$ rpki-client -vvf rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft File: 8bZbeXYWOXNS7L1KLHdPz37G1HA.mft (raw, json) Hash identifier: Cqq4ol2wzfDt0ONgaDaZJhTg5rMVpTpJSJqw6qizi8Q= Subject key identifier: 1D:73:17:F7:2D:F0:67:94:3C:13:43:63:2E:51:70:B3:43:B6:40:28 Authority key identifier: F1:B6:5B:79:76:16:39:73:52:EC:BD:4A:2C:77:4F:CF:7E:C6:D4:70 Certificate issuer: /CN=A91D14EF/serialNumber=F1B65B797616397352ECBD4A2C774FCF7EC6D470 Certificate serial: 0599 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft Manifest number: 0594 Signing time: Sun 19 May 2024 00:25:48 +0000 Manifest this update: Sun 19 May 2024 00:25:48 +0000 Manifest next update: Sun 26 May 2024 00:25:48 +0000 Files and hashes: 1: 8bZbeXYWOXNS7L1KLHdPz37G1HA.crl (hash: mQppCCyI/nlToBl8YRnLJF9flOCaAvYlfQ9ECUuHx2c=) 2: 226402B0860D11EB8F541B68C4F9AE02.roa (hash: y7fGqG2zMTlsWUgwcSbG/aCOa1G0W3pseNmyoJID29o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.crl rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1433 (0x599) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D14EF/serialNumber=F1B65B797616397352ECBD4A2C774FCF7EC6D470 Validity Not Before: May 19 00:25:48 2024 GMT Not After : May 26 00:25:48 2024 GMT Subject: CN=6649470c-2190 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:7e:e5:3f:f3:9d:37:c3:5b:b4:30:8d:3f:fc: 03:16:a4:4a:ff:4e:8a:d6:f1:08:93:0d:d1:18:2d: 89:fa:d4:51:1a:00:7f:2f:4f:d0:3a:52:b5:aa:28: 9a:17:bf:9e:f3:87:02:5b:ba:f0:29:8c:d5:fe:6e: 09:a1:30:23:e4:e8:97:57:da:90:08:32:49:52:a7: 26:c9:ef:48:2f:58:32:d5:1a:ec:72:32:47:30:60: 51:e7:78:52:01:d7:94:7e:83:18:dc:ac:cf:c8:34: bd:02:d0:bc:51:0f:7c:83:34:7b:65:10:a1:4a:ca: b6:65:f3:06:50:75:59:16:92:ed:8f:31:18:fc:e5: ca:16:a9:99:93:5b:f0:d9:89:b0:94:cc:20:8b:07: 6e:22:8e:04:d8:03:7e:ad:d3:54:58:76:62:0b:51: 17:36:58:7a:72:4b:ea:82:9a:a6:54:3d:e3:24:fa: 50:5d:fe:78:34:4e:57:40:c0:b4:a0:43:51:79:d1: 92:f1:6d:5e:93:db:11:97:02:c6:08:77:ae:4c:b1: 56:f7:d2:e0:89:9c:26:e8:45:11:51:e3:31:87:06: 20:8d:ad:7b:b9:49:f0:eb:d1:20:c5:81:6b:81:f3: 61:4f:e6:5d:3c:4e:f2:6d:82:1d:47:f1:07:da:00: 2e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:73:17:F7:2D:F0:67:94:3C:13:43:63:2E:51:70:B3:43:B6:40:28 X509v3 Authority Key Identifier: keyid:F1:B6:5B:79:76:16:39:73:52:EC:BD:4A:2C:77:4F:CF:7E:C6:D4:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:32:51:6d:2e:c0:6d:23:dc:87:62:70:56:07:71:b4:77:fc: 5d:62:ac:1a:20:89:34:dd:ef:75:bc:ec:85:8c:fe:b1:f5:de: 6e:bd:21:d9:41:35:b7:39:4b:84:d9:f3:01:7c:70:6c:50:01: 8c:4d:b4:49:ad:97:f0:d4:0d:e9:c6:03:d2:61:52:6b:11:df: 57:7d:3c:19:0f:23:ee:37:41:d9:fd:ab:83:1c:59:74:93:5e: 0a:e5:15:13:8c:ac:c6:ec:7f:b5:3a:4c:e6:f3:85:f0:00:ca: 50:6b:85:5b:90:f7:6c:e3:15:e1:86:e7:6d:f1:3f:74:06:b0: 77:d6:77:0e:fe:32:6a:34:ea:c0:3e:8a:24:c3:40:b0:11:d1: 61:c8:2a:04:a9:b7:f1:54:91:9f:1c:92:98:71:3e:c3:0f:17: af:9e:c1:0b:7d:7d:82:a9:60:87:26:c8:c8:e8:f3:99:9e:74: cf:01:bd:40:cc:0a:b4:b9:66:d0:f8:3f:1d:42:76:08:1a:be: 1c:31:d7:39:ca:a4:7e:f4:51:9e:14:ab:1e:5c:b1:02:a3:c4: 81:f6:04:29:b0:8e:3f:23:3f:2d:66:c6:81:2a:02:93:8c:8a: 5b:4a:05:58:e9:52:aa:83:84:da:f3:07:57:45:ec:aa:d7:d2: 17:7f:24:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE0RUYxMTAvBgNVBAUTKEYxQjY1Qjc5NzYxNjM5NzM1MkVDQkQ0QTJDNzc0RkNG N0VDNkQ0NzAwHhcNMjQwNTE5MDAyNTQ4WhcNMjQwNTI2MDAyNTQ4WjAYMRYwFAYD VQQDEw02NjQ5NDcwYy0yMTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA437lP/OdN8NbtDCNP/wDFqRK/06K1vEIkw3RGC2J+tRRGgB/L0/QOlK1qiia F7+e84cCW7rwKYzV/m4JoTAj5OiXV9qQCDJJUqcmye9IL1gy1RrscjJHMGBR53hS AdeUfoMY3KzPyDS9AtC8UQ98gzR7ZRChSsq2ZfMGUHVZFpLtjzEY/OXKFqmZk1vw 2YmwlMwgiwduIo4E2AN+rdNUWHZiC1EXNlh6ckvqgpqmVD3jJPpQXf54NE5XQMC0 oENRedGS8W1ek9sRlwLGCHeuTLFW99LgiZwm6EURUeMxhwYgja17uUnw69EgxYFr gfNhT+ZdPE7ybYIdR/EH2gAupwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB1zF/ct 8GeUPBNDYy5RcLNDtkAoMB8GA1UdIwQYMBaAFPG2W3l2FjlzUuy9Six3T89+xtRw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTRFRi8yNjQwMTAwNjg2 MEIxMUVCOTFDMTJENjNDNEY5QUUwMi84YlpiZVhZV09YTlM3TDFLTEhkUHozN0cx SEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhiWmJlWFlXT1hOUzdMMUtMSGRQejM3RzFIQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTRFRi8yNjQwMTAwNjg2MEIxMUVCOTFDMTJENjNDNEY5QUUwMi84YlpiZVhZV09Y TlM3TDFLTEhkUHozN0cxSEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfMlFtLsBtI9yHYnBWB3G0d/xdYqwaIIk03e91vOyFjP6x9d5uvSHZ QTW3OUuE2fMBfHBsUAGMTbRJrZfw1A3pxgPSYVJrEd9XfTwZDyPuN0HZ/auDHFl0 k14K5RUTjKzG7H+1Okzm84XwAMpQa4VbkPds4xXhhudt8T90BrB31ncO/jJqNOrA Pookw0CwEdFhyCoEqbfxVJGfHJKYcT7DDxevnsELfX2CqWCHJsjI6POZnnTPAb1A zAq0uWbQ+D8dQnYIGr4cMdc5yqR+9FGeFKseXLECo8SB9gQpsI4/Iz8tZsaBKgKT jIpbSgVY6VKqg4Ta8wdXReyq19IXfyRJ -----END CERTIFICATE-----Generated at Sun May 19 00:59:43 2024 by rpki-client on console-fra.rpki-client.org