$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDAFB/EC0F6A38034111EEA5215247C4F9AE02/CekFd0f2O6Ciga54ATZozt6kCrQ.mft File: CekFd0f2O6Ciga54ATZozt6kCrQ.mft (raw, json) Hash identifier: yMfmm1S0G+yubKkqLWj3UOV/98F9yftLpsAqAR3Dj3o= Subject key identifier: 82:40:7C:B6:19:A3:FF:99:6D:80:34:A1:66:3F:A9:3D:B1:D4:96:34 Authority key identifier: 09:E9:05:77:47:F6:3B:A0:A2:81:AE:78:01:36:68:CE:DE:A4:0A:B4 Certificate issuer: /CN=A91CDAFB/serialNumber=09E9057747F63BA0A281AE78013668CEDEA40AB4 Certificate serial: B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CekFd0f2O6Ciga54ATZozt6kCrQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDAFB/EC0F6A38034111EEA5215247C4F9AE02/CekFd0f2O6Ciga54ATZozt6kCrQ.mft Manifest number: B4 Signing time: Sun 19 May 2024 06:30:16 +0000 Manifest this update: Sun 19 May 2024 06:30:16 +0000 Manifest next update: Sun 26 May 2024 06:30:16 +0000 Files and hashes: 1: CekFd0f2O6Ciga54ATZozt6kCrQ.crl (hash: 7cTJsRbr6SLu37CBTllTG7z/Dm+UEHU/EEhP9/QB41M=) 2: 2815D106041A11EEA67A6B4DC4F9AE02.roa (hash: BGY/uPAB8s6bOk+iTJOiyTH1PPXIxJM6rQPQkuaz0DI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDAFB/EC0F6A38034111EEA5215247C4F9AE02/CekFd0f2O6Ciga54ATZozt6kCrQ.crl rsync://rpki.apnic.net/member_repository/A91CDAFB/EC0F6A38034111EEA5215247C4F9AE02/CekFd0f2O6Ciga54ATZozt6kCrQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CekFd0f2O6Ciga54ATZozt6kCrQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 182 (0xb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDAFB/serialNumber=09E9057747F63BA0A281AE78013668CEDEA40AB4 Validity Not Before: May 19 06:30:16 2024 GMT Not After : May 26 06:30:16 2024 GMT Subject: CN=66499c78-9267 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b6:9e:20:d6:02:91:7b:db:b1:1e:f2:d6:f5: 01:c6:bb:11:c5:4e:d0:c6:b3:14:01:b6:3b:21:17: 68:7a:4f:10:a1:4d:30:cf:10:1a:de:28:b2:d4:c1: 5d:0b:e6:0e:f1:c8:86:9a:fb:dc:0c:bf:d6:fa:95: 45:16:6c:14:c2:7b:27:b7:25:07:3f:43:51:3c:5a: 48:10:56:45:b9:18:e7:a0:8c:e5:cc:04:17:ec:70: 43:15:2c:34:3f:3f:16:a2:5b:56:a1:91:a8:ad:06: 48:90:a0:ce:d1:46:2f:65:0d:49:92:9e:e3:8c:e9: 31:66:3d:9d:2f:c0:1f:63:66:87:e6:a6:9b:03:f3: 03:4f:81:76:67:e3:fd:fa:77:b1:9e:20:d1:2b:c5: fa:28:d7:7d:79:9f:5c:17:63:39:29:9b:99:66:52: 3a:7d:b7:e9:fd:2b:d2:7f:41:95:f1:04:7b:c9:9b: 72:56:62:38:f0:88:78:3e:68:12:cb:e9:30:e1:b6: 17:fb:74:b2:13:86:4c:a2:7e:ee:65:70:e0:62:bb: 04:83:48:80:be:cb:af:17:5e:c7:75:ec:1c:47:82: 94:5d:c8:51:e1:56:6f:2f:84:91:2e:9d:06:87:df: 76:cf:8e:ed:af:a0:e9:ca:43:55:c2:b2:2a:54:b6: 9a:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:40:7C:B6:19:A3:FF:99:6D:80:34:A1:66:3F:A9:3D:B1:D4:96:34 X509v3 Authority Key Identifier: keyid:09:E9:05:77:47:F6:3B:A0:A2:81:AE:78:01:36:68:CE:DE:A4:0A:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDAFB/EC0F6A38034111EEA5215247C4F9AE02/CekFd0f2O6Ciga54ATZozt6kCrQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CekFd0f2O6Ciga54ATZozt6kCrQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDAFB/EC0F6A38034111EEA5215247C4F9AE02/CekFd0f2O6Ciga54ATZozt6kCrQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:fa:82:c1:f9:14:de:26:0d:ca:1c:2a:3a:d0:2e:2d:5c:6b: 8c:32:ea:e5:7f:3e:2e:c0:be:da:fe:12:15:dc:8f:e8:da:fb: b0:19:cf:3b:ba:44:d3:ff:3a:e4:c1:26:73:72:5a:fa:d4:a6: 00:8a:26:ed:b5:0c:52:e3:67:52:b5:b4:61:f7:31:ad:78:2a: 47:9a:b8:d9:f8:45:4d:fb:3e:d4:8b:01:f5:b1:8e:79:f2:9b: 79:a4:20:14:d4:ee:13:09:46:94:ca:90:51:87:1a:7b:6f:cd: 36:75:4d:7d:37:02:c5:4f:a4:22:20:c8:84:b0:af:37:ae:11: 9a:ac:6e:99:ba:0d:6b:ae:f0:da:52:4b:e8:9a:1b:76:b0:a9: f9:17:b0:0e:f1:36:1e:b5:bb:7b:b4:25:7b:da:59:03:69:b0: f8:32:ee:cf:df:f2:77:0a:4a:c6:5c:98:5a:56:ce:c7:cc:ce: a6:a5:21:ba:5a:f5:db:d8:a0:73:12:fa:ed:3b:bc:bd:ce:1a: 8e:4f:e4:9b:81:ce:7a:aa:64:32:76:7d:db:6b:51:5d:eb:d4: 87:de:a1:80:7c:78:b1:e7:08:a1:63:c2:3a:84:1f:c6:af:0c: 32:ca:33:27:4b:ca:0e:9d:b7:04:4d:52:28:64:0a:96:d1:a5: 54:20:29:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RBRkIxMTAvBgNVBAUTKDA5RTkwNTc3NDdGNjNCQTBBMjgxQUU3ODAxMzY2OENF REVBNDBBQjQwHhcNMjQwNTE5MDYzMDE2WhcNMjQwNTI2MDYzMDE2WjAYMRYwFAYD VQQDEw02NjQ5OWM3OC05MjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0LaeINYCkXvbsR7y1vUBxrsRxU7QxrMUAbY7IRdoek8QoU0wzxAa3iiy1MFd C+YO8ciGmvvcDL/W+pVFFmwUwnsntyUHP0NRPFpIEFZFuRjnoIzlzAQX7HBDFSw0 Pz8WoltWoZGorQZIkKDO0UYvZQ1Jkp7jjOkxZj2dL8AfY2aH5qabA/MDT4F2Z+P9 +nexniDRK8X6KNd9eZ9cF2M5KZuZZlI6fbfp/SvSf0GV8QR7yZtyVmI48Ih4PmgS y+kw4bYX+3SyE4ZMon7uZXDgYrsEg0iAvsuvF17HdewcR4KUXchR4VZvL4SRLp0G h992z47tr6DpykNVwrIqVLaaCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIJAfLYZ o/+ZbYA0oWY/qT2x1JY0MB8GA1UdIwQYMBaAFAnpBXdH9jugooGueAE2aM7epAq0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREFGQi9FQzBGNkEzODAz NDExMUVFQTUyMTUyNDdDNEY5QUUwMi9DZWtGZDBmMk82Q2lnYTU0QVRab3p0NmtD clEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Nla0ZkMGYyTzZDaWdhNTRBVFpvenQ2a0NyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD REFGQi9FQzBGNkEzODAzNDExMUVFQTUyMTUyNDdDNEY5QUUwMi9DZWtGZDBmMk82 Q2lnYTU0QVRab3p0NmtDclEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAU+oLB+RTeJg3KHCo60C4tXGuMMurlfz4uwL7a/hIV3I/o2vuwGc87 ukTT/zrkwSZzclr61KYAiibttQxS42dStbRh9zGteCpHmrjZ+EVN+z7UiwH1sY55 8pt5pCAU1O4TCUaUypBRhxp7b802dU19NwLFT6QiIMiEsK83rhGarG6Zug1rrvDa Ukvomht2sKn5F7AO8TYetbt7tCV72lkDabD4Mu7P3/J3CkrGXJhaVs7HzM6mpSG6 WvXb2KBzEvrtO7y9zhqOT+Sbgc56qmQydn3ba1Fd69SH3qGAfHix5wihY8I6hB/G rwwyyjMnS8oOnbcETVIoZAqW0aVUICkv -----END CERTIFICATE-----Generated at Sun May 19 07:40:45 2024 by rpki-client on console-fra.rpki-client.org