$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.mft File: Soo5XlVsx_Garmqwav8GeUSVa0Y.mft (raw, json) Hash identifier: dvDSeSXmrALtBhQARNjiy76FULWlAFPzaHBfvCiuLs8= Subject key identifier: F8:2C:99:C6:07:26:8E:74:2A:D0:AB:61:03:CF:87:F9:2E:DE:3A:78 Authority key identifier: 4A:8A:39:5E:55:6C:C7:F1:9A:AE:6A:B0:6A:FF:06:79:44:95:6B:46 Certificate issuer: /CN=A91CFD5A/serialNumber=4A8A395E556CC7F19AAE6AB06AFF067944956B46 Certificate serial: 42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Soo5XlVsx_Garmqwav8GeUSVa0Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.mft Manifest number: 41 Signing time: Sun 19 May 2024 08:11:40 +0000 Manifest this update: Sun 19 May 2024 08:11:40 +0000 Manifest next update: Sun 26 May 2024 08:11:40 +0000 Files and hashes: 1: Soo5XlVsx_Garmqwav8GeUSVa0Y.crl (hash: poRQEJ2L2DfJqmmoHshhQ42CucfpgILMUgAAsfc1Vss=) 2: D60B1BCCB9AF11EE97EEDB49C4F9AE02.roa (hash: kIKE4PiWDLu72KJWjxN7ko60yw2GrqSNLFSheBlWS3k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.crl rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Soo5XlVsx_Garmqwav8GeUSVa0Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFD5A/serialNumber=4A8A395E556CC7F19AAE6AB06AFF067944956B46 Validity Not Before: May 19 08:11:40 2024 GMT Not After : May 26 08:11:40 2024 GMT Subject: CN=6649b43c-ac18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:80:7f:8f:7c:bc:8c:7e:72:11:a5:71:4d:0f: f8:b7:6c:28:7e:dd:85:f3:5e:a2:91:0d:c8:69:d8: d3:ae:25:f5:ce:85:96:48:ed:3e:1b:98:9d:64:72: 08:fd:cc:43:b2:b2:e2:02:b1:81:00:c2:a1:73:a5: 9f:d5:5e:cf:c9:7c:b0:cf:82:85:da:07:b7:6d:d2: 97:4a:7a:71:0d:76:5e:5b:19:a2:c9:b8:ae:b8:5b: fa:e0:c8:84:16:d6:3e:4f:20:a1:da:42:04:eb:c1: dc:69:d1:e2:bd:8f:49:a1:b6:81:8b:dc:d6:bc:1a: 5d:38:c1:16:a6:4b:30:3d:64:fe:b5:75:4b:05:fe: 02:b0:5d:ee:82:fe:64:91:4b:0d:5f:b6:3e:90:9f: 69:eb:77:60:3b:5b:1c:69:74:e4:81:f6:17:8a:58: 13:2d:69:d8:8a:cb:06:48:f9:bf:0d:09:52:43:5d: 64:09:c3:9a:ab:71:31:14:22:07:bf:71:3a:89:03: a3:f7:de:b8:38:6c:56:09:b9:48:af:91:72:3e:fd: 8e:72:a8:c2:81:45:98:7b:1a:4c:42:29:b4:7f:ae: e5:0e:74:51:bb:09:66:93:b3:62:e4:51:e5:9a:f0: 47:70:bc:f2:a1:b7:9f:b8:95:d7:57:78:63:c3:ae: c0:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:2C:99:C6:07:26:8E:74:2A:D0:AB:61:03:CF:87:F9:2E:DE:3A:78 X509v3 Authority Key Identifier: keyid:4A:8A:39:5E:55:6C:C7:F1:9A:AE:6A:B0:6A:FF:06:79:44:95:6B:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Soo5XlVsx_Garmqwav8GeUSVa0Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:4e:93:14:38:75:a8:ab:a1:92:88:6e:09:7b:48:47:e3:18: f2:a3:b4:75:db:cd:c9:95:39:05:21:41:65:85:55:e2:d0:7a: fa:55:01:72:fa:0b:00:43:e3:a3:22:99:c9:25:c1:41:40:9e: 49:c6:4e:82:b6:7f:f6:0b:ba:a0:45:a6:0e:8a:eb:1d:f6:d0: b5:19:94:9f:06:28:a6:59:83:75:56:6a:ec:7b:6e:59:22:ce: e4:ea:e0:af:92:21:8a:52:d3:06:42:e0:2a:ff:2e:d9:83:7a: f1:7b:cd:7e:6c:21:20:bc:dc:05:7b:13:8a:9e:38:49:f5:9b: 11:56:5f:fa:5b:ef:ba:cc:0d:8c:77:f1:1c:f7:cf:3e:1b:3c: d1:72:d6:14:b8:e3:27:89:2d:17:39:70:16:c5:45:18:d5:df: 78:9d:0d:b6:24:e8:cf:ba:0d:02:14:94:e7:d8:ec:72:6e:b2: 74:81:ac:ba:87:e8:a2:d7:e9:38:52:c0:c8:aa:85:86:3f:19: c7:03:e3:8e:34:e4:9a:91:f6:d4:ca:79:f6:4f:c0:92:42:3d: cb:d3:48:ad:8f:f9:ba:31:6b:f0:69:5d:c2:23:b3:83:47:08: fb:2d:e4:1a:5b:b9:70:ea:06:22:ab:a3:3b:8a:d4:f7:7f:7b: 57:a4:67:04 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RkQ1QTExMC8GA1UEBRMoNEE4QTM5NUU1NTZDQzdGMTlBQUU2QUIwNkFGRjA2Nzk0 NDk1NkI0NjAeFw0yNDA1MTkwODExNDBaFw0yNDA1MjYwODExNDBaMBgxFjAUBgNV BAMTDTY2NDliNDNjLWFjMTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9gH+PfLyMfnIRpXFND/i3bCh+3YXzXqKRDchp2NOuJfXOhZZI7T4bmJ1kcgj9 zEOysuICsYEAwqFzpZ/VXs/JfLDPgoXaB7dt0pdKenENdl5bGaLJuK64W/rgyIQW 1j5PIKHaQgTrwdxp0eK9j0mhtoGL3Na8Gl04wRamSzA9ZP61dUsF/gKwXe6C/mSR Sw1ftj6Qn2nrd2A7WxxpdOSB9heKWBMtadiKywZI+b8NCVJDXWQJw5qrcTEUIge/ cTqJA6P33rg4bFYJuUivkXI+/Y5yqMKBRZh7GkxCKbR/ruUOdFG7CWaTs2LkUeWa 8EdwvPKht5+4lddXeGPDrsDrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+CyZxgcm jnQq0KthA8+H+S7eOngwHwYDVR0jBBgwFoAUSoo5XlVsx/Garmqwav8GeUSVa0Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGRDVBLzIzNzVCMzA2Qjk0 NTExRUVCQjgxODgzNEM0RjlBRTAyL1NvbzVYbFZzeF9HYXJtcXdhdjhHZVVTVmEw WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU29vNVhsVnN4X0dhcm1xd2F2OEdlVVNWYTBZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNG RDVBLzIzNzVCMzA2Qjk0NTExRUVCQjgxODgzNEM0RjlBRTAyL1NvbzVYbFZzeF9H YXJtcXdhdjhHZVVTVmEwWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD9OkxQ4dairoZKIbgl7SEfjGPKjtHXbzcmVOQUhQWWFVeLQevpVAXL6 CwBD46MimcklwUFAnknGToK2f/YLuqBFpg6K6x320LUZlJ8GKKZZg3VWaux7blki zuTq4K+SIYpS0wZC4Cr/LtmDevF7zX5sISC83AV7E4qeOEn1mxFWX/pb77rMDYx3 8Rz3zz4bPNFy1hS44yeJLRc5cBbFRRjV33idDbYk6M+6DQIUlOfY7HJusnSBrLqH 6KLX6ThSwMiqhYY/GccD44405JqR9tTKefZPwJJCPcvTSK2P+boxa/BpXcIjs4NH CPst5BpbuXDqBiKrozuK1Pd/e1ekZwQ= -----END CERTIFICATE-----Generated at Sun May 19 09:04:14 2024 by rpki-client on console-fra.rpki-client.org