$ rpki-client -vvf rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft File: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft (raw, json) Hash identifier: xZz834uVGuggrNg08wiGtO0lV4WOtb7SqTkqLDnl3IU= Subject key identifier: C7:A4:E5:2C:CC:89:09:9F:49:EE:36:4F:B5:12:05:EC:73:98:B4:C7 Authority key identifier: EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 Certificate issuer: /CN=A91525A9/serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Certificate serial: E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft Manifest number: E1 Signing time: Fri 03 May 2024 05:59:06 +0000 Manifest this update: Fri 03 May 2024 05:59:05 +0000 Manifest next update: Fri 10 May 2024 05:59:05 +0000 Files and hashes: 1: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl (hash: f8Fos8jj02hhF+tB9nOX82jY8eXauFdbQqZmNfXZ5yA=) 2: D9E8CA9EB14711EDA5FF9C18C4F9AE02.roa (hash: absC+mdF2fjhVbmM8K4PV/l6PndTGDZNLXnyQdhxxX0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 227 (0xe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91525A9/serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Validity Not Before: May 3 05:59:05 2024 GMT Not After : May 10 05:59:05 2024 GMT Subject: CN=66347d29-c817 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:c8:88:e8:a9:c2:ef:d7:a1:2c:0b:b1:23:cf: eb:97:97:68:f9:aa:e7:c4:97:40:fb:d6:80:7f:10: b2:ec:6f:78:e8:12:4e:b7:c3:dc:ac:0b:6c:4d:ef: f3:fe:eb:04:d7:6d:61:08:6a:3a:5b:17:cb:b6:af: 20:30:e7:9b:a6:24:82:22:f7:05:76:84:53:e3:dd: 7c:ad:cf:85:2d:ee:d3:94:21:cf:70:99:9b:30:b0: 66:95:5a:11:ec:d5:8b:d5:6f:b4:0f:06:57:2e:08: 72:50:5b:c4:b6:07:93:3a:9f:f8:be:21:ab:31:a6: 88:6c:75:8f:46:64:d2:47:a9:ac:a4:e8:4b:dd:9e: c9:60:05:cc:12:58:59:2e:d6:09:ae:a1:d9:1f:f3: ea:3b:7d:c5:b0:82:31:ca:78:c8:3a:50:a9:61:0b: 5c:a5:fd:31:d5:c2:37:00:ee:96:71:42:eb:92:9a: ad:4c:40:39:0f:91:21:8f:36:61:ba:cb:a8:eb:43: 76:ef:1b:4a:2c:8b:9f:cf:7e:85:29:a0:b3:43:7b: f5:f1:c5:ed:6d:3e:16:84:e5:45:0e:ea:04:ae:5a: 21:b4:6d:78:c2:dc:1e:21:7e:20:bc:58:18:1c:ba: ed:98:c0:a5:fe:f8:d2:17:2d:23:2e:54:f8:1c:06: 66:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:A4:E5:2C:CC:89:09:9F:49:EE:36:4F:B5:12:05:EC:73:98:B4:C7 X509v3 Authority Key Identifier: keyid:EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:67:ec:d7:cd:2b:69:72:32:d1:a7:65:0a:8e:73:9e:2f:ca: df:f7:66:fa:df:5a:c7:5d:4c:46:c0:9a:e2:b7:73:62:48:34: 1e:5f:d2:a1:eb:3f:6c:d5:6e:6f:b4:b8:a3:98:45:1e:27:eb: 5d:f6:6f:71:6a:88:3c:c7:23:bb:de:3d:1a:43:5c:17:f0:de: 4e:bd:0b:e6:c1:8d:a2:94:2a:4b:b2:17:31:e4:2e:59:3d:10: d6:44:36:77:5c:19:8f:4f:d5:a0:44:e3:cf:8f:d2:59:c8:c5: 80:74:eb:b9:55:59:e3:30:bd:73:ea:9b:47:d8:1d:29:a7:25: 01:36:cc:8d:91:b6:e8:67:fb:1b:8c:cc:55:dc:86:48:18:1f: 57:99:af:46:ef:fb:b8:e0:58:09:f2:91:b8:be:63:d7:0b:3d: b7:12:91:05:54:b6:b9:b3:86:8f:5a:da:83:c2:c3:11:f0:b4: bb:07:c2:64:17:89:e5:05:f3:fb:31:64:5e:36:7f:ad:5d:53: d7:35:1d:bc:63:5a:85:85:8c:f8:48:b8:4f:00:e0:2c:e7:ab: d6:47:8d:5f:83:9d:52:7c:b4:7d:82:73:01:59:6c:98:a1:99: 2a:ea:28:38:dd:58:cc:e7:ce:5a:3f:e8:53:c2:f7:98:07:68: b1:f4:dd:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI1QTkxMTAvBgNVBAUTKEVCQzNEN0ZDRkIxMzRGNTM4RkMxOUY5OEFEODk4QzBG M0YwNzRGMjAwHhcNMjQwNTAzMDU1OTA1WhcNMjQwNTEwMDU1OTA1WjAYMRYwFAYD VQQDEw02NjM0N2QyOS1jODE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy8iI6KnC79ehLAuxI8/rl5do+arnxJdA+9aAfxCy7G946BJOt8PcrAtsTe/z /usE121hCGo6WxfLtq8gMOebpiSCIvcFdoRT4918rc+FLe7TlCHPcJmbMLBmlVoR 7NWL1W+0DwZXLghyUFvEtgeTOp/4viGrMaaIbHWPRmTSR6mspOhL3Z7JYAXMElhZ LtYJrqHZH/PqO33FsIIxynjIOlCpYQtcpf0x1cI3AO6WcULrkpqtTEA5D5EhjzZh usuo60N27xtKLIufz36FKaCzQ3v18cXtbT4WhOVFDuoErlohtG14wtweIX4gvFgY HLrtmMCl/vjSFy0jLlT4HAZmgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMek5SzM iQmfSe42T7USBexzmLTHMB8GA1UdIwQYMBaAFOvD1/z7E09Tj8GfmK2JjA8/B08g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjVBOS8yNjE4ODQwRUIx NDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQxT1B3Wi1ZclltTUR6OEhU eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY4UFhfUHNUVDFPUHdaLVlyWW1NRHo4SFR5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjVBOS8yNjE4ODQwRUIxNDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQx T1B3Wi1ZclltTUR6OEhUeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5Z+zXzStpcjLRp2UKjnOeL8rf92b631rHXUxGwJrit3NiSDQeX9Kh 6z9s1W5vtLijmEUeJ+td9m9xaog8xyO73j0aQ1wX8N5OvQvmwY2ilCpLshcx5C5Z PRDWRDZ3XBmPT9WgROPPj9JZyMWAdOu5VVnjML1z6ptH2B0ppyUBNsyNkbboZ/sb jMxV3IZIGB9Xma9G7/u44FgJ8pG4vmPXCz23EpEFVLa5s4aPWtqDwsMR8LS7B8Jk F4nlBfP7MWReNn+tXVPXNR28Y1qFhYz4SLhPAOAs56vWR41fg51SfLR9gnMBWWyY oZkq6ig43VjM585aP+hTwveYB2ix9N3v -----END CERTIFICATE-----Generated at Fri May 3 06:28:38 2024 by rpki-client on console-fra.rpki-client.org