$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft File: MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft (raw, json) Hash identifier: bIrhHyEGu5D+CEP/zW5+Cd89L7vkiTIA2rcdTtE/CaI= Subject key identifier: 7E:AF:08:55:47:D1:BF:B1:C9:35:BD:DE:C3:BA:CC:30:A3:5C:C9:94 Authority key identifier: 31:26:F4:EF:05:E3:AE:75:A0:91:44:B6:67:D3:93:47:D4:DA:A8:90 Certificate issuer: /CN=A91A7B94/serialNumber=3126F4EF05E3AE75A09144B667D39347D4DAA890 Certificate serial: 9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft Manifest number: 96 Signing time: Wed 15 May 2024 07:05:35 +0000 Manifest this update: Wed 15 May 2024 07:05:34 +0000 Manifest next update: Wed 22 May 2024 07:05:34 +0000 Files and hashes: 1: MSb07wXjrnWgkUS2Z9OTR9TaqJA.crl (hash: L8EJ12ZXOqne3b2fIqzns163ccveLdIGZg0Q4zJY03U=) 2: 268DF20A940C11EE9B034255C4F9AE02.roa (hash: h0QB44dJJWpkUB5Nn8bPiyK2eYO401b5CN+amBjtxwk=) 3: D29109C4EC6E11EEAEF9610BC4F9AE02.roa (hash: Oj41RURSpGJXQ5nqhJ8c+Iycw6Ovr5EgTSpyp5KCPE0=) 4: 2732E7CE940C11EE9B034255C4F9AE02.roa (hash: OCW5pcvUAU8JAXjdZKOmENQCXIcoeff+ExAgbdgfAjQ=) 5: B0562E7AEC6E11EEB7FC060BC4F9AE02.roa (hash: OeW8BLgkc58uILCZYLvhTkPH8PzObHvU/yKQAx0JSC0=) 6: 7474F998377111EE8AFEB74DC4F9AE02.roa (hash: Oc6FnVfPTuGFLrdjCboTDLNxDvcGFQDTupYNuLVUDEI=) 7: D2093EF4EC6E11EEAEF9610BC4F9AE02.roa (hash: tteglKGihCQVs3h+zk0FgvgH6wR9ojI8iLV0ircfkIQ=) 8: AFDF1A1AEC6E11EEB7FC060BC4F9AE02.roa (hash: fBMn5Dfcp0kaHwVBgpQ2HNrRgr9yjmbsbdEJ3VN87js=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.crl rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:05:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7B94/serialNumber=3126F4EF05E3AE75A09144B667D39347D4DAA890 Validity Not Before: May 15 07:05:34 2024 GMT Not After : May 22 07:05:34 2024 GMT Subject: CN=66445ebf-c690 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:cc:23:e6:02:84:1b:8f:5a:1d:18:6b:42:bc: 2e:94:3b:b4:0e:ae:8c:73:5c:31:34:5e:7b:ac:8d: 56:3c:7d:db:4a:c0:4e:76:83:d1:b0:13:bf:d0:1f: eb:ca:60:2c:e7:59:73:e1:52:9d:ff:ba:0e:33:0c: 5b:90:ac:88:75:bd:df:f9:c1:f4:e1:5b:23:59:24: d9:df:b9:b9:5a:a1:89:56:45:4f:39:82:a7:13:3c: 22:b0:ba:2a:02:8d:2a:e9:c1:ad:4d:c2:de:8a:de: 8c:d2:ea:67:a9:be:60:84:a0:a2:cb:6a:91:53:f7: f5:ee:43:d6:e7:65:2a:10:43:cd:0d:5a:7b:f9:c7: 9d:f3:ca:02:a5:17:24:a0:4d:43:dd:94:b4:f4:68: 11:45:0f:8e:58:6f:f3:bc:1a:c7:ae:ef:28:9d:fe: 7e:59:88:f0:28:1d:41:52:cd:f2:08:df:23:f2:7b: 02:f6:c8:58:81:df:cc:10:46:5d:36:d3:b4:0f:2e: 1b:92:66:94:84:76:36:b2:aa:1d:ba:ce:2e:cf:3e: 82:be:c6:21:c9:c6:87:f9:b1:6c:f7:57:00:86:48: 20:4c:f8:fc:4a:4e:7b:eb:9a:62:b2:8c:54:80:71: b8:97:d1:13:39:db:e6:8c:06:03:11:05:d0:8d:a1: e1:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:AF:08:55:47:D1:BF:B1:C9:35:BD:DE:C3:BA:CC:30:A3:5C:C9:94 X509v3 Authority Key Identifier: keyid:31:26:F4:EF:05:E3:AE:75:A0:91:44:B6:67:D3:93:47:D4:DA:A8:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption f7:1b:79:cd:a5:e2:c1:3f:68:dc:10:2d:f1:de:71:1f:5f:8f: a1:c2:39:0c:ad:29:e4:02:4f:1b:4c:e6:72:29:31:f1:48:a8: 3d:ae:65:68:0b:ba:96:4d:a0:7d:00:21:3d:9e:ca:e4:db:a0: 0f:4c:1d:33:b6:12:08:81:e5:c6:4a:4b:9d:e3:8a:b7:d6:5c: ef:63:cb:be:cd:c5:f3:4c:e1:f4:c0:aa:76:65:69:ce:e6:28: 5d:5d:f0:7a:f2:b5:50:50:8e:31:91:44:a2:0c:8c:df:73:70: 53:67:92:7b:6a:16:ae:fb:0d:ba:f0:f7:be:9a:5b:a9:fe:3f: 57:ce:92:24:0c:b9:e2:28:85:28:1c:4a:1b:b5:ab:dc:af:de: 01:b9:58:b2:40:cc:55:91:ee:f5:f6:19:68:29:6b:e5:8c:d2: 05:5d:5b:50:37:67:a1:1b:e5:06:d4:0b:f5:12:34:f7:5e:cb: 29:b5:86:ff:2e:bd:22:d8:da:32:78:89:62:e7:9d:8d:05:06: 95:ac:61:50:33:01:ae:81:3d:5e:57:bb:92:ae:5f:b5:ae:23: 02:0b:e2:fb:30:c1:3f:7c:74:20:ef:01:fb:0c:d3:41:45:f0: a7:a3:ff:80:bb:e7:8d:71:17:47:82:3a:a0:23:31:30:2a:eb: d9:93:1a:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdCOTQxMTAvBgNVBAUTKDMxMjZGNEVGMDVFM0FFNzVBMDkxNDRCNjY3RDM5MzQ3 RDREQUE4OTAwHhcNMjQwNTE1MDcwNTM0WhcNMjQwNTIyMDcwNTM0WjAYMRYwFAYD VQQDEw02NjQ0NWViZi1jNjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvMwj5gKEG49aHRhrQrwulDu0Dq6Mc1wxNF57rI1WPH3bSsBOdoPRsBO/0B/r ymAs51lz4VKd/7oOMwxbkKyIdb3f+cH04VsjWSTZ37m5WqGJVkVPOYKnEzwisLoq Ao0q6cGtTcLeit6M0upnqb5ghKCiy2qRU/f17kPW52UqEEPNDVp7+ced88oCpRck oE1D3ZS09GgRRQ+OWG/zvBrHru8onf5+WYjwKB1BUs3yCN8j8nsC9shYgd/MEEZd NtO0Dy4bkmaUhHY2sqodus4uzz6CvsYhycaH+bFs91cAhkggTPj8Sk5765pisoxU gHG4l9ETOdvmjAYDEQXQjaHhAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH6vCFVH 0b+xyTW93sO6zDCjXMmUMB8GA1UdIwQYMBaAFDEm9O8F4651oJFEtmfTk0fU2qiQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0I5NC9DQzc0MUJCNjM3 NzAxMUVFOERDOEJCMzRDNEY5QUUwMi9NU2IwN3dYanJuV2drVVMyWjlPVFI5VGFx SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01TYjA3d1hqcm5XZ2tVUzJaOU9UUjlUYXFKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0I5NC9DQzc0MUJCNjM3NzAxMUVFOERDOEJCMzRDNEY5QUUwMi9NU2IwN3dYanJu V2drVVMyWjlPVFI5VGFxSkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQD3G3nNpeLBP2jcEC3x3nEfX4+hwjkMrSnkAk8bTOZyKTHxSKg9rmVo C7qWTaB9ACE9nsrk26APTB0zthIIgeXGSkud44q31lzvY8u+zcXzTOH0wKp2ZWnO 5ihdXfB68rVQUI4xkUSiDIzfc3BTZ5J7ahau+w268Pe+mlup/j9XzpIkDLniKIUo HEobtavcr94BuViyQMxVke719hloKWvljNIFXVtQN2ehG+UG1Av1EjT3XssptYb/ Lr0i2NoyeIli552NBQaVrGFQMwGugT1eV7uSrl+1riMCC+L7MME/fHQg7wH7DNNB RfCno/+Au+eNcRdHgjqgIzEwKuvZkxpw -----END CERTIFICATE-----Generated at Wed May 15 09:04:42 2024 by rpki-client on console-ams.rpki-client.org