$ rpki-client -vvf rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.mft File: DB8k6eYChXae9hTPqBPuUayemP4.mft (raw, json) Hash identifier: Iag4tNSBTfrPivL4iEk7VXEJoiSMxogGih+WkS4WD0I= Subject key identifier: 30:43:12:CD:05:9E:92:E2:F1:C1:1D:E8:0E:33:32:2E:96:0F:AB:53 Authority key identifier: 0C:1F:24:E9:E6:02:85:76:9E:F6:14:CF:A8:13:EE:51:AC:9E:98:FE Certificate issuer: /CN=A91E754F/serialNumber=0C1F24E9E60285769EF614CFA813EE51AC9E98FE Certificate serial: 05A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DB8k6eYChXae9hTPqBPuUayemP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.mft Manifest number: 059A Signing time: Sun 19 May 2024 00:23:28 +0000 Manifest this update: Sun 19 May 2024 00:23:27 +0000 Manifest next update: Sun 26 May 2024 00:23:27 +0000 Files and hashes: 1: DB8k6eYChXae9hTPqBPuUayemP4.crl (hash: P+BKlivaQned1vrNVRAbbTzEYUZ//4kJsBfEwAYeL18=) 2: 26F67E0A842011EB8A4C635AC4F9AE02.roa (hash: gOnXbNeu+S+eCDT5stBppZX1cESI7ntwOeiwcOw+aHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.crl rsync://rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DB8k6eYChXae9hTPqBPuUayemP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1440 (0x5a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E754F/serialNumber=0C1F24E9E60285769EF614CFA813EE51AC9E98FE Validity Not Before: May 19 00:23:27 2024 GMT Not After : May 26 00:23:27 2024 GMT Subject: CN=6649467f-5d5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:94:3d:d7:be:95:89:24:ef:9d:e9:2d:06:ea: 5c:d8:61:b8:69:e8:41:e9:4a:87:08:63:e7:53:3f: 89:0a:dc:ea:21:ab:c0:e7:91:3f:01:fb:d2:26:79: 0e:3a:9c:29:70:75:35:c4:93:88:07:cf:63:15:c4: 6d:f7:f2:59:47:e2:02:32:83:31:6f:9b:37:40:03: 86:db:0e:63:63:46:58:d8:85:ee:e3:0c:8a:70:f3: 38:20:b8:4a:1b:48:e5:9c:e2:86:9e:33:be:ec:da: 16:fe:1d:23:fc:d1:5f:ce:cf:fa:31:e9:fb:c4:2f: 2c:9e:08:ec:f3:35:b1:f7:9c:2c:dd:16:53:df:96: 10:50:4a:83:4e:5f:4a:43:c2:39:02:28:68:38:11: 8c:f4:64:00:31:31:ce:15:08:f9:09:ff:ce:30:40: fe:c7:c7:84:ef:85:a8:9c:b0:f4:91:91:49:ad:b0: 1d:57:27:95:66:76:88:e5:6f:cb:9c:12:91:e8:86: 07:2e:6e:30:eb:48:b3:b4:12:a8:c5:ea:84:24:5b: 15:0c:cb:9b:51:e1:b8:2a:dc:31:85:b0:60:11:c8: 00:a0:b2:45:20:0c:ac:5b:79:db:a8:42:ea:52:1f: c1:bb:41:32:29:9e:e8:03:8b:2a:f3:a0:c5:2e:bc: e9:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:43:12:CD:05:9E:92:E2:F1:C1:1D:E8:0E:33:32:2E:96:0F:AB:53 X509v3 Authority Key Identifier: keyid:0C:1F:24:E9:E6:02:85:76:9E:F6:14:CF:A8:13:EE:51:AC:9E:98:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DB8k6eYChXae9hTPqBPuUayemP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:50:ef:0a:35:4b:0f:07:b8:09:2b:89:52:bf:45:01:0a:6c: b5:55:00:5f:3f:16:4e:23:29:e8:ba:c9:37:62:6c:24:c5:76: f1:0f:0f:8e:66:c3:19:62:4e:36:77:92:92:ce:df:d5:98:64: 79:4b:ec:0f:b0:77:7e:3e:ae:7a:ce:b0:30:52:d8:28:ec:7e: b7:ee:3b:ff:9b:4e:e1:2d:4e:6b:ba:90:98:b5:53:58:6f:48: e1:92:f5:b0:53:51:fb:69:dc:3f:37:a8:02:ee:a2:93:3c:f6: 58:d5:44:9e:65:3f:8c:71:2c:6b:e3:70:bc:5a:2d:ea:0e:ca: f0:a9:a0:c8:27:c1:4a:ab:bb:63:18:cc:fd:6e:cc:e4:e2:76: cb:29:34:d5:53:ef:ca:8e:6c:24:61:9e:ec:81:5e:49:fb:bf: 73:eb:6c:d0:78:1d:ba:3e:17:13:c5:fe:57:f8:fe:82:fe:dc: 29:18:06:3c:29:ff:4b:fc:25:82:bb:9f:2b:5a:da:90:7f:c3: d0:74:31:42:aa:68:cf:17:c9:3a:7b:10:6b:75:46:34:3e:a4: ea:5f:2e:01:c9:58:12:79:ca:ba:4c:10:99:72:2b:ac:3e:25: f1:ad:cc:f0:c1:e2:c4:7b:ab:a1:da:8f:c7:68:d4:90:21:e5: 27:fd:09:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc1NEYxMTAvBgNVBAUTKDBDMUYyNEU5RTYwMjg1NzY5RUY2MTRDRkE4MTNFRTUx QUM5RTk4RkUwHhcNMjQwNTE5MDAyMzI3WhcNMjQwNTI2MDAyMzI3WjAYMRYwFAYD VQQDEw02NjQ5NDY3Zi01ZDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr5Q9176ViSTvnektBupc2GG4aehB6UqHCGPnUz+JCtzqIavA55E/AfvSJnkO OpwpcHU1xJOIB89jFcRt9/JZR+ICMoMxb5s3QAOG2w5jY0ZY2IXu4wyKcPM4ILhK G0jlnOKGnjO+7NoW/h0j/NFfzs/6Men7xC8sngjs8zWx95ws3RZT35YQUEqDTl9K Q8I5AihoOBGM9GQAMTHOFQj5Cf/OMED+x8eE74WonLD0kZFJrbAdVyeVZnaI5W/L nBKR6IYHLm4w60iztBKoxeqEJFsVDMubUeG4KtwxhbBgEcgAoLJFIAysW3nbqELq Uh/Bu0EyKZ7oA4sq86DFLrzpvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDBDEs0F npLi8cEd6A4zMi6WD6tTMB8GA1UdIwQYMBaAFAwfJOnmAoV2nvYUz6gT7lGsnpj+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzU0Ri9CNDUyQkY4Qzg0 MUQxMUVCQTA4N0JGMzFDNEY5QUUwMi9EQjhrNmVZQ2hYYWU5aFRQcUJQdVVheWVt UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RCOGs2ZVlDaFhhZTloVFBxQlB1VWF5ZW1QNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzU0Ri9CNDUyQkY4Qzg0MUQxMUVCQTA4N0JGMzFDNEY5QUUwMi9EQjhrNmVZQ2hY YWU5aFRQcUJQdVVheWVtUDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7UO8KNUsPB7gJK4lSv0UBCmy1VQBfPxZOIynousk3YmwkxXbxDw+O ZsMZYk42d5KSzt/VmGR5S+wPsHd+Pq56zrAwUtgo7H637jv/m07hLU5rupCYtVNY b0jhkvWwU1H7adw/N6gC7qKTPPZY1USeZT+McSxr43C8Wi3qDsrwqaDIJ8FKq7tj GMz9bszk4nbLKTTVU+/KjmwkYZ7sgV5J+79z62zQeB26PhcTxf5X+P6C/twpGAY8 Kf9L/CWCu58rWtqQf8PQdDFCqmjPF8k6exBrdUY0PqTqXy4ByVgSecq6TBCZcius PiXxrczwweLEe6uh2o/HaNSQIeUn/Qla -----END CERTIFICATE-----Generated at Sun May 19 00:59:43 2024 by rpki-client on console-fra.rpki-client.org