$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0D37/05EECD86535B11EE9BF20A6BC4F9AE02/5CANRK2dbstocvZTqVhD-yfYR6Q.mft File: 5CANRK2dbstocvZTqVhD-yfYR6Q.mft (raw, json) Hash identifier: do4wt+SwQbn8aKvOFccfExUzhhqJr0T6GwgO05QcyFU= Subject key identifier: 67:45:97:44:F5:47:96:74:33:C0:9F:9C:D1:EE:0F:BB:5D:F0:5A:2E Authority key identifier: E4:20:0D:44:AD:9D:6E:CB:68:72:F6:53:A9:58:43:FB:27:D8:47:A4 Certificate issuer: /CN=A91C0D37/serialNumber=E4200D44AD9D6ECB6872F653A95843FB27D847A4 Certificate serial: 82 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5CANRK2dbstocvZTqVhD-yfYR6Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0D37/05EECD86535B11EE9BF20A6BC4F9AE02/5CANRK2dbstocvZTqVhD-yfYR6Q.mft Manifest number: 80 Signing time: Sun 19 May 2024 07:13:20 +0000 Manifest this update: Sun 19 May 2024 07:13:20 +0000 Manifest next update: Sun 26 May 2024 07:13:19 +0000 Files and hashes: 1: 5CANRK2dbstocvZTqVhD-yfYR6Q.crl (hash: asSrMrr1WhfZHuSp2KQtjnKEA4uThUJHcoZi2UlkNdA=) 2: 0099AE56536911EE8594503BC4F9AE02.roa (hash: gbcgONL2cFImh67XGJQNFrNjN1JIHDb7TH3mL3u/bg0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0D37/05EECD86535B11EE9BF20A6BC4F9AE02/5CANRK2dbstocvZTqVhD-yfYR6Q.crl rsync://rpki.apnic.net/member_repository/A91C0D37/05EECD86535B11EE9BF20A6BC4F9AE02/5CANRK2dbstocvZTqVhD-yfYR6Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5CANRK2dbstocvZTqVhD-yfYR6Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 130 (0x82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0D37/serialNumber=E4200D44AD9D6ECB6872F653A95843FB27D847A4 Validity Not Before: May 19 07:13:20 2024 GMT Not After : May 26 07:13:19 2024 GMT Subject: CN=6649a690-e8c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:90:2c:5d:68:6f:f6:5a:da:6a:13:3c:c2:a5: 78:5d:dd:76:f7:cb:2d:10:38:86:ff:08:74:19:1f: d4:3e:2a:0a:a7:71:a3:a4:62:ff:94:d7:47:fb:f8: c1:dd:77:b7:a0:78:93:dd:bc:b8:ea:b8:c7:bb:93: 4c:4f:d6:f1:10:a5:a7:ca:24:38:b3:cf:90:46:a5: c1:f9:80:1c:4d:47:a3:5d:d8:75:a7:a2:e7:c2:6b: cc:fb:e4:58:65:33:f7:89:e7:42:51:08:2d:4d:39: c1:7d:e1:6f:4a:1d:eb:50:cc:43:dd:3e:c7:91:34: ef:d9:13:3e:83:99:8f:b4:d3:9c:38:af:23:55:d2: a0:33:48:14:d7:9b:41:83:1f:0e:d2:b4:25:d2:3c: 4b:7c:6e:11:91:3e:72:80:d7:84:11:e4:58:0f:a8: 9f:db:c0:de:4b:61:3d:88:b5:4c:e4:6c:1e:c3:1b: 56:bb:cb:77:5e:f9:45:4a:e0:b4:17:4e:e5:8a:c2: 50:bb:d2:ba:c1:3f:37:5f:47:8c:82:9e:28:c8:18: 7f:f1:4b:cf:e4:f2:2a:24:c4:f3:79:9e:c8:3c:6d: d9:8a:fb:23:47:11:5d:16:2f:2f:86:97:2f:4f:bb: 8a:35:d0:db:8b:8e:1a:75:7e:70:42:bc:82:0b:47: 8f:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:45:97:44:F5:47:96:74:33:C0:9F:9C:D1:EE:0F:BB:5D:F0:5A:2E X509v3 Authority Key Identifier: keyid:E4:20:0D:44:AD:9D:6E:CB:68:72:F6:53:A9:58:43:FB:27:D8:47:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0D37/05EECD86535B11EE9BF20A6BC4F9AE02/5CANRK2dbstocvZTqVhD-yfYR6Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5CANRK2dbstocvZTqVhD-yfYR6Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0D37/05EECD86535B11EE9BF20A6BC4F9AE02/5CANRK2dbstocvZTqVhD-yfYR6Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:23:b4:ca:a4:6e:f7:60:e4:8f:a1:8a:91:f8:05:7e:0d:e2: c1:a8:b5:ef:a5:ee:5b:fe:74:fd:c7:2b:03:9e:f3:7a:24:83: b9:0d:c2:f6:b4:42:90:39:68:fb:86:2b:8c:1a:98:44:1d:fe: ac:90:9d:a3:1c:ca:ab:36:4f:85:d4:2a:33:8f:6f:86:76:83: be:fa:85:0e:5b:b9:fe:b4:44:c9:d7:0c:94:ca:af:e9:31:45: 97:9e:c7:93:fa:f1:c0:dd:46:d6:43:d9:af:14:3b:93:7d:b6: 5d:de:58:51:f0:13:1f:40:a7:4b:14:a8:e0:cc:dc:a2:43:6f: 3c:d2:70:7f:34:3f:9f:62:d3:74:57:58:9d:a5:e0:7d:e1:75: 6e:99:21:d3:a9:43:c5:67:e7:58:8b:6b:79:1f:74:89:60:ff: e8:c3:df:0b:0f:e6:ba:56:58:5c:dc:d4:0f:8c:e7:35:09:87: c6:6e:61:5a:23:d5:00:78:c8:b8:74:c8:92:08:d7:9f:2a:f8: e3:d5:3e:54:14:ca:77:90:58:04:17:e1:13:01:6b:fb:34:d8: c5:af:cf:36:e8:5e:97:ee:6e:3c:2d:33:a2:ac:84:52:78:83: a8:32:5f:31:f2:d8:7e:f4:47:ff:45:59:6e:af:06:22:6f:cb: 6d:5f:a7:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBEMzcxMTAvBgNVBAUTKEU0MjAwRDQ0QUQ5RDZFQ0I2ODcyRjY1M0E5NTg0M0ZC MjdEODQ3QTQwHhcNMjQwNTE5MDcxMzIwWhcNMjQwNTI2MDcxMzE5WjAYMRYwFAYD VQQDEw02NjQ5YTY5MC1lOGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzZAsXWhv9lraahM8wqV4Xd1298stEDiG/wh0GR/UPioKp3GjpGL/lNdH+/jB 3Xe3oHiT3by46rjHu5NMT9bxEKWnyiQ4s8+QRqXB+YAcTUejXdh1p6LnwmvM++RY ZTP3iedCUQgtTTnBfeFvSh3rUMxD3T7HkTTv2RM+g5mPtNOcOK8jVdKgM0gU15tB gx8O0rQl0jxLfG4RkT5ygNeEEeRYD6if28DeS2E9iLVM5GwewxtWu8t3XvlFSuC0 F07lisJQu9K6wT83X0eMgp4oyBh/8UvP5PIqJMTzeZ7IPG3ZivsjRxFdFi8vhpcv T7uKNdDbi44adX5wQryCC0eP9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGdFl0T1 R5Z0M8CfnNHuD7td8FouMB8GA1UdIwQYMBaAFOQgDUStnW7LaHL2U6lYQ/sn2Eek MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEQzNy8wNUVFQ0Q4NjUz NUIxMUVFOUJGMjBBNkJDNEY5QUUwMi81Q0FOUksyZGJzdG9jdlpUcVZoRC15ZllS NlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVDQU5SSzJkYnN0b2N2WlRxVmhELXlmWVI2US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEQzNy8wNUVFQ0Q4NjUzNUIxMUVFOUJGMjBBNkJDNEY5QUUwMi81Q0FOUksyZGJz dG9jdlpUcVZoRC15ZllSNlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASI7TKpG73YOSPoYqR+AV+DeLBqLXvpe5b/nT9xysDnvN6JIO5DcL2 tEKQOWj7hiuMGphEHf6skJ2jHMqrNk+F1Cozj2+GdoO++oUOW7n+tETJ1wyUyq/p MUWXnseT+vHA3UbWQ9mvFDuTfbZd3lhR8BMfQKdLFKjgzNyiQ2880nB/ND+fYtN0 V1idpeB94XVumSHTqUPFZ+dYi2t5H3SJYP/ow98LD+a6Vlhc3NQPjOc1CYfGbmFa I9UAeMi4dMiSCNefKvjj1T5UFMp3kFgEF+ETAWv7NNjFr8826F6X7m48LTOirIRS eIOoMl8x8th+9Ef/RVlurwYib8ttX6dd -----END CERTIFICATE-----Generated at Sun May 19 07:40:45 2024 by rpki-client on console-fra.rpki-client.org