$ rpki-client -vvf rpki.apnic.net/member_repository/A91E15AD/B8B91C467E1211EE9CB11F3EC4F9AE02/fzUqdpVtdwL8d69g_MEp5h_b6jI.mft File: fzUqdpVtdwL8d69g_MEp5h_b6jI.mft (raw, json) Hash identifier: fgM4aj2sOELq25QOJbno9RxWLkTTUaR53EMWq1d2jsU= Subject key identifier: C2:61:64:9F:76:FA:12:7A:1D:3F:BE:D6:3D:4B:E0:EB:DE:28:80:24 Authority key identifier: 7F:35:2A:76:95:6D:77:02:FC:77:AF:60:FC:C1:29:E6:1F:DB:EA:32 Certificate issuer: /CN=A91E15AD/serialNumber=7F352A76956D7702FC77AF60FCC129E61FDBEA32 Certificate serial: 6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fzUqdpVtdwL8d69g_MEp5h_b6jI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E15AD/B8B91C467E1211EE9CB11F3EC4F9AE02/fzUqdpVtdwL8d69g_MEp5h_b6jI.mft Manifest number: 69 Signing time: Sun 19 May 2024 07:38:09 +0000 Manifest this update: Sun 19 May 2024 07:38:08 +0000 Manifest next update: Sun 26 May 2024 07:38:08 +0000 Files and hashes: 1: fzUqdpVtdwL8d69g_MEp5h_b6jI.crl (hash: zGkB4LQUhBVd0IYHfKlbaJEzGUHuxMU3Nq/wLHOr46k=) 2: 9BFF089AD0B511EE9C8E6885C4F9AE02.roa (hash: P00/wBXxpZAxVmMEQShGNeLCJuhKQb2Pvy1tzAoS0xQ=) 3: 2A26D2607E1311EEAF8FD93EC4F9AE02.roa (hash: lO4z0/8coYc47q8hWXVuaX9wXtDh6vCyrQsV6AIYdqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E15AD/B8B91C467E1211EE9CB11F3EC4F9AE02/fzUqdpVtdwL8d69g_MEp5h_b6jI.crl rsync://rpki.apnic.net/member_repository/A91E15AD/B8B91C467E1211EE9CB11F3EC4F9AE02/fzUqdpVtdwL8d69g_MEp5h_b6jI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fzUqdpVtdwL8d69g_MEp5h_b6jI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E15AD/serialNumber=7F352A76956D7702FC77AF60FCC129E61FDBEA32 Validity Not Before: May 19 07:38:08 2024 GMT Not After : May 26 07:38:08 2024 GMT Subject: CN=6649ac60-3706 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:47:c4:2b:17:18:89:ee:72:05:c8:ec:4a:c7: b6:8e:84:9d:39:f4:b0:93:e3:c6:0a:41:3b:bf:bd: 02:0a:df:3c:2e:89:0d:4c:35:b3:fa:8e:05:a9:02: 85:d8:18:68:75:14:f6:e3:1f:0f:d3:0e:6a:e9:21: 53:fd:50:86:91:5b:df:6c:94:10:3e:82:26:3b:5c: 7f:b0:2d:f7:33:7e:5c:62:f6:b5:55:86:b3:cb:28: bd:a2:06:f7:d3:60:e7:c1:3b:fa:ee:5e:38:10:03: 6d:91:58:a9:8f:23:99:55:61:f0:98:5a:1f:55:67: 40:12:ce:7d:44:24:b0:e4:b7:7b:99:36:11:7d:7e: b2:48:1b:5a:a9:db:4e:7f:74:98:19:6e:5e:08:01: 72:b4:78:0a:98:ab:fc:f4:e5:c4:21:05:51:f0:84: a8:bc:7e:ed:ca:d4:12:10:04:7e:81:b1:9b:75:38: 1c:d9:45:82:c3:f8:c7:ae:0b:2c:5e:c0:5e:12:0d: d7:cc:cc:c7:d4:6b:1b:d8:47:09:d2:dc:66:db:4f: d9:3d:0d:38:7b:43:79:b9:31:f8:8d:67:ab:f7:1b: c5:b0:74:56:8b:91:6c:d0:ec:27:8f:96:4d:ad:02: e4:e4:8b:0e:cd:87:e6:e2:35:ff:80:9f:92:71:a6: 3a:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:61:64:9F:76:FA:12:7A:1D:3F:BE:D6:3D:4B:E0:EB:DE:28:80:24 X509v3 Authority Key Identifier: keyid:7F:35:2A:76:95:6D:77:02:FC:77:AF:60:FC:C1:29:E6:1F:DB:EA:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E15AD/B8B91C467E1211EE9CB11F3EC4F9AE02/fzUqdpVtdwL8d69g_MEp5h_b6jI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fzUqdpVtdwL8d69g_MEp5h_b6jI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E15AD/B8B91C467E1211EE9CB11F3EC4F9AE02/fzUqdpVtdwL8d69g_MEp5h_b6jI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:c8:51:9f:ea:05:a1:7f:1c:e0:cd:91:3d:55:4f:61:5c:c1: a1:bb:7f:72:6e:08:07:76:dc:84:3b:74:4e:7c:17:97:f3:d7: ce:d5:87:26:06:23:66:c0:68:86:66:85:b3:7f:93:8a:7e:d6: ac:2e:b9:8b:59:f4:12:27:00:13:3b:f4:aa:86:f0:72:03:50: 74:f5:58:0f:de:26:d7:a2:4d:11:7c:43:18:be:50:86:8a:13: c5:a5:5c:33:5d:0f:41:27:6f:7d:e0:90:20:67:90:26:36:15: 51:57:8f:09:04:8a:5f:f5:22:52:83:74:78:ec:e6:fa:61:08: b7:27:23:6e:82:6b:35:ae:d0:df:15:10:cb:f3:71:78:98:14: e1:67:a2:56:f3:ee:19:b8:3f:43:e8:a6:69:6a:72:51:68:cd: b2:41:1c:e4:58:9b:73:82:29:e3:94:5f:ab:14:50:75:a0:38: b8:0f:8a:ba:ad:b0:e9:ca:1e:68:e7:ca:52:f0:7f:ef:c0:50: d8:f8:28:63:42:fd:54:7d:3d:80:4e:9b:95:26:2c:ef:2c:05: 7b:b0:fd:d5:6c:32:b0:21:95:3a:3a:38:5c:6c:76:16:c5:09: 10:52:e4:e4:bd:55:ef:6b:8c:f7:e6:98:84:74:29:1a:00:d8: 0a:23:69:ee -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MTVBRDExMC8GA1UEBRMoN0YzNTJBNzY5NTZENzcwMkZDNzdBRjYwRkNDMTI5RTYx RkRCRUEzMjAeFw0yNDA1MTkwNzM4MDhaFw0yNDA1MjYwNzM4MDhaMBgxFjAUBgNV BAMTDTY2NDlhYzYwLTM3MDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDrR8QrFxiJ7nIFyOxKx7aOhJ059LCT48YKQTu/vQIK3zwuiQ1MNbP6jgWpAoXY GGh1FPbjHw/TDmrpIVP9UIaRW99slBA+giY7XH+wLfczflxi9rVVhrPLKL2iBvfT YOfBO/ruXjgQA22RWKmPI5lVYfCYWh9VZ0ASzn1EJLDkt3uZNhF9frJIG1qp205/ dJgZbl4IAXK0eAqYq/z05cQhBVHwhKi8fu3K1BIQBH6BsZt1OBzZRYLD+MeuCyxe wF4SDdfMzMfUaxvYRwnS3GbbT9k9DTh7Q3m5MfiNZ6v3G8WwdFaLkWzQ7CePlk2t AuTkiw7Nh+biNf+An5JxpjqvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwmFkn3b6 EnodP77WPUvg694ogCQwHwYDVR0jBBgwFoAUfzUqdpVtdwL8d69g/MEp5h/b6jIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUxNUFEL0I4QjkxQzQ2N0Ux MjExRUU5Q0IxMUYzRUM0RjlBRTAyL2Z6VXFkcFZ0ZHdMOGQ2OWdfTUVwNWhfYjZq SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZnpVcWRwVnRkd0w4ZDY5Z19NRXA1aF9iNmpJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUx NUFEL0I4QjkxQzQ2N0UxMjExRUU5Q0IxMUYzRUM0RjlBRTAyL2Z6VXFkcFZ0ZHdM OGQ2OWdfTUVwNWhfYjZqSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJTIUZ/qBaF/HODNkT1VT2FcwaG7f3JuCAd23IQ7dE58F5fz187VhyYG I2bAaIZmhbN/k4p+1qwuuYtZ9BInABM79KqG8HIDUHT1WA/eJteiTRF8Qxi+UIaK E8WlXDNdD0Enb33gkCBnkCY2FVFXjwkEil/1IlKDdHjs5vphCLcnI26CazWu0N8V EMvzcXiYFOFnolbz7hm4P0PopmlqclFozbJBHORYm3OCKeOUX6sUUHWgOLgPirqt sOnKHmjnylLwf+/AUNj4KGNC/VR9PYBOm5UmLO8sBXuw/dVsMrAhlTo6OFxsdhbF CRBS5OS9Ve9rjPfmmIR0KRoA2Aojae4= -----END CERTIFICATE-----Generated at Sun May 19 08:26:45 2024 by rpki-client on console-fra.rpki-client.org