$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/64E_WXYcfGsa4oxHgWfiBhq1ys8.mft File: 64E_WXYcfGsa4oxHgWfiBhq1ys8.mft (raw, json) Hash identifier: +1E3YVTZarol9h+PaETIjpE9FqueGD3f8MWb/vOoW5s= Subject key identifier: 27:3F:33:28:2A:E8:DA:2D:6C:0F:85:8A:A4:73:7B:1B:BE:37:0F:D9 Authority key identifier: EB:81:3F:59:76:1C:7C:6B:1A:E2:8C:47:81:67:E2:06:1A:B5:CA:CF Certificate issuer: /CN=A91DD75B/serialNumber=EB813F59761C7C6B1AE28C478167E2061AB5CACF Certificate serial: 01D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64E_WXYcfGsa4oxHgWfiBhq1ys8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/64E_WXYcfGsa4oxHgWfiBhq1ys8.mft Manifest number: 01D6 Signing time: Sun 19 May 2024 04:20:37 +0000 Manifest this update: Sun 19 May 2024 04:20:36 +0000 Manifest next update: Sun 26 May 2024 04:20:36 +0000 Files and hashes: 1: 64E_WXYcfGsa4oxHgWfiBhq1ys8.crl (hash: TAODi32RhT0RL5522mlWHR0iE/aApEWgYz4dSCkqe2U=) 2: D6A658CE01DE11ED8236F073C4F9AE02.roa (hash: 3jO5gQ3mtA12c2tS+FHpo9rGt78BUiyC6ee551oNUfs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/64E_WXYcfGsa4oxHgWfiBhq1ys8.crl rsync://rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/64E_WXYcfGsa4oxHgWfiBhq1ys8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64E_WXYcfGsa4oxHgWfiBhq1ys8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 473 (0x1d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD75B/serialNumber=EB813F59761C7C6B1AE28C478167E2061AB5CACF Validity Not Before: May 19 04:20:36 2024 GMT Not After : May 26 04:20:36 2024 GMT Subject: CN=66497e15-1ae1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:18:27:66:99:a8:64:38:8e:9e:1a:85:63:df: 02:60:87:f1:ee:3c:25:ce:65:b9:0d:78:c0:3f:75: e5:c4:0e:7b:51:74:8a:01:8d:27:d0:de:08:b4:40: c9:7a:bf:90:c2:01:bf:9d:01:64:e6:39:ae:a6:a7: 74:c7:0b:a2:d0:9d:b8:de:ec:f3:33:95:2c:ab:85: 36:0f:8f:65:fc:bd:21:83:e1:f6:3a:c1:79:5e:6e: d1:91:ed:71:14:9a:71:f4:00:b4:4f:b6:73:04:ea: 36:5f:8c:67:36:8d:c8:3e:7d:8f:6b:8e:6d:7c:f0: 36:3d:3b:70:93:df:14:bf:4f:6c:3a:6b:37:e6:42: 67:90:53:52:bd:0c:36:03:7e:92:d2:bf:37:f9:86: b2:f4:e5:6c:e0:86:f4:7b:c9:66:25:02:72:44:6d: 27:66:de:8f:46:cb:37:40:39:d1:4e:85:23:f9:0f: 2e:5d:04:55:1e:0c:d7:fb:8f:f5:24:a8:6c:a7:f4: d7:b7:b9:b5:a8:a6:8b:0e:f8:7b:c8:6c:1e:a5:d5: a5:b3:e5:b9:08:ac:47:aa:e6:dc:50:ed:2f:10:5d: 09:b8:83:15:5a:ec:6d:cc:b5:f3:ee:d0:60:68:3c: 4e:30:2d:d4:ee:55:9a:b2:51:ae:08:f5:67:a2:d5: cd:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:3F:33:28:2A:E8:DA:2D:6C:0F:85:8A:A4:73:7B:1B:BE:37:0F:D9 X509v3 Authority Key Identifier: keyid:EB:81:3F:59:76:1C:7C:6B:1A:E2:8C:47:81:67:E2:06:1A:B5:CA:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/64E_WXYcfGsa4oxHgWfiBhq1ys8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64E_WXYcfGsa4oxHgWfiBhq1ys8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/64E_WXYcfGsa4oxHgWfiBhq1ys8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:78:63:0b:33:1a:6d:c3:31:13:33:e2:73:f7:28:d0:7b:e3: 2b:cc:91:e0:fa:15:50:34:2d:1a:3c:1f:6d:8e:75:40:5e:d7: f0:4d:f3:c5:a6:28:cf:90:52:e4:06:cf:4f:b1:a0:05:59:eb: 39:6e:70:e1:a7:75:fe:a6:13:e4:ad:28:9c:c9:23:8c:93:76: 3b:e0:d4:d4:5a:68:c0:3e:60:06:3b:87:33:da:75:7c:69:23: 31:fb:7b:22:39:fa:b3:c5:d2:eb:14:2c:b9:78:e5:5c:8c:a1: b4:b0:9e:6a:4b:b8:96:a4:d9:af:26:e3:65:a2:bd:a4:19:57: 13:9b:1e:dd:00:eb:ce:fc:7e:05:63:26:23:31:3a:09:9f:48: 36:9d:b4:d1:3f:c9:5a:85:4c:40:35:06:f0:b7:b4:66:b9:30: 75:08:ff:15:2f:5c:a5:d9:2d:29:72:19:43:44:11:9f:e8:25: 61:1d:2a:38:eb:12:48:0d:2e:32:c8:05:b1:a8:26:9f:7f:8e: 4d:c5:cf:c4:99:d7:8e:4d:9f:1c:69:9b:1d:b6:79:c7:17:ea: 57:ad:df:13:1b:d4:62:1f:18:34:47:2b:73:d9:3a:c4:c7:8a: 9b:28:4e:31:b4:d2:54:12:fa:f0:65:68:c1:f8:78:ec:e0:68: 9a:f2:d8:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ3NUIxMTAvBgNVBAUTKEVCODEzRjU5NzYxQzdDNkIxQUUyOEM0NzgxNjdFMjA2 MUFCNUNBQ0YwHhcNMjQwNTE5MDQyMDM2WhcNMjQwNTI2MDQyMDM2WjAYMRYwFAYD VQQDEw02NjQ5N2UxNS0xYWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2BgnZpmoZDiOnhqFY98CYIfx7jwlzmW5DXjAP3XlxA57UXSKAY0n0N4ItEDJ er+QwgG/nQFk5jmupqd0xwui0J243uzzM5Usq4U2D49l/L0hg+H2OsF5Xm7Rke1x FJpx9AC0T7ZzBOo2X4xnNo3IPn2Pa45tfPA2PTtwk98Uv09sOms35kJnkFNSvQw2 A36S0r83+Yay9OVs4Ib0e8lmJQJyRG0nZt6PRss3QDnRToUj+Q8uXQRVHgzX+4/1 JKhsp/TXt7m1qKaLDvh7yGwepdWls+W5CKxHqubcUO0vEF0JuIMVWuxtzLXz7tBg aDxOMC3U7lWaslGuCPVnotXNiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCc/Mygq 6NotbA+FiqRzexu+Nw/ZMB8GA1UdIwQYMBaAFOuBP1l2HHxrGuKMR4Fn4gYatcrP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDc1Qi82NEExREE0ODAx REMxMUVEOUVGRTJBNTZDNEY5QUUwMi82NEVfV1hZY2ZHc2E0b3hIZ1dmaUJocTF5 czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY0RV9XWFljZkdzYTRveEhnV2ZpQmhxMXlzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDc1Qi82NEExREE0ODAxREMxMUVEOUVGRTJBNTZDNEY5QUUwMi82NEVfV1hZY2ZH c2E0b3hIZ1dmaUJocTF5czgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCleGMLMxptwzETM+Jz9yjQe+MrzJHg+hVQNC0aPB9tjnVAXtfwTfPF pijPkFLkBs9PsaAFWes5bnDhp3X+phPkrSicySOMk3Y74NTUWmjAPmAGO4cz2nV8 aSMx+3siOfqzxdLrFCy5eOVcjKG0sJ5qS7iWpNmvJuNlor2kGVcTmx7dAOvO/H4F YyYjMToJn0g2nbTRP8lahUxANQbwt7RmuTB1CP8VL1yl2S0pchlDRBGf6CVhHSo4 6xJIDS4yyAWxqCaff45Nxc/EmdeOTZ8caZsdtnnHF+pXrd8TG9RiHxg0Rytz2TrE x4qbKE4xtNJUEvrwZWjB+Hjs4Gia8tjd -----END CERTIFICATE-----Generated at Sun May 19 04:56:56 2024 by rpki-client on console-fra.rpki-client.org