$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4288/A93AA880A27211E6B8BC996AC4F9AE02/MU9VrlJExM2xD3hN_xXQItOJaEg.mft File: MU9VrlJExM2xD3hN_xXQItOJaEg.mft (raw, json) Hash identifier: SRTlq+vP8gAIUDAYjjmuFpGRhh/Oqaut+mAH66vWebY= Subject key identifier: A6:FA:22:D5:10:2F:82:43:E9:C6:E4:B4:72:6E:21:B3:AF:7E:B3:89 Authority key identifier: 31:4F:55:AE:52:44:C4:CD:B1:0F:78:4D:FF:15:D0:22:D3:89:68:48 Certificate issuer: /CN=A91F4288/serialNumber=314F55AE5244C4CDB10F784DFF15D022D3896848 Certificate serial: 1CF6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MU9VrlJExM2xD3hN_xXQItOJaEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4288/A93AA880A27211E6B8BC996AC4F9AE02/MU9VrlJExM2xD3hN_xXQItOJaEg.mft Manifest number: 1CD5 Signing time: Sat 18 May 2024 16:32:25 +0000 Manifest this update: Sat 18 May 2024 16:32:25 +0000 Manifest next update: Sat 25 May 2024 16:32:25 +0000 Files and hashes: 1: MU9VrlJExM2xD3hN_xXQItOJaEg.crl (hash: 2UzeS3NPO6FCGUF2eaj706ZJS5VywO322kqxyuoOA7M=) 2: 30C10672A27411E68C8EC670C4F9AE02.roa (hash: kDT0M7EORsZ1+/t04l6akhen7QWghNIlq1HRmuoO7iA=) 3: 2445BC6A6FCE11E9AA5D2439C4F9AE02.roa (hash: ZBnczf6i1Ft0AmNpKiJIV1DqYZIANTcE+WYR+xMSOmI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4288/A93AA880A27211E6B8BC996AC4F9AE02/MU9VrlJExM2xD3hN_xXQItOJaEg.crl rsync://rpki.apnic.net/member_repository/A91F4288/A93AA880A27211E6B8BC996AC4F9AE02/MU9VrlJExM2xD3hN_xXQItOJaEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MU9VrlJExM2xD3hN_xXQItOJaEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7414 (0x1cf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4288/serialNumber=314F55AE5244C4CDB10F784DFF15D022D3896848 Validity Not Before: May 18 16:32:25 2024 GMT Not After : May 25 16:32:25 2024 GMT Subject: CN=6648d819-829b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:5f:67:86:2a:8b:f3:a3:0f:53:a2:8b:82:e7: 8c:8f:d5:7f:02:8a:6c:cb:f8:8f:0d:9a:67:e2:8b: 45:6f:a1:86:43:89:5a:e7:06:17:2c:86:bc:10:f2: 71:2d:4d:27:42:3d:30:a3:5f:07:14:af:bd:11:ec: 21:9e:6b:53:1a:86:43:17:1b:f7:be:f6:6b:73:dd: 3c:71:3b:4c:60:ac:b6:c9:c8:e2:c1:16:ba:1c:b8: e9:b4:f7:6e:23:c4:ee:83:ef:7c:a8:0c:02:e7:55: 39:6d:97:d0:76:73:ce:33:a7:55:a3:4c:04:6a:06: 6e:3e:e0:da:45:c1:3f:25:71:31:5b:f4:e1:0e:79: cc:3b:8a:71:bf:95:3b:ca:f7:49:79:eb:7c:dd:c7: 12:76:cb:ed:85:25:31:e3:31:98:31:2c:4a:c2:dc: f1:0d:ef:c8:d3:43:0f:74:ea:6b:c7:14:a8:c7:79: 13:4d:70:1d:12:ae:ab:35:bb:ba:26:4a:8b:98:8f: 34:d8:37:0b:2a:2c:4d:70:c9:7a:78:ed:e4:91:89: 9c:28:69:3f:60:33:4d:3f:82:e6:b9:9e:05:2c:aa: f6:f9:f0:ec:8e:db:2e:1a:fb:fa:d9:44:86:56:ba: e8:62:97:96:d2:fe:9a:75:7e:7c:8b:99:93:70:39: ed:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:FA:22:D5:10:2F:82:43:E9:C6:E4:B4:72:6E:21:B3:AF:7E:B3:89 X509v3 Authority Key Identifier: keyid:31:4F:55:AE:52:44:C4:CD:B1:0F:78:4D:FF:15:D0:22:D3:89:68:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4288/A93AA880A27211E6B8BC996AC4F9AE02/MU9VrlJExM2xD3hN_xXQItOJaEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MU9VrlJExM2xD3hN_xXQItOJaEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4288/A93AA880A27211E6B8BC996AC4F9AE02/MU9VrlJExM2xD3hN_xXQItOJaEg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:05:0f:bb:51:ed:e7:99:e1:90:05:3b:48:18:ff:78:39:b0: c4:bc:cd:64:ca:dc:a3:8c:65:cc:6b:c4:5f:dc:0b:b5:92:ad: 93:d6:5a:25:6a:5d:7f:a6:79:f0:43:de:ec:77:2e:fa:1d:78: 14:52:91:c3:2d:08:94:87:bf:b5:0e:2c:f0:ae:d9:58:b4:48: 9a:22:51:08:49:d6:7c:3f:e3:9d:0e:8f:9c:24:db:45:c9:92: cf:92:4f:f0:a5:5a:e5:40:55:73:ea:01:da:15:fd:3d:17:7b: ea:c3:f3:aa:9f:55:20:ad:0f:58:f0:23:39:2f:c7:f3:04:81: 42:95:23:ba:82:f8:8a:39:0f:0b:b2:d0:c6:71:1b:cc:17:a7: c2:db:99:12:f5:2c:b1:57:83:32:b7:19:da:42:5c:54:46:c6: c6:66:b2:5e:82:e9:64:48:39:8f:f3:61:8e:b2:8a:82:0e:52: df:0b:78:2b:76:1e:1c:6d:c4:00:9a:17:5f:cd:0c:36:40:6a: 57:b6:5b:0e:db:ad:5d:88:b4:e6:08:77:7f:14:19:46:6f:c7: 54:3b:a1:c2:7f:54:fe:fd:b6:6d:73:ae:b6:55:06:8d:c0:7a: 97:9d:6e:19:a6:ea:6b:38:f3:ec:a2:fd:99:66:d1:76:c2:f2: b5:eb:c4:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQyODgxMTAvBgNVBAUTKDMxNEY1NUFFNTI0NEM0Q0RCMTBGNzg0REZGMTVEMDIy RDM4OTY4NDgwHhcNMjQwNTE4MTYzMjI1WhcNMjQwNTI1MTYzMjI1WjAYMRYwFAYD VQQDEw02NjQ4ZDgxOS04MjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAml9nhiqL86MPU6KLgueMj9V/Aopsy/iPDZpn4otFb6GGQ4la5wYXLIa8EPJx LU0nQj0wo18HFK+9EewhnmtTGoZDFxv3vvZrc908cTtMYKy2ycjiwRa6HLjptPdu I8Tug+98qAwC51U5bZfQdnPOM6dVo0wEagZuPuDaRcE/JXExW/ThDnnMO4pxv5U7 yvdJeet83ccSdsvthSUx4zGYMSxKwtzxDe/I00MPdOprxxSox3kTTXAdEq6rNbu6 JkqLmI802DcLKixNcMl6eO3kkYmcKGk/YDNNP4LmuZ4FLKr2+fDsjtsuGvv62USG VrroYpeW0v6adX58i5mTcDntFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKb6ItUQ L4JD6cbktHJuIbOvfrOJMB8GA1UdIwQYMBaAFDFPVa5SRMTNsQ94Tf8V0CLTiWhI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDI4OC9BOTNBQTg4MEEy NzIxMUU2QjhCQzk5NkFDNEY5QUUwMi9NVTlWcmxKRXhNMnhEM2hOX3hYUUl0T0ph RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01VOVZybEpFeE0yeEQzaE5feFhRSXRPSmFFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDI4OC9BOTNBQTg4MEEyNzIxMUU2QjhCQzk5NkFDNEY5QUUwMi9NVTlWcmxKRXhN MnhEM2hOX3hYUUl0T0phRWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSBQ+7Ue3nmeGQBTtIGP94ObDEvM1kytyjjGXMa8Rf3Au1kq2T1lol al1/pnnwQ97sdy76HXgUUpHDLQiUh7+1DizwrtlYtEiaIlEISdZ8P+OdDo+cJNtF yZLPkk/wpVrlQFVz6gHaFf09F3vqw/Oqn1UgrQ9Y8CM5L8fzBIFClSO6gviKOQ8L stDGcRvMF6fC25kS9SyxV4MytxnaQlxURsbGZrJegulkSDmP82GOsoqCDlLfC3gr dh4cbcQAmhdfzQw2QGpXtlsO261diLTmCHd/FBlGb8dUO6HCf1T+/bZtc662VQaN wHqXnW4ZpuprOPPsov2ZZtF2wvK168Qp -----END CERTIFICATE-----Generated at Sat May 18 16:57:55 2024 by rpki-client on console-fra.rpki-client.org