$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.mft File: 7Y9dbJv8FI96u3CMUpHThHgcYf0.mft (raw, json) Hash identifier: UK1ziYbly0qVmSrGr0lVxKihe6wPqhOgCpaPMn7AgqM= Subject key identifier: DA:06:F6:58:58:CE:E9:2C:9C:DC:BD:8B:6D:A7:85:7D:8E:A9:15:77 Authority key identifier: ED:8F:5D:6C:9B:FC:14:8F:7A:BB:70:8C:52:91:D3:84:78:1C:61:FD Certificate issuer: /CN=A91DA0AA/serialNumber=ED8F5D6C9BFC148F7ABB708C5291D384781C61FD Certificate serial: BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Y9dbJv8FI96u3CMUpHThHgcYf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.mft Manifest number: B8 Signing time: Sun 19 May 2024 06:29:36 +0000 Manifest this update: Sun 19 May 2024 06:29:35 +0000 Manifest next update: Sun 26 May 2024 06:29:35 +0000 Files and hashes: 1: 7Y9dbJv8FI96u3CMUpHThHgcYf0.crl (hash: 8eyKQtAL8pdM7ZN6TUnfO9oYh63j2w7QCPqO/WTez1s=) 2: 8A0713CC004411EE8F32354EC4F9AE02.roa (hash: iunNRCpoATeuJoiG5398xNfyQXzNgJQZPPVc1V5Kzpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.crl rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Y9dbJv8FI96u3CMUpHThHgcYf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 187 (0xbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA0AA/serialNumber=ED8F5D6C9BFC148F7ABB708C5291D384781C61FD Validity Not Before: May 19 06:29:35 2024 GMT Not After : May 26 06:29:35 2024 GMT Subject: CN=66499c50-b2d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:e9:ba:ae:91:24:69:74:b6:43:29:d7:68:38: fa:25:f6:78:29:12:9d:31:52:57:f1:a9:bd:92:b1: e9:1f:e6:0e:e0:06:d0:33:6d:97:c7:ff:d9:c3:41: ef:d1:8f:af:34:2b:08:cc:ab:eb:3f:00:07:cf:b6: 7c:b8:1d:e5:99:5e:a9:06:f9:a8:51:47:45:f9:05: 17:f6:dc:72:12:ab:c8:64:4b:a2:ea:d6:4e:97:46: d5:87:ff:ef:b4:1d:ed:d3:d8:4d:46:c7:bc:6f:29: 92:fb:b3:5e:04:4f:67:d5:18:47:77:a5:83:a6:f6: d8:f7:93:a0:b1:e1:3d:f6:9b:01:ed:1f:34:9f:5a: 87:d6:36:6d:9a:e0:cf:68:64:1f:29:20:e0:55:bc: 3f:d0:15:2d:0e:0a:d5:97:de:0f:df:0f:37:a3:ff: 8d:47:7d:70:fc:07:1a:74:ce:9f:57:1b:f8:28:3a: 99:ba:e0:2b:70:85:fa:83:d6:bd:86:6a:61:cf:3d: f8:40:f9:b4:f8:04:d4:91:7f:b8:a2:de:18:ec:18: dc:4a:98:ac:aa:d0:4d:50:10:c1:d2:bf:9f:8d:a3: 6a:6e:22:5f:56:3d:21:69:40:03:2d:8a:7e:d6:db: 35:8e:50:37:25:93:89:a0:fd:b5:75:ec:78:6d:63: 31:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:06:F6:58:58:CE:E9:2C:9C:DC:BD:8B:6D:A7:85:7D:8E:A9:15:77 X509v3 Authority Key Identifier: keyid:ED:8F:5D:6C:9B:FC:14:8F:7A:BB:70:8C:52:91:D3:84:78:1C:61:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Y9dbJv8FI96u3CMUpHThHgcYf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:7d:63:e8:35:5c:9f:cb:be:b1:c8:26:c1:e9:a9:4e:0a:15: 89:97:c5:cd:f8:be:50:01:dd:76:03:00:4a:56:9c:3a:e7:a2: 22:59:42:15:09:9c:48:65:0a:5c:fe:1a:d9:f9:30:6d:b8:db: 44:87:0a:d6:87:fd:ce:db:a9:ab:f9:30:11:cd:eb:6e:84:d0: 0d:2c:26:99:23:7c:df:0c:41:da:62:e8:72:2c:ce:20:35:f7: 32:f6:ea:7d:7e:48:51:a7:03:67:a0:cc:1f:b3:49:8a:22:37: 9d:0b:8b:81:03:f2:e1:17:70:b6:97:d3:50:67:a7:17:28:25: 8b:b3:ea:2f:18:92:a3:f7:36:35:7a:86:8a:33:fa:b7:6f:79: 7f:a1:5c:22:ce:34:2f:a6:43:f8:e6:34:f6:19:a2:8d:83:4f: 61:d1:b7:76:cd:06:92:56:e2:48:64:60:fd:6f:db:f7:0f:f1: d9:b7:0e:50:dd:97:ff:65:00:81:ea:4b:a5:92:33:ef:5d:84: 07:75:a9:d8:c6:28:bb:1e:1b:d5:b7:7b:8c:85:3a:5c:e1:f2: b7:1f:30:53:d5:40:a6:c3:53:e6:cf:33:2e:e3:f4:12:c8:20: ed:19:c9:d6:d9:23:be:e4:02:73:1a:c7:dc:af:d5:73:8e:96: 5e:90:32:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEwQUExMTAvBgNVBAUTKEVEOEY1RDZDOUJGQzE0OEY3QUJCNzA4QzUyOTFEMzg0 NzgxQzYxRkQwHhcNMjQwNTE5MDYyOTM1WhcNMjQwNTI2MDYyOTM1WjAYMRYwFAYD VQQDEw02NjQ5OWM1MC1iMmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Om6rpEkaXS2QynXaDj6JfZ4KRKdMVJX8am9krHpH+YO4AbQM22Xx//Zw0Hv 0Y+vNCsIzKvrPwAHz7Z8uB3lmV6pBvmoUUdF+QUX9txyEqvIZEui6tZOl0bVh//v tB3t09hNRse8bymS+7NeBE9n1RhHd6WDpvbY95OgseE99psB7R80n1qH1jZtmuDP aGQfKSDgVbw/0BUtDgrVl94P3w83o/+NR31w/AcadM6fVxv4KDqZuuArcIX6g9a9 hmphzz34QPm0+ATUkX+4ot4Y7BjcSpisqtBNUBDB0r+fjaNqbiJfVj0haUADLYp+ 1ts1jlA3JZOJoP21dex4bWMxpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNoG9lhY zuksnNy9i22nhX2OqRV3MB8GA1UdIwQYMBaAFO2PXWyb/BSPertwjFKR04R4HGH9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTBBQS84MkJCQjU1MjAw M0QxMUVFOTYwOEYxNDdDNEY5QUUwMi83WTlkYkp2OEZJOTZ1M0NNVXBIVGhIZ2NZ ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdZOWRiSnY4Rkk5NnUzQ01VcEhUaEhnY1lmMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTBBQS84MkJCQjU1MjAwM0QxMUVFOTYwOEYxNDdDNEY5QUUwMi83WTlkYkp2OEZJ OTZ1M0NNVXBIVGhIZ2NZZjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIfWPoNVyfy76xyCbB6alOChWJl8XN+L5QAd12AwBKVpw656IiWUIV CZxIZQpc/hrZ+TBtuNtEhwrWh/3O26mr+TARzetuhNANLCaZI3zfDEHaYuhyLM4g Nfcy9up9fkhRpwNnoMwfs0mKIjedC4uBA/LhF3C2l9NQZ6cXKCWLs+ovGJKj9zY1 eoaKM/q3b3l/oVwizjQvpkP45jT2GaKNg09h0bd2zQaSVuJIZGD9b9v3D/HZtw5Q 3Zf/ZQCB6kulkjPvXYQHdanYxii7HhvVt3uMhTpc4fK3HzBT1UCmw1PmzzMu4/QS yCDtGcnW2SO+5AJzGsfcr9VzjpZekDLg -----END CERTIFICATE-----Generated at Sun May 19 07:40:45 2024 by rpki-client on console-fra.rpki-client.org