$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft File: CUoNzYAqBb91c_96buCnqXIFUNE.mft (raw, json) Hash identifier: Qd2AVZy0mVv86mssDzMF1GmkhJnJFTCxl7sQ0bdiCGY= Subject key identifier: 1B:E0:D5:DE:CD:69:2E:98:97:E7:12:50:0C:47:66:E3:25:52:11:99 Authority key identifier: 09:4A:0D:CD:80:2A:05:BF:75:73:FF:7A:6E:E0:A7:A9:72:05:50:D1 Certificate issuer: /CN=A91EC93F/serialNumber=094A0DCD802A05BF7573FF7A6EE0A7A9720550D1 Certificate serial: CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUoNzYAqBb91c_96buCnqXIFUNE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft Manifest number: CC Signing time: Sun 19 May 2024 06:14:24 +0000 Manifest this update: Sun 19 May 2024 06:14:23 +0000 Manifest next update: Sun 26 May 2024 06:14:23 +0000 Files and hashes: 1: CUoNzYAqBb91c_96buCnqXIFUNE.crl (hash: LDx98iwyvWnKersm1VbEgrX2XoNB54FsDoc1tXRatv4=) 2: 5BA557A6DEB011EDB7B0C04EC4F9AE02.roa (hash: rqsGCczlTsAssnjE3lU2t0y5qqxlPSKotk0BlBeeudM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.crl rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUoNzYAqBb91c_96buCnqXIFUNE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC93F/serialNumber=094A0DCD802A05BF7573FF7A6EE0A7A9720550D1 Validity Not Before: May 19 06:14:23 2024 GMT Not After : May 26 06:14:23 2024 GMT Subject: CN=664998bf-6280 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:40:90:03:c9:aa:6a:15:5d:a4:ed:6d:a9:1a: 02:d5:d6:df:48:b3:e5:e6:63:26:d3:d9:6d:fd:b6: f5:9c:1b:0a:ea:f1:4d:80:90:24:23:3f:a1:48:39: 06:5b:6c:c6:e7:c6:69:b9:c7:e2:a1:56:14:04:1b: d0:b8:24:f7:eb:6b:b9:be:d9:c9:56:de:12:da:f7: 03:be:4f:06:26:ba:c7:a5:35:81:91:f2:b3:0a:8e: 31:60:5c:ec:8a:01:69:c2:02:56:33:83:84:be:0f: a2:b6:bd:f0:2c:08:fa:35:76:bb:d3:b7:8b:d3:c8: 31:71:10:51:14:a1:ab:e2:7e:d5:a2:1f:82:47:36: 15:5e:f4:9d:fc:f6:ae:90:ab:3b:57:48:a5:d3:72: 43:42:1e:f8:1c:aa:63:15:13:18:36:e1:31:de:9d: 56:37:06:90:83:3f:fd:71:d1:a9:70:ec:10:18:01: 86:17:e5:6d:25:d2:f9:ae:95:88:04:d0:f2:bf:e0: 52:10:63:a3:5a:6c:c2:74:c3:2e:4e:05:7f:f2:9b: 81:35:6e:e9:de:8a:d1:e7:5b:8f:15:bf:d8:cb:b4: f1:8c:da:77:68:5c:77:cc:af:3b:56:a6:93:8b:bf: 88:f5:d5:1f:34:e9:19:fd:aa:9f:4e:0c:a4:27:2f: 13:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:E0:D5:DE:CD:69:2E:98:97:E7:12:50:0C:47:66:E3:25:52:11:99 X509v3 Authority Key Identifier: keyid:09:4A:0D:CD:80:2A:05:BF:75:73:FF:7A:6E:E0:A7:A9:72:05:50:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUoNzYAqBb91c_96buCnqXIFUNE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:e5:15:f9:fb:c3:44:fb:bf:89:97:b2:d5:f8:00:1f:f0:2e: 9b:8e:e9:b9:b0:40:23:ba:9f:b0:3b:19:d2:cc:ab:32:17:7b: 29:6f:ce:9d:21:76:29:2a:10:5d:15:a6:89:7d:41:d4:c9:3e: aa:30:8b:eb:1c:22:cb:a1:f2:1c:f9:27:d5:cc:c4:c2:cb:ca: 45:81:53:17:d8:06:9f:98:fa:d8:87:21:e0:d1:ef:67:b0:57: 90:24:74:42:fa:2b:f0:9d:32:f4:a1:76:42:80:6c:b7:c3:ce: 43:51:fc:cc:b6:b9:1e:bf:fe:fd:68:8a:c3:b3:ca:ff:a7:f8: b3:e0:78:28:2f:9c:bb:88:72:20:53:35:45:2c:a3:30:80:44: bd:4c:b7:c6:83:7e:ec:ff:9d:6a:84:a4:f4:0b:46:2f:ed:8a: 03:76:dd:f8:57:9f:47:27:ee:cf:dd:48:bc:bc:7f:6c:75:21: 14:07:9e:df:d3:ff:e6:50:b5:21:71:f0:90:a7:44:61:09:65: ba:9a:74:59:cf:bd:68:07:af:bb:65:3e:08:f9:be:7e:db:c2: bc:b7:b8:27:7e:62:07:1f:8e:8f:7b:c6:68:50:db:9b:02:76: ef:6e:62:15:30:a5:5f:e5:c4:58:f3:ac:b6:58:a8:6e:56:e1: b1:de:22:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM5M0YxMTAvBgNVBAUTKDA5NEEwRENEODAyQTA1QkY3NTczRkY3QTZFRTBBN0E5 NzIwNTUwRDEwHhcNMjQwNTE5MDYxNDIzWhcNMjQwNTI2MDYxNDIzWjAYMRYwFAYD VQQDEw02NjQ5OThiZi02MjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnUCQA8mqahVdpO1tqRoC1dbfSLPl5mMm09lt/bb1nBsK6vFNgJAkIz+hSDkG W2zG58ZpucfioVYUBBvQuCT362u5vtnJVt4S2vcDvk8GJrrHpTWBkfKzCo4xYFzs igFpwgJWM4OEvg+itr3wLAj6NXa707eL08gxcRBRFKGr4n7Voh+CRzYVXvSd/Pau kKs7V0il03JDQh74HKpjFRMYNuEx3p1WNwaQgz/9cdGpcOwQGAGGF+VtJdL5rpWI BNDyv+BSEGOjWmzCdMMuTgV/8puBNW7p3orR51uPFb/Yy7TxjNp3aFx3zK87VqaT i7+I9dUfNOkZ/aqfTgykJy8TIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBvg1d7N aS6Yl+cSUAxHZuMlUhGZMB8GA1UdIwQYMBaAFAlKDc2AKgW/dXP/em7gp6lyBVDR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzkzRi82MEE4Rjg4Q0RF QUQxMUVEOEE2REYxNERDNEY5QUUwMi9DVW9OellBcUJiOTFjXzk2YnVDbnFYSUZV TkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NVb056WUFxQmI5MWNfOTZidUNucVhJRlVORS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzkzRi82MEE4Rjg4Q0RFQUQxMUVEOEE2REYxNERDNEY5QUUwMi9DVW9OellBcUJi OTFjXzk2YnVDbnFYSUZVTkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA35RX5+8NE+7+Jl7LV+AAf8C6bjum5sEAjup+wOxnSzKsyF3spb86d IXYpKhBdFaaJfUHUyT6qMIvrHCLLofIc+SfVzMTCy8pFgVMX2AafmPrYhyHg0e9n sFeQJHRC+ivwnTL0oXZCgGy3w85DUfzMtrkev/79aIrDs8r/p/iz4HgoL5y7iHIg UzVFLKMwgES9TLfGg37s/51qhKT0C0Yv7YoDdt34V59HJ+7P3Ui8vH9sdSEUB57f 0//mULUhcfCQp0RhCWW6mnRZz71oB6+7ZT4I+b5+28K8t7gnfmIHH46Pe8ZoUNub AnbvbmIVMKVf5cRY86y2WKhuVuGx3iLD -----END CERTIFICATE-----Generated at Sun May 19 08:25:11 2024 by rpki-client on console-ams.rpki-client.org