$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC4DB/3C07E2D6347311EB9794E226C4F9AE02/2cuKblTiS1D0r_v6oFlb_YECQ-4.mft File: 2cuKblTiS1D0r_v6oFlb_YECQ-4.mft (raw, json) Hash identifier: K/lHkagr9zxZt6ipq2cnaZdm7qG41XiPcVx13baOvjc= Subject key identifier: 83:C7:09:39:1E:4A:EC:FC:AF:8F:1F:98:EA:6C:4D:98:4B:45:82:31 Authority key identifier: D9:CB:8A:6E:54:E2:4B:50:F4:AF:FB:FA:A0:59:5B:FD:81:02:43:EE Certificate issuer: /CN=A91AC4DB/serialNumber=D9CB8A6E54E24B50F4AFFBFAA0595BFD810243EE Certificate serial: 0665 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2cuKblTiS1D0r_v6oFlb_YECQ-4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC4DB/3C07E2D6347311EB9794E226C4F9AE02/2cuKblTiS1D0r_v6oFlb_YECQ-4.mft Manifest number: 0661 Signing time: Sat 04 May 2024 23:43:34 +0000 Manifest this update: Sat 04 May 2024 23:43:33 +0000 Manifest next update: Sat 11 May 2024 23:43:33 +0000 Files and hashes: 1: 2cuKblTiS1D0r_v6oFlb_YECQ-4.crl (hash: PhOTfmU/A4RoKxOTndMeSYClbUGAd8I/lgeJIbbwoAg=) 2: 4157856E347511EB84CD472CC4F9AE02.roa (hash: cJ8qCS/BU0fOSywoTphk0xL63F9Di3aiOmWh7haB+aw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC4DB/3C07E2D6347311EB9794E226C4F9AE02/2cuKblTiS1D0r_v6oFlb_YECQ-4.crl rsync://rpki.apnic.net/member_repository/A91AC4DB/3C07E2D6347311EB9794E226C4F9AE02/2cuKblTiS1D0r_v6oFlb_YECQ-4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2cuKblTiS1D0r_v6oFlb_YECQ-4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1637 (0x665) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC4DB/serialNumber=D9CB8A6E54E24B50F4AFFBFAA0595BFD810243EE Validity Not Before: May 4 23:43:33 2024 GMT Not After : May 11 23:43:33 2024 GMT Subject: CN=6636c825-cf3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f2:3d:72:73:b5:a0:e3:82:47:0f:46:e8:ae: 92:24:84:1d:25:7e:67:f7:61:bd:34:8f:3e:d1:8c: 86:ca:a8:aa:01:4d:a7:d6:09:22:45:a4:5e:3e:99: fd:18:c4:c4:cc:2a:0b:62:65:16:7b:c8:f6:4d:2e: 83:41:0f:f1:4d:2d:d5:5a:a7:1f:41:42:ff:7a:2d: 36:22:d8:c0:ce:d8:62:5e:7c:68:37:72:4a:98:72: c5:d9:b5:0f:c9:3b:52:a3:07:f2:40:37:4b:6a:dc: c7:cb:87:dc:d3:85:c9:45:cf:89:ba:a1:72:ed:64: 90:75:5b:3a:28:3b:ea:e2:f2:6e:b7:49:06:05:72: 5c:44:5c:a1:3f:f2:b6:c9:82:9e:0e:d1:f6:c4:ad: 9b:53:2e:b5:9f:c2:9f:39:67:1e:6f:d3:fd:fc:05: d8:05:f9:d0:41:10:5c:94:b9:b4:4e:4a:3c:1a:a6: 7e:a8:a6:50:c5:c3:88:80:08:d3:30:6a:4b:f0:e8: 6a:da:bf:5a:42:6e:52:49:79:36:58:fd:d6:f9:8b: 8a:58:29:52:cb:65:52:f1:b3:21:44:f2:dd:9e:3c: d4:32:98:01:d0:a4:34:03:38:a9:12:0d:67:9b:0e: 6f:f6:1c:1e:89:c7:2d:64:e3:c9:d8:68:13:5b:26: 06:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:C7:09:39:1E:4A:EC:FC:AF:8F:1F:98:EA:6C:4D:98:4B:45:82:31 X509v3 Authority Key Identifier: keyid:D9:CB:8A:6E:54:E2:4B:50:F4:AF:FB:FA:A0:59:5B:FD:81:02:43:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC4DB/3C07E2D6347311EB9794E226C4F9AE02/2cuKblTiS1D0r_v6oFlb_YECQ-4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2cuKblTiS1D0r_v6oFlb_YECQ-4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC4DB/3C07E2D6347311EB9794E226C4F9AE02/2cuKblTiS1D0r_v6oFlb_YECQ-4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:2e:0b:6a:de:41:c2:57:77:d1:ac:de:60:9c:87:08:de:b4: 9c:ae:d6:15:71:1f:81:72:5e:d6:78:fd:b8:1c:c0:5e:16:c7: 5c:3f:87:0e:c2:b5:d3:5e:aa:cc:aa:89:df:6f:f7:69:af:50: 55:c9:b6:b3:54:2e:8f:e0:bd:55:d0:66:8b:2e:ec:0f:ac:a1: 49:42:a1:f5:35:ae:18:eb:99:a1:c1:48:e3:94:30:24:c2:33: c8:be:2d:9d:fb:86:f5:ae:09:4e:5a:81:de:92:5e:70:13:a7: 8c:d1:2a:a8:06:37:2f:a2:98:e8:bd:1b:e6:66:87:b1:52:30: 5f:cb:b6:11:77:5c:a9:62:97:8e:a5:70:f8:b0:c2:fd:ba:12: f2:48:3a:a5:38:88:37:18:10:58:e1:45:da:1f:b2:d2:71:91: 01:25:9f:fa:7c:c5:24:e8:e2:77:e2:6d:c3:08:2e:82:59:c3: e0:cc:38:3e:56:e1:2e:05:8d:5c:51:07:12:43:5d:b2:10:fa: 5a:dc:86:66:13:ce:6c:66:fc:f8:f3:ac:83:da:35:b1:b9:83: 41:aa:04:fa:39:9b:17:6e:eb:db:ae:da:86:1c:64:d0:83:95: bb:76:c7:f6:39:80:86:0e:c4:94:e1:19:81:f1:80:33:de:15: 67:f8:3f:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUM0REIxMTAvBgNVBAUTKEQ5Q0I4QTZFNTRFMjRCNTBGNEFGRkJGQUEwNTk1QkZE ODEwMjQzRUUwHhcNMjQwNTA0MjM0MzMzWhcNMjQwNTExMjM0MzMzWjAYMRYwFAYD VQQDEw02NjM2YzgyNS1jZjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtPI9cnO1oOOCRw9G6K6SJIQdJX5n92G9NI8+0YyGyqiqAU2n1gkiRaRePpn9 GMTEzCoLYmUWe8j2TS6DQQ/xTS3VWqcfQUL/ei02ItjAzthiXnxoN3JKmHLF2bUP yTtSowfyQDdLatzHy4fc04XJRc+JuqFy7WSQdVs6KDvq4vJut0kGBXJcRFyhP/K2 yYKeDtH2xK2bUy61n8KfOWceb9P9/AXYBfnQQRBclLm0Tko8GqZ+qKZQxcOIgAjT MGpL8Ohq2r9aQm5SSXk2WP3W+YuKWClSy2VS8bMhRPLdnjzUMpgB0KQ0AzipEg1n mw5v9hweicctZOPJ2GgTWyYGLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIPHCTke Suz8r48fmOpsTZhLRYIxMB8GA1UdIwQYMBaAFNnLim5U4ktQ9K/7+qBZW/2BAkPu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzREQi8zQzA3RTJENjM0 NzMxMUVCOTc5NEUyMjZDNEY5QUUwMi8yY3VLYmxUaVMxRDByX3Y2b0ZsYl9ZRUNR LTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJjdUtibFRpUzFEMHJfdjZvRmxiX1lFQ1EtNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QzREQi8zQzA3RTJENjM0NzMxMUVCOTc5NEUyMjZDNEY5QUUwMi8yY3VLYmxUaVMx RDByX3Y2b0ZsYl9ZRUNRLTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDILgtq3kHCV3fRrN5gnIcI3rScrtYVcR+Bcl7WeP24HMBeFsdcP4cO wrXTXqrMqonfb/dpr1BVybazVC6P4L1V0GaLLuwPrKFJQqH1Na4Y65mhwUjjlDAk wjPIvi2d+4b1rglOWoHekl5wE6eM0SqoBjcvopjovRvmZoexUjBfy7YRd1ypYpeO pXD4sML9uhLySDqlOIg3GBBY4UXaH7LScZEBJZ/6fMUk6OJ34m3DCC6CWcPgzDg+ VuEuBY1cUQcSQ12yEPpa3IZmE85sZvz486yD2jWxuYNBqgT6OZsXbuvbrtqGHGTQ g5W7dsf2OYCGDsSU4RmB8YAz3hVn+D+V -----END CERTIFICATE-----Generated at Sun May 5 01:22:23 2024 by rpki-client on console-fra.rpki-client.org