$ rpki-client -vvf rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.mft File: 5sRskdEtWFoSsFVpYh3uGtP4kI4.mft (raw, json) Hash identifier: Yav6PodnoXLF3R9dSTZMMZuq0DKQ3giAvsuizz2EJ+0= Subject key identifier: 39:86:70:5F:52:40:73:2E:1F:FE:94:F7:52:A8:A5:2A:D5:C2:B1:C7 Authority key identifier: E6:C4:6C:91:D1:2D:58:5A:12:B0:55:69:62:1D:EE:1A:D3:F8:90:8E Certificate issuer: /CN=A917A362/serialNumber=E6C46C91D12D585A12B05569621DEE1AD3F8908E Certificate serial: 6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5sRskdEtWFoSsFVpYh3uGtP4kI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.mft Manifest number: 6B Signing time: Wed 15 May 2024 07:38:16 +0000 Manifest this update: Wed 15 May 2024 07:38:16 +0000 Manifest next update: Wed 22 May 2024 07:38:16 +0000 Files and hashes: 1: 5sRskdEtWFoSsFVpYh3uGtP4kI4.crl (hash: 6AlD4alPNNBvCTxE7Ho53O5Ym96DEq/YK4KtFm2UbkE=) 2: 1B299892726F11EEB1217365C4F9AE02.roa (hash: /t+nwTppDZ8C9NhuG+3/6yW+b1AIMxj0muQucwZx3fw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.crl rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5sRskdEtWFoSsFVpYh3uGtP4kI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:38:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A362/serialNumber=E6C46C91D12D585A12B05569621DEE1AD3F8908E Validity Not Before: May 15 07:38:16 2024 GMT Not After : May 22 07:38:16 2024 GMT Subject: CN=66446668-9945 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:5b:ab:c5:25:45:3e:cc:3f:f5:bc:2e:d6:a3: e9:ce:96:5d:04:8f:17:0d:76:71:a8:ff:7a:d3:ba: 24:04:4f:7d:a6:d5:07:43:59:09:0a:33:c9:63:16: 0a:1b:11:36:e6:71:47:bb:b6:d2:60:93:66:21:54: 86:61:e8:50:c1:62:aa:ff:1a:f8:98:4d:05:68:fd: 29:cc:7d:2f:e0:ca:03:72:58:41:ed:81:2b:ef:9d: 2c:a3:90:9f:f6:df:30:43:bd:48:bd:bf:a9:79:32: b0:8f:6e:e4:6a:d3:2e:f2:ae:72:a9:5b:b9:40:fc: 35:b8:82:47:17:be:a0:52:2a:7a:5b:ec:7b:eb:da: c7:64:4b:a3:96:19:49:47:60:fb:d6:0b:2f:e5:ca: d0:93:6b:cb:1c:ec:19:a1:f2:5d:17:b5:64:e2:da: 52:8b:95:be:43:bf:a7:0b:82:cf:f2:17:fd:37:e0: 2e:8f:49:82:87:f4:f3:62:66:44:ce:39:1c:48:d5: 5f:8e:7a:ba:a3:d6:52:de:29:bb:c2:be:50:40:5c: 58:58:4e:ff:04:0c:16:da:0c:c5:73:7e:08:d2:f0: 92:cb:bd:9c:82:50:88:e6:69:bc:f7:db:0c:46:d9: 80:e7:8e:c1:1f:5f:e4:eb:2c:de:61:3d:f3:54:d2: bf:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:86:70:5F:52:40:73:2E:1F:FE:94:F7:52:A8:A5:2A:D5:C2:B1:C7 X509v3 Authority Key Identifier: keyid:E6:C4:6C:91:D1:2D:58:5A:12:B0:55:69:62:1D:EE:1A:D3:F8:90:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5sRskdEtWFoSsFVpYh3uGtP4kI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:87:b4:b8:f6:63:e3:3c:ce:d4:55:98:e8:e3:2c:1c:67:1e: c9:fc:1f:34:d6:a3:31:8c:03:a4:08:ce:b6:e3:de:58:05:ef: 74:e4:dd:c8:d3:91:bb:e0:92:56:b5:a6:18:db:a2:7b:92:49: d4:d0:2e:a9:db:25:73:ba:e1:7f:f6:b5:2b:cd:88:7e:e7:56: 9d:6c:76:ab:6c:ba:60:4a:0a:0b:e0:d3:58:d6:0a:fd:f6:39: 98:75:34:3d:67:af:e2:d0:36:91:78:b8:ab:08:7f:fd:11:e6: 89:d1:8a:a2:d0:a4:29:c4:f8:93:e1:77:07:2a:03:6e:1f:12: d0:20:5d:1f:8c:6c:7a:3c:fe:6d:40:ad:78:0e:d1:de:83:91: 59:43:cb:64:f2:25:24:c4:aa:10:4b:e0:8d:2e:1c:f4:c1:56: d8:d4:be:18:47:72:b0:ce:e5:32:34:58:7f:7d:27:71:56:0f: 76:9d:e9:46:11:7c:ea:e0:96:50:1f:ec:ed:a1:91:e3:ae:77: 6f:31:65:d3:85:ec:0e:6d:47:bb:e6:f6:23:5e:b9:0c:2d:38: f4:78:cf:8a:0e:8e:5b:e5:c1:1e:02:b4:16:74:06:8f:a2:43: df:1c:ec:7d:57:7c:51:6e:af:8e:7d:77:d9:5a:b5:0a:42:71: 17:15:69:f1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QTM2MjExMC8GA1UEBRMoRTZDNDZDOTFEMTJENTg1QTEyQjA1NTY5NjIxREVFMUFE M0Y4OTA4RTAeFw0yNDA1MTUwNzM4MTZaFw0yNDA1MjIwNzM4MTZaMBgxFjAUBgNV BAMTDTY2NDQ2NjY4LTk5NDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFW6vFJUU+zD/1vC7Wo+nOll0EjxcNdnGo/3rTuiQET32m1QdDWQkKM8ljFgob ETbmcUe7ttJgk2YhVIZh6FDBYqr/GviYTQVo/SnMfS/gygNyWEHtgSvvnSyjkJ/2 3zBDvUi9v6l5MrCPbuRq0y7yrnKpW7lA/DW4gkcXvqBSKnpb7Hvr2sdkS6OWGUlH YPvWCy/lytCTa8sc7Bmh8l0XtWTi2lKLlb5Dv6cLgs/yF/034C6PSYKH9PNiZkTO ORxI1V+Oerqj1lLeKbvCvlBAXFhYTv8EDBbaDMVzfgjS8JLLvZyCUIjmabz32wxG 2YDnjsEfX+TrLN5hPfNU0r/FAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUOYZwX1JA cy4f/pT3UqilKtXCsccwHwYDVR0jBBgwFoAU5sRskdEtWFoSsFVpYh3uGtP4kI4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdBMzYyLzdDQkE0QzRDNzI2 RTExRUU5RkUzNTA2MUM0RjlBRTAyLzVzUnNrZEV0V0ZvU3NGVnBZaDN1R3RQNGtJ NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNXNSc2tkRXRXRm9Tc0ZWcFloM3VHdFA0a0k0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdB MzYyLzdDQkE0QzRDNzI2RTExRUU5RkUzNTA2MUM0RjlBRTAyLzVzUnNrZEV0V0Zv U3NGVnBZaDN1R3RQNGtJNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHGHtLj2Y+M8ztRVmOjjLBxnHsn8HzTWozGMA6QIzrbj3lgF73Tk3cjT kbvgkla1phjbonuSSdTQLqnbJXO64X/2tSvNiH7nVp1sdqtsumBKCgvg01jWCv32 OZh1ND1nr+LQNpF4uKsIf/0R5onRiqLQpCnE+JPhdwcqA24fEtAgXR+MbHo8/m1A rXgO0d6DkVlDy2TyJSTEqhBL4I0uHPTBVtjUvhhHcrDO5TI0WH99J3FWD3ad6UYR fOrgllAf7O2hkeOud28xZdOF7A5tR7vm9iNeuQwtOPR4z4oOjlvlwR4CtBZ0Bo+i Q98c7H1XfFFur459d9latQpCcRcVafE= -----END CERTIFICATE-----Generated at Wed May 15 09:27:34 2024 by rpki-client on console-fra.rpki-client.org