$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2646/D2037D127BEC11EAA9A6C725C4F9AE02/r5ACm-EBySLPz0vRRdevHcZA5eA.mft File: r5ACm-EBySLPz0vRRdevHcZA5eA.mft (raw, json) Hash identifier: RoW1I/x8i0VMLwdeh1qmgPZVSwcBv9fGUPb6OBa/dLA= Subject key identifier: F5:27:8D:00:2E:35:92:C9:5E:8A:18:F7:10:B8:0B:2B:C5:5F:51:54 Authority key identifier: AF:90:02:9B:E1:01:C9:22:CF:CF:4B:D1:45:D7:AF:1D:C6:40:E5:E0 Certificate issuer: /CN=A91D2646/serialNumber=AF90029BE101C922CFCF4BD145D7AF1DC640E5E0 Certificate serial: 092C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r5ACm-EBySLPz0vRRdevHcZA5eA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2646/D2037D127BEC11EAA9A6C725C4F9AE02/r5ACm-EBySLPz0vRRdevHcZA5eA.mft Manifest number: 0924 Signing time: Sat 18 May 2024 21:11:27 +0000 Manifest this update: Sat 18 May 2024 21:11:26 +0000 Manifest next update: Sat 25 May 2024 21:11:26 +0000 Files and hashes: 1: r5ACm-EBySLPz0vRRdevHcZA5eA.crl (hash: 4QEA/q/WnadQlWZtPOcZFxKFyvIDmGOU/iFf+GKhioI=) 2: EE675FC27BED11EABD4A3A27C4F9AE02.roa (hash: frbcPytOQDBEPI8HxCLYiccRKfVpYGRdn9rYVcJA9yw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2646/D2037D127BEC11EAA9A6C725C4F9AE02/r5ACm-EBySLPz0vRRdevHcZA5eA.crl rsync://rpki.apnic.net/member_repository/A91D2646/D2037D127BEC11EAA9A6C725C4F9AE02/r5ACm-EBySLPz0vRRdevHcZA5eA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r5ACm-EBySLPz0vRRdevHcZA5eA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2348 (0x92c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2646/serialNumber=AF90029BE101C922CFCF4BD145D7AF1DC640E5E0 Validity Not Before: May 18 21:11:26 2024 GMT Not After : May 25 21:11:26 2024 GMT Subject: CN=6649197e-91c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:83:3b:07:bf:ca:8a:ff:ac:0c:77:b9:10:b4: a4:27:f9:fe:a4:37:72:78:7c:70:a3:16:5e:7d:0e: b7:b1:dd:ad:ac:7b:db:8a:ae:2b:6f:42:c5:04:fe: 84:2c:94:11:dd:a9:84:e7:29:f4:b4:96:5f:b3:66: ee:c7:eb:76:f7:7a:4b:37:15:4c:7d:29:73:97:88: 6d:93:2c:e0:be:27:cd:5e:ad:00:e8:0b:14:34:25: 89:38:2e:06:73:0e:d1:40:2e:7c:00:b1:01:ad:e9: 62:86:a6:35:55:65:fa:e9:c1:9b:12:ae:f0:ba:46: e4:8a:cd:fe:26:92:a1:a5:4e:76:ea:cb:33:76:49: 2a:a2:ce:90:38:f8:8a:7d:ce:3f:d9:88:dd:bf:05: bf:c7:86:23:b4:aa:fd:d5:61:c8:eb:93:d6:73:8e: 1b:94:7d:56:81:e0:51:34:e5:d6:9d:e5:3f:ac:c2: 1b:cc:d2:54:cf:81:a3:b3:c0:7f:d8:0f:3e:94:7b: 3f:a9:24:f6:58:ed:38:b2:c6:e6:d2:be:6f:d2:a2: 82:09:c1:6e:ee:3e:80:6b:2f:42:82:db:09:ec:0c: ab:cc:24:0f:c5:db:7b:f6:82:8b:98:33:5b:b1:b3: e1:de:0d:36:f0:42:da:c6:2f:0e:d0:58:84:5a:e0: 69:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:27:8D:00:2E:35:92:C9:5E:8A:18:F7:10:B8:0B:2B:C5:5F:51:54 X509v3 Authority Key Identifier: keyid:AF:90:02:9B:E1:01:C9:22:CF:CF:4B:D1:45:D7:AF:1D:C6:40:E5:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2646/D2037D127BEC11EAA9A6C725C4F9AE02/r5ACm-EBySLPz0vRRdevHcZA5eA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r5ACm-EBySLPz0vRRdevHcZA5eA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2646/D2037D127BEC11EAA9A6C725C4F9AE02/r5ACm-EBySLPz0vRRdevHcZA5eA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:36:fb:ae:0c:ed:15:a6:71:80:a8:6f:79:28:a9:fb:3a:98: a6:b0:d2:c8:05:ec:26:2a:f8:a9:65:62:a7:61:6a:fa:a5:ca: 61:75:e8:19:a6:2a:8b:73:62:12:69:5a:d0:47:0a:00:4f:85: bc:5c:f9:f6:e0:cc:c2:3a:5c:c6:1e:e5:10:a2:a8:c2:61:3d: cf:a0:12:93:3e:46:a1:78:63:b6:dd:43:e2:de:52:7c:47:2d: 91:81:f0:22:ec:58:88:af:25:77:07:17:f1:84:2a:13:b2:03: b1:db:c2:a6:7a:98:94:36:82:2c:b9:ce:1e:4c:33:9d:a7:70: e2:cd:b4:b2:e0:e4:88:df:4c:14:28:45:c0:e2:e4:15:32:50: 67:02:f8:7e:7a:24:7a:cb:d7:02:cd:c4:dc:fb:1c:21:c9:c2: d8:10:7a:91:44:59:ff:33:96:7a:ad:22:f9:3f:7d:93:e3:7b: 79:3b:1a:87:55:e4:8f:de:aa:0b:c9:b4:da:4c:fa:2a:8b:57: 61:cf:77:d3:70:66:47:74:a5:f3:88:4b:e6:5c:e0:44:46:95: ec:34:e8:c8:3d:ad:0f:50:70:5f:3d:ba:be:ea:5f:75:b4:c4: d4:71:8b:32:64:47:94:89:aa:bf:c1:02:1c:2c:d4:71:7a:e2: 8b:80:b7:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI2NDYxMTAvBgNVBAUTKEFGOTAwMjlCRTEwMUM5MjJDRkNGNEJEMTQ1RDdBRjFE QzY0MEU1RTAwHhcNMjQwNTE4MjExMTI2WhcNMjQwNTI1MjExMTI2WjAYMRYwFAYD VQQDEw02NjQ5MTk3ZS05MWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAroM7B7/Kiv+sDHe5ELSkJ/n+pDdyeHxwoxZefQ63sd2trHvbiq4rb0LFBP6E LJQR3amE5yn0tJZfs2bux+t293pLNxVMfSlzl4htkyzgvifNXq0A6AsUNCWJOC4G cw7RQC58ALEBrelihqY1VWX66cGbEq7wukbkis3+JpKhpU526sszdkkqos6QOPiK fc4/2YjdvwW/x4YjtKr91WHI65PWc44blH1WgeBRNOXWneU/rMIbzNJUz4Gjs8B/ 2A8+lHs/qST2WO04ssbm0r5v0qKCCcFu7j6Aay9CgtsJ7AyrzCQPxdt79oKLmDNb sbPh3g028ELaxi8O0FiEWuBpBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPUnjQAu NZLJXooY9xC4CyvFX1FUMB8GA1UdIwQYMBaAFK+QApvhAckiz89L0UXXrx3GQOXg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjY0Ni9EMjAzN0QxMjdC RUMxMUVBQTlBNkM3MjVDNEY5QUUwMi9yNUFDbS1FQnlTTFB6MHZSUmRldkhjWkE1 ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I1QUNtLUVCeVNMUHowdlJSZGV2SGNaQTVlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjY0Ni9EMjAzN0QxMjdCRUMxMUVBQTlBNkM3MjVDNEY5QUUwMi9yNUFDbS1FQnlT TFB6MHZSUmRldkhjWkE1ZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQNvuuDO0VpnGAqG95KKn7OpimsNLIBewmKvipZWKnYWr6pcphdegZ piqLc2ISaVrQRwoAT4W8XPn24MzCOlzGHuUQoqjCYT3PoBKTPkaheGO23UPi3lJ8 Ry2RgfAi7FiIryV3BxfxhCoTsgOx28KmepiUNoIsuc4eTDOdp3DizbSy4OSI30wU KEXA4uQVMlBnAvh+eiR6y9cCzcTc+xwhycLYEHqRRFn/M5Z6rSL5P32T43t5OxqH VeSP3qoLybTaTPoqi1dhz3fTcGZHdKXziEvmXOBERpXsNOjIPa0PUHBfPbq+6l91 tMTUcYsyZEeUiaq/wQIcLNRxeuKLgLd8 -----END CERTIFICATE-----Generated at Sat May 18 22:14:05 2024 by rpki-client on console-fra.rpki-client.org