$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft File: tIGYczHh7UCLUcuf2O9KZQrIZpo.mft (raw, json) Hash identifier: 9Pij3Yb+N+2SoxzUDBs2UrZbWBkhwlV2j6/WzSMcTRY= Subject key identifier: E0:17:64:14:11:00:93:BC:FA:14:30:FE:6F:C8:65:44:01:AC:18:9B Authority key identifier: B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A Certificate issuer: /CN=A91E28E2/serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft Manifest number: D8 Signing time: Sun 19 May 2024 06:09:23 +0000 Manifest this update: Sun 19 May 2024 06:09:22 +0000 Manifest next update: Sun 26 May 2024 06:09:22 +0000 Files and hashes: 1: tIGYczHh7UCLUcuf2O9KZQrIZpo.crl (hash: OTGtmg+7uU8MkSxg8uPI/awQV5a7QbrLjUrubUNDH3U=) 2: B070EBECD2E911ED85F0F25BC4F9AE02.roa (hash: tCujeqJiZMiIaSSXS9NqnaebxFrza2rBPRcI+Qpx4Ws=) 3: 21E2BFDAD2EF11EDAE3FC25FC4F9AE02.roa (hash: RfZRe5AfoKnKc25VqJJfbDOYdwAKOjs/dyXEfs3NpZg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E28E2/serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Validity Not Before: May 19 06:09:22 2024 GMT Not After : May 26 06:09:22 2024 GMT Subject: CN=66499792-8980 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:40:14:5a:61:02:49:0b:1d:f4:21:ca:1a:47: 97:18:b3:c5:de:ac:b7:41:ad:8a:80:b1:ac:44:c7: ef:dd:56:aa:71:c0:62:3e:f3:eb:47:0b:f6:57:97: 8a:4e:4e:14:7d:4c:2d:35:8a:5d:87:34:c8:74:3d: fe:2f:9e:59:f8:d9:89:be:f1:d2:64:bc:69:33:34: a4:82:fd:65:4c:a2:d1:fe:b5:c6:70:d6:60:6a:ae: b2:53:0c:be:41:aa:14:d5:46:0c:07:82:ce:ec:22: 51:3a:11:f8:f1:6c:a2:9f:61:31:4b:67:80:f1:df: 38:5e:c8:8a:db:8a:1b:ca:c3:1f:1a:e5:5d:47:83: 95:78:d7:52:17:6b:b7:14:95:03:8b:a5:20:23:a4: 5f:a4:af:74:b4:98:40:33:8f:2f:85:64:8a:4f:ec: b3:c5:2b:84:a5:0e:ca:20:0d:99:15:2d:80:7d:10: 20:26:ea:fa:30:55:29:5a:86:24:3c:53:9a:f2:a0: 32:11:8d:f9:63:8d:20:ef:54:b7:2d:09:e4:07:9f: be:83:65:ae:07:7f:54:b2:37:06:2b:e3:93:b6:41: 27:5c:c3:00:9b:f9:05:30:7e:83:97:2d:93:22:67: f2:99:40:03:ce:ae:2a:c6:25:47:80:c9:f3:a6:21: 03:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:17:64:14:11:00:93:BC:FA:14:30:FE:6F:C8:65:44:01:AC:18:9B X509v3 Authority Key Identifier: keyid:B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:7f:58:5e:6e:a9:e1:14:05:ed:b7:80:2d:42:5a:87:ab:a6: a6:6f:61:40:6a:a3:76:9e:1c:1a:2c:12:ac:da:c0:9d:b6:b6: 24:58:5f:e7:dc:37:8f:67:ff:70:a8:03:a2:f2:df:b1:b4:7c: a9:5a:f0:dc:f4:15:1e:af:07:24:4b:dc:4e:08:1c:cb:e6:04: 1b:42:13:2b:78:3d:94:d5:23:1d:44:32:61:68:47:1e:f4:60: cf:55:ef:80:6d:02:41:a0:fa:f7:d4:8d:b9:59:47:11:57:2a: 82:45:e8:91:b5:5a:39:20:cf:f7:a9:78:0c:7e:2b:19:22:50: 02:11:79:d8:53:e9:ec:ea:11:78:72:bf:dc:89:74:de:94:6a: ce:f9:bc:a4:8b:10:5a:3e:c2:3a:f3:a6:2d:e4:b6:2a:08:d5: 76:20:c8:da:79:8a:2b:81:ef:f1:a9:dd:19:e6:e1:29:b9:02: 5b:18:d4:b6:e9:c7:6f:60:82:25:d5:d3:f3:27:df:f1:a9:0a: 45:14:df:65:08:df:2b:f4:79:aa:88:83:6f:78:05:67:7a:64: b5:a1:71:11:29:2f:60:f1:f7:d0:88:ec:ae:41:3c:d3:cc:21: 9e:10:89:2b:f0:d6:22:1c:cc:c9:f8:c7:03:37:20:23:9a:26: 36:f3:7c:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI4RTIxMTAvBgNVBAUTKEI0ODE5ODczMzFFMUVENDA4QjUxQ0I5RkQ4RUY0QTY1 MEFDODY2OUEwHhcNMjQwNTE5MDYwOTIyWhcNMjQwNTI2MDYwOTIyWjAYMRYwFAYD VQQDEw02NjQ5OTc5Mi04OTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA40AUWmECSQsd9CHKGkeXGLPF3qy3Qa2KgLGsRMfv3VaqccBiPvPrRwv2V5eK Tk4UfUwtNYpdhzTIdD3+L55Z+NmJvvHSZLxpMzSkgv1lTKLR/rXGcNZgaq6yUwy+ QaoU1UYMB4LO7CJROhH48Wyin2ExS2eA8d84XsiK24obysMfGuVdR4OVeNdSF2u3 FJUDi6UgI6RfpK90tJhAM48vhWSKT+yzxSuEpQ7KIA2ZFS2AfRAgJur6MFUpWoYk PFOa8qAyEY35Y40g71S3LQnkB5++g2WuB39UsjcGK+OTtkEnXMMAm/kFMH6Dly2T ImfymUADzq4qxiVHgMnzpiEDtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOAXZBQR AJO8+hQw/m/IZUQBrBibMB8GA1UdIwQYMBaAFLSBmHMx4e1Ai1HLn9jvSmUKyGaa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjhFMi85NTJGQTYzMkQy RTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdVQ0xVY3VmMk85S1pRckla cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJR1ljekhoN1VDTFVjdWYyTzlLWlFySVpwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjhFMi85NTJGQTYzMkQyRTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdV Q0xVY3VmMk85S1pRcklacG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAf1hebqnhFAXtt4AtQlqHq6amb2FAaqN2nhwaLBKs2sCdtrYkWF/n 3DePZ/9wqAOi8t+xtHypWvDc9BUerwckS9xOCBzL5gQbQhMreD2U1SMdRDJhaEce 9GDPVe+AbQJBoPr31I25WUcRVyqCReiRtVo5IM/3qXgMfisZIlACEXnYU+ns6hF4 cr/ciXTelGrO+bykixBaPsI686Yt5LYqCNV2IMjaeYorge/xqd0Z5uEpuQJbGNS2 6cdvYIIl1dPzJ9/xqQpFFN9lCN8r9HmqiINveAVnemS1oXERKS9g8ffQiOyuQTzT zCGeEIkr8NYiHMzJ+McDNyAjmiY283xm -----END CERTIFICATE-----Generated at Sun May 19 07:40:46 2024 by rpki-client on console-fra.rpki-client.org