$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft File: vBRJ7peREatw2N-Y2rpOJrprxls.mft (raw, json) Hash identifier: EKR8yqh+pB3/PITJ1WLU9EoQGQB/E/GfTn/AbA4Ib7g= Subject key identifier: EC:CC:F0:39:3B:7D:5A:CB:DD:36:30:6A:FC:43:58:93:DD:D0:6C:95 Authority key identifier: BC:14:49:EE:97:91:11:AB:70:D8:DF:98:DA:BA:4E:26:BA:6B:C6:5B Certificate issuer: /CN=A91CCA34/serialNumber=BC1449EE979111AB70D8DF98DABA4E26BA6BC65B Certificate serial: 066E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBRJ7peREatw2N-Y2rpOJrprxls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft Manifest number: 0668 Signing time: Mon 20 May 2024 03:32:42 +0000 Manifest this update: Mon 20 May 2024 03:32:42 +0000 Manifest next update: Mon 27 May 2024 03:32:42 +0000 Files and hashes: 1: vBRJ7peREatw2N-Y2rpOJrprxls.crl (hash: I1lTXKz/VaJ3d+ogMParTqmNhpDWl532No1Lkthj4lE=) 2: 7633392033B411EB98035F74C4F9AE02.roa (hash: 8NXt1pssObG/PpMlcEFW2EUWq/5uPT2M00Y0lK2GObc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.crl rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBRJ7peREatw2N-Y2rpOJrprxls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1646 (0x66e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCA34/serialNumber=BC1449EE979111AB70D8DF98DABA4E26BA6BC65B Validity Not Before: May 20 03:32:42 2024 GMT Not After : May 27 03:32:42 2024 GMT Subject: CN=664ac45a-9c85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c9:49:45:ae:56:0f:4b:a9:40:3c:cd:63:12: 01:b8:74:07:3e:a7:50:c7:af:fd:4c:4b:1d:18:39: f6:ab:21:5d:e6:84:85:21:e9:05:7c:db:0e:0e:35: ea:dc:bb:80:40:aa:39:73:c6:ab:69:20:ca:3d:ad: 82:05:5a:02:b8:8d:91:71:e5:3b:80:a2:ac:f4:96: 67:c6:43:b8:f0:30:4e:19:b7:94:ef:e6:06:ee:d2: fc:d5:2d:0f:9a:35:5e:27:fe:fe:ce:5d:cf:f4:79: e6:ad:65:c6:6f:d9:fd:71:a6:c8:89:84:5c:0b:f7: 1c:c7:17:11:24:f4:e7:43:df:08:b3:45:ca:b9:38: d6:44:6f:49:96:cc:02:5c:e6:8e:45:40:4d:27:75: a6:74:ee:58:02:ec:47:0c:c4:55:96:31:2c:24:34: 2d:3e:23:40:0f:53:3c:41:41:ec:b7:c7:a1:b1:30: 34:c8:df:a4:86:78:33:27:38:75:e7:c4:f4:51:0a: d4:36:10:0c:7c:ed:a0:f0:91:fb:22:8e:79:24:0b: 65:2e:3e:6c:98:db:b9:8f:aa:11:23:05:b9:a2:91: 04:95:d0:e2:79:6d:7c:63:57:00:17:e6:23:49:c0: 9c:a0:bb:7b:3c:bf:d5:73:98:a8:b8:82:44:c4:f9: ee:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:CC:F0:39:3B:7D:5A:CB:DD:36:30:6A:FC:43:58:93:DD:D0:6C:95 X509v3 Authority Key Identifier: keyid:BC:14:49:EE:97:91:11:AB:70:D8:DF:98:DA:BA:4E:26:BA:6B:C6:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBRJ7peREatw2N-Y2rpOJrprxls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:3e:7b:1e:e9:e7:a1:08:87:a8:fc:95:21:07:0d:9b:a9:35: 2f:ff:4e:c6:ab:39:36:ed:96:b5:d7:d8:5e:5a:58:c9:b3:78: f3:b9:c2:49:fe:66:20:6a:83:59:9b:f6:36:06:65:bd:75:30: 81:ec:9b:70:af:b7:b7:b4:de:96:91:2b:cf:48:cb:68:8d:b9: 7f:e9:a7:de:e8:45:0d:ea:a4:1c:f6:a7:07:0a:fa:50:c8:c1: 77:25:d1:a5:04:68:29:08:ef:b4:22:d4:02:db:dd:fd:d3:1d: 76:74:d1:d8:5e:21:15:85:53:4f:e3:7d:1b:8b:3e:49:1f:9f: c3:53:bd:3d:2a:30:22:e7:78:13:d2:5c:df:b8:85:b8:e6:7d: 5a:85:7b:80:aa:8a:cc:e8:f5:28:8c:b3:ab:ef:a0:20:c5:4d: 84:f6:0c:f4:92:2e:42:f8:fe:e0:5a:48:74:69:22:46:a0:ef: 59:e4:0d:f7:de:42:7b:a5:d8:84:78:43:10:c3:42:7e:f5:7c: 37:ae:ab:d7:2f:aa:d9:5b:6b:c0:0e:98:19:99:d4:e8:51:00: 29:e5:35:4d:ab:25:0c:a7:4f:5e:4f:9c:00:4b:18:d1:09:8c: c0:b5:8e:e7:22:12:26:49:de:6b:af:03:e1:6a:21:5a:fc:f6: 78:4f:41:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBm4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NBMzQxMTAvBgNVBAUTKEJDMTQ0OUVFOTc5MTExQUI3MEQ4REY5OERBQkE0RTI2 QkE2QkM2NUIwHhcNMjQwNTIwMDMzMjQyWhcNMjQwNTI3MDMzMjQyWjAYMRYwFAYD VQQDEw02NjRhYzQ1YS05Yzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8lJRa5WD0upQDzNYxIBuHQHPqdQx6/9TEsdGDn2qyFd5oSFIekFfNsODjXq 3LuAQKo5c8araSDKPa2CBVoCuI2RceU7gKKs9JZnxkO48DBOGbeU7+YG7tL81S0P mjVeJ/7+zl3P9HnmrWXGb9n9cabIiYRcC/ccxxcRJPTnQ98Is0XKuTjWRG9JlswC XOaORUBNJ3WmdO5YAuxHDMRVljEsJDQtPiNAD1M8QUHst8ehsTA0yN+khngzJzh1 58T0UQrUNhAMfO2g8JH7Io55JAtlLj5smNu5j6oRIwW5opEEldDieW18Y1cAF+Yj ScCcoLt7PL/Vc5iouIJExPnuvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOzM8Dk7 fVrL3TYwavxDWJPd0GyVMB8GA1UdIwQYMBaAFLwUSe6XkRGrcNjfmNq6Tia6a8Zb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0EzNC82RkFBMzY3ODMz QjIxMUVCQTg4QTBBNkZDNEY5QUUwMi92QlJKN3BlUkVhdHcyTi1ZMnJwT0pycHJ4 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZCUko3cGVSRWF0dzJOLVkycnBPSnJwcnhscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Q0EzNC82RkFBMzY3ODMzQjIxMUVCQTg4QTBBNkZDNEY5QUUwMi92QlJKN3BlUkVh dHcyTi1ZMnJwT0pycHJ4bHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5Pnse6eehCIeo/JUhBw2bqTUv/07Gqzk27Za119heWljJs3jzucJJ /mYgaoNZm/Y2BmW9dTCB7Jtwr7e3tN6WkSvPSMtojbl/6afe6EUN6qQc9qcHCvpQ yMF3JdGlBGgpCO+0ItQC29390x12dNHYXiEVhVNP430biz5JH5/DU709KjAi53gT 0lzfuIW45n1ahXuAqorM6PUojLOr76AgxU2E9gz0ki5C+P7gWkh0aSJGoO9Z5A33 3kJ7pdiEeEMQw0J+9Xw3rqvXL6rZW2vADpgZmdToUQAp5TVNqyUMp09eT5wASxjR CYzAtY7nIhImSd5rrwPhaiFa/PZ4T0Gm -----END CERTIFICATE-----Generated at Mon May 20 04:29:59 2024 by rpki-client on console-fra.rpki-client.org