$ rpki-client -vvf rpki.apnic.net/member_repository/A91C254D/8CE62DFAC1A711EA9D6B8743C4F9AE02/jUEzbLXQr_8QKCFtlTS7fgLD54U.mft File: jUEzbLXQr_8QKCFtlTS7fgLD54U.mft (raw, json) Hash identifier: EqnTJyWQGDZ+926zFfaH+Z4ty/L+do/aygdOcuuCT84= Subject key identifier: C5:CE:C9:73:DD:F2:CB:EA:08:C9:B7:60:06:6D:0E:66:CA:20:D4:8E Authority key identifier: 8D:41:33:6C:B5:D0:AF:FF:10:28:21:6D:95:34:BB:7E:02:C3:E7:85 Certificate issuer: /CN=A91C254D/serialNumber=8D41336CB5D0AFFF1028216D9534BB7E02C3E785 Certificate serial: 07BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUEzbLXQr_8QKCFtlTS7fgLD54U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C254D/8CE62DFAC1A711EA9D6B8743C4F9AE02/jUEzbLXQr_8QKCFtlTS7fgLD54U.mft Manifest number: 07B6 Signing time: Sat 18 May 2024 22:05:06 +0000 Manifest this update: Sat 18 May 2024 22:05:05 +0000 Manifest next update: Sat 25 May 2024 22:05:05 +0000 Files and hashes: 1: jUEzbLXQr_8QKCFtlTS7fgLD54U.crl (hash: W68hqWHi8/VvgTGnBqN02x4+HcbZBpRVZ/EGjZmPTxE=) 2: B4D2B6A2C1A811EA80577A47C4F9AE02.roa (hash: 5C8ePjvhSgQfbUkW1V0izpOZDdVtdh6I4HowBYXf4n8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C254D/8CE62DFAC1A711EA9D6B8743C4F9AE02/jUEzbLXQr_8QKCFtlTS7fgLD54U.crl rsync://rpki.apnic.net/member_repository/A91C254D/8CE62DFAC1A711EA9D6B8743C4F9AE02/jUEzbLXQr_8QKCFtlTS7fgLD54U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUEzbLXQr_8QKCFtlTS7fgLD54U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1978 (0x7ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C254D/serialNumber=8D41336CB5D0AFFF1028216D9534BB7E02C3E785 Validity Not Before: May 18 22:05:05 2024 GMT Not After : May 25 22:05:05 2024 GMT Subject: CN=66492611-f709 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:fe:57:44:24:b7:4e:68:30:8a:02:c6:30:98: cc:80:14:a2:97:0b:b9:7d:6c:c8:f5:50:20:e1:9a: 1b:16:b7:9d:40:b0:0d:36:71:c9:cd:60:b3:84:5b: 8b:da:cc:5d:fb:5a:ea:ae:5c:a5:c5:c2:1e:51:31: 50:f0:42:51:66:0f:6e:51:c5:32:b3:8e:96:05:bb: 3a:66:a7:8f:12:08:5c:5d:87:b1:1d:6b:01:ae:95: 8a:1c:ed:b9:e2:31:d3:91:b4:8c:18:f5:61:65:cf: 60:ea:78:3c:9d:aa:6c:76:4f:0d:da:4a:c4:d4:cd: db:54:98:55:9f:53:3d:78:1d:83:0a:71:bc:ba:d2: f9:fc:12:b1:81:93:47:88:56:74:e5:01:59:e5:5d: 9b:40:86:41:6c:6c:51:be:ec:e4:6f:1a:94:70:fd: 82:16:bb:c4:39:4b:ef:4c:e4:5b:fe:7c:b5:4a:e1: ab:1d:b3:3d:e8:55:83:22:38:81:a4:08:21:2a:a7: 0f:6d:b4:7a:7f:86:5c:4e:c5:80:10:1c:ee:e7:d0: 6e:49:b6:16:c6:38:f0:21:db:e4:aa:92:96:5b:ad: 7c:42:27:b0:31:67:02:5e:de:f3:a1:70:ba:db:82: 2c:35:1e:34:b5:8a:23:b2:c0:12:fb:9f:bf:32:72: d2:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:CE:C9:73:DD:F2:CB:EA:08:C9:B7:60:06:6D:0E:66:CA:20:D4:8E X509v3 Authority Key Identifier: keyid:8D:41:33:6C:B5:D0:AF:FF:10:28:21:6D:95:34:BB:7E:02:C3:E7:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C254D/8CE62DFAC1A711EA9D6B8743C4F9AE02/jUEzbLXQr_8QKCFtlTS7fgLD54U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUEzbLXQr_8QKCFtlTS7fgLD54U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C254D/8CE62DFAC1A711EA9D6B8743C4F9AE02/jUEzbLXQr_8QKCFtlTS7fgLD54U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:ac:9a:d3:d7:49:09:44:e0:a3:fc:ef:a4:c1:89:e6:07:ec: 5a:62:a5:84:d8:9b:c8:16:46:50:86:20:18:7a:3a:f6:57:22: 7e:5b:f4:a5:da:80:d5:8f:61:8a:d8:37:d7:69:85:21:50:73: 0b:62:03:e5:d2:4b:c8:7d:77:03:ee:64:77:e1:8c:ae:00:55: 81:18:06:63:9c:03:09:cc:aa:95:e2:79:8e:c9:de:60:92:cc: 8c:e9:86:f3:fc:c7:26:e6:8d:c2:77:3f:f2:80:68:4e:00:29: c7:e5:2e:c7:77:d7:2f:97:59:f1:94:ea:54:0f:80:fd:37:63: 20:87:f4:3e:8a:f1:fb:e7:21:31:c3:e0:71:e8:5c:70:1a:cf: 33:a2:e6:fe:2a:19:45:58:77:d3:d0:18:ad:70:2f:92:96:29: 23:61:da:23:ad:ea:47:aa:d6:19:86:1c:fa:9e:89:4a:1e:78: 66:2e:d2:9f:51:d7:21:e9:f7:08:72:c0:32:08:5a:af:e3:45: 55:05:1b:30:bb:bd:a4:b8:e7:fa:e6:61:9a:18:0c:48:c6:f4: 70:e2:46:b6:08:2d:90:3b:52:8d:00:7b:1c:99:da:dd:e9:6c: 5a:25:ee:1c:63:53:c9:86:3c:8f:f9:3d:51:6d:93:13:1b:2a: eb:bf:c6:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI1NEQxMTAvBgNVBAUTKDhENDEzMzZDQjVEMEFGRkYxMDI4MjE2RDk1MzRCQjdF MDJDM0U3ODUwHhcNMjQwNTE4MjIwNTA1WhcNMjQwNTI1MjIwNTA1WjAYMRYwFAYD VQQDEw02NjQ5MjYxMS1mNzA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp/5XRCS3TmgwigLGMJjMgBSilwu5fWzI9VAg4ZobFredQLANNnHJzWCzhFuL 2sxd+1rqrlylxcIeUTFQ8EJRZg9uUcUys46WBbs6ZqePEghcXYexHWsBrpWKHO25 4jHTkbSMGPVhZc9g6ng8napsdk8N2krE1M3bVJhVn1M9eB2DCnG8utL5/BKxgZNH iFZ05QFZ5V2bQIZBbGxRvuzkbxqUcP2CFrvEOUvvTORb/ny1SuGrHbM96FWDIjiB pAghKqcPbbR6f4ZcTsWAEBzu59BuSbYWxjjwIdvkqpKWW618QiewMWcCXt7zoXC6 24IsNR40tYojssAS+5+/MnLStQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMXOyXPd 8svqCMm3YAZtDmbKINSOMB8GA1UdIwQYMBaAFI1BM2y10K//ECghbZU0u34Cw+eF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjU0RC84Q0U2MkRGQUMx QTcxMUVBOUQ2Qjg3NDNDNEY5QUUwMi9qVUV6YkxYUXJfOFFLQ0Z0bFRTN2ZnTEQ1 NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pVRXpiTFhRcl84UUtDRnRsVFM3ZmdMRDU0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjU0RC84Q0U2MkRGQUMxQTcxMUVBOUQ2Qjg3NDNDNEY5QUUwMi9qVUV6YkxYUXJf OFFLQ0Z0bFRTN2ZnTEQ1NFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtrJrT10kJROCj/O+kwYnmB+xaYqWE2JvIFkZQhiAYejr2VyJ+W/Sl 2oDVj2GK2DfXaYUhUHMLYgPl0kvIfXcD7mR34YyuAFWBGAZjnAMJzKqV4nmOyd5g ksyM6Ybz/Mcm5o3Cdz/ygGhOACnH5S7Hd9cvl1nxlOpUD4D9N2Mgh/Q+ivH75yEx w+Bx6FxwGs8zoub+KhlFWHfT0BitcC+SlikjYdojrepHqtYZhhz6nolKHnhmLtKf Udch6fcIcsAyCFqv40VVBRswu72kuOf65mGaGAxIxvRw4ka2CC2QO1KNAHscmdrd 6WxaJe4cY1PJhjyP+T1RbZMTGyrrv8Y1 -----END CERTIFICATE-----Generated at Sun May 19 00:16:18 2024 by rpki-client on console-fra.rpki-client.org