$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft File: lQfxHRNjrFs5Lzb17zgixc_NaPk.mft (raw, json) Hash identifier: KWv7pwJ8m6nanFGCuF0n4qLVIC1BGYCpD0ap1ssQnZ0= Subject key identifier: D0:E4:30:32:44:CD:D3:0C:89:F7:6F:36:61:81:69:87:5A:14:B3:93 Authority key identifier: 95:07:F1:1D:13:63:AC:5B:39:2F:36:F5:EF:38:22:C5:CF:CD:68:F9 Certificate issuer: /CN=A91EE8AC/serialNumber=9507F11D1363AC5B392F36F5EF3822C5CFCD68F9 Certificate serial: 0119 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft Manifest number: 0139 Signing time: Fri 31 May 2024 06:10:09 +0000 Manifest this update: Fri 31 May 2024 06:10:09 +0000 Manifest next update: Fri 07 Jun 2024 06:10:09 +0000 Files and hashes: 1: lQfxHRNjrFs5Lzb17zgixc_NaPk.crl (hash: Je+BuzMzq8LywvD3S0yZnnjQNkV8ROk713s/wVfyEJY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.crl rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 06:10:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 281 (0x119) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE8AC/serialNumber=9507F11D1363AC5B392F36F5EF3822C5CFCD68F9 Validity Not Before: May 31 06:10:09 2024 GMT Not After : Jun 7 06:10:09 2024 GMT Subject: CN=665969c1-1de2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:1a:bb:c6:7f:e3:7d:e9:94:c5:5b:f3:da:85: 8e:72:7f:b1:a7:21:48:7f:e4:89:43:f6:dd:24:3f: a0:1a:6c:f8:7d:c3:d3:16:8d:90:20:8d:9d:38:97: 2a:01:91:91:80:44:eb:ba:eb:74:9e:8a:06:10:df: 54:4d:86:5d:af:da:be:fc:a3:dc:d0:6e:a5:cd:56: 39:67:33:cf:f2:80:44:42:62:47:39:98:d5:ae:a7: 1b:9f:47:99:b1:76:d5:01:2f:c5:35:0e:c4:c1:a6: be:ff:fc:23:5e:77:1d:02:6a:c3:1d:ca:e4:03:3a: f8:67:da:51:eb:3c:3b:a1:15:b3:f5:67:c6:6d:2d: 3c:8e:59:4b:82:4d:ed:e1:9e:20:04:bf:9d:ef:ab: 62:80:61:ab:1f:90:28:6d:ce:45:b5:14:a4:36:f4: d4:6b:c0:1f:5a:31:d8:12:e6:01:c9:46:81:5e:39: 52:98:4b:6b:3d:89:7e:4c:11:c3:20:ef:79:51:26: fa:cc:a2:ab:3d:fd:cc:db:e1:ae:a3:33:fb:b1:10: 96:6e:a7:a0:fa:c2:e3:03:e1:d3:3c:0f:d7:a3:fc: da:1b:6e:b3:ef:a9:f0:54:64:17:74:bc:d2:77:7c: 19:1e:2c:c0:9a:b9:d2:8f:00:5e:4b:8d:2a:84:69: a2:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:E4:30:32:44:CD:D3:0C:89:F7:6F:36:61:81:69:87:5A:14:B3:93 X509v3 Authority Key Identifier: keyid:95:07:F1:1D:13:63:AC:5B:39:2F:36:F5:EF:38:22:C5:CF:CD:68:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:77:70:d8:00:f9:61:63:e9:b2:3c:45:0d:a3:d4:42:b8:ea: 84:d9:28:83:00:f7:40:b6:f7:f4:ae:a7:6e:2a:df:50:bf:b8: 45:08:ef:e4:7c:a7:72:80:04:f7:8f:44:cd:e2:c1:bf:9c:b7: bd:8f:5b:de:15:ad:7d:87:d7:9a:c7:51:c4:7b:08:a6:69:1f: 65:b6:69:82:f2:68:f7:a7:bc:6d:be:be:4b:77:f9:3a:30:d2: 2c:08:91:fd:43:f3:8b:87:30:05:2f:06:e5:15:1a:31:36:c9: d0:a3:10:18:35:a1:ff:a4:6d:0e:61:30:56:53:dd:1c:4e:d9: ab:89:cd:5f:63:0a:44:59:23:3a:79:d0:60:a1:82:e0:db:87: b6:db:fd:23:52:0e:28:a2:54:4c:7e:9e:70:9a:31:9c:9b:64: 06:44:81:2f:39:d7:72:db:c2:59:28:3e:be:85:73:db:a9:09: 7e:ad:7d:33:93:2c:55:22:2c:49:24:59:fd:65:73:00:40:ae: fb:ad:ff:de:f7:ab:9e:c4:4e:60:69:c3:82:fc:77:d1:96:40: 14:e5:a7:87:cb:4c:90:fe:e1:3d:e3:2c:37:26:e2:e4:de:fe: 1a:4c:ad:4a:70:e4:f2:89:f9:d4:fd:16:37:16:72:d0:6c:eb: 2a:2c:3d:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU4QUMxMTAvBgNVBAUTKDk1MDdGMTFEMTM2M0FDNUIzOTJGMzZGNUVGMzgyMkM1 Q0ZDRDY4RjkwHhcNMjQwNTMxMDYxMDA5WhcNMjQwNjA3MDYxMDA5WjAYMRYwFAYD VQQDEw02NjU5NjljMS0xZGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqxq7xn/jfemUxVvz2oWOcn+xpyFIf+SJQ/bdJD+gGmz4fcPTFo2QII2dOJcq AZGRgETruut0nooGEN9UTYZdr9q+/KPc0G6lzVY5ZzPP8oBEQmJHOZjVrqcbn0eZ sXbVAS/FNQ7Ewaa+//wjXncdAmrDHcrkAzr4Z9pR6zw7oRWz9WfGbS08jllLgk3t 4Z4gBL+d76tigGGrH5Aobc5FtRSkNvTUa8AfWjHYEuYByUaBXjlSmEtrPYl+TBHD IO95USb6zKKrPf3M2+GuozP7sRCWbqeg+sLjA+HTPA/Xo/zaG26z76nwVGQXdLzS d3wZHizAmrnSjwBeS40qhGmiAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNDkMDJE zdMMifdvNmGBaYdaFLOTMB8GA1UdIwQYMBaAFJUH8R0TY6xbOS829e84IsXPzWj5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRThBQy81MDM4RUM4QzdE RUIxMUVEQTdDQTRBN0VDNEY5QUUwMi9sUWZ4SFJOanJGczVMemIxN3pnaXhjX05h UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRZnhIUk5qckZzNUx6YjE3emdpeGNfTmFQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RThBQy81MDM4RUM4QzdERUIxMUVEQTdDQTRBN0VDNEY5QUUwMi9sUWZ4SFJOanJG czVMemIxN3pnaXhjX05hUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJd3DYAPlhY+myPEUNo9RCuOqE2SiDAPdAtvf0rqduKt9Qv7hFCO/k fKdygAT3j0TN4sG/nLe9j1veFa19h9eax1HEewimaR9ltmmC8mj3p7xtvr5Ld/k6 MNIsCJH9Q/OLhzAFLwblFRoxNsnQoxAYNaH/pG0OYTBWU90cTtmric1fYwpEWSM6 edBgoYLg24e22/0jUg4oolRMfp5wmjGcm2QGRIEvOddy28JZKD6+hXPbqQl+rX0z kyxVIixJJFn9ZXMAQK77rf/e96uexE5gacOC/HfRlkAU5aeHy0yQ/uE94yw3JuLk 3v4aTK1KcOTyifnU/RY3FnLQbOsqLD0V -----END CERTIFICATE-----Generated at Fri May 31 08:39:02 2024 by rpki-client on console-fra.rpki-client.org