$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft File: 2nWrD7Oqh1r631o4-FK9zB3YJvc.mft (raw, json) Hash identifier: 5G1qNsLKukOgP9r94Tk4kflMmMLdh3lp6p7Q4gLeKcs= Subject key identifier: B1:27:74:FF:35:47:7E:34:68:05:17:9A:62:6D:82:6D:98:44:91:49 Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 Certificate issuer: /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Certificate serial: CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft Manifest number: C8 Signing time: Sun 19 May 2024 06:17:55 +0000 Manifest this update: Sun 19 May 2024 06:17:55 +0000 Manifest next update: Sun 26 May 2024 06:17:55 +0000 Files and hashes: 1: 2nWrD7Oqh1r631o4-FK9zB3YJvc.crl (hash: SxDCm/L5ldrWoJjGhgWyFkHaKra+Uj1WJ6uLk8JYq8A=) 2: 261D3B8AEE4611ED9BEFED31C4F9AE02.roa (hash: YCQgXX3rn1VYOPR234XDjqwFnKone0kRhynQvA6PZ44=) 3: 004C5F7EEE7011EDAA7EBB38C4F9AE02.roa (hash: wuA3iShW2pNUAEzwE136YDNG0zc9gEfmAoYRC7hXq7E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Validity Not Before: May 19 06:17:55 2024 GMT Not After : May 26 06:17:55 2024 GMT Subject: CN=66499993-bd20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d4:76:83:f2:92:c6:c1:60:08:32:bf:76:0b: 3d:47:74:29:8d:3c:d1:41:cf:54:11:18:e8:a9:72: dc:ed:68:be:26:bf:96:4f:68:4a:2f:d3:80:f1:ac: 20:d9:19:2d:81:16:20:49:75:aa:63:b0:08:d3:1c: 0a:2e:b7:85:7f:ec:56:16:36:68:e5:12:8b:ed:e4: f8:93:f6:ef:b2:84:da:1a:aa:c7:fe:ae:d7:70:22: 43:ae:de:7e:6f:fd:e2:17:72:57:86:f2:40:ea:04: ba:e3:5d:68:90:82:b5:0e:96:51:d9:7f:37:2c:24: 0a:a3:86:14:14:43:a2:73:40:89:26:92:4c:a6:c2: 9e:18:51:3f:d7:5e:25:1f:91:5f:95:81:b5:3b:ee: 7c:0e:20:41:60:d9:1d:1e:76:0d:a3:83:3c:60:30: d7:5c:d6:a4:6a:a1:34:d0:a2:c0:75:4e:bf:83:a0: 0b:f0:e2:ab:64:3a:f7:38:af:2d:7c:c3:f6:e5:29: 71:b8:7f:dc:b4:94:15:20:82:20:d3:6f:67:fc:3c: 3f:b4:3d:88:ea:08:a5:83:d1:96:42:b4:66:0b:16: c8:62:82:e7:8f:fd:0e:2d:02:06:a2:f7:dd:e4:70: a9:a4:c8:ab:34:00:78:38:04:3f:4e:7b:58:15:9c: d9:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:27:74:FF:35:47:7E:34:68:05:17:9A:62:6D:82:6D:98:44:91:49 X509v3 Authority Key Identifier: keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:4a:e0:2f:8b:53:37:c2:ed:6a:e2:66:18:07:e6:a6:34:3e: fe:f6:e2:d0:0e:77:87:5f:cd:2d:d3:cc:9a:bd:36:d7:00:fc: 6f:36:42:2b:fb:6d:4f:da:aa:b6:d7:c3:d0:4a:20:ea:6c:8e: cb:c8:c6:29:c6:f8:ce:ce:a6:71:21:3d:f2:d8:b5:19:04:f8: f0:0a:cd:2e:c1:4e:5a:36:fe:67:ba:ea:6d:01:cb:83:a4:91: 04:47:1f:07:ba:b1:8b:14:58:47:4b:89:a9:03:1b:9a:02:24: 68:48:e7:37:27:1c:94:c5:be:7e:a4:b2:ec:c2:b1:c8:ea:c6: d0:a1:a7:c2:e7:fb:21:57:1c:98:ca:7e:66:c5:ea:00:c6:e0: 92:e2:c0:bb:72:2d:cd:04:d1:d3:79:d7:d1:e8:f1:d3:5b:e0: 64:d4:c8:80:90:b6:d7:db:ba:b5:de:05:75:60:cc:ad:9b:f6: b8:93:b4:ba:35:df:33:15:e6:68:7e:83:fb:f1:5a:3c:a0:bc: 8a:62:20:f2:77:28:19:58:50:8d:6f:ec:1c:53:d2:b3:8c:53: 78:72:38:06:f5:2d:54:30:c3:ea:c5:96:b9:71:5b:3b:b7:58: 9f:4b:5f:f8:f5:fc:68:aa:38:b6:4b:db:c6:5e:1a:cb:ef:25: 4c:c4:df:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGQkIxMTAvBgNVBAUTKERBNzVBQjBGQjNBQTg3NUFGQURGNUEzOEY4NTJCREND MUREODI2RjcwHhcNMjQwNTE5MDYxNzU1WhcNMjQwNTI2MDYxNzU1WjAYMRYwFAYD VQQDEw02NjQ5OTk5My1iZDIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzNR2g/KSxsFgCDK/dgs9R3QpjTzRQc9UERjoqXLc7Wi+Jr+WT2hKL9OA8awg 2RktgRYgSXWqY7AI0xwKLreFf+xWFjZo5RKL7eT4k/bvsoTaGqrH/q7XcCJDrt5+ b/3iF3JXhvJA6gS6411okIK1DpZR2X83LCQKo4YUFEOic0CJJpJMpsKeGFE/114l H5FflYG1O+58DiBBYNkdHnYNo4M8YDDXXNakaqE00KLAdU6/g6AL8OKrZDr3OK8t fMP25SlxuH/ctJQVIIIg029n/Dw/tD2I6gilg9GWQrRmCxbIYoLnj/0OLQIGovfd 5HCppMirNAB4OAQ/TntYFZzZowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLEndP81 R340aAUXmmJtgm2YRJFJMB8GA1UdIwQYMBaAFNp1qw+zqoda+t9aOPhSvcwd2Cb3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUZCQi9EODk2QjVDOEVB NkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgxcjYzMW80LUZLOXpCM1lK dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuV3JEN09xaDFyNjMxbzQtRks5ekIzWUp2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUZCQi9EODk2QjVDOEVBNkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgx cjYzMW80LUZLOXpCM1lKdmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDFSuAvi1M3wu1q4mYYB+amND7+9uLQDneHX80t08yavTbXAPxvNkIr +21P2qq218PQSiDqbI7LyMYpxvjOzqZxIT3y2LUZBPjwCs0uwU5aNv5nuuptAcuD pJEERx8HurGLFFhHS4mpAxuaAiRoSOc3JxyUxb5+pLLswrHI6sbQoafC5/shVxyY yn5mxeoAxuCS4sC7ci3NBNHTedfR6PHTW+Bk1MiAkLbX27q13gV1YMytm/a4k7S6 Nd8zFeZofoP78Vo8oLyKYiDydygZWFCNb+wcU9KzjFN4cjgG9S1UMMPqxZa5cVs7 t1ifS1/49fxoqji2S9vGXhrL7yVMxN/A -----END CERTIFICATE-----Generated at Sun May 19 07:40:46 2024 by rpki-client on console-fra.rpki-client.org