$ rpki-client -vvf rpki.apnic.net/member_repository/A91B334D/27E861D885F711EB92081711C4F9AE02/lRaRgJV2AETnT6qlSX0GcwraXzI.mft File: lRaRgJV2AETnT6qlSX0GcwraXzI.mft (raw, json) Hash identifier: G7NMDWmpa2hhzUHSDpKiLOKvTVQzxFhhRGeZ1Qb3pgk= Subject key identifier: D3:09:62:23:07:FE:0B:2C:9D:55:92:94:AF:60:07:0C:58:AD:D4:F1 Authority key identifier: 95:16:91:80:95:76:00:44:E7:4F:AA:A5:49:7D:06:73:0A:DA:5F:32 Certificate issuer: /CN=A91B334D/serialNumber=9516918095760044E74FAAA5497D06730ADA5F32 Certificate serial: 0594 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRaRgJV2AETnT6qlSX0GcwraXzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B334D/27E861D885F711EB92081711C4F9AE02/lRaRgJV2AETnT6qlSX0GcwraXzI.mft Manifest number: 058F Signing time: Sun 05 May 2024 00:36:37 +0000 Manifest this update: Sun 05 May 2024 00:36:36 +0000 Manifest next update: Sun 12 May 2024 00:36:36 +0000 Files and hashes: 1: lRaRgJV2AETnT6qlSX0GcwraXzI.crl (hash: GIgc7bpAEgNdmr32GZy2udWFcQ9K3nAWR2yvVuhmb8o=) 2: 589FBEDC860311EBAFE18309C4F9AE02.roa (hash: kbf3PCEGhvUXFavU5qFv+aaFLjEOZ7TZ8kHgmg3vUUE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B334D/27E861D885F711EB92081711C4F9AE02/lRaRgJV2AETnT6qlSX0GcwraXzI.crl rsync://rpki.apnic.net/member_repository/A91B334D/27E861D885F711EB92081711C4F9AE02/lRaRgJV2AETnT6qlSX0GcwraXzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRaRgJV2AETnT6qlSX0GcwraXzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1428 (0x594) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B334D/serialNumber=9516918095760044E74FAAA5497D06730ADA5F32 Validity Not Before: May 5 00:36:36 2024 GMT Not After : May 12 00:36:36 2024 GMT Subject: CN=6636d494-9ec2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:de:da:9b:b5:83:e0:93:74:58:90:70:00:12: 75:db:dd:cf:44:70:f1:b9:44:be:5b:fc:8c:2a:ae: 50:7c:3d:ef:9f:81:fd:ff:f3:9f:21:51:cf:2f:fe: 99:1c:82:3f:00:d2:97:72:d3:bc:88:db:59:4a:6c: a5:1f:f8:74:18:18:c4:c8:95:5b:b2:f6:3e:b0:e9: 50:20:60:8c:bb:06:e3:be:96:a1:30:52:ef:8b:e5: e2:64:f7:ea:1b:2e:ca:1a:2d:cf:7c:99:32:da:78: 12:c0:8c:14:5b:af:05:be:e3:2e:f5:5f:48:a4:0e: 28:f0:f6:fd:3f:de:14:ee:ba:66:da:d6:04:65:47: 84:cf:98:be:0d:5e:04:64:81:fe:fd:54:5b:2a:4a: c9:17:c5:ee:82:4b:fd:ff:ef:02:13:8b:69:09:07: 3c:3a:2d:97:1f:41:20:3c:b0:09:dd:fb:8a:13:68: 9e:e5:b7:84:fd:6b:68:cb:39:21:b0:26:23:ad:54: 33:2a:4a:78:f3:e3:5c:13:33:09:3b:c1:4c:04:d9: 61:04:af:b1:8c:f5:4d:91:42:1e:2c:65:87:5d:39: c0:10:f3:c3:eb:c9:01:07:88:84:0f:2b:32:07:4e: d9:93:38:b4:f0:98:a3:a0:ee:30:38:95:6c:30:ae: 5f:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:09:62:23:07:FE:0B:2C:9D:55:92:94:AF:60:07:0C:58:AD:D4:F1 X509v3 Authority Key Identifier: keyid:95:16:91:80:95:76:00:44:E7:4F:AA:A5:49:7D:06:73:0A:DA:5F:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B334D/27E861D885F711EB92081711C4F9AE02/lRaRgJV2AETnT6qlSX0GcwraXzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRaRgJV2AETnT6qlSX0GcwraXzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B334D/27E861D885F711EB92081711C4F9AE02/lRaRgJV2AETnT6qlSX0GcwraXzI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:09:c5:89:3f:78:28:08:64:a8:b9:4a:cf:a4:da:32:58:a4: 0d:46:97:01:26:22:1a:4b:39:a3:e9:51:64:a8:6b:1c:51:c9: 68:87:ec:c6:37:6b:c0:9a:81:80:42:1f:28:ec:4f:7d:d5:61: a5:21:d2:5d:89:4a:28:33:7f:9b:34:34:1e:6c:36:dd:a9:ac: 82:e5:01:db:14:e0:aa:ca:1a:57:00:a5:89:ab:14:a1:d1:15: 0c:94:01:e7:d2:6d:35:3d:c8:a2:01:a7:14:4d:d5:95:2b:7b: c3:47:a9:c1:43:c5:f6:a9:86:8d:59:55:c5:15:1e:c8:b4:d4: 74:65:8a:8c:2f:ab:f2:fd:5e:86:6d:c2:42:99:d5:9f:e0:6f: 42:35:01:4c:0c:ae:5c:ca:c3:a3:b9:6f:62:22:a0:41:73:65: 9f:c4:c1:13:1d:cf:a0:dc:9d:55:c7:67:89:81:65:47:f6:c6: 4f:d3:f6:7f:f4:28:bc:e1:bd:57:d3:77:f3:2f:f7:7e:ac:e2: b3:c0:15:92:cd:01:12:89:9d:a9:e2:ea:a0:a7:09:fe:75:4e: f2:05:db:d8:40:86:66:95:b7:0b:01:48:43:65:fe:80:ff:85: 04:60:c2:5c:10:cf:82:a1:e5:4d:66:65:5b:41:c9:f6:3b:f7: 91:9a:00:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjMzNEQxMTAvBgNVBAUTKDk1MTY5MTgwOTU3NjAwNDRFNzRGQUFBNTQ5N0QwNjcz MEFEQTVGMzIwHhcNMjQwNTA1MDAzNjM2WhcNMjQwNTEyMDAzNjM2WjAYMRYwFAYD VQQDEw02NjM2ZDQ5NC05ZWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwt7am7WD4JN0WJBwABJ1293PRHDxuUS+W/yMKq5QfD3vn4H9//OfIVHPL/6Z HII/ANKXctO8iNtZSmylH/h0GBjEyJVbsvY+sOlQIGCMuwbjvpahMFLvi+XiZPfq Gy7KGi3PfJky2ngSwIwUW68FvuMu9V9IpA4o8Pb9P94U7rpm2tYEZUeEz5i+DV4E ZIH+/VRbKkrJF8Xugkv9/+8CE4tpCQc8Oi2XH0EgPLAJ3fuKE2ie5beE/Wtoyzkh sCYjrVQzKkp48+NcEzMJO8FMBNlhBK+xjPVNkUIeLGWHXTnAEPPD68kBB4iEDysy B07Zkzi08JijoO4wOJVsMK5fgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNMJYiMH /gssnVWSlK9gBwxYrdTxMB8GA1UdIwQYMBaAFJUWkYCVdgBE50+qpUl9BnMK2l8y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzM0RC8yN0U4NjFEODg1 RjcxMUVCOTIwODE3MTFDNEY5QUUwMi9sUmFSZ0pWMkFFVG5UNnFsU1gwR2N3cmFY ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xSYVJnSlYyQUVUblQ2cWxTWDBHY3dyYVh6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzM0RC8yN0U4NjFEODg1RjcxMUVCOTIwODE3MTFDNEY5QUUwMi9sUmFSZ0pWMkFF VG5UNnFsU1gwR2N3cmFYekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKCcWJP3goCGSouUrPpNoyWKQNRpcBJiIaSzmj6VFkqGscUcloh+zG N2vAmoGAQh8o7E991WGlIdJdiUooM3+bNDQebDbdqayC5QHbFOCqyhpXAKWJqxSh 0RUMlAHn0m01PciiAacUTdWVK3vDR6nBQ8X2qYaNWVXFFR7ItNR0ZYqML6vy/V6G bcJCmdWf4G9CNQFMDK5cysOjuW9iIqBBc2WfxMETHc+g3J1Vx2eJgWVH9sZP0/Z/ 9Ci84b1X03fzL/d+rOKzwBWSzQESiZ2p4uqgpwn+dU7yBdvYQIZmlbcLAUhDZf6A /4UEYMJcEM+CoeVNZmVbQcn2O/eRmgCo -----END CERTIFICATE-----Generated at Sun May 5 01:22:23 2024 by rpki-client on console-fra.rpki-client.org