$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.mft File: CUcFHvpQQpIVdQpIvAMa2pJu9m4.mft (raw, json) Hash identifier: l9cdcTRZXgV3UQtSraL5DI8tyus54aB1p/0Su2lTogc= Subject key identifier: 61:06:C8:D5:66:98:11:B2:73:3F:40:9D:72:E8:B5:33:73:68:77:5E Authority key identifier: 09:47:05:1E:FA:50:42:92:15:75:0A:48:BC:03:1A:DA:92:6E:F6:6E Certificate issuer: /CN=A91F17AA/serialNumber=0947051EFA50429215750A48BC031ADA926EF66E Certificate serial: 9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.mft Manifest number: 91 Signing time: Sun 19 May 2024 07:12:27 +0000 Manifest this update: Sun 19 May 2024 07:12:27 +0000 Manifest next update: Sun 26 May 2024 07:12:27 +0000 Files and hashes: 1: CUcFHvpQQpIVdQpIvAMa2pJu9m4.crl (hash: oC1nHHnAqFy03Omdg1vkwNOwJjoIZj5g/sw3/WEplbY=) 2: 83834CF0F27411EEB974F03FC4F9AE02.roa (hash: jvjpWFYaCXma0ma4o/TEjxBFwv2uRxI2tIDo4tGz7oY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.crl rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F17AA/serialNumber=0947051EFA50429215750A48BC031ADA926EF66E Validity Not Before: May 19 07:12:27 2024 GMT Not After : May 26 07:12:27 2024 GMT Subject: CN=6649a65b-a036 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:88:ca:af:fb:ae:97:c9:44:68:50:7a:ce:6a: 3b:05:ac:b0:c7:c3:d1:3a:34:49:17:c6:d4:8e:a8: b9:43:1a:1a:41:03:9f:d9:f2:35:df:1c:10:c9:fe: 6a:68:f3:ea:57:fe:d5:03:1b:8c:99:5d:f0:c1:01: 49:2b:38:76:d8:41:ab:e1:28:ca:b7:91:24:de:70: 85:59:2d:74:b1:a8:1e:84:a5:87:38:a6:bd:11:0d: 64:f4:f8:1b:26:31:13:ef:8c:62:b2:25:64:bc:e6: d3:48:fd:b3:e3:34:a5:ea:1f:21:ba:d0:ac:2d:91: 22:00:47:d6:1e:78:3d:9f:11:5b:ee:8f:05:73:ff: a2:c4:72:d0:e0:54:f3:6f:73:de:5d:c3:36:a2:d9: 4c:27:f7:24:3d:33:41:e0:a1:8a:a8:92:82:e5:11: 88:03:36:3e:b7:88:fd:f2:0c:38:6e:81:d1:e4:da: 7a:0c:bf:36:bf:a0:0b:8f:c4:83:02:90:ed:26:f2: 69:0c:da:81:98:2e:83:e1:18:f8:cc:0b:6c:cc:f2: 78:b9:13:e1:0b:8d:03:43:8e:da:1b:cf:2d:d5:98: 20:b6:8d:1d:72:cd:a4:7f:25:e4:4f:bc:86:7b:c3: 0e:ee:82:03:3a:31:f3:33:4c:24:14:b5:b9:9d:07: 36:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:06:C8:D5:66:98:11:B2:73:3F:40:9D:72:E8:B5:33:73:68:77:5E X509v3 Authority Key Identifier: keyid:09:47:05:1E:FA:50:42:92:15:75:0A:48:BC:03:1A:DA:92:6E:F6:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:c8:02:2a:02:21:41:0a:fe:60:b0:58:6b:8d:2e:f5:70:dc: a3:8b:c9:ab:c8:b1:84:a9:1b:85:7d:2e:92:96:7f:11:f6:88: 9f:f2:a1:39:07:46:77:6a:4b:8f:c3:ca:d6:8c:53:b1:a5:38: 5e:26:bb:3d:ce:f2:ed:2e:8b:64:32:91:a0:df:a4:36:47:f8: 4c:fa:0d:9f:c3:f6:d2:3b:c9:ae:2c:d6:54:e6:36:a4:1e:f9: 4d:81:14:5c:57:ed:b6:85:ed:be:0c:a2:99:99:fa:44:2d:e1: fb:ef:4b:f2:37:79:e1:3d:1d:99:3f:a0:d4:e4:2d:21:e9:70: 93:a9:91:9d:03:cb:9f:f0:67:2f:a0:76:51:0f:dc:e1:54:93: 45:33:8d:a4:49:e8:e6:c6:18:85:da:ce:f3:c8:30:48:d5:98: 87:77:8e:23:41:9e:ff:b8:fa:6b:de:06:e5:d1:26:e1:82:19: 03:96:56:24:85:23:33:6a:87:9d:e9:bb:3b:bf:f3:2c:90:54: 12:30:f3:22:cf:dc:12:30:de:0b:66:2e:e2:c6:7a:aa:b5:e7: 4c:58:86:80:45:b0:6e:b8:96:82:e1:6f:5b:49:b3:23:53:cc: e8:bf:95:3d:7f:ad:00:72:a6:89:c6:74:08:30:13:68:03:d8: f3:34:2f:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE3QUExMTAvBgNVBAUTKDA5NDcwNTFFRkE1MDQyOTIxNTc1MEE0OEJDMDMxQURB OTI2RUY2NkUwHhcNMjQwNTE5MDcxMjI3WhcNMjQwNTI2MDcxMjI3WjAYMRYwFAYD VQQDEw02NjQ5YTY1Yi1hMDM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwYjKr/uul8lEaFB6zmo7Baywx8PROjRJF8bUjqi5QxoaQQOf2fI13xwQyf5q aPPqV/7VAxuMmV3wwQFJKzh22EGr4SjKt5Ek3nCFWS10sagehKWHOKa9EQ1k9Pgb JjET74xisiVkvObTSP2z4zSl6h8hutCsLZEiAEfWHng9nxFb7o8Fc/+ixHLQ4FTz b3PeXcM2otlMJ/ckPTNB4KGKqJKC5RGIAzY+t4j98gw4boHR5Np6DL82v6ALj8SD ApDtJvJpDNqBmC6D4Rj4zAtszPJ4uRPhC40DQ47aG88t1Zggto0dcs2kfyXkT7yG e8MO7oIDOjHzM0wkFLW5nQc2LwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGEGyNVm mBGycz9AnXLotTNzaHdeMB8GA1UdIwQYMBaAFAlHBR76UEKSFXUKSLwDGtqSbvZu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTdBQS80MUYwRjk3RTUy QjgxMUVFOEU0MzAwMERDNEY5QUUwMi9DVWNGSHZwUVFwSVZkUXBJdkFNYTJwSnU5 bTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NVY0ZIdnBRUXBJVmRRcEl2QU1hMnBKdTltNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTdBQS80MUYwRjk3RTUyQjgxMUVFOEU0MzAwMERDNEY5QUUwMi9DVWNGSHZwUVFw SVZkUXBJdkFNYTJwSnU5bTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFyAIqAiFBCv5gsFhrjS71cNyji8mryLGEqRuFfS6Sln8R9oif8qE5 B0Z3akuPw8rWjFOxpTheJrs9zvLtLotkMpGg36Q2R/hM+g2fw/bSO8muLNZU5jak HvlNgRRcV+22he2+DKKZmfpELeH770vyN3nhPR2ZP6DU5C0h6XCTqZGdA8uf8Gcv oHZRD9zhVJNFM42kSejmxhiF2s7zyDBI1ZiHd44jQZ7/uPpr3gbl0SbhghkDllYk hSMzaoed6bs7v/MskFQSMPMiz9wSMN4LZi7ixnqqtedMWIaARbBuuJaC4W9bSbMj U8zov5U9f60AcqaJxnQIMBNoA9jzNC9T -----END CERTIFICATE-----Generated at Sun May 19 07:40:46 2024 by rpki-client on console-fra.rpki-client.org