$ rpki-client -vvf rpki.apnic.net/member_repository/A91E46E8/D4B8DA16B15A11EC8240B820C4F9AE02/CEz6nrwGwNaBBUiw7RzEfPjuDzE.mft File: CEz6nrwGwNaBBUiw7RzEfPjuDzE.mft (raw, json) Hash identifier: taXZFrOCiqnojLTNNihoRQm0y/B9AcRCFh3De+LzSb8= Subject key identifier: 8F:DC:F9:D0:D8:2C:27:25:FD:EE:92:8F:26:3C:3C:0C:36:E8:19:97 Authority key identifier: 08:4C:FA:9E:BC:06:C0:D6:81:05:48:B0:ED:1C:C4:7C:F8:EE:0F:31 Certificate issuer: /CN=A91E46E8/serialNumber=084CFA9EBC06C0D6810548B0ED1CC47CF8EE0F31 Certificate serial: 02A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CEz6nrwGwNaBBUiw7RzEfPjuDzE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E46E8/D4B8DA16B15A11EC8240B820C4F9AE02/CEz6nrwGwNaBBUiw7RzEfPjuDzE.mft Manifest number: 02A4 Signing time: Sun 19 May 2024 03:35:26 +0000 Manifest this update: Sun 19 May 2024 03:35:26 +0000 Manifest next update: Sun 26 May 2024 03:35:26 +0000 Files and hashes: 1: CEz6nrwGwNaBBUiw7RzEfPjuDzE.crl (hash: KlFxJHwYr0pp4VNvkIwN+7MeNqjJes93czQ0JgD4r0o=) 2: 97E05E58B15E11ECB6B31625C4F9AE02.roa (hash: JPPLZ0jLf80Pa/fkFTKlcPJGomY6hEWsl9bvPTHW8DU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E46E8/D4B8DA16B15A11EC8240B820C4F9AE02/CEz6nrwGwNaBBUiw7RzEfPjuDzE.crl rsync://rpki.apnic.net/member_repository/A91E46E8/D4B8DA16B15A11EC8240B820C4F9AE02/CEz6nrwGwNaBBUiw7RzEfPjuDzE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CEz6nrwGwNaBBUiw7RzEfPjuDzE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 680 (0x2a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E46E8/serialNumber=084CFA9EBC06C0D6810548B0ED1CC47CF8EE0F31 Validity Not Before: May 19 03:35:26 2024 GMT Not After : May 26 03:35:26 2024 GMT Subject: CN=6649737e-3cdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:60:1f:f3:fa:19:f3:d3:33:2c:58:54:64:7b: 56:df:e4:7b:aa:00:e2:3c:5a:a4:49:6d:73:71:d1: 86:f6:aa:79:6f:b6:96:cd:18:c5:1e:6c:27:b2:05: ae:a2:31:70:79:b0:d1:94:29:32:2e:22:30:4c:73: 18:e4:73:3c:f9:42:be:2d:fc:8d:f2:09:48:08:04: 62:9d:f1:0a:7b:48:42:8a:89:61:6c:d7:56:67:7f: 76:54:b7:2b:bf:ac:f4:d7:34:1b:71:38:c8:07:fe: 4a:08:f4:0a:1c:5a:28:97:c5:6c:c0:0e:42:24:07: a8:ab:eb:ed:52:33:4e:89:93:a7:61:05:a3:61:14: 58:4d:52:92:10:ec:99:27:ed:6a:27:7e:e9:f7:d7: 38:32:c2:84:47:b4:b5:9e:05:6a:ea:f6:47:12:c8: 9d:8e:5e:a9:c2:fc:5c:e0:ed:cc:7e:2c:5c:f9:fd: 7a:eb:ae:06:68:98:96:ca:87:a7:4c:5d:c7:68:85: ac:1d:e9:e6:71:0b:4d:af:c0:9e:ba:b2:c0:7a:23: 75:0b:47:4a:6f:bd:eb:a3:04:07:16:54:fa:18:14: 61:7a:83:31:8a:03:1c:3d:94:66:b6:95:7f:f5:5c: 51:6b:9c:5d:c2:f4:b8:07:08:ff:17:6a:79:8b:e2: 9c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:DC:F9:D0:D8:2C:27:25:FD:EE:92:8F:26:3C:3C:0C:36:E8:19:97 X509v3 Authority Key Identifier: keyid:08:4C:FA:9E:BC:06:C0:D6:81:05:48:B0:ED:1C:C4:7C:F8:EE:0F:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E46E8/D4B8DA16B15A11EC8240B820C4F9AE02/CEz6nrwGwNaBBUiw7RzEfPjuDzE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CEz6nrwGwNaBBUiw7RzEfPjuDzE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E46E8/D4B8DA16B15A11EC8240B820C4F9AE02/CEz6nrwGwNaBBUiw7RzEfPjuDzE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:03:06:ae:20:27:79:02:b9:a9:b0:08:80:b0:db:70:51:a4: 9c:8e:5c:0d:27:88:6a:9d:01:0d:b7:aa:6f:01:eb:d5:e8:54: 66:86:64:a6:60:be:30:7c:53:76:1a:20:c6:c3:1f:ef:24:07: c7:be:94:2a:ff:40:80:ab:05:7d:49:04:82:67:9c:2b:e8:74: 2a:c0:10:97:b8:91:44:47:51:eb:7e:62:ac:ab:e5:a2:c0:cb: 94:2d:45:92:86:09:e0:b9:59:61:8f:8f:24:a0:33:6d:d1:87: 1c:1a:db:5e:23:52:7d:35:cd:20:70:c7:2c:10:05:c5:77:b5: 00:ed:94:77:33:b5:f0:63:4d:e7:02:b8:b0:ef:eb:ea:8a:6d: 61:34:23:a2:9b:e3:ef:92:54:7c:57:f8:97:91:a5:cf:fa:0b: c7:9f:40:8a:a0:59:81:e0:fc:69:a7:1a:8e:9b:69:12:66:dc: f5:94:e5:21:e7:80:9b:c7:1d:a5:3e:90:2b:15:8d:71:60:8d: 6c:1c:d5:59:66:d3:ed:c4:6e:e4:a1:14:54:17:db:17:d3:f1: df:0a:a3:2d:d8:b1:87:c8:f4:9f:02:e4:78:79:89:ff:0f:6c: 64:25:5d:84:e2:cc:e0:1b:7d:8a:5a:3d:fd:b0:67:d3:12:12: de:e9:ce:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ2RTgxMTAvBgNVBAUTKDA4NENGQTlFQkMwNkMwRDY4MTA1NDhCMEVEMUNDNDdD RjhFRTBGMzEwHhcNMjQwNTE5MDMzNTI2WhcNMjQwNTI2MDMzNTI2WjAYMRYwFAYD VQQDEw02NjQ5NzM3ZS0zY2RiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1mAf8/oZ89MzLFhUZHtW3+R7qgDiPFqkSW1zcdGG9qp5b7aWzRjFHmwnsgWu ojFwebDRlCkyLiIwTHMY5HM8+UK+LfyN8glICARinfEKe0hCiolhbNdWZ392VLcr v6z01zQbcTjIB/5KCPQKHFool8VswA5CJAeoq+vtUjNOiZOnYQWjYRRYTVKSEOyZ J+1qJ37p99c4MsKER7S1ngVq6vZHEsidjl6pwvxc4O3Mfixc+f16664GaJiWyoen TF3HaIWsHenmcQtNr8CeurLAeiN1C0dKb73rowQHFlT6GBRheoMxigMcPZRmtpV/ 9VxRa5xdwvS4Bwj/F2p5i+KcaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI/c+dDY LCcl/e6SjyY8PAw26BmXMB8GA1UdIwQYMBaAFAhM+p68BsDWgQVIsO0cxHz47g8x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDZFOC9ENEI4REExNkIx NUExMUVDODI0MEI4MjBDNEY5QUUwMi9DRXo2bnJ3R3dOYUJCVWl3N1J6RWZQanVE ekUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NFejZucndHd05hQkJVaXc3UnpFZlBqdUR6RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDZFOC9ENEI4REExNkIxNUExMUVDODI0MEI4MjBDNEY5QUUwMi9DRXo2bnJ3R3dO YUJCVWl3N1J6RWZQanVEekUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPAwauICd5ArmpsAiAsNtwUaScjlwNJ4hqnQENt6pvAevV6FRmhmSm YL4wfFN2GiDGwx/vJAfHvpQq/0CAqwV9SQSCZ5wr6HQqwBCXuJFER1HrfmKsq+Wi wMuULUWShgnguVlhj48koDNt0YccGtteI1J9Nc0gcMcsEAXFd7UA7ZR3M7XwY03n Ariw7+vqim1hNCOim+PvklR8V/iXkaXP+gvHn0CKoFmB4PxppxqOm2kSZtz1lOUh 54Cbxx2lPpArFY1xYI1sHNVZZtPtxG7koRRUF9sX0/HfCqMt2LGHyPSfAuR4eYn/ D2xkJV2E4szgG32KWj39sGfTEhLe6c7L -----END CERTIFICATE-----Generated at Sun May 19 04:22:05 2024 by rpki-client on console-fra.rpki-client.org