$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft File: CpU4Un2lMv4x11DRNpblzq8qm88.mft (raw, json) Hash identifier: rA7sv85BjeagYFbjWiRdoPCp7YPqWWC5PMifcD65KqA= Subject key identifier: 5B:38:0D:67:0C:BD:72:3B:20:7E:D1:D4:3B:C3:09:C1:0C:8F:75:3B Authority key identifier: 0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF Certificate issuer: /CN=A91C2677/serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Certificate serial: DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft Manifest number: D8 Signing time: Fri 31 May 2024 06:52:48 +0000 Manifest this update: Fri 31 May 2024 06:52:48 +0000 Manifest next update: Fri 07 Jun 2024 06:52:48 +0000 Files and hashes: 1: CpU4Un2lMv4x11DRNpblzq8qm88.crl (hash: Qbig7JhKD6qkLLsUi18+ePLIPLBYdzZgF3b0yM1tgLs=) 2: 5A1F332618A211EEB9517111C4F9AE02.roa (hash: L46j7D5JqRMEtMeerHLvKLCnSiPpfI4fJUlK6SBHvHs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 06:52:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2677/serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Validity Not Before: May 31 06:52:48 2024 GMT Not After : Jun 7 06:52:48 2024 GMT Subject: CN=665973c0-7e8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:2c:de:2e:0a:27:1b:e0:a2:8a:d1:9f:67:9a: 76:65:88:15:37:25:9e:52:8c:de:5a:1b:5e:20:9d: 93:61:e8:ba:aa:a8:28:7c:1d:fa:f7:9b:19:c8:78: 96:8e:b0:63:69:79:bc:96:a6:56:c9:68:dd:86:d7: 4e:61:ac:d1:88:de:a9:ee:5a:49:c6:91:d3:f3:a9: 0c:11:2a:80:31:3a:20:8f:14:92:cc:85:0a:79:49: a0:6c:76:a4:91:d0:24:88:7b:2c:08:f4:40:1a:5e: 16:cb:29:c6:c4:b7:08:b6:30:ca:e9:4a:2a:83:75: ea:e9:ed:2c:96:02:14:72:3b:b7:2a:0a:9c:95:ca: 0f:72:91:ed:7a:98:b3:fc:27:d6:da:c8:07:04:66: 01:e6:2e:be:19:e3:81:bb:6a:78:c6:f4:c1:d4:88: 51:a7:4c:cf:18:ea:9a:7d:69:76:98:b7:41:49:6e: e5:0e:25:e9:83:ef:55:a4:49:0c:f9:65:b8:96:5f: c3:5d:8f:ea:ac:12:f3:4e:9e:b5:1e:5a:01:7a:51: bf:98:30:e4:aa:b2:f5:d5:b0:2c:5d:ae:ec:e7:6b: 00:d6:2e:f7:62:62:5a:fb:78:24:da:2a:2d:91:7c: cc:b3:a6:ec:99:3a:2e:8a:ac:bf:36:b1:91:78:3b: 57:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:38:0D:67:0C:BD:72:3B:20:7E:D1:D4:3B:C3:09:C1:0C:8F:75:3B X509v3 Authority Key Identifier: keyid:0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:11:dd:15:3f:5a:37:95:51:70:c6:1c:e3:ea:ff:a7:d1:fd: b3:1d:c7:b0:e0:1b:ce:8b:0d:fe:9f:90:83:25:9e:ee:8f:53: dd:52:95:e7:72:b1:3e:0a:94:8f:03:6c:98:83:cd:c3:c2:55: 74:eb:33:c1:05:f0:0c:75:ce:6a:17:20:9c:1c:05:90:55:4e: 48:82:65:46:86:24:3f:8b:db:16:5e:8d:57:6f:65:9b:c0:3c: 5b:5a:6a:07:3b:53:fb:87:ac:d7:80:31:ef:16:db:45:57:b1: fc:f5:cf:81:a7:f7:ea:b7:40:82:ad:39:6f:6e:c5:05:82:25: 49:02:74:b6:e1:9c:82:83:5b:9e:4b:94:d0:91:58:08:c4:b3: a9:2d:fc:d0:26:2b:f7:27:52:00:0b:ba:bf:84:63:78:bd:9d: f0:f1:72:1a:dd:99:81:84:90:0e:9e:8c:95:85:66:54:24:81: a7:49:bf:b8:50:6e:ce:1a:8a:5d:a9:40:4e:bc:46:5f:c1:f3: f9:2c:a3:50:9a:63:5f:45:47:3c:6a:5f:e4:8d:69:95:2e:93: ae:92:16:60:27:08:f6:d9:63:0f:82:e9:29:19:73:e3:17:c9: fd:96:50:2a:1d:8e:e0:bf:73:44:c1:65:e8:98:9c:3d:54:c2: 18:4a:43:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI2NzcxMTAvBgNVBAUTKDBBOTUzODUyN0RBNTMyRkUzMUQ3NTBEMTM2OTZFNUNF QUYyQTlCQ0YwHhcNMjQwNTMxMDY1MjQ4WhcNMjQwNjA3MDY1MjQ4WjAYMRYwFAYD VQQDEw02NjU5NzNjMC03ZThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoSzeLgonG+CiitGfZ5p2ZYgVNyWeUozeWhteIJ2TYei6qqgofB3695sZyHiW jrBjaXm8lqZWyWjdhtdOYazRiN6p7lpJxpHT86kMESqAMTogjxSSzIUKeUmgbHak kdAkiHssCPRAGl4WyynGxLcItjDK6Uoqg3Xq6e0slgIUcju3KgqclcoPcpHtepiz /CfW2sgHBGYB5i6+GeOBu2p4xvTB1IhRp0zPGOqafWl2mLdBSW7lDiXpg+9VpEkM +WW4ll/DXY/qrBLzTp61HloBelG/mDDkqrL11bAsXa7s52sA1i73YmJa+3gk2iot kXzMs6bsmTouiqy/NrGReDtXAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFs4DWcM vXI7IH7R1DvDCcEMj3U7MB8GA1UdIwQYMBaAFAqVOFJ9pTL+MddQ0TaW5c6vKpvP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjY3Ny82NDU3REZEOEQ4 MzcxMUVEOEMwOTY2MjlDNEY5QUUwMi9DcFU0VW4ybE12NHgxMURSTnBibHpxOHFt ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NwVTRVbjJsTXY0eDExRFJOcGJsenE4cW04OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjY3Ny82NDU3REZEOEQ4MzcxMUVEOEMwOTY2MjlDNEY5QUUwMi9DcFU0VW4ybE12 NHgxMURSTnBibHpxOHFtODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrEd0VP1o3lVFwxhzj6v+n0f2zHcew4BvOiw3+n5CDJZ7uj1PdUpXn crE+CpSPA2yYg83DwlV06zPBBfAMdc5qFyCcHAWQVU5IgmVGhiQ/i9sWXo1Xb2Wb wDxbWmoHO1P7h6zXgDHvFttFV7H89c+Bp/fqt0CCrTlvbsUFgiVJAnS24ZyCg1ue S5TQkVgIxLOpLfzQJiv3J1IAC7q/hGN4vZ3w8XIa3ZmBhJAOnoyVhWZUJIGnSb+4 UG7OGopdqUBOvEZfwfP5LKNQmmNfRUc8al/kjWmVLpOukhZgJwj22WMPgukpGXPj F8n9llAqHY7gv3NEwWXomJw9VMIYSkNC -----END CERTIFICATE-----Generated at Fri May 31 08:39:00 2024 by rpki-client on console-fra.rpki-client.org