$ rpki-client -vvf rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft File: sJELB8hrD_owClKsfDH8tSwFMtc.mft (raw, json) Hash identifier: PtdTjuIL3Vltzu5KUKh8mrXi/aDYuKCts+BBqVgAEeI= Subject key identifier: 06:40:23:78:5F:B8:ED:D9:44:FB:9D:F1:95:CC:4C:A9:13:57:64:30 Authority key identifier: B0:91:0B:07:C8:6B:0F:FA:30:0A:52:AC:7C:31:FC:B5:2C:05:32:D7 Certificate issuer: /CN=A91B777C/serialNumber=B0910B07C86B0FFA300A52AC7C31FCB52C0532D7 Certificate serial: 0536 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft Manifest number: 0531 Signing time: Mon 03 Jun 2024 01:28:27 +0000 Manifest this update: Mon 03 Jun 2024 01:28:27 +0000 Manifest next update: Mon 10 Jun 2024 01:28:27 +0000 Files and hashes: 1: sJELB8hrD_owClKsfDH8tSwFMtc.crl (hash: n8d/FxbDltW4xe3aLmELjheR7M6i6JF4Ry4kewQJWu0=) 2: 9095FC2CB2E811EBADBB3753C4F9AE02.roa (hash: UEtjJ89kzBo6zKqimUbcEU98SNn7TiyG61TgGa4Lf/s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.crl rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Jun 2024 01:28:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1334 (0x536) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B777C/serialNumber=B0910B07C86B0FFA300A52AC7C31FCB52C0532D7 Validity Not Before: Jun 3 01:28:27 2024 GMT Not After : Jun 10 01:28:27 2024 GMT Subject: CN=665d1c3b-28e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:73:dd:30:ab:3d:b6:7e:0a:c0:75:dc:e4:66: c6:77:4e:4b:cf:02:ae:44:51:a0:8b:f5:ec:9d:d6: 22:33:2f:6a:8f:6e:04:53:b7:75:39:86:76:4a:bd: ce:11:dc:ea:ff:ff:17:d5:08:bf:9e:0b:fb:5a:ff: 10:01:16:4c:72:bd:a5:6f:4d:cb:f2:40:87:56:2d: 7e:87:e6:36:b7:ab:a0:f7:39:bc:b3:72:8f:3b:70: 3d:ab:e4:05:7f:15:5c:4c:cf:e9:4c:bf:0c:66:ef: c8:bc:bf:89:d7:ae:98:0a:6d:2e:ce:ab:22:6b:0a: 4f:2f:d7:00:12:27:1a:e9:39:5f:cb:f3:73:68:72: 7d:89:47:08:0f:15:40:97:8e:f1:5e:8b:ed:c7:82: c9:34:25:57:d5:81:22:7f:3a:93:75:38:3b:a1:8d: ca:9e:ff:c8:bc:f5:09:27:e9:c5:9d:94:a0:7a:07: f9:53:79:5f:07:ab:1e:66:9a:c1:86:b2:3d:24:97: c2:a2:f2:7b:c3:e3:13:11:93:1a:3b:aa:f4:65:a3: 74:d1:e0:20:1b:1f:17:ac:85:9d:ec:6e:a3:dd:79: 3c:f7:d9:4c:d9:b5:49:4a:26:71:4f:7a:73:6e:d7: 99:9e:3e:e8:2f:5b:c8:67:09:97:c2:1a:69:ae:73: fc:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:40:23:78:5F:B8:ED:D9:44:FB:9D:F1:95:CC:4C:A9:13:57:64:30 X509v3 Authority Key Identifier: keyid:B0:91:0B:07:C8:6B:0F:FA:30:0A:52:AC:7C:31:FC:B5:2C:05:32:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:29:cc:17:71:df:e8:bd:89:ed:cb:0b:fb:9c:1b:f1:a9:8d: 34:d2:d9:b8:f3:3a:1a:03:96:a3:42:c8:c4:af:06:35:6a:71: e0:51:5b:3b:8b:e3:5f:1a:ee:e9:5f:4c:db:2f:02:6a:f7:b3: f9:d8:75:f5:16:5a:7c:03:3b:a3:e1:e6:59:56:63:a5:cc:7a: ec:e1:d2:ad:30:e0:f6:7c:17:b7:2c:64:cc:11:bf:76:7a:a6: 1d:5e:40:e4:e7:92:78:38:b2:81:d9:8f:79:b0:4b:4b:c1:b8: 11:bd:6e:2e:2b:e6:3f:c5:bc:48:ac:0f:2d:2a:30:64:ae:91: 42:a0:77:da:d6:cc:f9:32:78:03:d9:ec:6f:a9:4f:3c:72:43: 52:89:53:12:b0:29:ca:da:cc:dc:6d:1c:b3:e3:04:53:59:de: 9a:61:9e:3f:cf:37:aa:94:55:5d:3d:29:f8:bf:d8:4b:46:62: 40:bf:c2:55:49:db:0b:ef:c2:ec:6d:95:0b:df:47:3c:6c:66: 0a:e0:42:32:bb:d4:b6:2b:38:01:29:67:3d:9f:1c:58:53:83: 76:d4:8e:16:2f:56:de:3d:ad:10:2f:a3:32:d0:7f:dc:cc:ac: 86:94:81:6a:b0:e3:df:b7:0d:08:91:fe:d5:ab:9d:06:ba:a6: 40:36:82:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc3N0MxMTAvBgNVBAUTKEIwOTEwQjA3Qzg2QjBGRkEzMDBBNTJBQzdDMzFGQ0I1 MkMwNTMyRDcwHhcNMjQwNjAzMDEyODI3WhcNMjQwNjEwMDEyODI3WjAYMRYwFAYD VQQDEw02NjVkMWMzYi0yOGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArXPdMKs9tn4KwHXc5GbGd05LzwKuRFGgi/XsndYiMy9qj24EU7d1OYZ2Sr3O Edzq//8X1Qi/ngv7Wv8QARZMcr2lb03L8kCHVi1+h+Y2t6ug9zm8s3KPO3A9q+QF fxVcTM/pTL8MZu/IvL+J166YCm0uzqsiawpPL9cAEica6Tlfy/NzaHJ9iUcIDxVA l47xXovtx4LJNCVX1YEifzqTdTg7oY3Knv/IvPUJJ+nFnZSgegf5U3lfB6seZprB hrI9JJfCovJ7w+MTEZMaO6r0ZaN00eAgGx8XrIWd7G6j3Xk899lM2bVJSiZxT3pz bteZnj7oL1vIZwmXwhpprnP8bwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAZAI3hf uO3ZRPud8ZXMTKkTV2QwMB8GA1UdIwQYMBaAFLCRCwfIaw/6MApSrHwx/LUsBTLX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzc3Qy82MkQwM0U4Q0Iy REExMUVCOEIzODRBNjBDNEY5QUUwMi9zSkVMQjhockRfb3dDbEtzZkRIOHRTd0ZN dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3NKRUxCOGhyRF9vd0NsS3NmREg4dFN3Rk10Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Nzc3Qy82MkQwM0U4Q0IyREExMUVCOEIzODRBNjBDNEY5QUUwMi9zSkVMQjhockRf b3dDbEtzZkRIOHRTd0ZNdGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAKcwXcd/ovYntywv7nBvxqY000tm48zoaA5ajQsjErwY1anHgUVs7 i+NfGu7pX0zbLwJq97P52HX1Flp8Azuj4eZZVmOlzHrs4dKtMOD2fBe3LGTMEb92 eqYdXkDk55J4OLKB2Y95sEtLwbgRvW4uK+Y/xbxIrA8tKjBkrpFCoHfa1sz5MngD 2exvqU88ckNSiVMSsCnK2szcbRyz4wRTWd6aYZ4/zzeqlFVdPSn4v9hLRmJAv8JV SdsL78LsbZUL30c8bGYK4EIyu9S2KzgBKWc9nxxYU4N21I4WL1bePa0QL6My0H/c zKyGlIFqsOPftw0Ikf7Vq50GuqZANoIj -----END CERTIFICATE-----Generated at Mon Jun 3 02:23:46 2024 by rpki-client on console-fra.rpki-client.org