$ rpki-client -vvf rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft File: 5esYDNbcUWxm01KwR7npxaUCcOM.mft (raw, json) Hash identifier: YgvvQ8nQtAQNhKGxG0aD69ZbluZ5/vTYqCqu7gJ8ju8= Subject key identifier: 82:2A:26:D8:A6:B9:53:70:BC:80:D7:24:CD:8D:55:00:4F:6E:23:94 Authority key identifier: E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 Certificate issuer: /CN=A91ABFD9/serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Certificate serial: 081C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft Manifest number: 0805 Signing time: Fri 26 Jul 2024 21:35:48 +0000 Manifest this update: Fri 26 Jul 2024 21:35:48 +0000 Manifest next update: Fri 02 Aug 2024 21:35:48 +0000 Files and hashes: 1: 5esYDNbcUWxm01KwR7npxaUCcOM.crl (hash: els0/6sIxHPBhrMZieHqo2p7ex/vSeI6EZaivLNAvG4=) 2: E2E21364C4F811EAB8D31113C4F9AE02.roa (hash: BIQumIGr6erTS4dsWexAI1EzFQcSWiKFq9JxlaxJzA0=) 3: F1A54AC47A5611EB876D281FC4F9AE02.roa (hash: dDoSSqmj+1KqoTK5wDPnFr2+FIWdHPdVfbnO5yGmVKY=) 4: 36945EC2232711EBA0F14F17C4F9AE02.roa (hash: /0RjVarbhWIDpd3cHraVVa21CcbNpmGk66YkcBro3Ns=) 5: 6AE50E1C21E011EBBF36CD21C4F9AE02.roa (hash: Lr1KMxJhPQ8D3zuPrAPoJ61RfejQ9+IvNN/JJj+oj5o=) 6: E22ECDEAC4F811EAB8D31113C4F9AE02.roa (hash: btmAvtbg+cv8vIT238XnatcxOtJFH8w/wTzWY/BWnok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 Aug 2024 21:30:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2076 (0x81c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ABFD9/serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Validity Not Before: Jul 26 21:35:48 2024 GMT Not After : Aug 2 21:35:48 2024 GMT Subject: CN=66a416b4-1d3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:aa:68:01:bd:61:ed:f2:68:23:b0:91:10:36: 97:82:ab:c5:0f:21:c6:24:b0:3e:79:72:2d:69:1b: 98:cd:3a:07:a3:c1:c9:9c:af:c3:0c:e5:f0:38:24: 61:8a:24:49:3c:6a:47:e4:4c:e0:04:07:9a:34:02: 1f:87:e6:ba:61:76:4c:95:f1:a1:ae:56:c5:03:ee: cc:b2:eb:40:b6:7d:ce:8b:eb:34:1c:e1:f4:44:15: e0:55:0c:e5:0b:e8:f2:16:16:52:48:0b:ec:ac:99: 2c:a4:43:b6:30:f7:ae:51:e9:6c:a2:c8:ae:44:b6: f3:71:90:b9:90:9b:f9:ba:f5:c6:a8:c4:f9:96:ea: 52:00:13:33:b1:dd:23:71:4d:76:f9:69:68:50:e5: d6:71:0f:54:34:03:76:4f:96:8e:03:ec:29:2c:62: 17:bd:59:98:bb:ae:f6:b4:3d:39:5d:1e:20:f5:4a: c3:ee:80:1e:a2:71:bf:b7:de:d7:d1:7a:5e:a6:25: 0f:f9:cf:aa:e0:33:fa:a7:47:86:e2:d0:ce:9c:1f: c5:5c:b6:1b:36:9d:58:61:9c:a6:94:4d:d1:e6:5b: 20:b0:5e:74:19:df:45:1f:46:1a:d6:e2:bb:3f:af: 00:b8:11:ca:5e:a5:34:50:37:b4:1c:73:31:1c:81: f5:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:2A:26:D8:A6:B9:53:70:BC:80:D7:24:CD:8D:55:00:4F:6E:23:94 X509v3 Authority Key Identifier: keyid:E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:2c:20:8c:25:6d:2b:e8:67:63:54:7b:9b:c0:44:bd:16:bf: 13:c3:ac:a2:6a:32:ab:65:f8:85:5a:9d:30:9a:46:95:b8:87: 92:6f:dd:89:db:67:26:53:2b:7c:2f:a1:7f:13:e7:df:e6:41: 3f:e0:ea:b8:19:ba:81:ee:4c:97:06:e1:c2:f8:d7:20:1e:15: f1:02:3d:39:9c:06:62:7e:42:3a:b1:24:48:69:7e:45:86:e0: 49:cc:e4:f0:f1:ac:2f:d3:66:e7:ae:21:e7:63:fc:ef:de:fe: 5e:4a:27:8f:65:99:ec:40:c9:37:35:2b:44:db:f6:34:92:d0: 72:06:06:71:48:b2:e4:a8:92:d9:fd:e8:db:9c:74:f1:e7:2a: 12:2c:d8:83:e4:3d:05:7b:a9:2c:87:9e:3a:ed:ce:85:6d:7c: 65:49:ca:b8:1b:6f:c0:d2:7e:39:3e:fe:76:ee:f1:4e:85:bb: 90:7e:14:c4:09:8e:71:a7:78:a9:e3:6f:7d:6d:cd:fb:fa:12: b2:a0:c8:23:e7:cb:63:ce:66:65:cf:1e:8f:9d:c8:63:3a:cb: e9:cc:43:13:98:9b:b1:35:2e:79:c1:35:c7:23:31:11:8d:a5: 3a:92:f2:06:a5:11:26:a6:98:1e:c2:65:3b:a0:ba:03:2a:97: 20:c5:5d:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUJGRDkxMTAvBgNVBAUTKEU1RUIxODBDRDZEQzUxNkM2NkQzNTJCMDQ3QjlFOUM1 QTUwMjcwRTMwHhcNMjQwNzI2MjEzNTQ4WhcNMjQwODAyMjEzNTQ4WjAYMRYwFAYD VQQDEw02NmE0MTZiNC0xZDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqpoAb1h7fJoI7CREDaXgqvFDyHGJLA+eXItaRuYzToHo8HJnK/DDOXwOCRh iiRJPGpH5EzgBAeaNAIfh+a6YXZMlfGhrlbFA+7MsutAtn3Oi+s0HOH0RBXgVQzl C+jyFhZSSAvsrJkspEO2MPeuUelsosiuRLbzcZC5kJv5uvXGqMT5lupSABMzsd0j cU12+WloUOXWcQ9UNAN2T5aOA+wpLGIXvVmYu672tD05XR4g9UrD7oAeonG/t97X 0XpepiUP+c+q4DP6p0eG4tDOnB/FXLYbNp1YYZymlE3R5lsgsF50Gd9FH0Ya1uK7 P68AuBHKXqU0UDe0HHMxHIH1lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIIqJtim uVNwvIDXJM2NVQBPbiOUMB8GA1UdIwQYMBaAFOXrGAzW3FFsZtNSsEe56cWlAnDj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQkZEOS80QUU4MDQxRUI5 RDcxMUVBOUNGNTFFNUZDNEY5QUUwMi81ZXNZRE5iY1VXeG0wMUt3UjducHhhVUNj T00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVlc1lETmJjVVd4bTAxS3dSN25weGFVQ2NPTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QkZEOS80QUU4MDQxRUI5RDcxMUVBOUNGNTFFNUZDNEY5QUUwMi81ZXNZRE5iY1VX eG0wMUt3UjducHhhVUNjT00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0LCCMJW0r6GdjVHubwES9Fr8Tw6yiajKrZfiFWp0wmkaVuIeSb92J 22cmUyt8L6F/E+ff5kE/4Oq4GbqB7kyXBuHC+NcgHhXxAj05nAZifkI6sSRIaX5F huBJzOTw8awv02bnriHnY/zv3v5eSiePZZnsQMk3NStE2/Y0ktByBgZxSLLkqJLZ /ejbnHTx5yoSLNiD5D0Fe6ksh5467c6FbXxlScq4G2/A0n45Pv527vFOhbuQfhTE CY5xp3ip4299bc37+hKyoMgj58tjzmZlzx6PnchjOsvpzEMTmJuxNS55wTXHIzER jaU6kvIGpREmppgewmU7oLoDKpcgxV3Y -----END CERTIFICATE-----Generated at Fri Jul 26 22:55:39 2024 by rpki-client on console-fra.rpki-client.org