$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1605/7250CA446C3411EB9E37AA21C4F9AE02/8EaQuwPg05YrSAjk0GyyajSQ5RY.mft File: 8EaQuwPg05YrSAjk0GyyajSQ5RY.mft (raw, json) Hash identifier: U9XC3dUri0LSTc8pFbnq78I5Ix54qHPliP+vWlCbvgg= Subject key identifier: D1:40:C4:48:30:80:B6:2E:96:A6:74:2F:AE:A4:10:9D:E5:06:2D:D1 Authority key identifier: F0:46:90:BB:03:E0:D3:96:2B:48:08:E4:D0:6C:B2:6A:34:90:E5:16 Certificate issuer: /CN=A91F1605/serialNumber=F04690BB03E0D3962B4808E4D06CB26A3490E516 Certificate serial: 05DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EaQuwPg05YrSAjk0GyyajSQ5RY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1605/7250CA446C3411EB9E37AA21C4F9AE02/8EaQuwPg05YrSAjk0GyyajSQ5RY.mft Manifest number: 05D8 Signing time: Sun 19 May 2024 00:03:27 +0000 Manifest this update: Sun 19 May 2024 00:03:27 +0000 Manifest next update: Sun 26 May 2024 00:03:27 +0000 Files and hashes: 1: 8EaQuwPg05YrSAjk0GyyajSQ5RY.crl (hash: ocEEaMVzBVa1zPs9oqpkbIsykDwT0vO+l1EvBx0lJrA=) 2: 64237DC06C3611EBB6BA1A24C4F9AE02.roa (hash: r+na1JdGgmwfIGGSKBAZgCKOWOoPknRelPQT0zlmH6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1605/7250CA446C3411EB9E37AA21C4F9AE02/8EaQuwPg05YrSAjk0GyyajSQ5RY.crl rsync://rpki.apnic.net/member_repository/A91F1605/7250CA446C3411EB9E37AA21C4F9AE02/8EaQuwPg05YrSAjk0GyyajSQ5RY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EaQuwPg05YrSAjk0GyyajSQ5RY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1501 (0x5dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1605/serialNumber=F04690BB03E0D3962B4808E4D06CB26A3490E516 Validity Not Before: May 19 00:03:27 2024 GMT Not After : May 26 00:03:27 2024 GMT Subject: CN=664941cf-2c10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:3d:28:39:22:6f:2c:5d:fb:ce:5f:bf:f5:ed: ab:3e:4b:ba:33:0e:09:20:20:05:e9:cf:76:78:d5: ad:a5:03:8c:67:e9:cf:d6:d8:8d:e8:38:dd:6b:8b: 68:30:c3:2b:cb:8c:27:74:94:ba:03:9e:ee:78:2a: d7:91:ef:03:85:26:40:2f:ff:85:b5:b5:82:2e:af: 00:e4:ce:61:75:12:4f:f9:4f:bc:72:d3:56:f8:56: 79:d1:5c:6c:cc:ec:2b:bc:b1:9a:cf:16:97:48:57: 91:4e:68:53:0f:bc:8b:98:07:a7:8b:53:93:6f:c7: 5f:04:c8:87:20:6e:d4:1c:89:2d:b7:a0:e9:ab:4a: 6a:ac:4c:41:d5:06:c2:cc:df:56:19:6b:b6:0f:f7: 32:12:9f:6b:32:ab:41:fb:b9:a1:37:b8:b3:84:90: c3:de:78:bc:3f:c3:3d:58:cd:45:16:84:a6:22:da: 86:d8:e1:fc:d0:1e:40:4d:72:69:0a:55:98:d2:79: e7:4c:94:20:eb:84:98:6b:db:92:87:33:9d:a8:67: 2c:90:c3:6b:a7:2e:d7:d8:36:87:25:cd:a1:58:44: 05:ec:f2:88:c5:c2:1a:ce:31:c7:96:8b:5c:ac:f0: d9:29:47:6c:43:f7:38:af:a4:53:b2:ad:b5:e0:57: d8:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:40:C4:48:30:80:B6:2E:96:A6:74:2F:AE:A4:10:9D:E5:06:2D:D1 X509v3 Authority Key Identifier: keyid:F0:46:90:BB:03:E0:D3:96:2B:48:08:E4:D0:6C:B2:6A:34:90:E5:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1605/7250CA446C3411EB9E37AA21C4F9AE02/8EaQuwPg05YrSAjk0GyyajSQ5RY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EaQuwPg05YrSAjk0GyyajSQ5RY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1605/7250CA446C3411EB9E37AA21C4F9AE02/8EaQuwPg05YrSAjk0GyyajSQ5RY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:ef:b0:c8:0e:ed:4a:48:f9:28:1e:27:f3:1c:62:d6:98:1d: 1b:b5:3d:a2:9e:13:ad:b1:09:0b:b8:dc:bf:6a:1b:37:c5:c9: 83:5a:a9:99:ff:01:60:b2:4d:d0:d4:d5:d8:37:6f:33:dd:a3: 8c:72:d7:d4:f2:c7:b8:a2:4a:06:6f:e8:c0:a8:6b:5f:05:e3: 21:67:bb:d6:9c:16:11:1f:e2:70:9f:72:79:f0:d4:db:77:e9: b9:e0:28:e8:d5:5f:42:dd:19:b0:f2:4d:ab:24:93:0d:d1:16: 3d:dd:9f:7d:ac:ac:79:81:3e:c0:cc:d2:ca:6b:ed:d3:1a:99: fd:9f:ab:ce:11:3a:21:66:0f:80:e8:f3:16:f7:8c:2d:3e:40: f9:ca:2f:d6:b2:51:c3:02:9c:1e:68:80:b5:56:0a:d4:ad:f3: 64:18:b9:e8:d7:ac:f1:83:1a:f5:ff:0c:2b:50:92:15:ab:95: b1:67:94:b1:c6:ff:a5:b0:8b:6e:ce:72:91:5c:25:51:8f:a3: 0a:52:1e:1d:52:04:cc:84:c7:17:ff:aa:c3:f9:a4:b2:86:5e: 88:2f:66:a7:b8:9b:31:f6:43:01:6b:da:4e:5e:13:77:ed:b0: 91:ca:7b:10:53:b9:9f:4b:85:ef:66:8f:d8:af:ee:6f:58:0d: b2:72:ae:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE2MDUxMTAvBgNVBAUTKEYwNDY5MEJCMDNFMEQzOTYyQjQ4MDhFNEQwNkNCMjZB MzQ5MEU1MTYwHhcNMjQwNTE5MDAwMzI3WhcNMjQwNTI2MDAwMzI3WjAYMRYwFAYD VQQDEw02NjQ5NDFjZi0yYzEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5z0oOSJvLF37zl+/9e2rPku6Mw4JICAF6c92eNWtpQOMZ+nP1tiN6Djda4to MMMry4wndJS6A57ueCrXke8DhSZAL/+FtbWCLq8A5M5hdRJP+U+8ctNW+FZ50Vxs zOwrvLGazxaXSFeRTmhTD7yLmAeni1OTb8dfBMiHIG7UHIktt6Dpq0pqrExB1QbC zN9WGWu2D/cyEp9rMqtB+7mhN7izhJDD3ni8P8M9WM1FFoSmItqG2OH80B5ATXJp ClWY0nnnTJQg64SYa9uShzOdqGcskMNrpy7X2DaHJc2hWEQF7PKIxcIazjHHlotc rPDZKUdsQ/c4r6RTsq214FfYFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNFAxEgw gLYulqZ0L66kEJ3lBi3RMB8GA1UdIwQYMBaAFPBGkLsD4NOWK0gI5NBssmo0kOUW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTYwNS83MjUwQ0E0NDZD MzQxMUVCOUUzN0FBMjFDNEY5QUUwMi84RWFRdXdQZzA1WXJTQWprMEd5eWFqU1E1 UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhFYVF1d1BnMDVZclNBamswR3l5YWpTUTVSWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTYwNS83MjUwQ0E0NDZDMzQxMUVCOUUzN0FBMjFDNEY5QUUwMi84RWFRdXdQZzA1 WXJTQWprMEd5eWFqU1E1UlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCA77DIDu1KSPkoHifzHGLWmB0btT2inhOtsQkLuNy/ahs3xcmDWqmZ /wFgsk3Q1NXYN28z3aOMctfU8se4okoGb+jAqGtfBeMhZ7vWnBYRH+Jwn3J58NTb d+m54Cjo1V9C3Rmw8k2rJJMN0RY93Z99rKx5gT7AzNLKa+3TGpn9n6vOETohZg+A 6PMW94wtPkD5yi/WslHDApweaIC1VgrUrfNkGLno16zxgxr1/wwrUJIVq5WxZ5Sx xv+lsItuznKRXCVRj6MKUh4dUgTMhMcX/6rD+aSyhl6IL2anuJsx9kMBa9pOXhN3 7bCRynsQU7mfS4XvZo/Yr+5vWA2ycq5w -----END CERTIFICATE-----Generated at Sun May 19 00:59:44 2024 by rpki-client on console-fra.rpki-client.org