$ rpki-client -vvf rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft File: CkMWPL6xv3mMnOQcHF50ociDesY.mft (raw, json) Hash identifier: j6k+0T4xtlxEiN6D/OFVY6PYQZhbp+yeE8egXmzkcmE= Subject key identifier: E8:07:75:63:C8:35:28:5E:F5:61:1B:FA:F6:BD:10:ED:CF:87:CD:18 Authority key identifier: 0A:43:16:3C:BE:B1:BF:79:8C:9C:E4:1C:1C:5E:74:A1:C8:83:7A:C6 Certificate issuer: /CN=A91A95C1/serialNumber=0A43163CBEB1BF798C9CE41C1C5E74A1C8837AC6 Certificate serial: 01B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft Manifest number: 01AE Signing time: Fri 03 May 2024 04:40:36 +0000 Manifest this update: Fri 03 May 2024 04:40:36 +0000 Manifest next update: Fri 10 May 2024 04:40:36 +0000 Files and hashes: 1: CkMWPL6xv3mMnOQcHF50ociDesY.crl (hash: Ce9OcYtrxcWcaWhtty3J1v16H9h8Y/3/2viuOLWJAMg=) 2: DA61302A0F0211EDABBE3C6AC4F9AE02.roa (hash: JKeISo/Mq9MpA3CnUuVBraJP4vSdwyiOEeRfzcBtl0g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.crl rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 434 (0x1b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A95C1/serialNumber=0A43163CBEB1BF798C9CE41C1C5E74A1C8837AC6 Validity Not Before: May 3 04:40:36 2024 GMT Not After : May 10 04:40:36 2024 GMT Subject: CN=66346ac4-c617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:de:05:7b:a7:a9:70:32:8d:9e:6c:59:76:66: 76:94:b5:ec:a4:88:b8:b6:cd:f9:66:d6:fa:5b:89: eb:7e:37:ed:15:b3:e2:a2:f4:cf:35:0f:3f:0d:22: 1b:09:8f:a7:e9:9b:5c:68:be:c7:a2:7e:66:c2:b2: 3d:84:cc:ae:23:02:9f:4f:9b:92:17:b1:d1:bb:c0: 4b:d2:f6:c2:e0:b9:05:77:e0:86:61:78:c1:ef:f7: ab:71:7b:34:5a:72:3d:68:bb:34:6d:79:a9:a5:00: 24:14:a3:2c:ff:55:35:7e:84:67:a0:6e:a4:c8:79: c6:9c:36:50:54:77:6b:e8:10:90:76:45:51:cf:51: cb:31:8f:b4:70:02:a2:b8:0d:44:e4:23:b0:62:5a: 31:a9:09:7e:a7:b9:ef:8e:39:55:d3:d5:1e:9e:96: d4:e6:76:fb:e3:aa:23:a2:b4:e5:69:17:47:e3:7d: a2:c6:84:54:ee:f9:15:f7:fe:81:fe:1f:99:66:3a: 22:53:59:1b:fa:d7:57:dd:41:0e:8d:1e:24:93:27: ae:4f:56:6e:dd:8f:d6:a8:df:46:8d:0c:fc:ea:94: 13:9d:69:1e:b4:49:28:b9:7d:84:a6:c8:94:ee:b4: 7e:64:fe:f4:e2:8b:a6:3c:ba:bc:94:6a:7a:e5:1b: b1:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:07:75:63:C8:35:28:5E:F5:61:1B:FA:F6:BD:10:ED:CF:87:CD:18 X509v3 Authority Key Identifier: keyid:0A:43:16:3C:BE:B1:BF:79:8C:9C:E4:1C:1C:5E:74:A1:C8:83:7A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:f4:b0:6c:68:08:7c:7c:5a:69:8e:21:bb:5f:1e:89:5d:74: 59:86:48:04:8a:13:d3:bf:a4:1c:f7:4e:bb:b4:12:35:40:3f: 3b:2d:23:e6:38:b7:46:ae:83:79:1b:0f:69:ab:ec:88:f0:59: d5:4b:fa:40:9c:2e:6c:42:08:78:1c:45:33:73:a4:29:d5:c2: e3:79:f9:87:6b:2b:14:17:90:df:e2:b8:27:d4:43:f6:dd:b0: 20:ac:65:31:98:f4:29:6c:2b:aa:63:d8:ca:95:12:4a:d2:09: 62:58:ea:ce:1a:13:8e:19:74:c3:41:88:ec:e4:69:37:6f:4b: d9:ab:be:2e:81:aa:a9:51:34:51:71:09:1e:4f:85:d5:ab:5c: 33:2b:f1:fa:d3:5c:be:14:2e:6e:37:6f:55:95:92:98:7d:bd: 61:b2:23:0c:4f:18:98:66:87:1a:a7:e5:1b:32:ae:8e:2c:ee: 49:3a:59:5e:b1:88:3d:49:36:06:fc:27:46:3f:ec:6a:19:d3: 8d:9d:fd:bf:95:69:0c:7e:77:57:7a:65:41:63:ed:aa:38:d9: 9d:eb:eb:a1:b5:5e:ea:ba:29:2c:98:46:c5:e8:cb:f1:66:6f: 20:3c:2e:b0:d3:b6:38:60:9e:a2:36:44:c2:68:64:c6:7d:99: 2a:27:8b:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk1QzExMTAvBgNVBAUTKDBBNDMxNjNDQkVCMUJGNzk4QzlDRTQxQzFDNUU3NEEx Qzg4MzdBQzYwHhcNMjQwNTAzMDQ0MDM2WhcNMjQwNTEwMDQ0MDM2WjAYMRYwFAYD VQQDEw02NjM0NmFjNC1jNjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtd4Fe6epcDKNnmxZdmZ2lLXspIi4ts35Ztb6W4nrfjftFbPiovTPNQ8/DSIb CY+n6ZtcaL7Hon5mwrI9hMyuIwKfT5uSF7HRu8BL0vbC4LkFd+CGYXjB7/ercXs0 WnI9aLs0bXmppQAkFKMs/1U1foRnoG6kyHnGnDZQVHdr6BCQdkVRz1HLMY+0cAKi uA1E5COwYloxqQl+p7nvjjlV09UenpbU5nb746ojorTlaRdH432ixoRU7vkV9/6B /h+ZZjoiU1kb+tdX3UEOjR4kkyeuT1Zu3Y/WqN9GjQz86pQTnWketEkouX2EpsiU 7rR+ZP704oumPLq8lGp65RuxDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOgHdWPI NShe9WEb+va9EO3Ph80YMB8GA1UdIwQYMBaAFApDFjy+sb95jJzkHBxedKHIg3rG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTVDMS9DQkU2QkM3NDBG MDAxMUVEQTc0NDA2NkFDNEY5QUUwMi9Da01XUEw2eHYzbU1uT1FjSEY1MG9jaURl c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NrTVdQTDZ4djNtTW5PUWNIRjUwb2NpRGVzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTVDMS9DQkU2QkM3NDBGMDAxMUVEQTc0NDA2NkFDNEY5QUUwMi9Da01XUEw2eHYz bU1uT1FjSEY1MG9jaURlc1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCz9LBsaAh8fFppjiG7Xx6JXXRZhkgEihPTv6Qc9067tBI1QD87LSPm OLdGroN5Gw9pq+yI8FnVS/pAnC5sQgh4HEUzc6Qp1cLjefmHaysUF5Df4rgn1EP2 3bAgrGUxmPQpbCuqY9jKlRJK0gliWOrOGhOOGXTDQYjs5Gk3b0vZq74ugaqpUTRR cQkeT4XVq1wzK/H601y+FC5uN29VlZKYfb1hsiMMTxiYZocap+UbMq6OLO5JOlle sYg9STYG/CdGP+xqGdONnf2/lWkMfndXemVBY+2qONmd6+uhtV7quiksmEbF6Mvx Zm8gPC6w07Y4YJ6iNkTCaGTGfZkqJ4vL -----END CERTIFICATE-----Generated at Fri May 3 06:29:21 2024 by rpki-client on console-fra.rpki-client.org