$ rpki-client -vvf rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/MCcwgVkVGUGrc0xyBhfff9zCQQw.mft File: MCcwgVkVGUGrc0xyBhfff9zCQQw.mft (raw, json) Hash identifier: +dkyhdnmlrtw/AHMMlop6K2gIqE6LK7U2lOvktQbvfc= Subject key identifier: 62:DC:FC:75:59:98:EF:7A:43:C6:3E:54:47:9C:E2:8C:8F:D6:3A:B7 Authority key identifier: 30:27:30:81:59:15:19:41:AB:73:4C:72:06:17:DF:7F:DC:C2:41:0C Certificate issuer: /CN=A91D17E8/serialNumber=3027308159151941AB734C720617DF7FDCC2410C Certificate serial: 0EEB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MCcwgVkVGUGrc0xyBhfff9zCQQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/MCcwgVkVGUGrc0xyBhfff9zCQQw.mft Manifest number: 0ED9 Signing time: Sun 28 Apr 2024 18:18:21 +0000 Manifest this update: Sun 28 Apr 2024 18:18:21 +0000 Manifest next update: Sun 05 May 2024 18:18:21 +0000 Files and hashes: 1: MCcwgVkVGUGrc0xyBhfff9zCQQw.crl (hash: XoHLyaiwjLGanXTbfG82J/gnTfxUNYMWWAeAEqz2HbQ=) 2: 1777F060A7CE11E980B87114C4F9AE02.roa (hash: kbWfE4+lQ3eJtzTz+bGLRGAhbJNnY1HHy7GZu7SpmnE=) 3: D8C69E2A5C5511E98C4B6D6BC4F9AE02.roa (hash: pCQ6Zv4AQRohxIezVUYwDmwCrvRYPnBVH50M3Opl1jc=) 4: 35A169488D8611E9B1106E6FC4F9AE02.roa (hash: ee7Du24pr7R8ebpqXGV4EXWAUmNVLXaWx0uPbdyG68s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/MCcwgVkVGUGrc0xyBhfff9zCQQw.crl rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/MCcwgVkVGUGrc0xyBhfff9zCQQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MCcwgVkVGUGrc0xyBhfff9zCQQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 16:23:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3819 (0xeeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D17E8/serialNumber=3027308159151941AB734C720617DF7FDCC2410C Validity Not Before: Apr 28 18:18:21 2024 GMT Not After : May 5 18:18:21 2024 GMT Subject: CN=662e92ed-6394 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:57:18:d3:1f:d9:85:25:4b:68:a9:88:a4:54: ec:8d:19:89:4e:25:78:23:bc:23:b9:c2:a0:08:c9: 6d:39:46:82:7c:f1:ba:f0:b0:52:b6:f4:f4:89:57: a7:8e:ef:81:87:0d:df:6c:af:8c:24:ec:ba:45:d2: 33:4a:a0:4a:1b:d5:19:64:0b:1e:a5:36:21:a6:63: 57:63:05:ee:6b:be:65:72:84:31:64:10:14:53:e9: 6d:71:1f:55:2e:95:c2:7f:59:9f:98:99:0c:ff:f4: 0a:99:e7:06:5a:13:13:54:f3:0f:c2:24:53:82:43: 9f:01:77:fc:0c:f3:b9:38:6b:d0:d1:e9:2b:c4:19: 22:fa:7a:97:6c:83:59:cc:01:84:d0:f3:8f:73:e1: 4f:78:8e:5f:7d:f8:f5:90:0f:f1:64:46:79:dc:8c: ea:1d:4b:f7:d2:34:91:f4:1d:ce:5a:42:2c:86:00: 8d:22:0b:82:b7:a8:52:b8:f5:c4:bc:19:b5:cd:2a: ff:5e:72:eb:43:94:aa:94:ff:08:c4:e7:84:96:95: 30:c4:1e:38:d0:51:5c:0d:43:ff:7a:17:a6:bc:35: e6:bf:1b:73:e8:f3:d4:4b:a9:12:c0:ae:2d:fe:19: c0:e4:70:b8:e0:14:a9:91:3a:8a:b6:a9:15:29:6f: 65:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:DC:FC:75:59:98:EF:7A:43:C6:3E:54:47:9C:E2:8C:8F:D6:3A:B7 X509v3 Authority Key Identifier: keyid:30:27:30:81:59:15:19:41:AB:73:4C:72:06:17:DF:7F:DC:C2:41:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/MCcwgVkVGUGrc0xyBhfff9zCQQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MCcwgVkVGUGrc0xyBhfff9zCQQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/MCcwgVkVGUGrc0xyBhfff9zCQQw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:18:08:92:7b:ed:bb:d9:4e:2c:fd:c3:84:fc:ce:df:60:a1: 53:41:d3:52:a1:94:ad:68:71:d4:3d:4c:9d:1a:7c:29:7e:dd: d7:f7:aa:f0:ab:6e:57:14:9b:74:71:ba:d6:36:48:dd:64:62: 0d:bb:80:53:02:1d:11:47:96:27:0c:86:f2:1a:13:b4:f9:49: 76:c3:75:f0:40:31:b5:21:9e:1e:1d:6e:4e:76:e9:e5:bf:d5: 2a:3d:3e:4e:d8:53:1b:f1:8e:d5:7a:06:a2:1f:37:56:d7:51: e0:c8:4f:64:6f:56:98:a2:9a:57:c4:1d:7b:af:68:66:3a:c4: c6:13:94:85:60:72:29:da:00:e0:95:1e:42:70:86:f5:01:f3: 93:59:33:3b:6a:8e:2e:1f:ae:68:f3:d7:08:d9:85:40:6a:e9: 1b:bc:ea:92:66:5a:5d:e5:2c:62:10:01:76:ff:a3:79:2a:a4: 78:c0:ee:2b:b9:57:18:78:4b:cf:b7:60:ee:8d:41:42:d6:a0: 80:93:65:0b:9b:2a:f1:48:67:94:8b:49:00:61:33:0d:17:83: d1:2e:04:02:79:b2:52:42:f9:61:d0:be:30:67:20:c5:e5:77: ce:f2:c4:2b:0c:55:a9:90:28:37:ee:47:df:b9:4f:95:a0:4b: 2e:60:78:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDuswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE3RTgxMTAvBgNVBAUTKDMwMjczMDgxNTkxNTE5NDFBQjczNEM3MjA2MTdERjdG RENDMjQxMEMwHhcNMjQwNDI4MTgxODIxWhcNMjQwNTA1MTgxODIxWjAYMRYwFAYD VQQDEw02NjJlOTJlZC02Mzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2FcY0x/ZhSVLaKmIpFTsjRmJTiV4I7wjucKgCMltOUaCfPG68LBStvT0iVen ju+Bhw3fbK+MJOy6RdIzSqBKG9UZZAsepTYhpmNXYwXua75lcoQxZBAUU+ltcR9V LpXCf1mfmJkM//QKmecGWhMTVPMPwiRTgkOfAXf8DPO5OGvQ0ekrxBki+nqXbINZ zAGE0POPc+FPeI5fffj1kA/xZEZ53IzqHUv30jSR9B3OWkIshgCNIguCt6hSuPXE vBm1zSr/XnLrQ5SqlP8IxOeElpUwxB440FFcDUP/ehemvDXmvxtz6PPUS6kSwK4t /hnA5HC44BSpkTqKtqkVKW9lewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGLc/HVZ mO96Q8Y+VEec4oyP1jq3MB8GA1UdIwQYMBaAFDAnMIFZFRlBq3NMcgYX33/cwkEM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTdFOC9GMTZFMTg1NjVD NTMxMUU5OUFCNUNGNjhDNEY5QUUwMi9NQ2N3Z1ZrVkdVR3JjMHh5QmhmZmY5ekNR UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01DY3dnVmtWR1VHcmMweHlCaGZmZjl6Q1FRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTdFOC9GMTZFMTg1NjVDNTMxMUU5OUFCNUNGNjhDNEY5QUUwMi9NQ2N3Z1ZrVkdV R3JjMHh5QmhmZmY5ekNRUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVGAiSe+272U4s/cOE/M7fYKFTQdNSoZStaHHUPUydGnwpft3X96rw q25XFJt0cbrWNkjdZGINu4BTAh0RR5YnDIbyGhO0+Ul2w3XwQDG1IZ4eHW5Odunl v9UqPT5O2FMb8Y7VegaiHzdW11HgyE9kb1aYoppXxB17r2hmOsTGE5SFYHIp2gDg lR5CcIb1AfOTWTM7ao4uH65o89cI2YVAaukbvOqSZlpd5SxiEAF2/6N5KqR4wO4r uVcYeEvPt2DujUFC1qCAk2ULmyrxSGeUi0kAYTMNF4PRLgQCebJSQvlh0L4wZyDF 5XfO8sQrDFWpkCg37kffuU+VoEsuYHgq -----END CERTIFICATE-----Generated at Sun Apr 28 19:01:39 2024 by rpki-client on console-fra.rpki-client.org