$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFD4B/AA47893AABD911EB833D4C6AC4F9AE02/a4J2B8F85j5hIUwuZCxaqFHuOE4.mft File: a4J2B8F85j5hIUwuZCxaqFHuOE4.mft (raw, json) Hash identifier: qAqSc2A+ZPgZG/9sIPABLw7fPB2RuHRUxfGOn1zTFbM= Subject key identifier: 93:1A:75:A3:D2:9A:09:0A:B7:70:81:5F:A9:31:67:94:C0:02:BD:E2 Authority key identifier: 6B:82:76:07:C1:7C:E6:3E:61:21:4C:2E:64:2C:5A:A8:51:EE:38:4E Certificate issuer: /CN=A91BFD4B/serialNumber=6B827607C17CE63E61214C2E642C5AA851EE384E Certificate serial: 053D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a4J2B8F85j5hIUwuZCxaqFHuOE4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFD4B/AA47893AABD911EB833D4C6AC4F9AE02/a4J2B8F85j5hIUwuZCxaqFHuOE4.mft Manifest number: 0539 Signing time: Sun 19 May 2024 00:56:00 +0000 Manifest this update: Sun 19 May 2024 00:56:00 +0000 Manifest next update: Sun 26 May 2024 00:56:00 +0000 Files and hashes: 1: a4J2B8F85j5hIUwuZCxaqFHuOE4.crl (hash: bZUYk+dU06UpGYA6ynwOPCrFLXt0v8ophFEsRvnQGCw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFD4B/AA47893AABD911EB833D4C6AC4F9AE02/a4J2B8F85j5hIUwuZCxaqFHuOE4.crl rsync://rpki.apnic.net/member_repository/A91BFD4B/AA47893AABD911EB833D4C6AC4F9AE02/a4J2B8F85j5hIUwuZCxaqFHuOE4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a4J2B8F85j5hIUwuZCxaqFHuOE4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1341 (0x53d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFD4B/serialNumber=6B827607C17CE63E61214C2E642C5AA851EE384E Validity Not Before: May 19 00:56:00 2024 GMT Not After : May 26 00:56:00 2024 GMT Subject: CN=66494e20-e929 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:21:a2:af:5d:39:c6:24:75:fd:49:bb:37:61: fd:17:de:64:3d:95:a5:73:02:3d:e6:95:17:e4:5e: 7b:10:8c:94:c6:eb:44:bd:48:4e:dd:85:7d:05:a9: 01:7c:e6:ab:0f:39:9e:d6:56:2a:d8:1f:87:b0:49: eb:0c:f5:22:9c:40:7e:1a:f7:12:bc:62:18:e7:d2: 4d:72:09:a0:15:81:f2:8b:ae:1e:50:1a:72:4c:e7: 37:a6:d2:34:38:48:df:cb:f1:ca:bf:7d:79:49:b1: 6c:7c:8f:a5:53:f1:af:3d:e1:5f:9c:e4:11:99:65: 9d:bb:ee:e2:95:6b:2c:65:e4:cd:7f:e6:4d:c1:52: 67:76:87:ff:95:8a:d7:87:a5:e6:d4:4e:52:d8:c7: 45:9b:44:24:0d:8f:3a:c1:6a:86:09:fd:0a:e9:53: 42:75:0c:e6:2b:9d:29:af:a0:28:a0:84:9d:21:a5: fa:af:5c:dc:fc:5e:e8:24:d4:a6:b4:94:d5:dc:72: 92:e7:08:c0:90:00:34:3e:57:2e:dd:c8:b6:e5:12: 6a:7d:4d:a1:5d:a1:e0:15:bc:93:20:c7:fb:b7:c2: 7d:5d:b4:ac:16:1a:86:bb:7f:24:ad:96:39:a3:17: bb:02:15:6e:c5:59:83:34:25:0d:34:a5:b2:76:7e: 6b:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:1A:75:A3:D2:9A:09:0A:B7:70:81:5F:A9:31:67:94:C0:02:BD:E2 X509v3 Authority Key Identifier: keyid:6B:82:76:07:C1:7C:E6:3E:61:21:4C:2E:64:2C:5A:A8:51:EE:38:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFD4B/AA47893AABD911EB833D4C6AC4F9AE02/a4J2B8F85j5hIUwuZCxaqFHuOE4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a4J2B8F85j5hIUwuZCxaqFHuOE4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFD4B/AA47893AABD911EB833D4C6AC4F9AE02/a4J2B8F85j5hIUwuZCxaqFHuOE4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ee:c2:6e:03:e7:67:35:e9:c8:32:42:08:06:b1:2c:30:6d:6f: 31:cf:4e:ff:31:24:60:86:3a:bd:42:c1:88:20:aa:bf:d1:83: 1a:fb:a9:e9:93:1d:f0:8d:c2:d3:b4:e1:97:46:a3:9c:be:e6: 17:b3:ad:65:d5:eb:4f:88:2a:3a:a1:b9:90:eb:28:2e:fa:09: 61:72:09:ec:46:09:4f:b6:fa:8c:5b:9a:50:c9:53:1c:52:85: 86:08:25:4e:0b:f5:2b:e3:48:c2:ee:3d:f8:e3:3c:6e:b7:8e: 25:bb:3e:5f:7c:04:c4:1b:1e:a7:5a:ee:b2:00:4f:39:ce:90: 87:99:9f:95:dd:2b:11:35:45:67:c1:3f:05:4d:5a:b0:df:52: 2c:bd:29:bc:d7:53:26:27:7f:07:81:82:b3:5c:9b:8d:05:fe: 81:51:35:61:66:8d:de:c9:c4:c5:63:99:ea:af:ae:0b:17:47: 91:a4:2d:1c:f3:1d:fd:d9:18:bb:ca:59:7d:fa:af:32:0c:dc: 9c:7f:52:dc:ba:0f:4a:ce:15:c7:ce:e1:f1:98:a2:28:e4:b1: 7b:44:26:3d:75:ee:b9:3f:ec:72:d9:e4:58:83:f0:77:29:be: c2:c9:7a:b6:cd:6c:a4:46:7b:ce:94:c9:8d:58:bf:a9:03:04: db:99:89:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZENEIxMTAvBgNVBAUTKDZCODI3NjA3QzE3Q0U2M0U2MTIxNEMyRTY0MkM1QUE4 NTFFRTM4NEUwHhcNMjQwNTE5MDA1NjAwWhcNMjQwNTI2MDA1NjAwWjAYMRYwFAYD VQQDEw02NjQ5NGUyMC1lOTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxCGir105xiR1/Um7N2H9F95kPZWlcwI95pUX5F57EIyUxutEvUhO3YV9BakB fOarDzme1lYq2B+HsEnrDPUinEB+GvcSvGIY59JNcgmgFYHyi64eUBpyTOc3ptI0 OEjfy/HKv315SbFsfI+lU/GvPeFfnOQRmWWdu+7ilWssZeTNf+ZNwVJndof/lYrX h6Xm1E5S2MdFm0QkDY86wWqGCf0K6VNCdQzmK50pr6AooISdIaX6r1zc/F7oJNSm tJTV3HKS5wjAkAA0Plcu3ci25RJqfU2hXaHgFbyTIMf7t8J9XbSsFhqGu38krZY5 oxe7AhVuxVmDNCUNNKWydn5r6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJMadaPS mgkKt3CBX6kxZ5TAAr3iMB8GA1UdIwQYMBaAFGuCdgfBfOY+YSFMLmQsWqhR7jhO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkQ0Qi9BQTQ3ODkzQUFC RDkxMUVCODMzRDRDNkFDNEY5QUUwMi9hNEoyQjhGODVqNWhJVXd1WkN4YXFGSHVP RTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E0SjJCOEY4NWo1aElVd3VaQ3hhcUZIdU9FNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RkQ0Qi9BQTQ3ODkzQUFCRDkxMUVCODMzRDRDNkFDNEY5QUUwMi9hNEoyQjhGODVq NWhJVXd1WkN4YXFGSHVPRTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDuwm4D52c16cgyQggGsSwwbW8xz07/MSRghjq9QsGIIKq/0YMa+6np kx3wjcLTtOGXRqOcvuYXs61l1etPiCo6obmQ6ygu+glhcgnsRglPtvqMW5pQyVMc UoWGCCVOC/Ur40jC7j344zxut44luz5ffATEGx6nWu6yAE85zpCHmZ+V3SsRNUVn wT8FTVqw31IsvSm811MmJ38HgYKzXJuNBf6BUTVhZo3eycTFY5nqr64LF0eRpC0c 8x392Ri7yll9+q8yDNycf1Lcug9KzhXHzuHxmKIo5LF7RCY9de65P+xy2eRYg/B3 Kb7CyXq2zWykRnvOlMmNWL+pAwTbmYkB -----END CERTIFICATE-----Generated at Sun May 19 01:47:14 2024 by rpki-client on console-fra.rpki-client.org