$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft File: B7Y7XcFse0rper0AhqMVbV10Rlk.mft (raw, json) Hash identifier: 6rOT68p+nEmWbo8Y7vPVFf0X8MuSCm8Z/UU5qJ5kohw= Subject key identifier: A9:97:E2:4D:D4:9A:58:2C:9A:6E:9F:0D:B2:6D:CB:19:1D:36:7D:80 Authority key identifier: 07:B6:3B:5D:C1:6C:7B:4A:E9:7A:BD:00:86:A3:15:6D:5D:74:46:59 Certificate issuer: /CN=A91C6E49/serialNumber=07B63B5DC16C7B4AE97ABD0086A3156D5D744659 Certificate serial: 012B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft Manifest number: 0128 Signing time: Sun 19 May 2024 05:06:17 +0000 Manifest this update: Sun 19 May 2024 05:06:17 +0000 Manifest next update: Sun 26 May 2024 05:06:17 +0000 Files and hashes: 1: B7Y7XcFse0rper0AhqMVbV10Rlk.crl (hash: k/VbHh2ndiAE3gTNXyZs2xNkYpbnQbvbiTDVBTPMdJE=) 2: 98FD8A0E538411ED8D781C7CC4F9AE02.roa (hash: Lztt6/ReAThPmIVkFkfcmUr03ADDOwVW/Xo8xPY51D0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.crl rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 299 (0x12b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6E49/serialNumber=07B63B5DC16C7B4AE97ABD0086A3156D5D744659 Validity Not Before: May 19 05:06:17 2024 GMT Not After : May 26 05:06:17 2024 GMT Subject: CN=664988c9-9917 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:43:95:c9:9c:79:3e:77:c1:44:e6:98:93:a8: 68:b2:c5:dd:83:43:56:1f:0f:36:e4:28:5d:e8:e9: 03:1e:5c:1b:4d:f5:84:d8:5f:74:90:fb:e7:07:b9: 37:58:1b:52:63:da:b9:5d:15:41:2c:48:16:7b:30: 5e:cb:8a:43:05:49:ef:fe:3b:5a:d5:dd:08:2a:89: 4f:e4:8b:b5:7a:dd:7c:56:15:52:3f:70:03:4d:e4: eb:aa:28:0c:ef:41:2e:15:a9:a0:93:3a:24:70:2a: fd:17:d5:5e:6c:f7:89:19:db:13:9d:25:1e:eb:12: 1a:b2:d3:60:c5:3b:bf:7e:bc:99:73:cd:51:37:03: 02:dd:38:96:70:c1:79:73:93:d6:90:8a:a6:e1:91: fe:e1:66:fa:93:ab:0d:4d:01:da:6d:5c:50:8a:ea: 2b:db:5c:93:40:dc:fa:a2:21:ee:02:93:9c:da:21: b0:93:e5:f6:a3:c8:4f:f1:e3:01:d6:2f:e7:8e:7d: 5d:dc:d0:4b:cb:90:15:e3:90:5c:3d:50:5f:41:8c: 2a:93:ca:80:a8:7c:25:1f:dd:b3:5b:ad:68:5b:d6: a7:15:54:1c:95:36:6b:9c:33:4c:c7:02:fc:47:e5: d8:f0:9c:90:cc:15:75:e8:2e:f8:75:43:73:08:21: 22:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:97:E2:4D:D4:9A:58:2C:9A:6E:9F:0D:B2:6D:CB:19:1D:36:7D:80 X509v3 Authority Key Identifier: keyid:07:B6:3B:5D:C1:6C:7B:4A:E9:7A:BD:00:86:A3:15:6D:5D:74:46:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:c3:e8:99:c6:5d:e3:17:91:89:e0:e2:17:62:e2:11:ce:bc: 8f:74:a8:97:f8:dc:c7:42:f1:2b:42:da:66:ac:35:34:8e:73: 16:31:2f:45:d9:2f:d2:a9:e6:df:82:69:bd:81:e4:ae:b6:de: 77:f9:0c:94:35:95:2f:4e:bb:94:aa:10:94:27:98:ad:a4:36: 1c:56:6f:fc:16:41:09:e2:fe:ba:fd:6c:dc:48:52:b1:35:0f: 61:f9:b3:eb:99:87:73:3d:78:14:bf:74:98:95:b8:c5:0a:65: 92:72:a4:71:67:88:20:67:d1:6c:65:c0:f6:70:c0:6e:a1:43: c2:32:8f:11:1e:8a:4c:f1:ad:94:a7:f1:16:de:ef:98:c8:30: fd:93:53:02:e5:9f:4b:a7:21:d7:b6:b7:73:45:0d:0f:8d:2e: a4:64:8a:03:00:67:ef:fd:dc:b8:8f:a3:0e:c2:32:d9:52:4f: df:dc:cf:5c:ae:2b:0a:58:d1:4a:de:0f:60:64:1e:2d:d2:b3: ee:18:af:85:dd:32:fb:3e:7b:24:64:cb:35:ec:f3:59:ab:1f: 29:83:48:79:a2:2b:4f:f6:69:75:c3:82:a6:ed:fe:e3:9f:6d: 74:53:5a:3a:ca:1f:c4:3c:d4:2b:c4:6f:0d:64:91:c6:75:0e: f3:c8:ec:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZFNDkxMTAvBgNVBAUTKDA3QjYzQjVEQzE2QzdCNEFFOTdBQkQwMDg2QTMxNTZE NUQ3NDQ2NTkwHhcNMjQwNTE5MDUwNjE3WhcNMjQwNTI2MDUwNjE3WjAYMRYwFAYD VQQDEw02NjQ5ODhjOS05OTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsEOVyZx5PnfBROaYk6hossXdg0NWHw825Chd6OkDHlwbTfWE2F90kPvnB7k3 WBtSY9q5XRVBLEgWezBey4pDBUnv/jta1d0IKolP5Iu1et18VhVSP3ADTeTrqigM 70EuFamgkzokcCr9F9VebPeJGdsTnSUe6xIastNgxTu/fryZc81RNwMC3TiWcMF5 c5PWkIqm4ZH+4Wb6k6sNTQHabVxQiuor21yTQNz6oiHuApOc2iGwk+X2o8hP8eMB 1i/njn1d3NBLy5AV45BcPVBfQYwqk8qAqHwlH92zW61oW9anFVQclTZrnDNMxwL8 R+XY8JyQzBV16C74dUNzCCEiKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKmX4k3U mlgsmm6fDbJtyxkdNn2AMB8GA1UdIwQYMBaAFAe2O13BbHtK6Xq9AIajFW1ddEZZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkU0OS9CMzNBQTdBNjUz ODExMUVEOEFBOThGNzdDNEY5QUUwMi9CN1k3WGNGc2UwcnBlcjBBaHFNVmJWMTBS bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I3WTdYY0ZzZTBycGVyMEFocU1WYlYxMFJsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkU0OS9CMzNBQTdBNjUzODExMUVEOEFBOThGNzdDNEY5QUUwMi9CN1k3WGNGc2Uw cnBlcjBBaHFNVmJWMTBSbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBew+iZxl3jF5GJ4OIXYuIRzryPdKiX+NzHQvErQtpmrDU0jnMWMS9F 2S/Sqebfgmm9geSutt53+QyUNZUvTruUqhCUJ5itpDYcVm/8FkEJ4v66/WzcSFKx NQ9h+bPrmYdzPXgUv3SYlbjFCmWScqRxZ4ggZ9FsZcD2cMBuoUPCMo8RHopM8a2U p/EW3u+YyDD9k1MC5Z9LpyHXtrdzRQ0PjS6kZIoDAGfv/dy4j6MOwjLZUk/f3M9c risKWNFK3g9gZB4t0rPuGK+F3TL7PnskZMs17PNZqx8pg0h5oitP9ml1w4Km7f7j n210U1o6yh/EPNQrxG8NZJHGdQ7zyOzk -----END CERTIFICATE-----Generated at Sun May 19 05:48:52 2024 by rpki-client on console-fra.rpki-client.org