$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft File: cwYbqQQBgewK602PbgA_g4_JxI8.mft (raw, json) Hash identifier: hxarO/+rQIAsZFvRDEacmTrmQSB7U5mfNMyXMnYcMwo= Subject key identifier: 50:82:E7:F8:63:A2:0B:44:02:96:4D:84:A8:DE:1A:27:66:ED:8B:FC Authority key identifier: 73:06:1B:A9:04:01:81:EC:0A:EB:4D:8F:6E:00:3F:83:8F:C9:C4:8F Certificate issuer: /CN=A91B65AC/serialNumber=73061BA9040181EC0AEB4D8F6E003F838FC9C48F Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cwYbqQQBgewK602PbgA_g4_JxI8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft Manifest number: 21 Signing time: Wed 15 May 2024 08:45:06 +0000 Manifest this update: Wed 15 May 2024 08:45:06 +0000 Manifest next update: Wed 22 May 2024 08:45:06 +0000 Files and hashes: 1: cwYbqQQBgewK602PbgA_g4_JxI8.crl (hash: 46NwHiRPa9ymZj3ATvRkVfFAJ9FOpAFZWA81xuE8AYU=) 2: 7D2E766CE5AF11EE9A0A642FC4F9AE02.roa (hash: FB0V4RMdFHeXRpqHQF3eni47ItP+S5H4Tlgoc4AQRYQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.crl rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cwYbqQQBgewK602PbgA_g4_JxI8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65AC/serialNumber=73061BA9040181EC0AEB4D8F6E003F838FC9C48F Validity Not Before: May 15 08:45:06 2024 GMT Not After : May 22 08:45:06 2024 GMT Subject: CN=66447612-55a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:2f:8d:43:0d:c2:e9:ae:6c:40:17:be:50:f8: 2f:c1:b1:3c:5d:a8:9a:b8:3a:db:ed:7e:bb:d3:08: 83:eb:85:c3:d1:02:b0:f8:df:ac:ad:14:8e:8b:32: ef:6a:9a:4d:b1:b9:e2:62:cf:53:2b:38:19:54:b0: 86:f4:47:c4:59:c2:23:4a:18:d1:38:58:98:d1:55: cd:0f:a4:1c:fc:c0:d4:99:7f:32:b3:f2:1f:27:00: ae:57:ab:ad:3c:b2:ea:94:9c:8b:de:bc:87:0d:ab: f9:e0:91:70:7c:23:ac:95:77:27:d1:41:5b:24:5c: 8f:b6:2d:c7:50:50:fc:cd:cb:b9:08:f8:b9:d8:fb: de:7d:d0:3d:8b:2a:11:27:68:1b:cd:3a:23:67:00: 54:50:a3:06:67:6e:19:2e:e6:a7:8f:8a:88:0d:7f: 2d:20:4c:60:c8:5f:3a:92:43:48:41:91:8d:c0:cc: 9a:1a:48:3a:83:96:d8:ad:2c:29:ee:5f:1e:0f:dc: 52:bb:ab:80:4d:86:75:fa:64:b1:76:aa:00:4c:54: 78:8a:6a:0a:ff:15:6d:ed:95:69:f6:5e:10:0c:ce: ed:b1:db:e1:20:09:1b:0c:cd:17:32:09:d4:a1:f1: 73:30:68:5a:6e:55:fb:a7:b6:3a:a3:54:2b:90:8e: a0:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:82:E7:F8:63:A2:0B:44:02:96:4D:84:A8:DE:1A:27:66:ED:8B:FC X509v3 Authority Key Identifier: keyid:73:06:1B:A9:04:01:81:EC:0A:EB:4D:8F:6E:00:3F:83:8F:C9:C4:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cwYbqQQBgewK602PbgA_g4_JxI8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:93:0c:87:22:df:c4:be:8d:20:2c:b9:c6:7a:1d:80:65:87: 34:59:5e:1e:de:29:bd:66:22:89:ee:a7:73:75:f0:26:7d:9a: a3:9e:0f:da:53:72:eb:86:4d:82:50:fe:52:f6:f2:15:31:b6: 6f:aa:2d:63:a1:17:4b:87:86:bb:4f:b4:80:89:22:ed:23:c8: ca:8b:bf:29:00:0c:07:77:54:ec:24:c4:7c:8d:67:f1:9f:7f: 5f:96:03:23:37:f2:5a:c4:3f:a0:82:6f:76:dd:47:bb:64:07: b8:21:00:41:58:6c:e6:e8:01:89:f3:68:83:17:88:26:81:10: 11:cf:97:05:a2:f3:f7:ae:93:da:fa:ac:ec:13:9c:65:c2:bf: 9c:39:63:13:2e:7e:52:62:6c:5d:b1:27:5b:61:4c:c2:04:b3: dc:2c:c5:6f:dd:0f:b6:4a:48:97:71:8a:df:fa:21:9d:12:e3: a6:bf:f5:44:cb:c1:15:b1:02:73:65:18:cc:08:27:fc:8c:32: 79:29:b4:ac:15:18:20:69:e7:4c:56:a6:93:67:6f:e7:70:6e: 1a:8f:16:6e:09:be:7c:f9:1f:1f:8b:4d:e6:b0:ba:4c:dd:42: 83:68:f1:fd:4b:e9:54:7e:bd:34:77:68:e3:9e:d4:a4:a0:34: f8:4e:65:19 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NjVBQzExMC8GA1UEBRMoNzMwNjFCQTkwNDAxODFFQzBBRUI0RDhGNkUwMDNGODM4 RkM5QzQ4RjAeFw0yNDA1MTUwODQ1MDZaFw0yNDA1MjIwODQ1MDZaMBgxFjAUBgNV BAMTDTY2NDQ3NjEyLTU1YTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNL41DDcLprmxAF75Q+C/BsTxdqJq4OtvtfrvTCIPrhcPRArD436ytFI6LMu9q mk2xueJiz1MrOBlUsIb0R8RZwiNKGNE4WJjRVc0PpBz8wNSZfzKz8h8nAK5Xq608 suqUnIvevIcNq/ngkXB8I6yVdyfRQVskXI+2LcdQUPzNy7kI+LnY+9590D2LKhEn aBvNOiNnAFRQowZnbhku5qePiogNfy0gTGDIXzqSQ0hBkY3AzJoaSDqDltitLCnu Xx4P3FK7q4BNhnX6ZLF2qgBMVHiKagr/FW3tlWn2XhAMzu2x2+EgCRsMzRcyCdSh 8XMwaFpuVfuntjqjVCuQjqAnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUILn+GOi C0QClk2EqN4aJ2bti/wwHwYDVR0jBBgwFoAUcwYbqQQBgewK602PbgA/g4/JxI8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2NUFDL0Q0RjNEQjlFRTFF MDExRUVBRjZFMUU2OEM0RjlBRTAyL2N3WWJxUVFCZ2V3SzYwMlBiZ0FfZzRfSnhJ OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY3dZYnFRUUJnZXdLNjAyUGJnQV9nNF9KeEk4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2 NUFDL0Q0RjNEQjlFRTFFMDExRUVBRjZFMUU2OEM0RjlBRTAyL2N3WWJxUVFCZ2V3 SzYwMlBiZ0FfZzRfSnhJOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABuTDIci38S+jSAsucZ6HYBlhzRZXh7eKb1mIonup3N18CZ9mqOeD9pT cuuGTYJQ/lL28hUxtm+qLWOhF0uHhrtPtICJIu0jyMqLvykADAd3VOwkxHyNZ/Gf f1+WAyM38lrEP6CCb3bdR7tkB7ghAEFYbOboAYnzaIMXiCaBEBHPlwWi8/euk9r6 rOwTnGXCv5w5YxMuflJibF2xJ1thTMIEs9wsxW/dD7ZKSJdxit/6IZ0S46a/9UTL wRWxAnNlGMwIJ/yMMnkptKwVGCBp50xWppNnb+dwbhqPFm4Jvnz5Hx+LTeawukzd QoNo8f1L6VR+vTR3aOOe1KSgNPhOZRk= -----END CERTIFICATE-----Generated at Wed May 15 09:28:14 2024 by rpki-client on console-fra.rpki-client.org