$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft File: 0TPfZxvFk0ayGhHuzAit0MCiCQo.mft (raw, json) Hash identifier: NOfDP8sWzWk955cdveel6NlsUkua3z6o6nf/vzFelcM= Subject key identifier: 33:BA:5A:99:AB:E3:F9:5D:40:69:DE:BE:22:57:74:70:7C:A9:9E:26 Authority key identifier: D1:33:DF:67:1B:C5:93:46:B2:1A:11:EE:CC:08:AD:D0:C0:A2:09:0A Certificate issuer: /CN=A91A8276/serialNumber=D133DF671BC59346B21A11EECC08ADD0C0A2090A Certificate serial: 06E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft Manifest number: 06E5 Signing time: Sat 04 May 2024 22:57:10 +0000 Manifest this update: Sat 04 May 2024 22:57:09 +0000 Manifest next update: Sat 11 May 2024 22:57:09 +0000 Files and hashes: 1: 0TPfZxvFk0ayGhHuzAit0MCiCQo.crl (hash: VRuJuiPv2ayCPebNLWg61ZBnZ/uaiTVAjdvg+HpeoeA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.crl rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1765 (0x6e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8276/serialNumber=D133DF671BC59346B21A11EECC08ADD0C0A2090A Validity Not Before: May 4 22:57:09 2024 GMT Not After : May 11 22:57:09 2024 GMT Subject: CN=6636bd46-8d55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:52:8a:40:11:a3:15:91:56:e1:36:99:9a:97: 8b:ef:f8:6d:39:04:f2:9d:bc:41:b4:08:f5:bb:64: 65:61:9d:40:db:fb:3c:ea:02:be:0e:47:1a:f3:9a: 5d:6e:3c:3e:6d:3e:3a:aa:58:ef:2c:85:61:b1:5c: f8:2e:a6:c5:a7:76:47:97:91:7d:40:7f:c3:2e:e5: b0:0e:44:53:67:8c:87:05:8c:c9:63:a9:ec:99:d5: e4:52:02:a6:91:4f:1e:ba:b3:c8:c6:8b:35:95:d1: 51:97:f1:91:ed:2a:a8:36:4b:66:5d:eb:1a:14:e5: 67:89:a2:45:03:f2:15:95:c9:0d:f7:8f:97:a2:09: 41:45:bd:1e:86:82:0b:67:7a:3c:a3:97:ac:af:69: 9f:9c:f6:44:e3:c6:a4:68:af:fd:0d:d6:aa:0d:9e: 7e:91:1b:e6:0c:a7:35:17:15:a8:fe:8f:cb:e7:49: 95:31:05:28:64:0d:0e:3d:05:68:c4:fb:98:b5:0d: 13:68:76:e9:ab:d2:3d:24:e8:a1:f0:f5:ca:0c:04: 8e:b4:2c:a5:09:a4:48:49:9d:6f:98:99:e6:68:47: ed:9c:7a:ac:09:61:5a:93:dc:96:53:50:99:ef:58: d7:61:95:47:dc:59:bb:7c:61:06:a4:f5:6a:e3:c8: 93:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:BA:5A:99:AB:E3:F9:5D:40:69:DE:BE:22:57:74:70:7C:A9:9E:26 X509v3 Authority Key Identifier: keyid:D1:33:DF:67:1B:C5:93:46:B2:1A:11:EE:CC:08:AD:D0:C0:A2:09:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:5a:94:dd:94:3e:3f:2e:ec:f1:80:99:31:81:de:35:cf:67: 11:af:fa:2b:e7:56:13:78:d5:df:ab:f3:ef:8d:71:6f:5e:29: 9c:40:7d:50:e8:48:47:09:ce:56:e0:6f:57:e9:0c:4f:41:3d: cc:f1:15:bd:d3:b4:5c:df:32:85:cc:d0:b6:d0:9d:b3:c1:32: 4d:8c:56:36:4b:c0:5f:43:60:f9:89:e0:34:77:98:62:53:0a: 17:98:65:cc:3b:94:45:d0:0f:83:da:c5:1c:0b:1c:f3:a4:25: 15:a5:0a:8f:b4:35:13:08:b0:2c:17:ca:53:df:af:f5:a3:fd: 93:cd:08:83:30:9e:91:34:da:27:bb:26:19:24:92:a8:43:17: af:b5:24:5c:00:2b:d3:4b:0b:ed:cf:21:dd:bb:5e:94:06:78: 1f:ee:b6:dd:2e:38:9e:55:7d:0c:c3:bc:06:0e:a0:d5:d6:93: da:c5:c1:60:2a:ad:1c:31:e5:a6:76:9e:d1:01:0e:67:cf:13: 09:9c:c6:15:7b:cb:22:65:14:a9:ba:24:6b:e3:74:7f:56:4c: c6:b1:d2:a5:6a:21:58:01:c6:c6:16:e8:48:49:ae:0a:44:31: 21:65:0c:d8:64:3a:cb:a4:87:66:00:03:a7:7a:58:8e:da:48: cb:79:61:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgyNzYxMTAvBgNVBAUTKEQxMzNERjY3MUJDNTkzNDZCMjFBMTFFRUNDMDhBREQw QzBBMjA5MEEwHhcNMjQwNTA0MjI1NzA5WhcNMjQwNTExMjI1NzA5WjAYMRYwFAYD VQQDEw02NjM2YmQ0Ni04ZDU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0VKKQBGjFZFW4TaZmpeL7/htOQTynbxBtAj1u2RlYZ1A2/s86gK+Dkca85pd bjw+bT46qljvLIVhsVz4LqbFp3ZHl5F9QH/DLuWwDkRTZ4yHBYzJY6nsmdXkUgKm kU8eurPIxos1ldFRl/GR7SqoNktmXesaFOVniaJFA/IVlckN94+XoglBRb0ehoIL Z3o8o5esr2mfnPZE48akaK/9DdaqDZ5+kRvmDKc1FxWo/o/L50mVMQUoZA0OPQVo xPuYtQ0TaHbpq9I9JOih8PXKDASOtCylCaRISZ1vmJnmaEftnHqsCWFak9yWU1CZ 71jXYZVH3Fm7fGEGpPVq48iTNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDO6Wpmr 4/ldQGneviJXdHB8qZ4mMB8GA1UdIwQYMBaAFNEz32cbxZNGshoR7swIrdDAogkK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODI3Ni84MTM4NzkzRUZF RjgxMUVBOUQ2NTJBNzRDNEY5QUUwMi8wVFBmWnh2RmswYXlHaEh1ekFpdDBNQ2lD UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBUUGZaeHZGazBheUdoSHV6QWl0ME1DaUNRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODI3Ni84MTM4NzkzRUZFRjgxMUVBOUQ2NTJBNzRDNEY5QUUwMi8wVFBmWnh2Rmsw YXlHaEh1ekFpdDBNQ2lDUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZWpTdlD4/LuzxgJkxgd41z2cRr/or51YTeNXfq/PvjXFvXimcQH1Q 6EhHCc5W4G9X6QxPQT3M8RW907Rc3zKFzNC20J2zwTJNjFY2S8BfQ2D5ieA0d5hi UwoXmGXMO5RF0A+D2sUcCxzzpCUVpQqPtDUTCLAsF8pT36/1o/2TzQiDMJ6RNNon uyYZJJKoQxevtSRcACvTSwvtzyHdu16UBngf7rbdLjieVX0Mw7wGDqDV1pPaxcFg Kq0cMeWmdp7RAQ5nzxMJnMYVe8siZRSpuiRr43R/VkzGsdKlaiFYAcbGFuhISa4K RDEhZQzYZDrLpIdmAAOneliO2kjLeWHe -----END CERTIFICATE-----Generated at Sun May 5 00:12:27 2024 by rpki-client on console-fra.rpki-client.org