$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft File: 5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft (raw, json) Hash identifier: SfqsyB04rioKW7GtEAxl5zNnEGnGGdQEHPdhZDV5QlQ= Subject key identifier: A0:84:66:83:88:CB:BB:01:7C:77:6D:F3:43:84:AF:00:FF:59:A9:18 Authority key identifier: E4:5F:61:EF:BC:B2:E7:B1:E4:14:B2:CB:DC:34:50:F7:F8:46:18:9D Certificate issuer: /CN=A91E4ED1/serialNumber=E45F61EFBCB2E7B1E414B2CBDC3450F7F846189D Certificate serial: 0B5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft Manifest number: 0B5C Signing time: Sat 18 May 2024 19:35:05 +0000 Manifest this update: Sat 18 May 2024 19:35:05 +0000 Manifest next update: Sat 25 May 2024 19:35:05 +0000 Files and hashes: 1: 5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl (hash: k/Yd30FmjBgNKyFxTzn6rdRr8R++qKtdyjOwCgoEeA0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:35:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2909 (0xb5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4ED1/serialNumber=E45F61EFBCB2E7B1E414B2CBDC3450F7F846189D Validity Not Before: May 18 19:35:05 2024 GMT Not After : May 25 19:35:05 2024 GMT Subject: CN=664902e9-90c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f9:b1:85:0e:ed:ad:33:89:f0:1f:3c:01:bf: 66:37:3d:f3:cb:ba:f1:00:8a:43:69:9f:71:65:c1: d0:af:68:6e:33:37:70:ec:57:e3:00:b7:e3:32:39: 93:3f:59:fb:31:4d:82:27:93:4f:fc:48:54:2f:94: a0:f6:39:c3:df:3a:b9:d9:12:a7:d6:69:c3:83:5f: e2:d9:a0:2f:0d:1a:6f:26:df:60:a5:74:42:c3:78: d2:17:1e:9a:6b:49:30:0d:67:aa:88:39:85:63:a3: d6:39:88:68:9d:78:eb:0c:d9:36:6a:d2:c3:59:5f: 08:5c:00:ac:e9:07:b8:ac:70:ee:bc:29:3c:dc:2e: 53:ec:da:47:f6:28:e9:5e:8a:a9:71:c0:7e:83:40: 2c:49:d7:da:6a:50:ed:98:db:a6:02:9a:72:1d:2a: f2:70:d1:8f:16:d3:1b:f8:3e:52:a1:38:8f:83:68: 95:37:a5:79:35:db:68:11:f2:36:5a:49:0e:d1:f2: b7:b6:2d:71:28:46:db:b6:fe:f7:fd:e2:48:51:aa: 14:91:74:eb:c7:89:cf:18:22:37:d2:72:97:e2:bc: b6:48:ad:2f:40:d9:d2:03:ed:3b:a9:02:45:71:ef: 7f:3d:c7:89:73:12:41:96:1d:84:31:94:76:f9:54: f5:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:84:66:83:88:CB:BB:01:7C:77:6D:F3:43:84:AF:00:FF:59:A9:18 X509v3 Authority Key Identifier: keyid:E4:5F:61:EF:BC:B2:E7:B1:E4:14:B2:CB:DC:34:50:F7:F8:46:18:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:5e:3b:7d:60:82:eb:7c:c5:8c:66:7a:38:2a:6b:19:50:2a: 5b:45:ab:bf:da:f0:0f:9e:1f:ca:3f:d2:b4:da:47:a2:65:b3: 48:49:ca:61:97:c2:c8:9b:b6:d7:5c:99:4a:e4:fc:62:3c:88: 9d:19:1e:07:26:76:fa:de:87:02:c6:dd:fc:55:a0:e9:a3:71: 3c:b4:f7:25:23:48:d3:dc:2d:fd:72:6b:84:82:94:84:b1:e9: 1f:5f:56:9d:95:21:42:01:ae:45:2d:97:c3:c9:65:96:7b:e7: 1c:93:f2:fc:c3:55:b3:1b:92:23:c1:a0:31:20:b6:92:5e:39: 7b:85:0c:aa:7f:6b:48:f5:2c:37:02:bd:ca:de:ef:b0:57:38: 09:18:68:03:b9:bb:e7:38:d6:e1:03:a5:7b:71:e6:f3:57:b0: 6b:8c:80:cd:35:ab:6a:70:20:59:9c:6f:45:73:ae:c9:b5:dd: a5:ff:6e:cb:04:7d:2d:b0:b0:f1:f1:82:b3:08:b9:c8:0e:18: d6:5b:49:c0:da:0b:f7:18:6b:27:33:68:fb:f7:f0:25:c9:3f: eb:e8:90:1c:d2:23:12:9f:e7:d6:50:dd:03:9d:18:38:85:a0: 5a:c5:70:a8:a5:31:94:76:1d:06:1c:25:e7:71:7f:0a:ef:86: ca:2f:56:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC10wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRFRDExMTAvBgNVBAUTKEU0NUY2MUVGQkNCMkU3QjFFNDE0QjJDQkRDMzQ1MEY3 Rjg0NjE4OUQwHhcNMjQwNTE4MTkzNTA1WhcNMjQwNTI1MTkzNTA1WjAYMRYwFAYD VQQDEw02NjQ5MDJlOS05MGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq/mxhQ7trTOJ8B88Ab9mNz3zy7rxAIpDaZ9xZcHQr2huMzdw7FfjALfjMjmT P1n7MU2CJ5NP/EhUL5Sg9jnD3zq52RKn1mnDg1/i2aAvDRpvJt9gpXRCw3jSFx6a a0kwDWeqiDmFY6PWOYhonXjrDNk2atLDWV8IXACs6Qe4rHDuvCk83C5T7NpH9ijp XoqpccB+g0AsSdfaalDtmNumAppyHSrycNGPFtMb+D5SoTiPg2iVN6V5NdtoEfI2 WkkO0fK3ti1xKEbbtv73/eJIUaoUkXTrx4nPGCI30nKX4ry2SK0vQNnSA+07qQJF ce9/PceJcxJBlh2EMZR2+VT1cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKCEZoOI y7sBfHdt80OErwD/WakYMB8GA1UdIwQYMBaAFORfYe+8suex5BSyy9w0UPf4Rhid MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEVEMS81RkRENzhCMjBC NjQxMUVBOTA5MjMwNjZDNEY5QUUwMi81RjloNzd5eTU3SGtGTExMM0RSUTlfaEdH SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVGOWg3N3l5NTdIa0ZMTEwzRFJROV9oR0dKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEVEMS81RkRENzhCMjBCNjQxMUVBOTA5MjMwNjZDNEY5QUUwMi81RjloNzd5eTU3 SGtGTExMM0RSUTlfaEdHSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwXjt9YILrfMWMZno4KmsZUCpbRau/2vAPnh/KP9K02keiZbNIScph l8LIm7bXXJlK5PxiPIidGR4HJnb63ocCxt38VaDpo3E8tPclI0jT3C39cmuEgpSE sekfX1adlSFCAa5FLZfDyWWWe+cck/L8w1WzG5IjwaAxILaSXjl7hQyqf2tI9Sw3 Ar3K3u+wVzgJGGgDubvnONbhA6V7cebzV7BrjIDNNatqcCBZnG9Fc67Jtd2l/27L BH0tsLDx8YKzCLnIDhjWW0nA2gv3GGsnM2j79/AlyT/r6JAc0iMSn+fWUN0DnRg4 haBaxXCopTGUdh0GHCXncX8K74bKL1aS -----END CERTIFICATE-----Generated at Sat May 18 20:48:21 2024 by rpki-client on console-fra.rpki-client.org