$ rpki-client -vvf rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft File: CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft (raw, json) Hash identifier: jIViaF3nCMHUG6F+fzJ+NtrKKmP7xUKRLx2aC7X10PU= Subject key identifier: 6B:EA:6D:6B:5D:C9:90:A6:4A:B3:60:FF:E7:9B:F9:DA:81:8B:86:76 Authority key identifier: 08:02:5B:9B:44:EE:D8:AE:0B:76:F1:1E:03:72:CE:96:18:77:AD:9F Certificate issuer: /CN=A91C941B/serialNumber=08025B9B44EED8AE0B76F11E0372CE961877AD9F Certificate serial: 0433 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft Manifest number: 0428 Signing time: Fri 31 May 2024 02:36:43 +0000 Manifest this update: Fri 31 May 2024 02:36:42 +0000 Manifest next update: Fri 07 Jun 2024 02:36:42 +0000 Files and hashes: 1: CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl (hash: w1yM4jem0Ua1ljlufcNInyP3qgFUB7p72/3orEpIaaI=) 2: B3883EE61A8C11ECBD6CCF18C4F9AE02.roa (hash: 1SiztMWrrOjzVD8IZQc3tHGe6xbD+y3RMtUT94TxEfk=) 3: F719961A1A8611ECB908E939C4F9AE02.roa (hash: UYlgQcxgZvKt/aPYF11YgKV9F95GFY5hL7ix3XcP4Wc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 02:36:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1075 (0x433) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C941B/serialNumber=08025B9B44EED8AE0B76F11E0372CE961877AD9F Validity Not Before: May 31 02:36:42 2024 GMT Not After : Jun 7 02:36:42 2024 GMT Subject: CN=665937bb-ef36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:4e:d2:8f:27:7f:06:45:40:dd:7c:ef:de:53: 50:e4:88:13:12:da:25:94:79:e5:02:d2:95:73:9b: 11:84:b6:d7:51:16:8b:77:50:48:03:4e:fe:34:cc: bd:9e:03:b0:f5:da:9f:cb:93:fc:27:9c:ba:1b:24: f3:67:06:96:63:60:fa:c9:9f:7d:81:30:47:1f:44: e7:64:2b:08:48:51:15:7a:79:60:f8:86:de:3f:d5: 4d:ee:b6:48:3b:3b:7d:68:c8:26:20:8c:9b:3c:37: 28:3d:77:96:4d:e8:98:cc:3c:39:7e:bd:92:7e:2e: dd:42:16:02:f8:88:cc:bb:e7:12:6b:13:63:06:b3: c9:f4:1e:fe:f3:2a:f7:a8:15:a6:9e:82:95:3d:1a: 17:a7:8f:38:d4:e6:c8:28:47:7c:b9:99:b4:22:09: e3:b2:c7:37:33:02:5e:4e:ce:2c:99:a7:d5:9c:c7: 69:ac:af:6f:c2:96:46:0d:b0:61:77:d4:9e:35:27: 61:2b:1c:e9:55:92:23:a1:14:37:4b:2c:96:5b:a6: 2d:19:2e:7c:76:e5:7e:07:e1:37:fb:2b:db:64:06: a9:1e:d3:52:ea:95:8c:8d:6e:5b:c6:2b:e1:8f:4c: c1:1e:f3:72:89:48:38:82:98:25:04:c5:d3:76:06: db:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:EA:6D:6B:5D:C9:90:A6:4A:B3:60:FF:E7:9B:F9:DA:81:8B:86:76 X509v3 Authority Key Identifier: keyid:08:02:5B:9B:44:EE:D8:AE:0B:76:F1:1E:03:72:CE:96:18:77:AD:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:52:ee:30:7c:16:fb:36:12:bd:4d:4a:91:42:2d:5c:93:9d: a2:fd:44:3a:64:93:9f:93:5a:43:21:76:1f:41:4b:0a:92:db: 3d:d6:3a:2b:3b:45:23:59:77:3d:a8:0b:c5:1b:56:c6:cf:49: 7e:a5:26:0f:e9:50:35:e4:10:82:fe:1a:ce:54:7d:b3:fc:d9: 2a:0d:f5:cf:94:73:46:18:16:4c:64:51:e8:32:17:ca:47:36: 90:53:40:9e:19:6f:43:19:32:da:6c:73:a1:5e:75:50:47:b7: 64:83:d4:3e:b1:4e:b4:60:72:75:a4:64:50:84:e8:99:03:a5: 13:f3:41:e3:36:21:c5:ef:55:56:5f:8d:87:0b:ab:c7:54:d6: 8b:2e:bd:d0:55:f9:a8:bd:32:29:ff:f1:cc:59:78:5d:97:4a: 34:17:71:2c:8e:ee:b1:ad:3b:21:08:71:03:b6:ad:5a:ce:2e: 64:c1:93:63:07:7c:8b:de:06:64:ae:17:0e:ec:38:44:7f:4c: 1f:93:01:fc:15:ba:56:fa:3c:72:81:d8:a4:c7:ce:78:aa:11: 21:24:06:a5:be:61:aa:fa:ff:0d:5d:50:e3:0d:a3:f8:fa:d3: 1c:4e:60:28:d4:f7:c0:8f:ab:49:1f:0d:6c:8d:1e:ff:c8:70: 5a:a0:bf:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk0MUIxMTAvBgNVBAUTKDA4MDI1QjlCNDRFRUQ4QUUwQjc2RjExRTAzNzJDRTk2 MTg3N0FEOUYwHhcNMjQwNTMxMDIzNjQyWhcNMjQwNjA3MDIzNjQyWjAYMRYwFAYD VQQDEw02NjU5MzdiYi1lZjM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy07Sjyd/BkVA3Xzv3lNQ5IgTEtollHnlAtKVc5sRhLbXURaLd1BIA07+NMy9 ngOw9dqfy5P8J5y6GyTzZwaWY2D6yZ99gTBHH0TnZCsISFEVenlg+IbeP9VN7rZI Ozt9aMgmIIybPDcoPXeWTeiYzDw5fr2Sfi7dQhYC+IjMu+cSaxNjBrPJ9B7+8yr3 qBWmnoKVPRoXp4841ObIKEd8uZm0Ignjssc3MwJeTs4smafVnMdprK9vwpZGDbBh d9SeNSdhKxzpVZIjoRQ3SyyWW6YtGS58duV+B+E3+yvbZAapHtNS6pWMjW5bxivh j0zBHvNyiUg4gpglBMXTdgbbTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGvqbWtd yZCmSrNg/+eb+dqBi4Z2MB8GA1UdIwQYMBaAFAgCW5tE7tiuC3bxHgNyzpYYd62f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTQxQi82OUY2QjdERTFB ODMxMUVDOEM5MjIyMjlDNEY5QUUwMi9DQUpibTBUdTJLNExkdkVlQTNMT2xoaDNy WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NBSmJtMFR1Mks0TGR2RWVBM0xPbGhoM3JaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTQxQi82OUY2QjdERTFBODMxMUVDOEM5MjIyMjlDNEY5QUUwMi9DQUpibTBUdTJL NExkdkVlQTNMT2xoaDNyWjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuUu4wfBb7NhK9TUqRQi1ck52i/UQ6ZJOfk1pDIXYfQUsKkts91jor O0UjWXc9qAvFG1bGz0l+pSYP6VA15BCC/hrOVH2z/NkqDfXPlHNGGBZMZFHoMhfK RzaQU0CeGW9DGTLabHOhXnVQR7dkg9Q+sU60YHJ1pGRQhOiZA6UT80HjNiHF71VW X42HC6vHVNaLLr3QVfmovTIp//HMWXhdl0o0F3Esju6xrTshCHEDtq1azi5kwZNj B3yL3gZkrhcO7DhEf0wfkwH8FbpW+jxygdikx854qhEhJAalvmGq+v8NXVDjDaP4 +tMcTmAo1PfAj6tJHw1sjR7/yHBaoL89 -----END CERTIFICATE-----Generated at Fri May 31 04:54:02 2024 by rpki-client on console-fra.rpki-client.org