$ rpki-client -vvf rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/6Y7stzDxqUpmqbUS_HdXeMYAgw0.mft File: 6Y7stzDxqUpmqbUS_HdXeMYAgw0.mft (raw, json) Hash identifier: BCmsmS+E6Jvxm+VoVMLBZAU8puvP6G/1Bcisoe6zqro= Subject key identifier: B0:B8:79:51:34:54:BE:71:B6:6A:09:63:1A:0D:FF:5E:E6:08:9D:E1 Authority key identifier: E9:8E:EC:B7:30:F1:A9:4A:66:A9:B5:12:FC:77:57:78:C6:00:83:0D Certificate issuer: /CN=A911954F/serialNumber=E98EECB730F1A94A66A9B512FC775778C600830D Certificate serial: 5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Y7stzDxqUpmqbUS_HdXeMYAgw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/6Y7stzDxqUpmqbUS_HdXeMYAgw0.mft Manifest number: 5B Signing time: Wed 15 May 2024 07:55:15 +0000 Manifest this update: Wed 15 May 2024 07:55:15 +0000 Manifest next update: Wed 22 May 2024 07:55:15 +0000 Files and hashes: 1: 6Y7stzDxqUpmqbUS_HdXeMYAgw0.crl (hash: 82Az0bFcSiFXLB3N/MiPnqTqKOGuvOCA0rqzcggJMt8=) 2: EEA8CDAE91B511EEA8ECF882C4F9AE02.roa (hash: FCGz1mx6kA+oDpAk/3UmD4PEaVvmfrdHkCIUq18i6a8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/6Y7stzDxqUpmqbUS_HdXeMYAgw0.crl rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/6Y7stzDxqUpmqbUS_HdXeMYAgw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Y7stzDxqUpmqbUS_HdXeMYAgw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:55:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911954F/serialNumber=E98EECB730F1A94A66A9B512FC775778C600830D Validity Not Before: May 15 07:55:15 2024 GMT Not After : May 22 07:55:15 2024 GMT Subject: CN=66446a63-8a90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e1:56:f6:b1:85:ab:02:9d:26:e3:cf:62:fd: d3:b2:01:95:b3:92:12:2b:c7:b4:fe:3a:26:5d:eb: 8f:b7:37:c3:f7:83:ff:12:5f:07:f1:07:82:ff:95: 0a:69:18:35:cc:14:e8:09:31:56:91:dd:90:ca:30: 9e:9f:1b:1f:33:77:84:dd:8a:b4:48:16:fe:81:01: 50:bf:e9:71:09:46:4a:4e:13:b1:50:97:c6:05:ef: 84:bd:ec:bd:dd:e3:4b:01:52:32:a0:68:83:db:21: 96:51:1c:d3:82:e2:eb:1c:92:7a:45:ba:3d:69:37: 8e:d0:e1:97:fc:00:1a:bd:90:21:0e:e8:65:3d:d8: 3d:c7:8e:02:f3:f1:72:49:1a:b3:af:05:e2:75:fa: 62:7c:d3:71:8a:a2:44:8b:c3:f6:a9:9c:03:da:16: bd:a9:c0:a4:9f:b9:26:38:71:2a:33:98:b1:f5:4c: 35:4c:8b:fb:f1:6d:7d:a2:f5:18:dd:0f:71:13:4b: ae:06:6a:4e:46:be:6e:be:ff:cc:39:26:e8:bf:a5: eb:f9:2f:a0:ff:31:fb:2d:a9:a6:09:bc:71:9e:45: 2d:c2:7b:19:3f:b9:01:58:9e:7b:40:ff:c8:c9:6a: f4:b0:68:db:2d:e8:4a:60:34:1b:e4:ce:80:cf:6a: 1c:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:B8:79:51:34:54:BE:71:B6:6A:09:63:1A:0D:FF:5E:E6:08:9D:E1 X509v3 Authority Key Identifier: keyid:E9:8E:EC:B7:30:F1:A9:4A:66:A9:B5:12:FC:77:57:78:C6:00:83:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/6Y7stzDxqUpmqbUS_HdXeMYAgw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Y7stzDxqUpmqbUS_HdXeMYAgw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/6Y7stzDxqUpmqbUS_HdXeMYAgw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:31:ec:71:6b:a5:33:4e:88:b1:c4:c0:53:23:28:36:bc:08: 86:47:50:a7:69:f4:21:4b:5c:17:96:2e:f4:7b:27:1e:73:f3: b9:47:8c:9e:6e:df:a1:bd:6d:32:0b:bd:45:dd:3b:4f:7d:c9: 3f:32:af:25:9a:86:5e:2e:27:ea:37:22:e7:fd:ea:68:ed:9b: c0:6e:53:75:e5:99:d0:56:0e:8c:63:d3:35:f8:60:6f:07:49: 47:57:c4:7b:fa:8f:1f:d4:ad:35:f9:68:ce:30:12:38:c4:50: 51:1f:c2:2f:54:01:ac:e0:6a:0b:24:1f:87:1b:cf:27:5c:86: ca:1c:33:0e:d8:45:52:16:81:ef:73:27:74:aa:50:76:68:87: 3c:e4:b0:a0:a2:2b:d8:6c:9c:27:e5:6a:58:09:3a:f3:19:d5: f7:3e:ca:50:f2:fd:37:28:c5:b7:31:c5:7e:7c:bd:a5:d7:6b: a3:3d:e2:46:1b:ce:ce:8a:e7:2a:f5:d5:9f:1d:60:6d:e1:f1: d9:56:bc:d0:48:63:7e:4e:dd:82:b2:c5:8d:96:d0:db:bb:29: ce:68:f9:13:46:28:64:9c:7e:b9:b8:7f:4b:e7:0f:a1:6e:52: 36:62:30:e7:2b:2e:d8:37:fd:37:95:54:ca:68:67:bc:8e:4c: 45:87:0b:a9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx OTU0RjExMC8GA1UEBRMoRTk4RUVDQjczMEYxQTk0QTY2QTlCNTEyRkM3NzU3NzhD NjAwODMwRDAeFw0yNDA1MTUwNzU1MTVaFw0yNDA1MjIwNzU1MTVaMBgxFjAUBgNV BAMTDTY2NDQ2YTYzLThhOTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCt4Vb2sYWrAp0m489i/dOyAZWzkhIrx7T+OiZd64+3N8P3g/8SXwfxB4L/lQpp GDXMFOgJMVaR3ZDKMJ6fGx8zd4TdirRIFv6BAVC/6XEJRkpOE7FQl8YF74S97L3d 40sBUjKgaIPbIZZRHNOC4uscknpFuj1pN47Q4Zf8ABq9kCEO6GU92D3HjgLz8XJJ GrOvBeJ1+mJ803GKokSLw/apnAPaFr2pwKSfuSY4cSozmLH1TDVMi/vxbX2i9Rjd D3ETS64Gak5Gvm6+/8w5Jui/pev5L6D/MfstqaYJvHGeRS3Cexk/uQFYnntA/8jJ avSwaNst6EpgNBvkzoDPahzfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUsLh5UTRU vnG2agljGg3/XuYIneEwHwYDVR0jBBgwFoAU6Y7stzDxqUpmqbUS/HdXeMYAgw0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE5NTRGLzU5MUEzMjIwOTE0 QTExRUU5NDJDQzg3MUM0RjlBRTAyLzZZN3N0ekR4cVVwbXFiVVNfSGRYZU1ZQWd3 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNlk3c3R6RHhxVXBtcWJVU19IZFhlTVlBZ3cwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE5 NTRGLzU5MUEzMjIwOTE0QTExRUU5NDJDQzg3MUM0RjlBRTAyLzZZN3N0ekR4cVVw bXFiVVNfSGRYZU1ZQWd3MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACQx7HFrpTNOiLHEwFMjKDa8CIZHUKdp9CFLXBeWLvR7Jx5z87lHjJ5u 36G9bTILvUXdO099yT8yryWahl4uJ+o3Iuf96mjtm8BuU3XlmdBWDoxj0zX4YG8H SUdXxHv6jx/UrTX5aM4wEjjEUFEfwi9UAazgagskH4cbzydchsocMw7YRVIWge9z J3SqUHZohzzksKCiK9hsnCflalgJOvMZ1fc+ylDy/TcoxbcxxX58vaXXa6M94kYb zs6K5yr11Z8dYG3h8dlWvNBIY35O3YKyxY2W0Nu7Kc5o+RNGKGScfrm4f0vnD6Fu UjZiMOcrLtg3/TeVVMpoZ7yOTEWHC6k= -----END CERTIFICATE-----Generated at Wed May 15 09:27:27 2024 by rpki-client on console-fra.rpki-client.org