$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF73D/D27230DECE1F11EEAC62617CC4F9AE02/MOiW54nUQ2A0bqTLtO1FkU6tAn0.mft File: MOiW54nUQ2A0bqTLtO1FkU6tAn0.mft (raw, json) Hash identifier: ZXUtGLKfwtaXnzfgUOMA3158OMZbzvxAF6UwjmsMJxk= Subject key identifier: B1:97:CA:12:64:47:4B:13:06:F9:F1:A8:CF:BE:C2:61:B8:F3:37:F3 Authority key identifier: 30:E8:96:E7:89:D4:43:60:34:6E:A4:CB:B4:ED:45:91:4E:AD:02:7D Certificate issuer: /CN=A91EF73D/serialNumber=30E896E789D44360346EA4CBB4ED45914EAD027D Certificate serial: 2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOiW54nUQ2A0bqTLtO1FkU6tAn0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF73D/D27230DECE1F11EEAC62617CC4F9AE02/MOiW54nUQ2A0bqTLtO1FkU6tAn0.mft Manifest number: 2F Signing time: Sun 19 May 2024 08:23:09 +0000 Manifest this update: Sun 19 May 2024 08:23:08 +0000 Manifest next update: Sun 26 May 2024 08:23:08 +0000 Files and hashes: 1: MOiW54nUQ2A0bqTLtO1FkU6tAn0.crl (hash: TNXdivIIeAxN0r5WAN7HcJrV/7DnWDbcq5BB52x5NQo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF73D/D27230DECE1F11EEAC62617CC4F9AE02/MOiW54nUQ2A0bqTLtO1FkU6tAn0.crl rsync://rpki.apnic.net/member_repository/A91EF73D/D27230DECE1F11EEAC62617CC4F9AE02/MOiW54nUQ2A0bqTLtO1FkU6tAn0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOiW54nUQ2A0bqTLtO1FkU6tAn0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF73D/serialNumber=30E896E789D44360346EA4CBB4ED45914EAD027D Validity Not Before: May 19 08:23:08 2024 GMT Not After : May 26 08:23:08 2024 GMT Subject: CN=6649b6ec-dbb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:98:c9:f2:f4:be:5e:88:c9:96:7f:21:5e:7e: cd:24:9a:d0:68:36:2b:50:b9:ca:1c:cf:12:71:d1: 74:89:f4:af:8c:61:d1:45:ec:ac:66:4a:29:6a:80: b9:03:15:be:34:fa:cf:7d:99:93:8f:50:2a:81:52: 60:16:c5:92:ab:66:26:13:38:48:bf:ac:49:bf:09: 97:95:74:8d:c6:f8:d1:7b:4b:14:e8:c4:49:52:6f: 25:c0:6c:32:34:1d:b3:05:60:14:da:33:a6:5a:b6: 73:34:8d:77:59:80:31:f3:87:d8:c2:eb:37:eb:2d: b8:37:df:50:c0:b3:84:1a:a7:a9:b3:71:17:18:62: b7:6d:d4:0b:d4:27:a5:23:4a:13:56:03:8d:1b:03: 93:91:e0:88:22:96:e0:ae:58:79:ec:cd:3f:aa:56: 77:e9:a4:16:12:cc:e0:f2:81:dd:1e:a7:62:d8:aa: d8:32:c1:07:c4:dd:bf:c6:c3:a0:e4:5f:63:e1:a2: 18:bc:08:66:51:ac:0b:00:6c:5f:4f:96:74:c8:08: db:58:6c:fd:af:d1:37:c6:78:4f:5c:1e:73:fe:02: e2:ba:84:c5:3f:b7:6f:a1:4b:1e:e2:57:d4:c5:c6: aa:7c:87:1c:ff:77:fa:2b:04:25:73:54:32:f1:a7: 36:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:97:CA:12:64:47:4B:13:06:F9:F1:A8:CF:BE:C2:61:B8:F3:37:F3 X509v3 Authority Key Identifier: keyid:30:E8:96:E7:89:D4:43:60:34:6E:A4:CB:B4:ED:45:91:4E:AD:02:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF73D/D27230DECE1F11EEAC62617CC4F9AE02/MOiW54nUQ2A0bqTLtO1FkU6tAn0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOiW54nUQ2A0bqTLtO1FkU6tAn0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF73D/D27230DECE1F11EEAC62617CC4F9AE02/MOiW54nUQ2A0bqTLtO1FkU6tAn0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:6b:a0:20:15:fb:25:45:89:5b:b6:66:9c:cf:33:5d:dc:63: f4:7b:90:d9:43:b4:86:6a:dc:d8:f2:a4:8a:05:db:fb:0f:32: af:0c:7a:28:42:4d:7c:18:fa:90:a4:08:63:62:81:73:dc:93: a2:f8:99:2c:d8:ea:a5:a9:fa:63:74:43:b5:4d:40:bc:56:4a: 3f:47:4a:07:05:b0:26:4b:56:07:9e:fd:f9:c5:2b:6a:27:de: 6a:17:1d:9c:20:86:2a:fe:c6:4f:56:fc:5f:a2:6e:c4:46:80: df:57:db:02:38:27:a6:e7:e3:17:42:c7:af:21:3f:ed:bb:40: 3b:9b:f5:d2:09:41:fb:4e:e5:c3:0e:8f:8f:de:b7:cf:0c:9b: fe:15:57:54:a4:2f:1b:6a:b1:d7:a9:b1:27:0d:5d:65:72:54: 2f:5a:90:01:a7:b3:aa:cf:b5:84:87:42:69:51:6c:ad:0d:cd: 05:a5:3e:9c:36:3d:a1:4f:fd:77:2d:fc:ed:63:6e:f6:29:b6: c2:b7:26:73:d4:af:04:cf:96:7a:cc:cd:8e:f2:8d:dd:f2:dc: c1:2e:a0:aa:c0:c1:2f:f8:60:46:dc:82:c0:6d:08:a7:f0:0f: 9b:6a:94:0d:75:28:2c:7f:62:10:d5:da:c6:8e:73:31:33:56: 2f:b2:d1:e4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RjczRDExMC8GA1UEBRMoMzBFODk2RTc4OUQ0NDM2MDM0NkVBNENCQjRFRDQ1OTE0 RUFEMDI3RDAeFw0yNDA1MTkwODIzMDhaFw0yNDA1MjYwODIzMDhaMBgxFjAUBgNV BAMTDTY2NDliNmVjLWRiYjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCemMny9L5eiMmWfyFefs0kmtBoNitQucoczxJx0XSJ9K+MYdFF7KxmSilqgLkD Fb40+s99mZOPUCqBUmAWxZKrZiYTOEi/rEm/CZeVdI3G+NF7SxToxElSbyXAbDI0 HbMFYBTaM6ZatnM0jXdZgDHzh9jC6zfrLbg331DAs4Qap6mzcRcYYrdt1AvUJ6Uj ShNWA40bA5OR4IgiluCuWHnszT+qVnfppBYSzODygd0ep2LYqtgywQfE3b/Gw6Dk X2Phohi8CGZRrAsAbF9PlnTICNtYbP2v0TfGeE9cHnP+AuK6hMU/t2+hSx7iV9TF xqp8hxz/d/orBCVzVDLxpza5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUsZfKEmRH SxMG+fGoz77CYbjzN/MwHwYDVR0jBBgwFoAUMOiW54nUQ2A0bqTLtO1FkU6tAn0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVGNzNEL0QyNzIzMERFQ0Ux RjExRUVBQzYyNjE3Q0M0RjlBRTAyL01PaVc1NG5VUTJBMGJxVEx0TzFGa1U2dEFu MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTU9pVzU0blVRMkEwYnFUTHRPMUZrVTZ0QW4wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVG NzNEL0QyNzIzMERFQ0UxRjExRUVBQzYyNjE3Q0M0RjlBRTAyL01PaVc1NG5VUTJB MGJxVEx0TzFGa1U2dEFuMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA5roCAV+yVFiVu2ZpzPM13cY/R7kNlDtIZq3NjypIoF2/sPMq8MeihC TXwY+pCkCGNigXPck6L4mSzY6qWp+mN0Q7VNQLxWSj9HSgcFsCZLVgee/fnFK2on 3moXHZwghir+xk9W/F+ibsRGgN9X2wI4J6bn4xdCx68hP+27QDub9dIJQftO5cMO j4/et88Mm/4VV1SkLxtqsdepsScNXWVyVC9akAGns6rPtYSHQmlRbK0NzQWlPpw2 PaFP/Xct/O1jbvYptsK3JnPUrwTPlnrMzY7yjd3y3MEuoKrAwS/4YEbcgsBtCKfw D5tqlA11KCx/YhDV2saOczEzVi+y0eQ= -----END CERTIFICATE-----Generated at Sun May 19 09:04:15 2024 by rpki-client on console-fra.rpki-client.org