$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9bEXBUr1CcLDM2nalh9Ebdyrg0I.mft File: 9bEXBUr1CcLDM2nalh9Ebdyrg0I.mft (raw, json) Hash identifier: El9ZR+Dm1zz7YujjaiHTjWgqPWiJ8XjEbKHRnstefC8= Subject key identifier: 6C:0B:26:A1:0D:54:A1:1C:92:80:2E:74:92:1E:F8:10:E3:11:67:01 Authority key identifier: F5:B1:17:05:4A:F5:09:C2:C3:33:69:DA:96:1F:44:6D:DC:AB:83:42 Certificate issuer: /CN=A91FA5A2/serialNumber=F5B117054AF509C2C33369DA961F446DDCAB8342 Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9bEXBUr1CcLDM2nalh9Ebdyrg0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9bEXBUr1CcLDM2nalh9Ebdyrg0I.mft Manifest number: 5E Signing time: Sun 19 May 2024 07:55:06 +0000 Manifest this update: Sun 19 May 2024 07:55:06 +0000 Manifest next update: Sun 26 May 2024 07:55:06 +0000 Files and hashes: 1: 9bEXBUr1CcLDM2nalh9Ebdyrg0I.crl (hash: anaUP5oBR3GvLIl91BYRFxE9GraR6NIaRg4ykearTUQ=) 2: 9FE80B2898F711EE87DF6E1FC4F9AE02.roa (hash: v4cQH88v9SBKVJ4k+DZ6E06a5eSVekHDtLQSR49YDI8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9bEXBUr1CcLDM2nalh9Ebdyrg0I.crl rsync://rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9bEXBUr1CcLDM2nalh9Ebdyrg0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9bEXBUr1CcLDM2nalh9Ebdyrg0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA5A2/serialNumber=F5B117054AF509C2C33369DA961F446DDCAB8342 Validity Not Before: May 19 07:55:06 2024 GMT Not After : May 26 07:55:06 2024 GMT Subject: CN=6649b05a-ab4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d9:c7:97:32:7f:ef:48:9b:d6:4c:74:b9:19: 57:5d:ba:e6:47:e4:3c:28:e9:dd:65:a6:db:6f:21: 53:eb:e1:4e:70:ee:71:75:d2:e5:7c:53:18:2b:7d: 6f:c6:0a:1e:28:36:84:32:08:13:04:17:c1:6e:91: 2b:c0:01:c1:5b:a6:a6:f6:f9:5b:3b:9d:d6:e1:58: 8d:04:66:5d:03:44:89:ee:03:c8:9f:2c:cf:e7:e5: a1:dc:14:20:29:4f:49:71:a1:3d:f6:29:0c:a0:da: c5:d4:95:c1:d0:f7:3e:c6:74:19:3f:4b:39:93:ad: bc:f0:6d:59:64:b1:77:79:fa:cf:d3:be:c8:36:62: 11:02:53:59:c6:16:42:f7:d6:ff:c2:91:bf:7b:b7: 51:95:59:3a:c9:a3:67:18:29:ca:42:b6:1b:6d:15: 54:71:24:dc:95:1c:7c:36:4a:18:f8:6e:28:0f:05: d8:3f:c0:0f:11:31:7b:ca:30:64:49:54:5e:7a:bb: ca:5c:a4:78:0d:2f:39:83:30:58:dc:de:f0:44:bf: c9:37:7e:52:de:03:51:58:ea:d0:f9:da:e9:cc:4a: 8e:1a:b2:be:5c:21:be:04:89:87:c8:ed:64:e6:e8: 7b:b1:53:07:ae:76:f9:ce:68:22:9d:53:95:2c:e3: 3d:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:0B:26:A1:0D:54:A1:1C:92:80:2E:74:92:1E:F8:10:E3:11:67:01 X509v3 Authority Key Identifier: keyid:F5:B1:17:05:4A:F5:09:C2:C3:33:69:DA:96:1F:44:6D:DC:AB:83:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9bEXBUr1CcLDM2nalh9Ebdyrg0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9bEXBUr1CcLDM2nalh9Ebdyrg0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9bEXBUr1CcLDM2nalh9Ebdyrg0I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:0e:61:4d:fc:b6:aa:9f:e8:7b:4f:97:0b:b7:66:b4:f3:86: 34:0a:bd:ef:2e:cf:e5:18:6a:6b:7d:a2:1e:f2:f3:b9:28:95: c9:ec:a7:41:f5:a5:ef:05:26:a8:5d:ee:1c:a3:59:ed:08:27: a2:be:26:c9:85:61:63:26:2e:11:75:60:c6:ee:ab:88:7b:f9: 69:55:bf:89:e0:e8:38:ba:c5:2f:24:de:12:88:76:26:9b:02: 97:c8:f2:ac:51:6c:d7:b3:7a:ad:9b:04:da:29:ae:0a:76:36: 10:cc:40:37:9f:6d:c8:e3:f1:27:32:86:22:ff:29:2d:7b:7d: 5b:85:08:a6:86:76:c1:60:a6:53:88:8c:2f:ab:52:0b:d9:47: d4:2a:72:ee:7f:58:41:77:99:16:4d:65:15:06:86:f9:df:56: 89:45:73:37:d9:84:61:d9:f8:41:73:85:a1:04:12:68:c8:af: a8:e4:00:9d:6e:3d:67:38:41:86:6e:1d:16:eb:e9:cf:9c:c0: 7e:5c:0a:66:db:2f:ac:21:2a:8b:13:a5:c4:e9:51:2f:2f:c9: 8a:c4:62:f1:96:82:0a:05:95:ad:c8:41:ce:9d:5e:07:06:8a: e8:aa:52:6a:4f:a7:28:5f:dc:d3:2a:60:ff:a4:d6:d6:2b:c4: 40:7c:32:47 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QTVBMjExMC8GA1UEBRMoRjVCMTE3MDU0QUY1MDlDMkMzMzM2OURBOTYxRjQ0NkRE Q0FCODM0MjAeFw0yNDA1MTkwNzU1MDZaFw0yNDA1MjYwNzU1MDZaMBgxFjAUBgNV BAMTDTY2NDliMDVhLWFiNGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCr2ceXMn/vSJvWTHS5GVdduuZH5Dwo6d1lpttvIVPr4U5w7nF10uV8UxgrfW/G Ch4oNoQyCBMEF8FukSvAAcFbpqb2+Vs7ndbhWI0EZl0DRInuA8ifLM/n5aHcFCAp T0lxoT32KQyg2sXUlcHQ9z7GdBk/SzmTrbzwbVlksXd5+s/Tvsg2YhECU1nGFkL3 1v/Ckb97t1GVWTrJo2cYKcpCthttFVRxJNyVHHw2Shj4bigPBdg/wA8RMXvKMGRJ VF56u8pcpHgNLzmDMFjc3vBEv8k3flLeA1FY6tD52unMSo4asr5cIb4EiYfI7WTm 6HuxUweudvnOaCKdU5Us4z0JAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUbAsmoQ1U oRySgC50kh74EOMRZwEwHwYDVR0jBBgwFoAU9bEXBUr1CcLDM2nalh9Ebdyrg0Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZBNUEyLzQ2NzBFQUFDOThG NjExRUVCQkYxRjQxN0M0RjlBRTAyLzliRVhCVXIxQ2NMRE0ybmFsaDlFYmR5cmcw SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOWJFWEJVcjFDY0xETTJuYWxoOUViZHlyZzBJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZB NUEyLzQ2NzBFQUFDOThGNjExRUVCQkYxRjQxN0M0RjlBRTAyLzliRVhCVXIxQ2NM RE0ybmFsaDlFYmR5cmcwSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJsOYU38tqqf6HtPlwu3ZrTzhjQKve8uz+UYamt9oh7y87kolcnsp0H1 pe8FJqhd7hyjWe0IJ6K+JsmFYWMmLhF1YMbuq4h7+WlVv4ng6Di6xS8k3hKIdiab ApfI8qxRbNezeq2bBNoprgp2NhDMQDefbcjj8ScyhiL/KS17fVuFCKaGdsFgplOI jC+rUgvZR9Qqcu5/WEF3mRZNZRUGhvnfVolFczfZhGHZ+EFzhaEEEmjIr6jkAJ1u PWc4QYZuHRbr6c+cwH5cCmbbL6whKosTpcTpUS8vyYrEYvGWggoFla3IQc6dXgcG iuiqUmpPpyhf3NMqYP+k1tYrxEB8Mkc= -----END CERTIFICATE-----Generated at Sun May 19 09:32:20 2024 by rpki-client on console-ams.rpki-client.org