$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft File: 72Nt-xWS8CIgFrAPrKJwNXP00oI.mft (raw, json) Hash identifier: gTivHxzBzwJDxZGoJT2EhStXosacnXyMHnMJj5f6Z9A= Subject key identifier: 54:EA:4B:1E:5C:F2:78:A7:ED:41:F6:1D:98:8F:D4:30:A0:BD:6E:38 Authority key identifier: EF:63:6D:FB:15:92:F0:22:20:16:B0:0F:AC:A2:70:35:73:F4:D2:82 Certificate issuer: /CN=A91DC8BD/serialNumber=EF636DFB1592F0222016B00FACA2703573F4D282 Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Nt-xWS8CIgFrAPrKJwNXP00oI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft Manifest number: 8C Signing time: Sun 19 May 2024 07:02:23 +0000 Manifest this update: Sun 19 May 2024 07:02:22 +0000 Manifest next update: Sun 26 May 2024 07:02:22 +0000 Files and hashes: 1: 72Nt-xWS8CIgFrAPrKJwNXP00oI.crl (hash: oE+APquNgkM3T8SD3DjgihX3Eghi5vR7TQA/wsQRM2A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.crl rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Nt-xWS8CIgFrAPrKJwNXP00oI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC8BD/serialNumber=EF636DFB1592F0222016B00FACA2703573F4D282 Validity Not Before: May 19 07:02:22 2024 GMT Not After : May 26 07:02:22 2024 GMT Subject: CN=6649a3fe-07e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:5d:4b:2a:2e:74:4e:e8:15:ce:7f:1b:54:c5: 51:a2:c3:41:62:ea:7d:e2:35:66:79:38:31:55:02: ff:a7:30:72:5d:68:d8:b4:e1:b4:03:0c:39:7a:92: 72:dc:cc:27:7e:b4:55:ca:3c:d2:f3:1c:0d:18:9a: aa:f8:1b:3a:98:01:a4:92:55:23:6b:a8:ba:3b:12: 10:e0:bf:ff:2a:ac:9c:fa:8e:87:9e:8d:0f:32:65: 16:15:43:dd:fe:da:6c:18:be:3b:e7:e7:a3:2f:1a: 6d:77:05:18:31:56:64:7a:fa:c6:2e:40:95:f5:6d: 4e:4d:ff:93:ab:25:23:9e:bd:7a:67:74:8b:bd:78: a4:df:74:57:49:af:5c:63:bf:10:70:73:68:8c:c7: 1a:10:86:dc:97:6f:0e:66:97:8c:df:5e:e4:13:87: c4:6c:e6:01:92:11:3a:b6:6d:7b:65:bd:30:8a:41: ba:bf:09:50:7a:f6:b9:0f:66:c8:51:a0:35:27:fc: 53:1d:d7:4c:dc:90:a4:c3:3b:fd:cd:e9:70:c4:53: 5d:b8:0d:03:bd:0d:9a:bf:d9:15:ab:2c:c9:8f:56: 52:dc:54:21:6b:13:44:47:f6:3a:4e:84:84:04:ad: dc:72:d0:0e:b3:b7:55:d7:d1:00:72:e4:93:de:96: cb:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:EA:4B:1E:5C:F2:78:A7:ED:41:F6:1D:98:8F:D4:30:A0:BD:6E:38 X509v3 Authority Key Identifier: keyid:EF:63:6D:FB:15:92:F0:22:20:16:B0:0F:AC:A2:70:35:73:F4:D2:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Nt-xWS8CIgFrAPrKJwNXP00oI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:8c:b2:95:ee:51:1f:32:75:a3:a5:1d:e1:ea:44:94:55:57: ad:88:a7:87:0a:c1:77:39:50:4a:b0:c9:73:5d:a8:ef:5f:84: e9:5d:04:32:a6:ab:0a:68:31:07:16:4c:37:cf:09:1b:84:1b: 20:c1:f4:37:b1:3b:b6:30:9a:d8:cf:63:38:1b:f1:2a:96:39: 63:1f:1a:77:a3:85:5c:c4:59:97:23:a1:ce:27:a1:ef:6d:2b: 7e:33:19:df:b7:43:93:8e:82:a4:91:39:19:e8:e0:73:8a:4c: 54:85:94:56:3a:b5:19:9b:af:30:d7:87:53:c6:2d:34:e1:e9: 2a:30:f2:af:d3:b5:6d:df:51:8f:dc:fc:8c:62:5d:86:1f:3f: b2:bf:d7:6e:8a:82:6d:a5:53:e4:4f:73:ee:f5:b3:d0:4e:ae: dd:fa:d0:60:b5:1b:8b:98:8f:ac:e9:96:bd:5d:93:12:8d:9d: 4f:6c:5f:5b:50:9d:69:c8:99:3c:a7:d0:ab:18:ce:37:58:fb: ac:6f:69:e0:7f:6f:df:cf:48:2f:65:fc:95:fd:19:58:60:2f: d4:61:35:d9:d0:f9:cb:29:63:ae:63:38:24:81:d0:3c:d3:41: af:4f:b8:26:82:1b:db:b9:89:e8:ef:5f:94:dc:8a:0c:bc:8a: d3:1f:6a:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM4QkQxMTAvBgNVBAUTKEVGNjM2REZCMTU5MkYwMjIyMDE2QjAwRkFDQTI3MDM1 NzNGNEQyODIwHhcNMjQwNTE5MDcwMjIyWhcNMjQwNTI2MDcwMjIyWjAYMRYwFAYD VQQDEw02NjQ5YTNmZS0wN2U3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApl1LKi50TugVzn8bVMVRosNBYup94jVmeTgxVQL/pzByXWjYtOG0Aww5epJy 3MwnfrRVyjzS8xwNGJqq+Bs6mAGkklUja6i6OxIQ4L//Kqyc+o6Hno0PMmUWFUPd /tpsGL475+ejLxptdwUYMVZkevrGLkCV9W1OTf+TqyUjnr16Z3SLvXik33RXSa9c Y78QcHNojMcaEIbcl28OZpeM317kE4fEbOYBkhE6tm17Zb0wikG6vwlQeva5D2bI UaA1J/xTHddM3JCkwzv9zelwxFNduA0DvQ2av9kVqyzJj1ZS3FQhaxNER/Y6ToSE BK3cctAOs7dV19EAcuST3pbL5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFTqSx5c 8nin7UH2HZiP1DCgvW44MB8GA1UdIwQYMBaAFO9jbfsVkvAiIBawD6yicDVz9NKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzhCRC8xMTlDQzIyMDQw RkQxMUVFQTZBRDI5MzVDNEY5QUUwMi83Mk50LXhXUzhDSWdGckFQcktKd05YUDAw b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyTnQteFdTOENJZ0ZyQVByS0p3TlhQMDBvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzhCRC8xMTlDQzIyMDQwRkQxMUVFQTZBRDI5MzVDNEY5QUUwMi83Mk50LXhXUzhD SWdGckFQcktKd05YUDAwb0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1jLKV7lEfMnWjpR3h6kSUVVetiKeHCsF3OVBKsMlzXajvX4TpXQQy pqsKaDEHFkw3zwkbhBsgwfQ3sTu2MJrYz2M4G/EqljljHxp3o4VcxFmXI6HOJ6Hv bSt+Mxnft0OTjoKkkTkZ6OBzikxUhZRWOrUZm68w14dTxi004ekqMPKv07Vt31GP 3PyMYl2GHz+yv9duioJtpVPkT3Pu9bPQTq7d+tBgtRuLmI+s6Za9XZMSjZ1PbF9b UJ1pyJk8p9CrGM43WPusb2ngf2/fz0gvZfyV/RlYYC/UYTXZ0PnLKWOuYzgkgdA8 00GvT7gmghvbuYno71+U3IoMvIrTH2q5 -----END CERTIFICATE-----Generated at Sun May 19 07:40:45 2024 by rpki-client on console-fra.rpki-client.org