$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft File: C99de_bArcNvIwEoNtjC3CQnkzw.mft (raw, json) Hash identifier: FhnuzASJs5lbRqFK54k2vRZVnMfTJ2gLUGFQMbdKYdw= Subject key identifier: F3:18:A3:9D:9B:99:1D:AD:B6:DD:26:EA:FE:A0:E9:99:70:5F:B4:73 Authority key identifier: 0B:DF:5D:7B:F6:C0:AD:C3:6F:23:01:28:36:D8:C2:DC:24:27:93:3C Certificate issuer: /CN=A91D6499/serialNumber=0BDF5D7BF6C0ADC36F23012836D8C2DC2427933C Certificate serial: 05C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft Manifest number: 05BB Signing time: Sun 19 May 2024 00:09:59 +0000 Manifest this update: Sun 19 May 2024 00:09:58 +0000 Manifest next update: Sun 26 May 2024 00:09:58 +0000 Files and hashes: 1: C99de_bArcNvIwEoNtjC3CQnkzw.crl (hash: j551AW8pPupr/5BAXxCGc6Eq1i6j6FLuXGBDLzFpcvw=) 2: FAEF1526DE9E11ECBEA8AB0EC4F9AE02.roa (hash: Ow760t1s1bI9rozHNixWmhllz8PZzwdexK28soC0QGk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.crl rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1474 (0x5c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6499/serialNumber=0BDF5D7BF6C0ADC36F23012836D8C2DC2427933C Validity Not Before: May 19 00:09:58 2024 GMT Not After : May 26 00:09:58 2024 GMT Subject: CN=66494357-57df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:35:0c:be:a1:13:90:79:fd:99:43:af:5e:5f: 72:b9:69:3e:aa:cd:2c:9e:59:8f:90:f7:54:12:44: d8:4f:78:4b:4c:92:40:a7:01:da:d9:42:d7:6c:0c: 60:77:b3:cc:da:1b:f6:10:c4:18:6f:a1:5c:ee:fa: 1d:3e:30:e8:34:d0:ee:e2:40:11:ac:76:1c:da:40: 9f:ea:aa:b7:74:e5:4a:5e:92:23:0e:fd:9d:e4:42: 9b:d9:d9:89:71:60:f3:f3:bd:3a:64:dc:aa:ff:01: 66:57:3d:04:c2:d0:e7:e2:f2:f5:67:20:60:d3:da: d9:5e:89:5d:b7:81:73:78:40:23:b2:1d:c4:d0:21: 2d:5f:75:16:f3:55:8b:d0:de:56:df:a0:44:c2:d7: 4e:21:31:55:92:46:81:16:a5:a2:84:d4:dc:0b:75: 39:1e:85:9e:0a:99:d1:b9:12:00:56:81:1e:88:df: 76:bd:94:2a:4e:54:97:4f:6a:bb:9d:f5:a5:38:79: ae:32:5e:4d:ac:c4:0e:b7:2a:d7:1b:84:42:15:2f: 0b:84:4a:ee:15:61:81:b5:48:48:cf:ab:5f:a2:9a: 7a:85:2e:0d:cf:dc:6e:e6:39:69:ec:61:26:13:ad: 13:f7:26:f1:48:38:d1:3c:c7:00:71:d2:58:af:20: 68:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:18:A3:9D:9B:99:1D:AD:B6:DD:26:EA:FE:A0:E9:99:70:5F:B4:73 X509v3 Authority Key Identifier: keyid:0B:DF:5D:7B:F6:C0:AD:C3:6F:23:01:28:36:D8:C2:DC:24:27:93:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:05:44:2e:7e:5d:2d:26:25:d8:b8:90:eb:9c:23:c5:4e:16: 1d:ec:45:4e:c7:a7:e0:f4:70:2a:33:01:8d:c9:67:ae:6c:22: 2d:24:6a:1c:54:fe:11:c1:3a:fc:be:f7:a8:3f:67:6b:d4:ff: 32:3e:52:14:d9:42:00:92:25:15:5a:b6:12:b1:5c:7d:62:29: 05:a3:84:11:b7:6c:a0:c0:bf:03:db:b0:22:68:cf:20:98:86: 82:77:02:d1:89:d0:f2:dd:09:b3:21:15:d9:10:9e:ab:1f:bc: 6c:23:75:af:31:28:de:ee:92:40:d8:6c:96:5b:d8:50:20:81: bd:f9:49:19:1c:d9:ba:d2:fa:17:d1:cb:c4:7d:f5:92:67:a5: be:7e:e6:f0:1a:6e:4a:f4:22:ec:d0:6a:3b:92:10:7d:5e:34: a5:dd:54:01:af:e7:fb:f3:58:fc:8e:89:7d:ad:78:e1:6b:63: 4f:c4:ec:0f:66:91:55:7c:82:8c:45:ea:0a:79:e3:65:a7:74: 8a:b6:83:94:9a:4b:87:bb:6f:2f:c3:ad:0d:4a:dd:50:b9:6b: 3f:b7:a9:4f:26:8e:83:a6:b9:80:33:8c:95:2f:bd:38:da:5d: 19:60:76:e9:3a:1c:f5:f2:8e:c2:8b:c1:95:62:d1:ba:09:06: 78:26:77:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY0OTkxMTAvBgNVBAUTKDBCREY1RDdCRjZDMEFEQzM2RjIzMDEyODM2RDhDMkRD MjQyNzkzM0MwHhcNMjQwNTE5MDAwOTU4WhcNMjQwNTI2MDAwOTU4WjAYMRYwFAYD VQQDEw02NjQ5NDM1Ny01N2RmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtDUMvqETkHn9mUOvXl9yuWk+qs0snlmPkPdUEkTYT3hLTJJApwHa2ULXbAxg d7PM2hv2EMQYb6Fc7vodPjDoNNDu4kARrHYc2kCf6qq3dOVKXpIjDv2d5EKb2dmJ cWDz8706ZNyq/wFmVz0EwtDn4vL1ZyBg09rZXoldt4FzeEAjsh3E0CEtX3UW81WL 0N5W36BEwtdOITFVkkaBFqWihNTcC3U5HoWeCpnRuRIAVoEeiN92vZQqTlSXT2q7 nfWlOHmuMl5NrMQOtyrXG4RCFS8LhEruFWGBtUhIz6tfopp6hS4Nz9xu5jlp7GEm E60T9ybxSDjRPMcAcdJYryBooQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPMYo52b mR2ttt0m6v6g6ZlwX7RzMB8GA1UdIwQYMBaAFAvfXXv2wK3DbyMBKDbYwtwkJ5M8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjQ5OS85RjgzNkM1Mjc4 MDkxMUVCQTE2QUUxNTZDNEY5QUUwMi9DOTlkZV9iQXJjTnZJd0VvTnRqQzNDUW5r encuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M5OWRlX2JBcmNOdkl3RW9OdGpDM0NRbmt6dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjQ5OS85RjgzNkM1Mjc4MDkxMUVCQTE2QUUxNTZDNEY5QUUwMi9DOTlkZV9iQXJj TnZJd0VvTnRqQzNDUW5rencubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDIBUQufl0tJiXYuJDrnCPFThYd7EVOx6fg9HAqMwGNyWeubCItJGoc VP4RwTr8vveoP2dr1P8yPlIU2UIAkiUVWrYSsVx9YikFo4QRt2ygwL8D27AiaM8g mIaCdwLRidDy3QmzIRXZEJ6rH7xsI3WvMSje7pJA2GyWW9hQIIG9+UkZHNm60voX 0cvEffWSZ6W+fubwGm5K9CLs0Go7khB9XjSl3VQBr+f781j8jol9rXjha2NPxOwP ZpFVfIKMReoKeeNlp3SKtoOUmkuHu28vw60NSt1QuWs/t6lPJo6DprmAM4yVL704 2l0ZYHbpOhz18o7Ci8GVYtG6CQZ4Jnci -----END CERTIFICATE-----Generated at Sun May 19 00:59:43 2024 by rpki-client on console-fra.rpki-client.org