$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.mft File: Ci5d8bLD15feoVNn-qncOITNGzM.mft (raw, json) Hash identifier: 0y+mQE7/LbAc6DrToUa/lB5+Twtl6yEjnMI1v/VCPdg= Subject key identifier: 94:DA:AC:34:04:72:1B:4F:E9:E4:9F:3A:66:88:9B:03:1B:34:13:A2 Authority key identifier: 0A:2E:5D:F1:B2:C3:D7:97:DE:A1:53:67:FA:A9:DC:38:84:CD:1B:33 Certificate issuer: /CN=A91CD096/serialNumber=0A2E5DF1B2C3D797DEA15367FAA9DC3884CD1B33 Certificate serial: 0CBC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ci5d8bLD15feoVNn-qncOITNGzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.mft Manifest number: 0CB2 Signing time: Sat 18 May 2024 18:49:11 +0000 Manifest this update: Sat 18 May 2024 18:49:10 +0000 Manifest next update: Sat 25 May 2024 18:49:10 +0000 Files and hashes: 1: Ci5d8bLD15feoVNn-qncOITNGzM.crl (hash: VKZc1g3q20ikDpUirqzsxr7yQry/sgI3NIVoFBB1IQ4=) 2: F4B8310CFC3511EB8D17450AC4F9AE02.roa (hash: 76KLiTJFCiPr4RQVE2/WVukIFpeZPQCC1K72TsdrRZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.crl rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ci5d8bLD15feoVNn-qncOITNGzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3260 (0xcbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD096/serialNumber=0A2E5DF1B2C3D797DEA15367FAA9DC3884CD1B33 Validity Not Before: May 18 18:49:10 2024 GMT Not After : May 25 18:49:10 2024 GMT Subject: CN=6648f827-2d0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:48:11:3c:52:1a:da:d1:6c:dc:6e:dd:ea:4f: d8:4c:92:e2:09:27:7a:96:b5:e2:b8:ad:d7:f3:d4: 5a:54:91:3e:1e:4a:72:2a:15:5a:a5:8c:2d:c4:20: a5:b8:83:30:e1:e1:31:d9:71:c7:fe:64:4e:6b:07: 03:a8:b9:c9:27:8d:16:3f:6e:ac:bd:82:16:ad:f9: 7a:b8:d3:34:49:38:65:40:14:e3:7d:ab:bb:3b:13: 57:f7:21:7f:06:18:da:09:1b:6c:2b:52:2f:4b:27: fc:ea:ac:d9:1b:55:0b:d2:98:46:75:84:38:93:d0: 5b:e6:6a:47:f8:1f:67:15:60:e7:ec:69:b2:8c:f2: d6:2a:3d:9b:05:0c:2c:92:5e:ed:70:b7:bb:13:f5: e2:8b:c1:fe:cf:44:c6:fe:61:d0:78:e3:5a:ee:39: 3e:0f:cb:55:af:f8:66:cf:05:95:d3:16:18:7f:06: 29:0a:69:3b:88:47:07:76:0b:b4:9d:94:e8:7f:f0: a4:a9:22:ec:3f:98:b8:52:0d:37:e8:43:2c:54:1e: b2:2c:d5:a0:61:0e:1b:b3:bf:e1:31:ea:49:c1:00: ff:f4:03:be:7e:bb:cf:5d:98:61:e3:c6:ad:ba:46: 65:19:1c:e6:0a:96:fd:f9:13:b0:6a:7f:fc:51:35: 97:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:DA:AC:34:04:72:1B:4F:E9:E4:9F:3A:66:88:9B:03:1B:34:13:A2 X509v3 Authority Key Identifier: keyid:0A:2E:5D:F1:B2:C3:D7:97:DE:A1:53:67:FA:A9:DC:38:84:CD:1B:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ci5d8bLD15feoVNn-qncOITNGzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:52:52:f7:9d:fe:0c:ac:29:24:5d:72:7f:49:d1:9e:c6:11: 47:29:64:3c:9e:31:20:8b:30:7c:03:c5:32:58:74:1d:18:95: 6b:cd:b7:db:c1:bf:ef:52:75:c8:5b:9b:ad:9e:89:05:ad:fa: 6a:d4:08:c0:ce:1d:7c:ac:01:1f:b4:5f:cb:52:37:f5:a7:c3: 8f:1c:fc:8f:63:41:f9:01:41:85:47:d6:2b:c4:5e:d0:55:82: 7a:e8:b9:e9:c8:0f:67:f9:e3:2e:0c:db:69:70:f0:e8:f3:c3: 34:0e:33:44:ae:7a:9e:8a:de:d1:99:4d:64:d9:06:83:8a:c8: d3:8b:f1:6e:2a:0b:22:16:71:f4:ac:2d:5c:95:ff:ec:c5:c6: 44:ce:f3:20:8e:18:c8:6b:6f:ca:a8:63:a0:72:95:a0:f5:ee: 49:a3:34:86:ad:41:5d:53:9d:ee:02:b0:29:59:f7:45:c4:af: 6f:42:b6:9a:4c:06:9a:cb:76:e5:4a:af:7e:24:7f:cd:58:26: 34:8a:0b:a8:6d:c2:1d:41:ab:98:2a:0a:93:b4:1a:b4:3e:ae: ec:53:db:1f:82:8a:d0:8f:77:32:5e:d5:97:b8:96:c9:12:59: 19:91:db:19:3a:8c:17:d6:f2:b8:7c:ee:ca:bd:0f:01:d4:ce: 12:81:45:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QwOTYxMTAvBgNVBAUTKDBBMkU1REYxQjJDM0Q3OTdERUExNTM2N0ZBQTlEQzM4 ODRDRDFCMzMwHhcNMjQwNTE4MTg0OTEwWhcNMjQwNTI1MTg0OTEwWjAYMRYwFAYD VQQDEw02NjQ4ZjgyNy0yZDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu0gRPFIa2tFs3G7d6k/YTJLiCSd6lrXiuK3X89RaVJE+HkpyKhVapYwtxCCl uIMw4eEx2XHH/mROawcDqLnJJ40WP26svYIWrfl6uNM0SThlQBTjfau7OxNX9yF/ BhjaCRtsK1IvSyf86qzZG1UL0phGdYQ4k9Bb5mpH+B9nFWDn7GmyjPLWKj2bBQws kl7tcLe7E/Xii8H+z0TG/mHQeONa7jk+D8tVr/hmzwWV0xYYfwYpCmk7iEcHdgu0 nZTof/CkqSLsP5i4Ug036EMsVB6yLNWgYQ4bs7/hMepJwQD/9AO+frvPXZhh48at ukZlGRzmCpb9+ROwan/8UTWXYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJTarDQE chtP6eSfOmaImwMbNBOiMB8GA1UdIwQYMBaAFAouXfGyw9eX3qFTZ/qp3DiEzRsz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDA5Ni9FNTA0MkMyQUNB MzIxMUU5QTczOUI3NTNDNEY5QUUwMi9DaTVkOGJMRDE1ZmVvVk5uLXFuY09JVE5H ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NpNWQ4YkxEMTVmZW9WTm4tcW5jT0lUTkd6TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDA5Ni9FNTA0MkMyQUNBMzIxMUU5QTczOUI3NTNDNEY5QUUwMi9DaTVkOGJMRDE1 ZmVvVk5uLXFuY09JVE5Hek0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDEUlL3nf4MrCkkXXJ/SdGexhFHKWQ8njEgizB8A8UyWHQdGJVrzbfb wb/vUnXIW5utnokFrfpq1AjAzh18rAEftF/LUjf1p8OPHPyPY0H5AUGFR9YrxF7Q VYJ66LnpyA9n+eMuDNtpcPDo88M0DjNErnqeit7RmU1k2QaDisjTi/FuKgsiFnH0 rC1clf/sxcZEzvMgjhjIa2/KqGOgcpWg9e5JozSGrUFdU53uArApWfdFxK9vQraa TAaay3blSq9+JH/NWCY0iguobcIdQauYKgqTtBq0Pq7sU9sfgorQj3cyXtWXuJbJ ElkZkdsZOowX1vK4fO7KvQ8B1M4SgUXc -----END CERTIFICATE-----Generated at Sat May 18 19:21:05 2024 by rpki-client on console-fra.rpki-client.org