$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFBE/74223706DAFA11EB82FE3162C4F9AE02/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.mft File: 1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.mft (raw, json) Hash identifier: n1Z5YgEcREOXxkh0xnf4GAvXYCxCIwfNJh4sO/SWZ3Q= Subject key identifier: 24:E2:5E:78:56:AE:41:E5:7C:6C:D3:C0:00:71:55:9F:F1:E5:2D:ED Authority key identifier: D7:0E:59:4B:81:A1:65:8C:2A:DD:F4:A3:26:8E:F9:CF:08:F9:65:0F Certificate issuer: /CN=A91CFFBE/serialNumber=D70E594B81A1658C2ADDF4A3268EF9CF08F9650F Certificate serial: 04BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFBE/74223706DAFA11EB82FE3162C4F9AE02/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.mft Manifest number: 04BB Signing time: Sun 19 May 2024 01:28:01 +0000 Manifest this update: Sun 19 May 2024 01:28:00 +0000 Manifest next update: Sun 26 May 2024 01:28:00 +0000 Files and hashes: 1: 1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.crl (hash: 6hKE2M1smBInagRJCVzotDUIU05UtrDVYUTFn4HEcq4=) 2: 05A2A4008FE811EEACB1296AC4F9AE02.roa (hash: 8aFhuGjGBzpEJ7OdxUjcAIJruoltPEpSt6TdlgKcVwI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFBE/74223706DAFA11EB82FE3162C4F9AE02/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.crl rsync://rpki.apnic.net/member_repository/A91CFFBE/74223706DAFA11EB82FE3162C4F9AE02/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1213 (0x4bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFBE/serialNumber=D70E594B81A1658C2ADDF4A3268EF9CF08F9650F Validity Not Before: May 19 01:28:00 2024 GMT Not After : May 26 01:28:00 2024 GMT Subject: CN=664955a0-6105 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:2f:05:31:0f:08:a2:dd:2d:55:65:40:b1:b1: 48:de:78:bd:87:45:45:d9:32:70:d1:82:d6:2c:0b: 4d:8e:7c:a5:66:74:74:18:cf:a0:67:35:a1:34:9c: 00:18:46:04:31:f0:bd:f8:af:5d:13:f4:c0:ce:24: ae:17:38:fa:48:e5:57:5d:1b:1f:aa:55:88:a4:33: 33:d6:c9:74:69:91:ae:60:82:7f:df:be:00:81:55: 3c:30:f2:bb:2c:f4:21:1e:c0:48:3a:83:f5:a0:2b: 41:2f:f7:d7:39:a3:13:82:f8:8c:3e:a5:ed:80:39: 90:46:ef:35:e1:44:65:f9:37:3d:25:0d:31:82:87: 33:81:9d:23:75:1e:e7:00:ed:e8:84:f8:e5:a2:2a: f4:76:88:07:b3:d9:27:07:17:c2:c9:52:88:7f:cd: 25:51:b9:0d:22:6e:98:c6:37:ba:3d:9c:2f:3e:38: 7d:c2:e1:e6:54:97:1c:22:be:fb:7b:52:30:10:b5: 57:05:40:3f:25:ed:65:c6:fe:6c:c5:0d:88:c0:e6: 6e:87:5a:b0:e3:b9:9c:c3:36:93:d8:c5:54:a0:81: 3b:6b:c2:a7:5c:e6:e0:be:e1:b4:1c:6c:d7:8e:2d: 53:55:74:69:60:5f:17:70:7e:ab:1d:64:87:6f:b5: 6e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:E2:5E:78:56:AE:41:E5:7C:6C:D3:C0:00:71:55:9F:F1:E5:2D:ED X509v3 Authority Key Identifier: keyid:D7:0E:59:4B:81:A1:65:8C:2A:DD:F4:A3:26:8E:F9:CF:08:F9:65:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFBE/74223706DAFA11EB82FE3162C4F9AE02/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFBE/74223706DAFA11EB82FE3162C4F9AE02/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d3:6d:91:fa:42:a7:f9:7b:44:45:ab:44:f5:cd:61:3c:2a:22: 0b:3e:95:68:04:c5:12:31:59:06:b5:7f:d7:9d:a1:5c:bc:94: 1d:e0:33:0d:44:b2:63:36:f8:29:33:31:ab:d9:ab:df:de:b2: ec:d7:d8:9e:45:d9:58:7f:23:0e:52:6f:f5:bd:da:0b:4d:86: 85:f8:bd:cf:2d:a7:25:45:a1:56:3e:35:e5:99:c1:aa:bc:a8: 32:20:3b:51:b4:83:a4:2f:07:1d:ce:3a:ee:41:80:e5:a7:06: 99:56:18:9a:35:8f:65:00:f5:ba:59:86:1e:47:8a:1c:a8:52: e4:30:b8:b9:2f:07:cf:5e:85:64:d4:09:70:b8:2c:40:b9:33: a0:fe:e9:cd:52:46:b1:4c:b4:8b:48:5b:ea:50:5c:84:09:02: 70:c3:43:4f:9b:6a:93:ec:23:b2:53:8f:8e:d4:b0:d3:1c:9c: e3:05:36:bb:e1:10:44:cc:3c:76:23:5c:8a:63:40:98:c2:24: fb:3d:8c:bf:e1:f3:1d:8a:ab:51:e9:cf:b5:4c:46:69:70:3a: 99:37:69:89:23:3d:6f:61:ef:73:8e:ec:c4:e5:84:64:92:91: db:8d:29:b5:51:90:ba:99:24:e2:da:42:05:14:ee:91:2b:68: 2c:ad:04:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQkUxMTAvBgNVBAUTKEQ3MEU1OTRCODFBMTY1OEMyQURERjRBMzI2OEVGOUNG MDhGOTY1MEYwHhcNMjQwNTE5MDEyODAwWhcNMjQwNTI2MDEyODAwWjAYMRYwFAYD VQQDEw02NjQ5NTVhMC02MTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4i8FMQ8Iot0tVWVAsbFI3ni9h0VF2TJw0YLWLAtNjnylZnR0GM+gZzWhNJwA GEYEMfC9+K9dE/TAziSuFzj6SOVXXRsfqlWIpDMz1sl0aZGuYIJ/374AgVU8MPK7 LPQhHsBIOoP1oCtBL/fXOaMTgviMPqXtgDmQRu814URl+Tc9JQ0xgoczgZ0jdR7n AO3ohPjloir0dogHs9knBxfCyVKIf80lUbkNIm6Yxje6PZwvPjh9wuHmVJccIr77 e1IwELVXBUA/Je1lxv5sxQ2IwOZuh1qw47mcwzaT2MVUoIE7a8KnXObgvuG0HGzX ji1TVXRpYF8XcH6rHWSHb7VuWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCTiXnhW rkHlfGzTwABxVZ/x5S3tMB8GA1UdIwQYMBaAFNcOWUuBoWWMKt30oyaO+c8I+WUP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZCRS83NDIyMzcwNkRB RkExMUVCODJGRTMxNjJDNEY5QUUwMi8xdzVaUzRHaFpZd3EzZlNqSm83NXp3ajVa UTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF3NVpTNEdoWll3cTNmU2pKbzc1endqNVpROC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkZCRS83NDIyMzcwNkRBRkExMUVCODJGRTMxNjJDNEY5QUUwMi8xdzVaUzRHaFpZ d3EzZlNqSm83NXp3ajVaUTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDTbZH6Qqf5e0RFq0T1zWE8KiILPpVoBMUSMVkGtX/XnaFcvJQd4DMN RLJjNvgpMzGr2avf3rLs19ieRdlYfyMOUm/1vdoLTYaF+L3PLaclRaFWPjXlmcGq vKgyIDtRtIOkLwcdzjruQYDlpwaZVhiaNY9lAPW6WYYeR4ocqFLkMLi5LwfPXoVk 1AlwuCxAuTOg/unNUkaxTLSLSFvqUFyECQJww0NPm2qT7COyU4+O1LDTHJzjBTa7 4RBEzDx2I1yKY0CYwiT7PYy/4fMdiqtR6c+1TEZpcDqZN2mJIz1vYe9zjuzE5YRk kpHbjSm1UZC6mSTi2kIFFO6RK2gsrQSD -----END CERTIFICATE-----Generated at Sun May 19 02:39:37 2024 by rpki-client on console-fra.rpki-client.org