$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft File: sgd9XTkKxy472IWxHzrm0qUmqe0.mft (raw, json) Hash identifier: SaTedNUlhYiS1PXdZcX8s3O7pW5yOt8P6YxUqpQfGGs= Subject key identifier: 70:38:AA:E0:6C:99:1A:1D:34:9C:12:5E:56:6F:9C:71:0B:83:23:08 Authority key identifier: B2:07:7D:5D:39:0A:C7:2E:3B:D8:85:B1:1F:3A:E6:D2:A5:26:A9:ED Certificate issuer: /CN=A91C9B85/serialNumber=B2077D5D390AC72E3BD885B11F3AE6D2A526A9ED Certificate serial: 06CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft Manifest number: 06C7 Signing time: Fri 31 May 2024 23:52:57 +0000 Manifest this update: Fri 31 May 2024 23:52:56 +0000 Manifest next update: Fri 07 Jun 2024 23:52:56 +0000 Files and hashes: 1: sgd9XTkKxy472IWxHzrm0qUmqe0.crl (hash: 8dFEJe3OLvkOXbZ/gv1QUXUGhzFpG61Cfnl76KlrDJ4=) 2: 53B6E5D212CF11EBA8D2C037C4F9AE02.roa (hash: UHLbtcY+MssUReji2ZDnPxouuMqAchFNbY9lf4jGoV8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.crl rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 23:52:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1743 (0x6cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9B85/serialNumber=B2077D5D390AC72E3BD885B11F3AE6D2A526A9ED Validity Not Before: May 31 23:52:56 2024 GMT Not After : Jun 7 23:52:56 2024 GMT Subject: CN=665a62d9-5fcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:29:d7:64:aa:66:fa:1d:76:7f:31:79:6e:6f: 45:9a:3a:4d:ea:e2:54:99:61:dd:72:05:04:ab:3f: f9:61:ed:e6:1b:ac:01:69:40:3d:a2:aa:04:db:71: 9c:85:d8:ab:70:b8:39:b2:d1:d4:77:93:9d:71:0a: fd:4a:73:d4:e8:48:20:e9:3a:2a:d9:83:fd:25:6a: 2b:e9:d8:4c:9f:fb:20:9b:a3:2f:d7:2d:08:ff:52: 71:da:36:7e:cb:30:1a:0e:d2:a6:26:fb:9b:97:01: fc:69:2c:03:5d:f6:28:7e:0d:38:9a:fe:ce:50:d6: 5c:93:62:4a:29:de:7b:ce:e1:70:84:78:8a:77:41: b3:aa:92:9f:d3:92:52:8a:47:ea:f2:29:be:71:80: 39:6d:5c:90:74:05:56:04:3e:6b:bd:87:df:21:a8: 9c:ff:c7:e0:c1:30:62:14:be:b3:ea:29:d0:8a:6b: 73:8a:8c:e3:ae:98:58:88:fc:1e:f0:e8:f8:ab:f7: 71:bc:7e:2a:b2:24:45:22:e7:bd:d7:1c:c5:87:27: ed:0e:e2:9a:a5:ac:b7:ab:30:39:f9:59:a5:6a:4d: 29:4d:d2:2c:74:ae:43:e2:b0:2e:a7:f2:f2:11:ac: 9e:f3:cc:d0:4b:d9:95:e0:7a:22:ef:7a:85:63:2b: 5f:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:38:AA:E0:6C:99:1A:1D:34:9C:12:5E:56:6F:9C:71:0B:83:23:08 X509v3 Authority Key Identifier: keyid:B2:07:7D:5D:39:0A:C7:2E:3B:D8:85:B1:1F:3A:E6:D2:A5:26:A9:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:cc:b4:8e:e6:f7:fc:aa:1e:93:67:cb:4c:69:66:e5:6c:64: cc:f0:a1:b3:a7:f5:2c:09:39:da:ee:35:70:59:dc:61:ae:08: 4c:8f:02:00:7a:b7:db:aa:0c:71:e0:c0:7b:3c:37:28:78:e7: be:c5:12:ec:73:e0:3c:6b:1c:76:cd:dc:e1:d0:2b:28:30:3d: ff:8b:39:21:cd:56:07:68:81:c8:6f:13:86:f3:01:58:8e:7a: 8f:26:3e:66:27:4e:09:ae:d2:cc:68:61:2c:2f:04:29:3f:e2: 39:c3:f1:18:9e:9c:df:ce:ec:11:fb:e8:df:f8:43:a2:32:91: ef:7d:86:5b:43:38:a8:7c:7f:8c:38:ab:4e:c0:93:fd:e1:48: 69:0d:25:4d:64:a6:d6:1e:b5:3d:f5:89:a9:87:ad:49:8d:5b: 24:7c:2a:ec:95:27:d6:76:8a:6a:52:88:d9:bd:0d:1d:eb:b6: 50:c8:b1:a0:9d:1b:98:d3:da:b2:7c:44:ac:ad:9f:90:7a:03: f3:f0:16:5b:25:55:f2:77:42:81:14:0f:c7:aa:d8:85:5e:cd: 24:69:a8:4c:8a:6f:2e:85:18:8c:88:2b:41:3e:2c:3b:1f:be: 1c:d6:cd:bb:01:d3:f2:9a:91:b7:a4:4d:93:68:e2:d2:7d:62: 3a:4d:f0:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBs8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlCODUxMTAvBgNVBAUTKEIyMDc3RDVEMzkwQUM3MkUzQkQ4ODVCMTFGM0FFNkQy QTUyNkE5RUQwHhcNMjQwNTMxMjM1MjU2WhcNMjQwNjA3MjM1MjU2WjAYMRYwFAYD VQQDEw02NjVhNjJkOS01ZmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+CnXZKpm+h12fzF5bm9FmjpN6uJUmWHdcgUEqz/5Ye3mG6wBaUA9oqoE23Gc hdircLg5stHUd5OdcQr9SnPU6Egg6Toq2YP9JWor6dhMn/sgm6Mv1y0I/1Jx2jZ+ yzAaDtKmJvublwH8aSwDXfYofg04mv7OUNZck2JKKd57zuFwhHiKd0GzqpKf05JS ikfq8im+cYA5bVyQdAVWBD5rvYffIaic/8fgwTBiFL6z6inQimtziozjrphYiPwe 8Oj4q/dxvH4qsiRFIue91xzFhyftDuKapay3qzA5+Vmlak0pTdIsdK5D4rAup/Ly Eaye88zQS9mV4Hoi73qFYytfxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHA4quBs mRodNJwSXlZvnHELgyMIMB8GA1UdIwQYMBaAFLIHfV05CscuO9iFsR865tKlJqnt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUI4NS80MkQ3QzAwQzEy Q0UxMUVCOTUzMzE5MzdDNEY5QUUwMi9zZ2Q5WFRrS3h5NDcySVd4SHpybTBxVW1x ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NnZDlYVGtLeHk0NzJJV3hIenJtMHFVbXFlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUI4NS80MkQ3QzAwQzEyQ0UxMUVCOTUzMzE5MzdDNEY5QUUwMi9zZ2Q5WFRrS3h5 NDcySVd4SHpybTBxVW1xZTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7zLSO5vf8qh6TZ8tMaWblbGTM8KGzp/UsCTna7jVwWdxhrghMjwIA erfbqgxx4MB7PDcoeOe+xRLsc+A8axx2zdzh0CsoMD3/izkhzVYHaIHIbxOG8wFY jnqPJj5mJ04JrtLMaGEsLwQpP+I5w/EYnpzfzuwR++jf+EOiMpHvfYZbQziofH+M OKtOwJP94UhpDSVNZKbWHrU99Ymph61JjVskfCrslSfWdopqUojZvQ0d67ZQyLGg nRuY09qyfESsrZ+QegPz8BZbJVXyd0KBFA/HqtiFXs0kaahMim8uhRiMiCtBPiw7 H74c1s27AdPympG3pE2TaOLSfWI6TfA+ -----END CERTIFICATE-----Generated at Sat Jun 1 00:33:00 2024 by rpki-client on console-fra.rpki-client.org