$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft File: 9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft (raw, json) Hash identifier: N4zm5gLyFPAjCVFiiRslGiOFfLdJ22IRwUUXQLDM+q4= Subject key identifier: 71:17:C5:89:DC:01:04:35:6D:B8:63:31:66:EE:41:DA:48:BF:37:73 Authority key identifier: F4:F1:5C:67:5E:D9:A5:C2:D1:99:5B:27:FB:53:FF:60:FF:02:49:E0 Certificate issuer: /CN=A91ED571/serialNumber=F4F15C675ED9A5C2D1995B27FB53FF60FF0249E0 Certificate serial: 0C9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft Manifest number: 0C96 Signing time: Sat 18 May 2024 18:50:51 +0000 Manifest this update: Sat 18 May 2024 18:50:51 +0000 Manifest next update: Sat 25 May 2024 18:50:51 +0000 Files and hashes: 1: 9PFcZ17ZpcLRmVsn-1P_YP8CSeA.crl (hash: awWXY4CdLCFLLvHacSxne6MhxmRFnN8vCBdAxAIJMEo=) 2: C9819022CE7011E98E86DD52C4F9AE02.roa (hash: kI5JnSJu06qgqTZp/9lZiT474okX7X5b01wQ0iP2l+4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.crl rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3228 (0xc9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED571/serialNumber=F4F15C675ED9A5C2D1995B27FB53FF60FF0249E0 Validity Not Before: May 18 18:50:51 2024 GMT Not After : May 25 18:50:51 2024 GMT Subject: CN=6648f88b-4e38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e0:5a:c6:aa:b2:f5:5e:5a:b8:5b:66:4f:01: 0c:83:79:f4:7e:6a:e7:1e:89:e1:8e:5a:f5:c2:49: 01:81:62:1d:2c:7c:55:9c:ec:d7:d0:5b:cf:85:88: 0f:ab:c0:f7:e4:b3:29:95:85:3e:86:8f:ec:d7:55: ff:d4:99:09:34:b4:05:e5:ff:1e:81:50:40:fb:2d: c3:e6:f6:64:4f:f2:fb:1c:38:77:e1:f7:a7:6e:c8: 18:90:06:1b:51:09:d7:92:48:45:fa:f8:23:fe:15: c8:f9:f9:59:51:6c:1f:2f:65:f8:30:f2:2e:d6:60: 93:5d:27:97:7d:e6:17:51:6b:d1:1e:bb:1d:f0:67: 70:9f:d3:16:17:a9:68:c3:6f:aa:5e:37:e5:0a:51: 53:37:5b:ee:7c:e1:d5:a2:8f:6e:e9:83:cb:33:9c: f9:fc:bb:47:3a:8a:55:69:5a:c3:43:bc:da:31:f4: 77:51:f9:1f:7d:0a:92:9f:88:a9:52:2a:05:08:d1: f5:6c:47:ae:0c:73:92:d2:53:c5:a3:79:fa:3e:b1: dc:6c:e6:c6:24:69:57:df:0c:c2:4b:ca:50:b2:34: 1e:f7:e8:cf:39:34:5e:03:b4:d9:ce:98:13:d0:1c: e3:dc:50:cc:6b:ec:6e:a8:37:ad:91:95:b4:bd:71: 44:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:17:C5:89:DC:01:04:35:6D:B8:63:31:66:EE:41:DA:48:BF:37:73 X509v3 Authority Key Identifier: keyid:F4:F1:5C:67:5E:D9:A5:C2:D1:99:5B:27:FB:53:FF:60:FF:02:49:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:ca:ab:14:bf:10:17:59:9e:7e:4e:4e:17:18:90:79:78:bf: 55:1f:0f:39:c8:39:2c:a7:ce:0e:b4:8c:73:27:e4:c9:07:c3: 35:43:79:6e:67:89:1b:35:a0:24:cc:b1:86:e5:d9:d7:c3:ee: 62:ae:54:4c:53:37:08:bc:97:55:58:29:26:b1:7a:48:26:3a: 6f:4d:8a:c9:4f:a5:fe:a6:74:12:bc:7f:2b:1c:bd:ba:79:7b: be:54:46:e6:ff:09:bc:38:5d:c6:44:c6:eb:3f:bf:c4:51:6a: 72:7a:ad:04:ff:eb:5a:1f:7e:34:ae:df:aa:0f:13:65:7e:33: 49:be:04:cc:b5:89:dd:6b:7a:dc:08:08:02:6f:d2:61:88:89: bf:9e:e4:f9:d4:64:c1:a2:db:74:4e:04:d8:ac:ae:06:55:75: 1a:7a:c2:37:df:60:b2:2a:41:ae:4c:07:4c:39:22:0e:c3:11: 9a:ec:d6:d2:78:b4:f7:d1:1f:6f:e0:37:d5:87:ea:7d:3f:2d: 07:6b:ad:38:c4:b4:93:c7:fc:44:3e:d4:78:35:b5:4f:25:be: 3a:7a:16:3e:01:6f:c5:4a:88:50:e7:bc:c1:ba:1e:9f:d7:54: dc:5f:47:aa:16:01:dc:ef:ab:54:20:12:9c:60:47:bf:72:94: 03:06:f7:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ1NzExMTAvBgNVBAUTKEY0RjE1QzY3NUVEOUE1QzJEMTk5NUIyN0ZCNTNGRjYw RkYwMjQ5RTAwHhcNMjQwNTE4MTg1MDUxWhcNMjQwNTI1MTg1MDUxWjAYMRYwFAYD VQQDEw02NjQ4Zjg4Yi00ZTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3uBaxqqy9V5auFtmTwEMg3n0fmrnHonhjlr1wkkBgWIdLHxVnOzX0FvPhYgP q8D35LMplYU+ho/s11X/1JkJNLQF5f8egVBA+y3D5vZkT/L7HDh34fenbsgYkAYb UQnXkkhF+vgj/hXI+flZUWwfL2X4MPIu1mCTXSeXfeYXUWvRHrsd8Gdwn9MWF6lo w2+qXjflClFTN1vufOHVoo9u6YPLM5z5/LtHOopVaVrDQ7zaMfR3UfkffQqSn4ip UioFCNH1bEeuDHOS0lPFo3n6PrHcbObGJGlX3wzCS8pQsjQe9+jPOTReA7TZzpgT 0Bzj3FDMa+xuqDetkZW0vXFE0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHEXxYnc AQQ1bbhjMWbuQdpIvzdzMB8GA1UdIwQYMBaAFPTxXGde2aXC0ZlbJ/tT/2D/Akng MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDU3MS9FQ0QyREY5NkNF NkYxMUU5QTBEODZENTFDNEY5QUUwMi85UEZjWjE3WnBjTFJtVnNuLTFQX1lQOENT ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlQRmNaMTdacGNMUm1Wc24tMVBfWVA4Q1NlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDU3MS9FQ0QyREY5NkNFNkYxMUU5QTBEODZENTFDNEY5QUUwMi85UEZjWjE3WnBj TFJtVnNuLTFQX1lQOENTZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbyqsUvxAXWZ5+Tk4XGJB5eL9VHw85yDksp84OtIxzJ+TJB8M1Q3lu Z4kbNaAkzLGG5dnXw+5irlRMUzcIvJdVWCkmsXpIJjpvTYrJT6X+pnQSvH8rHL26 eXu+VEbm/wm8OF3GRMbrP7/EUWpyeq0E/+taH340rt+qDxNlfjNJvgTMtYnda3rc CAgCb9JhiIm/nuT51GTBott0TgTYrK4GVXUaesI332CyKkGuTAdMOSIOwxGa7NbS eLT30R9v4DfVh+p9Py0Ha604xLSTx/xEPtR4NbVPJb46ehY+AW/FSohQ57zBuh6f 11TcX0eqFgHc76tUIBKcYEe/cpQDBvfd -----END CERTIFICATE-----Generated at Sat May 18 19:21:05 2024 by rpki-client on console-fra.rpki-client.org