$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0D8B/4A6D6C0A653411EBB6B8F019C4F9AE02/Vo0XkVJHPICaYuWF5a3JQoZr5lk.mft File: Vo0XkVJHPICaYuWF5a3JQoZr5lk.mft (raw, json) Hash identifier: rsWMio+DoXe22MFNNKbQlakM9oMr1jEv8ocm1x//r18= Subject key identifier: C5:AC:80:A2:3B:66:BA:68:F6:19:C9:F4:4A:A3:84:AA:82:9D:15:BC Authority key identifier: 56:8D:17:91:52:47:3C:80:9A:62:E5:85:E5:AD:C9:42:86:6B:E6:59 Certificate issuer: /CN=A91E0D8B/serialNumber=568D179152473C809A62E585E5ADC942866BE659 Certificate serial: 05F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vo0XkVJHPICaYuWF5a3JQoZr5lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0D8B/4A6D6C0A653411EBB6B8F019C4F9AE02/Vo0XkVJHPICaYuWF5a3JQoZr5lk.mft Manifest number: 05F1 Signing time: Sat 01 Jun 2024 00:52:07 +0000 Manifest this update: Sat 01 Jun 2024 00:52:07 +0000 Manifest next update: Sat 08 Jun 2024 00:52:06 +0000 Files and hashes: 1: Vo0XkVJHPICaYuWF5a3JQoZr5lk.crl (hash: ezluDk89se3LX+eHgdhxfobzvwtKx8gPoTnerxohK9Y=) 2: 146FD366653611EB99BE491DC4F9AE02.roa (hash: zHq4FTYpjaRXOiDoDnd+154qUu41MS1ZHnyKS70WNy8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0D8B/4A6D6C0A653411EBB6B8F019C4F9AE02/Vo0XkVJHPICaYuWF5a3JQoZr5lk.crl rsync://rpki.apnic.net/member_repository/A91E0D8B/4A6D6C0A653411EBB6B8F019C4F9AE02/Vo0XkVJHPICaYuWF5a3JQoZr5lk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vo0XkVJHPICaYuWF5a3JQoZr5lk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 00:39:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1526 (0x5f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0D8B/serialNumber=568D179152473C809A62E585E5ADC942866BE659 Validity Not Before: Jun 1 00:52:07 2024 GMT Not After : Jun 8 00:52:06 2024 GMT Subject: CN=665a70b7-1ac0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:fe:7d:1b:e9:8f:94:1c:19:2d:ad:d0:a3:b8: 27:08:54:62:e3:cd:e5:13:a9:c5:ba:8d:30:3a:f0: 66:9a:ed:7d:4c:e2:ce:a9:2f:06:eb:14:23:e8:9a: e7:0c:56:34:14:0f:01:a5:06:57:31:d8:95:84:89: d4:a6:f8:36:c7:a2:29:f6:e2:1f:53:11:2e:da:8d: 3e:d4:94:37:8f:ef:28:af:d1:ea:b7:56:d3:f3:a0: f9:24:d1:74:09:f0:21:0c:14:4c:8f:7b:50:a4:66: e2:b8:36:04:6b:88:24:a3:99:62:b8:9f:ae:9d:20: 87:61:bc:25:80:ce:ca:bc:d5:b9:65:d3:85:7e:79: d8:28:83:9a:64:69:6a:b0:7e:ef:c0:e1:60:3c:57: db:a7:57:86:37:73:bc:1f:89:0d:b4:26:1b:e1:e3: 5a:07:40:c9:03:dd:20:19:f2:7a:73:dc:21:76:05: ba:2a:a3:32:fe:2b:e3:0a:2f:57:fd:4e:0a:62:59: 36:90:07:a1:ef:f1:42:2c:21:12:7d:3c:b7:3a:ed: 5c:cc:2c:a8:f4:82:5e:8f:b7:47:09:c4:c3:0a:52: e7:24:c6:f8:a9:83:6b:fc:77:97:70:14:00:9b:34: 20:f3:bf:58:3b:e4:f3:99:1d:36:59:5c:eb:e6:90: 2e:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:AC:80:A2:3B:66:BA:68:F6:19:C9:F4:4A:A3:84:AA:82:9D:15:BC X509v3 Authority Key Identifier: keyid:56:8D:17:91:52:47:3C:80:9A:62:E5:85:E5:AD:C9:42:86:6B:E6:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0D8B/4A6D6C0A653411EBB6B8F019C4F9AE02/Vo0XkVJHPICaYuWF5a3JQoZr5lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vo0XkVJHPICaYuWF5a3JQoZr5lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0D8B/4A6D6C0A653411EBB6B8F019C4F9AE02/Vo0XkVJHPICaYuWF5a3JQoZr5lk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:90:fb:fd:92:52:f3:2d:73:ab:8c:5a:1e:ea:61:f7:7a:71: 41:cb:ca:4c:db:33:7f:6e:cc:04:8b:e8:17:c3:08:04:09:2a: aa:25:7c:96:f3:c3:71:63:64:55:b9:ca:e4:45:5a:fb:0d:af: 57:ef:8c:45:f1:2d:41:a5:90:66:af:85:a4:4d:12:97:8c:47: 8a:3e:cf:76:00:a2:3d:dd:81:c5:21:00:dc:fa:a3:f9:20:08: 1e:1e:49:a4:e5:16:94:12:7c:a7:64:e7:24:ef:13:8a:5a:a5: f1:b0:c8:06:79:9a:74:c9:5a:d6:38:da:f1:22:12:a6:0a:cf: 4a:20:e3:41:23:87:e2:49:c2:14:b9:5e:82:e0:3e:95:ae:ca: 19:3e:e3:3a:48:3e:bf:49:d9:a1:31:e7:57:15:1b:de:35:48: 4a:ee:e4:36:84:2e:fc:eb:03:36:11:65:e5:9a:4f:77:31:b5: 4b:ae:f6:42:7c:83:89:61:19:58:0b:a2:c1:5c:ca:79:9e:c3: 12:00:85:63:58:1b:f7:f0:82:49:8e:14:05:3a:c7:a0:74:ce: 93:9d:93:0c:e0:d0:d8:0f:bb:4f:a7:58:eb:e3:94:9c:ab:e8: 77:66:7a:9c:32:59:a3:de:5d:81:14:a0:c0:4d:77:f2:35:6a: e3:b4:8f:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBEOEIxMTAvBgNVBAUTKDU2OEQxNzkxNTI0NzNDODA5QTYyRTU4NUU1QURDOTQy ODY2QkU2NTkwHhcNMjQwNjAxMDA1MjA3WhcNMjQwNjA4MDA1MjA2WjAYMRYwFAYD VQQDEw02NjVhNzBiNy0xYWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/59G+mPlBwZLa3Qo7gnCFRi483lE6nFuo0wOvBmmu19TOLOqS8G6xQj6Jrn DFY0FA8BpQZXMdiVhInUpvg2x6Ip9uIfUxEu2o0+1JQ3j+8or9Hqt1bT86D5JNF0 CfAhDBRMj3tQpGbiuDYEa4gko5liuJ+unSCHYbwlgM7KvNW5ZdOFfnnYKIOaZGlq sH7vwOFgPFfbp1eGN3O8H4kNtCYb4eNaB0DJA90gGfJ6c9whdgW6KqMy/ivjCi9X /U4KYlk2kAeh7/FCLCESfTy3Ou1czCyo9IJej7dHCcTDClLnJMb4qYNr/HeXcBQA mzQg879YO+TzmR02WVzr5pAuHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMWsgKI7 Zrpo9hnJ9EqjhKqCnRW8MB8GA1UdIwQYMBaAFFaNF5FSRzyAmmLlheWtyUKGa+ZZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEQ4Qi80QTZENkMwQTY1 MzQxMUVCQjZCOEYwMTlDNEY5QUUwMi9WbzBYa1ZKSFBJQ2FZdVdGNWEzSlFvWnI1 bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZvMFhrVkpIUElDYVl1V0Y1YTNKUW9acjVsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEQ4Qi80QTZENkMwQTY1MzQxMUVCQjZCOEYwMTlDNEY5QUUwMi9WbzBYa1ZKSFBJ Q2FZdVdGNWEzSlFvWnI1bGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBkPv9klLzLXOrjFoe6mH3enFBy8pM2zN/bswEi+gXwwgECSqqJXyW 88NxY2RVucrkRVr7Da9X74xF8S1BpZBmr4WkTRKXjEeKPs92AKI93YHFIQDc+qP5 IAgeHkmk5RaUEnynZOck7xOKWqXxsMgGeZp0yVrWONrxIhKmCs9KIONBI4fiScIU uV6C4D6VrsoZPuM6SD6/SdmhMedXFRveNUhK7uQ2hC786wM2EWXlmk93MbVLrvZC fIOJYRlYC6LBXMp5nsMSAIVjWBv38IJJjhQFOsegdM6TnZMM4NDYD7tPp1jr45Sc q+h3ZnqcMlmj3l2BFKDATXfyNWrjtI+/ -----END CERTIFICATE-----Generated at Sat Jun 1 01:41:47 2024 by rpki-client on console-fra.rpki-client.org