk1YZGxfU+8tW5JXiU12DsKDD1Zmh5WUOqda7O2+kgPQKYeWCfSOpWFe yyrU9bg173G2mnwSMjOSajOjpqwyd4SZrOjPdWIeP+yikF14i8oaPlAQAisd0FpR EC9HGi7Pfsx1/aqVUouUG+wIwHXLYZAe+YOvKz0ahiYApz5XG9gbA8P1YXjIOYAM Njlk4J4CQ5Dlz8aRGEJ8DkJp2HJ9rvzROeAMLBf5DxMGY+H92XR6/TcKcgTjKpFU m9PBqnDgLGVO3EiMHctO8s31AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUoCyBTHpP Zv0EO1JIVaSxYq/mVzYwHwYDVR0jBBgwFoAUcM0CtmQkeah0RicVcG5qqaidoskw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJFNkQ3LzcxQTUxNTc0QUVG MjExRUVCMjkzQjQ4MEM0RjlBRTAyL2NNMEN0bVFrZWFoMFJpY1ZjRzVxcWFpZG9z ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY00wQ3RtUWtlYWgwUmljVmNHNXFxYWlkb3NrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJF NkQ3LzcxQTUxNTc0QUVGMjExRUVCMjkzQjQ4MEM0RjlBRTAyL2NNMEN0bVFrZWFo MFJpY1ZjRzVxcWFpZG9zay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACf7z8jlcNbsoW3JU0pJiCSNcAlrQhTE4HjMCaqRNzEQRktjkLhMpAfj mRgaaiX6WZSI8CMqXYG2mmMd4DzfnOHlJe5oWiK03u4jfK6dzAvNE6PpaqwVnqdJ JVdx98ta57poKPNOD1MJ/U0SPncNDJ57VXniY811GXS8keK55SdAXj/JPd7rWSVl IqBkrqXom07Q7fJ4+OeHOs+R3apNaWCUQ357BquV0LxvRBJKr+OB0UNIACviKdLJ 4rpXg0LjkQwBI2vWgx/e3/OM/V81cNeP5hpEnCR2q85pdDnZO/6we+Rk6IPtN367 IN66wayvCZyCj7qQ1HEe5hbpEYeN4WQ= -----END CERTIFICATE-----Generated at Sun May 19 09:04:14 2024 by rpki-client on console-fra.rpki-client.org