$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft File: VmpvNEQKySle2KAC1QSfV0zxbIg.mft (raw, json) Hash identifier: WYgRbTVMkbgzKQcBhhG4mUiEN5mypeMFVNTbReFy6nY= Subject key identifier: 33:8B:B0:51:E3:2C:D9:BC:9B:16:70:C0:5D:1B:DF:73:89:3F:20:81 Authority key identifier: 56:6A:6F:34:44:0A:C9:29:5E:D8:A0:02:D5:04:9F:57:4C:F1:6C:88 Certificate issuer: /CN=A91FA64C/serialNumber=566A6F34440AC9295ED8A002D5049F574CF16C88 Certificate serial: C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft Manifest number: C2 Signing time: Sun 19 May 2024 06:24:31 +0000 Manifest this update: Sun 19 May 2024 06:24:30 +0000 Manifest next update: Sun 26 May 2024 06:24:30 +0000 Files and hashes: 1: VmpvNEQKySle2KAC1QSfV0zxbIg.crl (hash: eg/J2miHzY+RE5/gsFYmbKeY8RoM4QIpeOWlwb6Ibbo=) 2: FFCE072E2B8111EE9BDEC079C4F9AE02.roa (hash: NQOVTH1BC/AMK+gLfRO4HuRWXWoZYIEDQJeqtZklkIk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.crl rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA64C/serialNumber=566A6F34440AC9295ED8A002D5049F574CF16C88 Validity Not Before: May 19 06:24:30 2024 GMT Not After : May 26 06:24:30 2024 GMT Subject: CN=66499b1e-3a50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ca:2a:80:fa:17:16:98:bb:c4:ac:1f:ae:10: e6:e5:ef:21:00:95:55:05:da:87:8b:e6:15:95:b2: 53:c0:84:0d:b9:46:ee:6e:8b:e0:47:7a:6e:59:0e: da:79:52:d6:c7:d0:9e:14:e6:d9:f1:64:e2:4d:d0: 83:7b:10:ee:48:7e:30:4f:69:cb:9f:69:01:1b:59: d8:b9:c1:d9:7e:4e:9a:b4:9f:b1:32:25:21:a3:7c: 84:a9:cc:d1:56:ca:22:65:45:a6:8a:6b:05:ce:3c: a3:10:7d:f5:f7:8c:15:04:5c:1e:89:f5:c1:36:78: 51:2d:6b:e3:d4:71:50:e7:9f:b7:aa:30:fd:af:d0: c0:39:a9:d3:e1:ec:cb:69:bc:c6:fe:82:d2:1e:d6: 24:7b:9e:20:8a:01:99:93:07:40:3f:52:b4:69:11: 18:76:4d:cd:94:0e:f3:90:8f:1f:38:46:95:b1:25: 6e:5c:1b:c8:e3:f4:22:4e:a7:50:9c:9a:b2:0c:c9: b7:f2:53:04:10:1f:49:ac:52:16:5d:5d:b0:10:66: a2:c2:e9:c1:f0:f8:13:ae:f2:76:e0:13:5d:74:77: d9:f3:00:fb:b9:0a:cd:1f:41:28:43:b8:f4:18:0a: 14:c7:c2:e0:de:b5:9b:12:cf:8b:e7:0d:1c:cb:b1: 5f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:8B:B0:51:E3:2C:D9:BC:9B:16:70:C0:5D:1B:DF:73:89:3F:20:81 X509v3 Authority Key Identifier: keyid:56:6A:6F:34:44:0A:C9:29:5E:D8:A0:02:D5:04:9F:57:4C:F1:6C:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:a0:9d:b5:ce:4a:d4:3f:6b:87:77:3a:b7:4b:a6:84:7b:38: 72:f7:11:f3:fc:ab:92:19:0f:f9:cf:84:00:c2:04:fb:21:fc: 6f:b8:bd:3f:33:55:d7:ae:37:94:bb:9a:65:17:d5:80:f4:d6: 28:93:85:bb:8a:10:e2:d4:7d:ec:2d:f0:56:9e:57:73:70:59: cc:18:4e:a7:ca:d3:7c:fc:1f:cb:3b:f0:db:79:03:e6:e0:74: f9:f8:e8:ae:74:53:ed:eb:53:d3:7b:33:15:40:19:b0:27:46: e9:17:d8:86:72:2a:a4:2f:39:6c:a7:b2:a3:72:6c:72:40:55: da:3b:6e:68:fc:3b:58:d1:ba:f0:f7:3d:be:ca:80:8c:aa:88: d1:40:ae:b1:83:0c:0d:13:06:ad:59:12:97:61:04:a0:03:3b: 37:8c:a7:b1:11:f0:9f:3d:c3:82:96:bc:ee:3a:b9:ba:4a:6b: a3:6e:02:6a:c9:0d:49:d2:91:0c:4f:33:16:2e:44:5a:fd:cd: 55:0f:4f:86:99:71:84:ff:13:3b:48:63:d2:21:c3:63:69:70: e5:74:3c:02:03:d2:2e:a3:e9:98:c0:1c:0d:33:ff:62:6b:f6: 41:61:82:8f:21:80:0c:3b:ab:47:ac:79:87:d6:5e:16:39:55: a7:68:cf:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2NEMxMTAvBgNVBAUTKDU2NkE2RjM0NDQwQUM5Mjk1RUQ4QTAwMkQ1MDQ5RjU3 NENGMTZDODgwHhcNMjQwNTE5MDYyNDMwWhcNMjQwNTI2MDYyNDMwWjAYMRYwFAYD VQQDEw02NjQ5OWIxZS0zYTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq8oqgPoXFpi7xKwfrhDm5e8hAJVVBdqHi+YVlbJTwIQNuUbubovgR3puWQ7a eVLWx9CeFObZ8WTiTdCDexDuSH4wT2nLn2kBG1nYucHZfk6atJ+xMiUho3yEqczR VsoiZUWmimsFzjyjEH3194wVBFweifXBNnhRLWvj1HFQ55+3qjD9r9DAOanT4ezL abzG/oLSHtYke54gigGZkwdAP1K0aREYdk3NlA7zkI8fOEaVsSVuXBvI4/QiTqdQ nJqyDMm38lMEEB9JrFIWXV2wEGaiwunB8PgTrvJ24BNddHfZ8wD7uQrNH0EoQ7j0 GAoUx8Lg3rWbEs+L5w0cy7FfCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDOLsFHj LNm8mxZwwF0b33OJPyCBMB8GA1UdIwQYMBaAFFZqbzRECskpXtigAtUEn1dM8WyI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY0Qy9FMUE1NDYyNkY3 OTgxMUVEOTY3NzcxMjRDNEY5QUUwMi9WbXB2TkVRS3lTbGUyS0FDMVFTZlYwenhi SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZtcHZORVFLeVNsZTJLQUMxUVNmVjB6eGJJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTY0Qy9FMUE1NDYyNkY3OTgxMUVEOTY3NzcxMjRDNEY5QUUwMi9WbXB2TkVRS3lT bGUyS0FDMVFTZlYwenhiSWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmoJ21zkrUP2uHdzq3S6aEezhy9xHz/KuSGQ/5z4QAwgT7IfxvuL0/ M1XXrjeUu5plF9WA9NYok4W7ihDi1H3sLfBWnldzcFnMGE6nytN8/B/LO/DbeQPm 4HT5+OiudFPt61PTezMVQBmwJ0bpF9iGciqkLzlsp7KjcmxyQFXaO25o/DtY0brw 9z2+yoCMqojRQK6xgwwNEwatWRKXYQSgAzs3jKexEfCfPcOClrzuOrm6SmujbgJq yQ1J0pEMTzMWLkRa/c1VD0+GmXGE/xM7SGPSIcNjaXDldDwCA9Iuo+mYwBwNM/9i a/ZBYYKPIYAMO6tHrHmH1l4WOVWnaM8z -----END CERTIFICATE-----Generated at Sun May 19 07:40:46 2024 by rpki-client on console-fra.rpki-client.org