$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft File: 8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft (raw, json) Hash identifier: hw0DyiYhHTqCbAPDZU5qOJiARf3hX8NG//Dq3Cqgr2Y= Subject key identifier: 66:4D:09:BA:72:95:02:E6:E5:CE:16:63:00:43:3A:DB:77:07:48:04 Authority key identifier: F0:46:65:93:C2:B6:CE:A9:CB:F0:2E:26:AA:E6:BF:79:0F:52:7E:A8 Certificate issuer: /CN=A91BF8D1/serialNumber=F0466593C2B6CEA9CBF02E26AAE6BF790F527EA8 Certificate serial: 0992 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft Manifest number: 098C Signing time: Sat 18 May 2024 20:55:59 +0000 Manifest this update: Sat 18 May 2024 20:55:58 +0000 Manifest next update: Sat 25 May 2024 20:55:58 +0000 Files and hashes: 1: 8EZlk8K2zqnL8C4mqua_eQ9Sfqg.crl (hash: /joNhk8KTe5AEu/wFnU5c3ZQTexTzcxciz59QTsmTYU=) 2: 19250B84675711EAA928E22DC4F9AE02.roa (hash: BfaBbqdTeXcprKlCZnPR/VFXV6AoP9YV7kqFZXcvXOo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.crl rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2450 (0x992) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF8D1/serialNumber=F0466593C2B6CEA9CBF02E26AAE6BF790F527EA8 Validity Not Before: May 18 20:55:58 2024 GMT Not After : May 25 20:55:58 2024 GMT Subject: CN=664915df-21ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:81:5e:1b:35:95:70:3e:7b:96:af:1c:7d:52: 64:b9:de:28:51:e8:35:13:09:a0:50:b9:d0:11:b0: b3:81:48:24:4e:b2:4e:04:00:40:02:75:04:38:b2: 9a:3a:81:be:fc:91:f8:db:52:e4:83:70:3a:d8:05: f4:10:97:1d:e7:af:20:50:fb:3d:f3:3c:11:11:07: ed:28:36:6e:4c:af:86:b8:0a:da:5c:ed:a7:f4:a5: c3:8e:c0:81:b2:d3:99:f7:f5:2f:c3:e1:45:6f:a6: 5b:ba:c1:86:d3:79:ed:2f:be:21:50:c7:c7:94:4a: 76:2f:78:7b:83:8c:31:c6:b1:a2:dd:c5:ff:e4:a9: 51:13:eb:c5:7c:51:49:11:80:f8:d2:c9:a6:fe:9f: 2c:34:bd:14:95:e5:4b:2c:65:23:1c:3c:b8:de:23: b0:2e:ce:7e:c0:e9:b8:70:21:b8:2f:53:5e:23:9b: 09:b7:b7:d3:07:bf:04:df:5e:4c:c7:b5:9d:c0:76: 51:07:a2:d2:5d:24:5d:f4:61:01:b4:28:9b:63:88: 3b:ed:2b:d3:13:45:de:d1:39:42:4e:c6:6e:45:61: 16:e8:5c:09:91:2c:1b:74:0c:a1:e4:6c:7c:21:b4: 92:63:21:52:0e:ec:c6:7d:7f:4d:40:ab:64:c0:f2: 64:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:4D:09:BA:72:95:02:E6:E5:CE:16:63:00:43:3A:DB:77:07:48:04 X509v3 Authority Key Identifier: keyid:F0:46:65:93:C2:B6:CE:A9:CB:F0:2E:26:AA:E6:BF:79:0F:52:7E:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:8b:e1:6f:8e:ca:7f:b3:9e:7e:a7:db:38:99:eb:9c:b6:25: f4:40:70:7d:83:af:60:6d:af:d2:b4:19:e3:30:69:38:8a:70: 6c:d3:1b:df:c2:2d:50:27:bb:95:5a:38:52:9f:7c:04:45:95: a2:58:00:5a:5a:7a:86:1b:29:2a:57:ff:74:3c:dd:2b:4d:de: bb:a1:c6:6b:d6:dc:e6:5b:c0:67:6d:6e:43:5f:c3:18:61:cc: 6f:1e:5c:c5:08:92:81:56:29:c6:7a:d9:4c:d8:4f:b9:e5:3b: db:ae:d7:9e:6a:b6:9e:85:0e:50:b9:0b:a2:89:69:3e:db:9b: 5a:fa:fe:9c:2f:23:02:af:76:e3:a7:65:4a:6a:e8:a0:30:2b: bd:3e:30:c0:e3:59:66:c0:1c:55:c4:56:da:cd:1f:67:8d:92: 7a:e4:89:52:e8:2f:ca:a7:22:ca:bb:bd:73:c7:e0:67:a6:20: f1:8e:02:b4:59:98:5a:74:e4:6b:e7:e8:57:bf:9f:8b:21:b1: 9f:c4:9a:2e:4c:3b:20:a5:77:2a:f3:f1:c2:04:aa:5d:6e:fc: 5f:f6:c6:77:ec:b8:37:59:41:6c:27:20:70:b9:89:7f:a9:6b: de:d5:6e:c7:54:ba:07:e6:c4:cc:ad:78:d9:24:ed:18:d8:21: 5d:b7:8f:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY4RDExMTAvBgNVBAUTKEYwNDY2NTkzQzJCNkNFQTlDQkYwMkUyNkFBRTZCRjc5 MEY1MjdFQTgwHhcNMjQwNTE4MjA1NTU4WhcNMjQwNTI1MjA1NTU4WjAYMRYwFAYD VQQDEw02NjQ5MTVkZi0yMWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnYFeGzWVcD57lq8cfVJkud4oUeg1EwmgULnQEbCzgUgkTrJOBABAAnUEOLKa OoG+/JH421Lkg3A62AX0EJcd568gUPs98zwREQftKDZuTK+GuAraXO2n9KXDjsCB stOZ9/Uvw+FFb6ZbusGG03ntL74hUMfHlEp2L3h7g4wxxrGi3cX/5KlRE+vFfFFJ EYD40smm/p8sNL0UleVLLGUjHDy43iOwLs5+wOm4cCG4L1NeI5sJt7fTB78E315M x7WdwHZRB6LSXSRd9GEBtCibY4g77SvTE0Xe0TlCTsZuRWEW6FwJkSwbdAyh5Gx8 IbSSYyFSDuzGfX9NQKtkwPJkRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGZNCbpy lQLm5c4WYwBDOtt3B0gEMB8GA1UdIwQYMBaAFPBGZZPCts6py/AuJqrmv3kPUn6o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjhEMS83QzRFMzRCQzY3 NTUxMUVBQTA4NzMwMkJDNEY5QUUwMi84RVpsazhLMnpxbkw4QzRtcXVhX2VROVNm cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhFWmxrOEsyenFuTDhDNG1xdWFfZVE5U2ZxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjhEMS83QzRFMzRCQzY3NTUxMUVBQTA4NzMwMkJDNEY5QUUwMi84RVpsazhLMnpx bkw4QzRtcXVhX2VROVNmcWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsi+Fvjsp/s55+p9s4meuctiX0QHB9g69gba/StBnjMGk4inBs0xvf wi1QJ7uVWjhSn3wERZWiWABaWnqGGykqV/90PN0rTd67ocZr1tzmW8BnbW5DX8MY YcxvHlzFCJKBVinGetlM2E+55TvbrteearaehQ5QuQuiiWk+25ta+v6cLyMCr3bj p2VKauigMCu9PjDA41lmwBxVxFbazR9njZJ65IlS6C/KpyLKu71zx+BnpiDxjgK0 WZhadORr5+hXv5+LIbGfxJouTDsgpXcq8/HCBKpdbvxf9sZ37Lg3WUFsJyBwuYl/ qWve1W7HVLoH5sTMrXjZJO0Y2CFdt48h -----END CERTIFICATE-----Generated at Sat May 18 21:24:23 2024 by rpki-client on console-fra.rpki-client.org