$ rpki-client -vvf rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft File: D5BpKh7v5_ChrGi14awJ9wJpccw.mft (raw, json) Hash identifier: BWfXWqELy8V1P4VOvHJzXq5CqX/aGnV091Ob+pu1cs8= Subject key identifier: BC:75:06:E3:27:B1:BB:4B:F8:A5:27:5C:BE:2D:4A:39:F5:07:EF:15 Authority key identifier: 0F:90:69:2A:1E:EF:E7:F0:A1:AC:68:B5:E1:AC:09:F7:02:69:71:CC Certificate issuer: /CN=A91185B8/serialNumber=0F90692A1EEFE7F0A1AC68B5E1AC09F7026971CC Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft Manifest number: DD Signing time: Sun 05 May 2024 06:06:18 +0000 Manifest this update: Sun 05 May 2024 06:06:17 +0000 Manifest next update: Sun 12 May 2024 06:06:17 +0000 Files and hashes: 1: D5BpKh7v5_ChrGi14awJ9wJpccw.crl (hash: /IZb099uLVhZLVti6GkOtkWBhYz3SNWJm54zi+Yp3y0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.crl rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91185B8/serialNumber=0F90692A1EEFE7F0A1AC68B5E1AC09F7026971CC Validity Not Before: May 5 06:06:17 2024 GMT Not After : May 12 06:06:17 2024 GMT Subject: CN=663721da-ea19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:a6:f4:ee:47:53:fb:4a:6d:c4:73:90:05:a0: 3d:e5:d3:5b:f7:92:ba:ed:15:56:7c:d8:da:a4:56: 79:42:ca:4d:79:8d:ad:eb:4c:47:3f:8d:ef:1f:d9: 84:85:f3:9d:60:b3:ef:01:d3:6a:64:5f:4f:17:b4: 65:87:d4:20:51:cf:3f:ad:b3:36:f6:4e:c6:30:24: e9:c0:79:3a:c6:18:90:d2:15:a1:b1:74:9e:c0:6c: 01:85:5d:92:fe:96:77:7d:49:27:a0:48:ab:db:81: 0b:80:b2:b7:8f:c4:0b:7b:7a:47:fc:9d:c1:14:2c: ab:77:32:a6:79:c6:36:f0:41:3d:29:38:8c:c9:2e: 5d:fe:95:47:24:b2:be:0b:a0:ad:9a:0e:bb:fb:b2: 75:68:16:91:a1:36:2c:bc:3b:5d:cc:c5:87:fe:9e: 18:4a:97:6a:ad:a4:c9:a7:74:8f:72:e7:a4:19:2d: 2c:f6:ce:0f:3f:d9:5e:dd:4f:2d:f8:8b:eb:b1:82: d6:34:6e:92:b8:46:09:35:f2:8f:7a:e5:19:f8:01: 29:cc:40:8b:56:a6:31:28:74:c0:59:07:43:69:af: db:d6:b0:b3:95:d7:60:ba:9b:66:3a:af:f5:29:6c: b4:5b:24:c0:39:48:e4:84:69:1f:9f:1f:4e:91:31: 98:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:75:06:E3:27:B1:BB:4B:F8:A5:27:5C:BE:2D:4A:39:F5:07:EF:15 X509v3 Authority Key Identifier: keyid:0F:90:69:2A:1E:EF:E7:F0:A1:AC:68:B5:E1:AC:09:F7:02:69:71:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:59:35:4d:cf:95:26:37:06:13:97:e7:3a:a9:49:cb:43:42: 2a:7c:f7:53:21:14:52:07:78:b9:b6:3e:b9:af:e9:87:4b:31: ce:6b:eb:82:52:39:8d:8b:1d:e9:6f:9f:63:7c:ec:c8:cb:40: b8:31:4a:92:2f:89:b3:4a:0e:f1:69:14:2d:70:68:c6:c3:e5: 0a:5a:29:5d:2b:92:c2:ce:c1:cb:94:d3:89:2f:91:ed:fd:85: 3c:f8:94:a4:00:1e:20:84:a6:80:f7:6b:5f:50:eb:9a:44:13: 68:88:41:93:88:28:e9:78:1d:08:08:7c:4d:01:e0:56:8d:4b: 31:d8:79:d1:77:ef:82:58:0c:44:4e:a0:38:c8:dc:1f:f6:12: aa:0d:6f:dd:0f:da:eb:0d:dd:dc:d7:b1:cd:e9:ee:06:77:8c: 04:b4:27:ec:c6:38:27:a5:9f:41:9a:26:c7:ac:fc:79:b3:f4: a2:63:f7:1e:24:8f:e1:53:19:a6:2a:8f:86:87:7c:30:91:af: b7:a0:c5:d2:46:d5:74:64:30:db:94:c0:e7:02:44:61:40:03: 65:16:36:0b:f7:d6:fa:01:a9:e5:1f:93:e1:5b:c0:bc:66:f3: 59:80:e5:10:27:bf:6a:cd:8d:2c:1d:e5:b4:37:97:72:a4:f3: e3:3d:67:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg1QjgxMTAvBgNVBAUTKDBGOTA2OTJBMUVFRkU3RjBBMUFDNjhCNUUxQUMwOUY3 MDI2OTcxQ0MwHhcNMjQwNTA1MDYwNjE3WhcNMjQwNTEyMDYwNjE3WjAYMRYwFAYD VQQDEw02NjM3MjFkYS1lYTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4qb07kdT+0ptxHOQBaA95dNb95K67RVWfNjapFZ5QspNeY2t60xHP43vH9mE hfOdYLPvAdNqZF9PF7Rlh9QgUc8/rbM29k7GMCTpwHk6xhiQ0hWhsXSewGwBhV2S /pZ3fUknoEir24ELgLK3j8QLe3pH/J3BFCyrdzKmecY28EE9KTiMyS5d/pVHJLK+ C6Ctmg67+7J1aBaRoTYsvDtdzMWH/p4YSpdqraTJp3SPcuekGS0s9s4PP9le3U8t +IvrsYLWNG6SuEYJNfKPeuUZ+AEpzECLVqYxKHTAWQdDaa/b1rCzlddguptmOq/1 KWy0WyTAOUjkhGkfnx9OkTGY2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLx1BuMn sbtL+KUnXL4tSjn1B+8VMB8GA1UdIwQYMBaAFA+QaSoe7+fwoaxoteGsCfcCaXHM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODVCOC9DRkEzNDA5QUJF MzExMUVEQjRGRjdEMzRDNEY5QUUwMi9ENUJwS2g3djVfQ2hyR2kxNGF3Sjl3SnBj Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0Q1QnBLaDd2NV9DaHJHaTE0YXdKOXdKcGNjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODVCOC9DRkEzNDA5QUJFMzExMUVEQjRGRjdEMzRDNEY5QUUwMi9ENUJwS2g3djVf Q2hyR2kxNGF3Sjl3SnBjY3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOWTVNz5UmNwYTl+c6qUnLQ0IqfPdTIRRSB3i5tj65r+mHSzHOa+uC UjmNix3pb59jfOzIy0C4MUqSL4mzSg7xaRQtcGjGw+UKWildK5LCzsHLlNOJL5Ht /YU8+JSkAB4ghKaA92tfUOuaRBNoiEGTiCjpeB0ICHxNAeBWjUsx2HnRd++CWAxE TqA4yNwf9hKqDW/dD9rrDd3c17HN6e4Gd4wEtCfsxjgnpZ9BmibHrPx5s/SiY/ce JI/hUxmmKo+Gh3wwka+3oMXSRtV0ZDDblMDnAkRhQANlFjYL99b6AanlH5PhW8C8 ZvNZgOUQJ79qzY0sHeW0N5dypPPjPWfO -----END CERTIFICATE-----Generated at Sun May 5 08:38:57 2024 by rpki-client on console-fra.rpki-client.org