$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.mft File: 5CK_AmFA0gPv1r_eruJoqosEZtU.mft (raw, json) Hash identifier: yQrRiSlykH4G83y0GJm4aFBkjRvtdFgpctnu9WMbFrs= Subject key identifier: 8C:F2:13:73:92:19:CC:10:67:E2:B1:4E:92:DC:91:80:1A:FD:C9:92 Authority key identifier: E4:22:BF:02:61:40:D2:03:EF:D6:BF:DE:AE:E2:68:AA:8B:04:66:D5 Certificate issuer: /CN=A91C3174/serialNumber=E422BF026140D203EFD6BFDEAEE268AA8B0466D5 Certificate serial: 020A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CK_AmFA0gPv1r_eruJoqosEZtU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.mft Manifest number: 0207 Signing time: Sun 19 May 2024 04:09:52 +0000 Manifest this update: Sun 19 May 2024 04:09:51 +0000 Manifest next update: Sun 26 May 2024 04:09:51 +0000 Files and hashes: 1: 5CK_AmFA0gPv1r_eruJoqosEZtU.crl (hash: ECNBGFLMLX9bLB4gADcWyoaS+uRO3BeQZ+ry6B2Tn8o=) 2: 9A4B6146EED111EC9BDD4C49C4F9AE02.roa (hash: eAuiHz95OnsqMbafdwqxvw/kZ1YaOXM/w2y2Dchm1aU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.crl rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CK_AmFA0gPv1r_eruJoqosEZtU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 522 (0x20a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3174/serialNumber=E422BF026140D203EFD6BFDEAEE268AA8B0466D5 Validity Not Before: May 19 04:09:51 2024 GMT Not After : May 26 04:09:51 2024 GMT Subject: CN=66497b8f-423f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:77:0b:dd:ce:25:df:3e:5a:8b:2d:c5:11:44: ca:79:cf:0b:16:f3:4a:c5:47:a9:50:c5:ed:ed:08: 07:37:01:75:9e:1d:ac:2e:4a:cb:44:7f:74:d3:61: fb:cf:b9:f4:fa:12:58:69:47:a1:6d:2e:1f:28:7a: c0:5a:89:54:b6:e0:89:48:4b:56:ed:4e:22:e2:b0: 00:dc:cb:16:00:95:32:4a:62:33:13:75:8e:7c:12: 6f:ff:5d:d3:fd:08:d2:86:4f:26:68:08:93:21:d1: 80:55:fc:23:f4:54:fa:38:52:66:3d:e2:08:48:a0: 07:95:24:61:3b:7c:33:1d:0c:fe:ad:d2:85:77:44: 8e:db:ca:74:45:ef:c5:fb:32:ad:84:63:4d:69:13: b5:2f:fc:03:5e:30:66:60:93:6d:d4:f0:74:8b:96: 51:b9:e5:14:f9:f2:f6:ea:1f:ec:c4:b0:65:0d:80: 0a:cc:5d:5b:90:a5:5b:fb:f5:b5:13:a5:ff:b9:aa: af:5f:2e:7f:07:49:33:47:21:bc:3f:73:5f:99:f4: 8a:7a:23:6b:7e:cd:7a:67:9a:f5:e5:a8:fc:f2:2f: e0:cf:8b:ec:7a:7a:13:dc:4f:81:3a:25:46:c7:46: f2:cc:ed:38:96:31:93:74:41:1a:c9:31:78:ef:41: 6b:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:F2:13:73:92:19:CC:10:67:E2:B1:4E:92:DC:91:80:1A:FD:C9:92 X509v3 Authority Key Identifier: keyid:E4:22:BF:02:61:40:D2:03:EF:D6:BF:DE:AE:E2:68:AA:8B:04:66:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CK_AmFA0gPv1r_eruJoqosEZtU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:3d:02:13:6c:d1:3c:bf:bb:4b:1f:ca:be:d7:86:fb:e1:17: 98:e7:bf:e6:d8:a6:22:5a:e2:33:c8:e7:44:ac:27:9d:de:fe: 9b:f6:4a:b7:a7:63:96:62:f6:28:f4:dc:8b:83:0d:df:d9:88: 01:45:27:4b:b5:08:3e:49:5d:89:d9:cb:6b:23:c4:69:e1:ff: be:d6:dd:be:70:86:54:b3:58:e5:25:1f:31:f2:fa:b2:6f:b6: 3e:dc:70:01:88:64:00:70:e5:a6:9d:48:85:4f:7e:18:53:03: 3f:2f:b0:5f:b3:32:6f:11:07:38:d9:4e:f2:fe:04:68:7a:d1: 50:76:28:78:d6:26:59:25:1d:7d:3d:87:38:a6:a4:bd:85:ad: c7:cf:04:c4:b3:48:3a:20:97:8a:a6:4b:a5:a0:72:11:0d:45: 5a:92:f3:9d:85:20:4a:f7:3d:d0:4d:de:ab:81:6c:8f:ab:40: b6:e8:55:99:56:79:5e:74:36:1c:b8:a2:19:9a:98:55:82:fd: e5:fb:eb:38:c3:06:79:4a:18:8e:a9:c3:ca:b9:8e:ce:a7:25: 85:bf:04:7b:91:0f:59:d1:ed:18:1f:76:6e:86:bb:61:76:58: 32:3a:f2:51:57:7e:37:51:12:0f:0e:55:34:fb:65:9c:a9:4a: c5:b1:0c:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMxNzQxMTAvBgNVBAUTKEU0MjJCRjAyNjE0MEQyMDNFRkQ2QkZERUFFRTI2OEFB OEIwNDY2RDUwHhcNMjQwNTE5MDQwOTUxWhcNMjQwNTI2MDQwOTUxWjAYMRYwFAYD VQQDEw02NjQ5N2I4Zi00MjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxHcL3c4l3z5aiy3FEUTKec8LFvNKxUepUMXt7QgHNwF1nh2sLkrLRH9002H7 z7n0+hJYaUehbS4fKHrAWolUtuCJSEtW7U4i4rAA3MsWAJUySmIzE3WOfBJv/13T /QjShk8maAiTIdGAVfwj9FT6OFJmPeIISKAHlSRhO3wzHQz+rdKFd0SO28p0Re/F +zKthGNNaRO1L/wDXjBmYJNt1PB0i5ZRueUU+fL26h/sxLBlDYAKzF1bkKVb+/W1 E6X/uaqvXy5/B0kzRyG8P3NfmfSKeiNrfs16Z5r15aj88i/gz4vsenoT3E+BOiVG x0byzO04ljGTdEEayTF470FrcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIzyE3OS GcwQZ+KxTpLckYAa/cmSMB8GA1UdIwQYMBaAFOQivwJhQNID79a/3q7iaKqLBGbV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzE3NC9CMTMxRjg5Q0VF Q0QxMUVDOENGNDQ3MUVDNEY5QUUwMi81Q0tfQW1GQTBnUHYxcl9lcnVKb3Fvc0Va dFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVDS19BbUZBMGdQdjFyX2VydUpvcW9zRVp0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzE3NC9CMTMxRjg5Q0VFQ0QxMUVDOENGNDQ3MUVDNEY5QUUwMi81Q0tfQW1GQTBn UHYxcl9lcnVKb3Fvc0VadFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRPQITbNE8v7tLH8q+14b74ReY57/m2KYiWuIzyOdErCed3v6b9kq3 p2OWYvYo9NyLgw3f2YgBRSdLtQg+SV2J2ctrI8Rp4f++1t2+cIZUs1jlJR8x8vqy b7Y+3HABiGQAcOWmnUiFT34YUwM/L7BfszJvEQc42U7y/gRoetFQdih41iZZJR19 PYc4pqS9ha3HzwTEs0g6IJeKpkuloHIRDUVakvOdhSBK9z3QTd6rgWyPq0C26FWZ VnledDYcuKIZmphVgv3l++s4wwZ5ShiOqcPKuY7OpyWFvwR7kQ9Z0e0YH3Zuhrth dlgyOvJRV343URIPDlU0+2WcqUrFsQwx -----END CERTIFICATE-----Generated at Sun May 19 04:56:56 2024 by rpki-client on console-fra.rpki-client.org