$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC524/B5C2B7342C5711EEBB188629C4F9AE02/x52oqmnxJno4UemSoGnAL1DoArw.mft File: x52oqmnxJno4UemSoGnAL1DoArw.mft (raw, json) Hash identifier: z/V2qAAlVnX7+dGAqs4ZIuK5l6vf+4ss9uGYsFYQKIg= Subject key identifier: D5:EA:1F:7C:38:E7:BA:39:2D:7A:63:3F:EF:88:53:AC:1B:9E:58:65 Authority key identifier: C7:9D:A8:AA:69:F1:26:7A:38:51:E9:92:A0:69:C0:2F:50:E8:02:BC Certificate issuer: /CN=A91DC524/serialNumber=C79DA8AA69F1267A3851E992A069C02F50E802BC Certificate serial: 9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x52oqmnxJno4UemSoGnAL1DoArw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC524/B5C2B7342C5711EEBB188629C4F9AE02/x52oqmnxJno4UemSoGnAL1DoArw.mft Manifest number: 9A Signing time: Sun 19 May 2024 06:51:29 +0000 Manifest this update: Sun 19 May 2024 06:51:28 +0000 Manifest next update: Sun 26 May 2024 06:51:27 +0000 Files and hashes: 1: x52oqmnxJno4UemSoGnAL1DoArw.crl (hash: Eg6VqtSdf5YSLbIBrA+QDFkUmhUaOB4RX13wN/8aQ1Q=) 2: 0D705F8A2C5911EEBB4C2C4BC4F9AE02.roa (hash: a1hfZfTwt/Bh2qSBtcc8YaWdNGdAJ0i4Jdou1l2/QfA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC524/B5C2B7342C5711EEBB188629C4F9AE02/x52oqmnxJno4UemSoGnAL1DoArw.crl rsync://rpki.apnic.net/member_repository/A91DC524/B5C2B7342C5711EEBB188629C4F9AE02/x52oqmnxJno4UemSoGnAL1DoArw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x52oqmnxJno4UemSoGnAL1DoArw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 156 (0x9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC524/serialNumber=C79DA8AA69F1267A3851E992A069C02F50E802BC Validity Not Before: May 19 06:51:28 2024 GMT Not After : May 26 06:51:27 2024 GMT Subject: CN=6649a170-2b50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:04:c6:49:ee:ac:26:17:51:7b:32:54:d5:ae: 4a:9d:bf:18:d2:89:23:87:5a:0a:32:9b:7c:37:0d: ec:42:50:3b:1c:2d:51:42:f8:9c:01:8b:d1:78:d3: a8:e8:e8:cf:06:1e:05:58:d5:49:10:f8:5b:f2:37: 6b:75:87:8a:dc:e9:0e:1d:b2:61:0b:e7:e0:95:32: fa:17:d0:6d:e5:44:ed:3e:77:5d:87:9c:f7:25:58: 33:f3:22:ae:c3:5f:85:46:01:fc:8a:15:72:37:65: 5a:a6:ef:95:ad:05:8c:cb:d7:b0:4c:10:14:19:14: 0d:8a:53:c5:e5:d3:49:2a:10:3c:d5:3e:44:9d:ef: 86:e7:c2:11:61:88:5f:29:46:6a:42:2b:a0:4c:21: fa:d1:01:ac:71:e3:33:1d:bc:fa:73:b5:1e:90:f1: a2:50:f7:dc:d4:72:39:88:15:1d:51:75:78:34:90: d3:4e:ba:6e:c3:48:96:f5:62:97:41:43:4a:ef:7c: d3:45:50:8b:76:a1:6d:fa:ae:03:05:ea:d3:dc:a7: f5:80:67:fd:f6:fe:1e:3f:23:7d:2f:ff:eb:d6:40: 9b:14:32:12:36:b4:cc:0b:09:5b:65:52:49:e6:b0: 39:b3:61:39:9b:a1:6c:b5:ac:e7:6a:e1:ce:85:46: 65:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:EA:1F:7C:38:E7:BA:39:2D:7A:63:3F:EF:88:53:AC:1B:9E:58:65 X509v3 Authority Key Identifier: keyid:C7:9D:A8:AA:69:F1:26:7A:38:51:E9:92:A0:69:C0:2F:50:E8:02:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC524/B5C2B7342C5711EEBB188629C4F9AE02/x52oqmnxJno4UemSoGnAL1DoArw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x52oqmnxJno4UemSoGnAL1DoArw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC524/B5C2B7342C5711EEBB188629C4F9AE02/x52oqmnxJno4UemSoGnAL1DoArw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:1e:15:67:43:9b:50:94:c0:07:3c:17:0c:be:f2:c0:04:50: c1:2b:11:af:32:71:fc:69:55:69:82:1a:09:2f:b7:d9:3e:43: 31:b4:c8:6d:a7:bc:e0:3b:22:97:25:7b:67:35:a6:c2:1d:0f: 6c:e2:e9:3a:56:a3:84:77:ec:1f:c3:6c:36:4d:9a:fc:12:9e: 71:f9:5b:6c:e2:7e:48:04:39:61:24:39:d5:c2:eb:1d:f6:9c: 43:84:c6:f8:c5:c7:17:94:fd:cb:84:b7:47:cf:3f:41:cb:98: 80:b8:18:b9:f4:2f:f4:44:8f:48:7f:0c:4d:7c:24:88:08:6e: 34:30:e5:02:d9:8f:35:c2:53:1c:fc:c1:ec:b9:55:75:27:2d: 97:c4:49:b8:7a:ac:f8:f2:ef:db:ce:88:7c:50:db:55:b7:db: f0:57:71:e0:a4:d9:14:6d:a1:29:1f:18:c7:65:3a:55:00:11: 4e:18:ef:63:c2:94:6d:f1:76:e4:66:8d:53:30:a6:0a:b3:f0: d0:6e:ef:99:24:f1:9c:06:e6:9a:00:8a:2f:10:d8:0c:9a:28: cc:5b:4b:de:93:72:4e:4b:9e:7f:0d:0f:fd:99:f2:a0:ff:24: 1f:43:0e:28:38:b9:fb:cd:e2:9d:3d:2f:f8:e1:12:af:8f:47: af:40:20:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM1MjQxMTAvBgNVBAUTKEM3OURBOEFBNjlGMTI2N0EzODUxRTk5MkEwNjlDMDJG NTBFODAyQkMwHhcNMjQwNTE5MDY1MTI4WhcNMjQwNTI2MDY1MTI3WjAYMRYwFAYD VQQDEw02NjQ5YTE3MC0yYjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQTGSe6sJhdRezJU1a5Knb8Y0okjh1oKMpt8Nw3sQlA7HC1RQvicAYvReNOo 6OjPBh4FWNVJEPhb8jdrdYeK3OkOHbJhC+fglTL6F9Bt5UTtPnddh5z3JVgz8yKu w1+FRgH8ihVyN2Vapu+VrQWMy9ewTBAUGRQNilPF5dNJKhA81T5Ene+G58IRYYhf KUZqQiugTCH60QGsceMzHbz6c7UekPGiUPfc1HI5iBUdUXV4NJDTTrpuw0iW9WKX QUNK73zTRVCLdqFt+q4DBerT3Kf1gGf99v4ePyN9L//r1kCbFDISNrTMCwlbZVJJ 5rA5s2E5m6FstaznauHOhUZlgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNXqH3w4 57o5LXpjP++IU6wbnlhlMB8GA1UdIwQYMBaAFMedqKpp8SZ6OFHpkqBpwC9Q6AK8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzUyNC9CNUMyQjczNDJD NTcxMUVFQkIxODg2MjlDNEY5QUUwMi94NTJvcW1ueEpubzRVZW1Tb0duQUwxRG9B cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g1Mm9xbW54Sm5vNFVlbVNvR25BTDFEb0Fydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzUyNC9CNUMyQjczNDJDNTcxMUVFQkIxODg2MjlDNEY5QUUwMi94NTJvcW1ueEpu bzRVZW1Tb0duQUwxRG9BcncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVHhVnQ5tQlMAHPBcMvvLABFDBKxGvMnH8aVVpghoJL7fZPkMxtMht p7zgOyKXJXtnNabCHQ9s4uk6VqOEd+wfw2w2TZr8Ep5x+Vts4n5IBDlhJDnVwusd 9pxDhMb4xccXlP3LhLdHzz9By5iAuBi59C/0RI9IfwxNfCSICG40MOUC2Y81wlMc /MHsuVV1Jy2XxEm4eqz48u/bzoh8UNtVt9vwV3HgpNkUbaEpHxjHZTpVABFOGO9j wpRt8XbkZo1TMKYKs/DQbu+ZJPGcBuaaAIovENgMmijMW0vek3JOS55/DQ/9mfKg /yQfQw4oOLn7zeKdPS/44RKvj0evQCAk -----END CERTIFICATE-----Generated at Sun May 19 07:40:45 2024 by rpki-client on console-fra.rpki-client.org