$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft File: MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft (raw, json) Hash identifier: YygEZ/gAxh9HGuPn7XAZymwWC/vaJu3BZV4THAtUmBk= Subject key identifier: 81:B6:3A:BB:55:D1:D4:6F:FC:89:BC:00:76:56:8F:01:6C:27:0A:C2 Authority key identifier: 30:6E:34:FA:84:DA:09:0C:60:01:B3:54:64:BB:8C:42:63:57:D9:28 Certificate issuer: /CN=A91B9EC7/serialNumber=306E34FA84DA090C6001B35464BB8C426357D928 Certificate serial: 5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft Manifest number: 5E Signing time: Wed 15 May 2024 07:45:58 +0000 Manifest this update: Wed 15 May 2024 07:45:57 +0000 Manifest next update: Wed 22 May 2024 07:45:57 +0000 Files and hashes: 1: MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl (hash: xDsVzgeFXq8BEr2bZ2Hp/Znak141wAlFiZYT+/zPxuo=) 2: 02FC3E3C82A511EEA1F2710DC4F9AE02.roa (hash: aHDAGIdqb3+uef3dy3v5/B5Dp7bJ8icDirVS1hpRF+o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:45:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9EC7/serialNumber=306E34FA84DA090C6001B35464BB8C426357D928 Validity Not Before: May 15 07:45:57 2024 GMT Not After : May 22 07:45:57 2024 GMT Subject: CN=66446836-13bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a8:97:a4:e1:cd:19:04:ca:69:2d:73:de:16: 16:4b:3e:51:b3:38:3f:3b:e2:92:8a:0e:8a:84:92: 54:7d:26:13:f0:b8:e3:b4:6a:55:88:a0:20:70:f3: fe:44:05:bc:a9:a6:5a:b0:d2:be:f9:4b:9f:9a:d7: 40:5f:f6:df:05:33:b8:b9:79:fa:85:a6:17:73:86: 4c:59:74:a0:d8:5f:07:db:08:3c:9e:f2:5d:88:ad: ab:4b:8a:e9:78:29:04:52:ab:8f:46:e6:3a:c1:7e: 6d:26:d1:d7:41:67:f5:e3:8b:87:b9:58:33:d5:da: 4f:73:9c:a8:b6:15:52:e8:75:b7:0a:32:d9:3f:80: 15:86:a0:ef:84:b3:6a:ec:2a:26:92:5f:3d:6d:0e: d6:fd:75:14:41:b0:1f:0d:fd:4b:d4:33:9a:ae:84: 2f:cb:d8:f8:21:09:25:c0:6a:de:22:f1:a1:af:6f: 00:00:aa:42:24:6a:08:a3:5d:ad:7c:c3:79:3f:f9: dc:0c:97:43:00:0b:be:73:99:49:66:7c:4f:f2:60: d2:81:7c:9f:be:1b:18:b4:01:4e:f4:3a:d4:91:cb: ec:da:8a:d6:b4:dc:29:69:a4:c6:2c:46:23:6b:a1: ad:45:e2:ce:6e:d4:13:6f:b0:b9:cb:c7:e0:fb:12: 89:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:B6:3A:BB:55:D1:D4:6F:FC:89:BC:00:76:56:8F:01:6C:27:0A:C2 X509v3 Authority Key Identifier: keyid:30:6E:34:FA:84:DA:09:0C:60:01:B3:54:64:BB:8C:42:63:57:D9:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:0d:71:4c:4f:aa:c9:bf:0c:19:51:d9:1b:97:65:15:f2:9e: 69:a1:3d:82:61:7e:17:5d:bd:b5:58:d5:2c:10:ba:7f:f1:56: 2c:99:55:d9:b9:85:1f:a6:56:06:61:cf:ed:0a:ea:b6:8f:de: ff:c0:7a:45:9d:5b:e6:8b:80:0e:45:53:c3:90:f1:b4:49:dd: c1:1f:cc:eb:79:3c:c0:f4:30:ed:0c:5b:96:4f:4b:8f:6d:49: 88:7c:e9:ab:14:bc:93:46:b8:f2:2f:86:2f:f3:2c:4c:55:43: b1:ef:01:e2:1b:11:d7:54:6a:57:e8:0a:8f:61:65:2c:7d:0d: b8:e7:6e:c2:70:a1:cd:ce:21:8d:f9:32:6b:06:b8:cd:7d:07: ff:1c:20:a8:44:01:d8:7b:ad:a6:2a:ed:5c:30:25:cd:9a:02: c4:d3:14:bb:3a:43:ac:7e:3f:ed:45:f6:a3:f1:be:40:62:a1: 6d:c1:fc:b1:49:cc:ea:d8:c3:70:eb:55:45:cb:05:e2:8a:6d: 20:eb:cd:44:d1:e8:04:73:7d:32:e5:fc:85:ee:b7:15:89:7c: 23:0c:aa:e7:7c:f0:f0:ae:2d:dd:60:12:c5:ad:a3:74:f7:f8: 12:e2:be:fa:85:7f:a9:51:40:83:2d:6a:d9:4a:77:62:2e:76: d6:63:92:cf -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OUVDNzExMC8GA1UEBRMoMzA2RTM0RkE4NERBMDkwQzYwMDFCMzU0NjRCQjhDNDI2 MzU3RDkyODAeFw0yNDA1MTUwNzQ1NTdaFw0yNDA1MjIwNzQ1NTdaMBgxFjAUBgNV BAMTDTY2NDQ2ODM2LTEzYmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZqJek4c0ZBMppLXPeFhZLPlGzOD874pKKDoqEklR9JhPwuOO0alWIoCBw8/5E Bbypplqw0r75S5+a10Bf9t8FM7i5efqFphdzhkxZdKDYXwfbCDye8l2IratLiul4 KQRSq49G5jrBfm0m0ddBZ/Xji4e5WDPV2k9znKi2FVLodbcKMtk/gBWGoO+Es2rs KiaSXz1tDtb9dRRBsB8N/UvUM5quhC/L2PghCSXAat4i8aGvbwAAqkIkagijXa18 w3k/+dwMl0MAC75zmUlmfE/yYNKBfJ++Gxi0AU70OtSRy+zaita03ClppMYsRiNr oa1F4s5u1BNvsLnLx+D7EomZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgbY6u1XR 1G/8ibwAdlaPAWwnCsIwHwYDVR0jBBgwFoAUMG40+oTaCQxgAbNUZLuMQmNX2Sgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5RUM3L0U2M0YyRjhBODJB MzExRUU5QjExNzM1N0M0RjlBRTAyL01HNDAtb1RhQ1F4Z0FiTlVaTHVNUW1OWDJT Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTUc0MC1vVGFDUXhnQWJOVVpMdU1RbU5YMlNnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5 RUM3L0U2M0YyRjhBODJBMzExRUU5QjExNzM1N0M0RjlBRTAyL01HNDAtb1RhQ1F4 Z0FiTlVaTHVNUW1OWDJTZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIINcUxPqsm/DBlR2RuXZRXynmmhPYJhfhddvbVY1SwQun/xViyZVdm5 hR+mVgZhz+0K6raP3v/AekWdW+aLgA5FU8OQ8bRJ3cEfzOt5PMD0MO0MW5ZPS49t SYh86asUvJNGuPIvhi/zLExVQ7HvAeIbEddUalfoCo9hZSx9DbjnbsJwoc3OIY35 MmsGuM19B/8cIKhEAdh7raYq7VwwJc2aAsTTFLs6Q6x+P+1F9qPxvkBioW3B/LFJ zOrYw3DrVUXLBeKKbSDrzUTR6ARzfTLl/IXutxWJfCMMqud88PCuLd1gEsWto3T3 +BLivvqFf6lRQIMtatlKd2IudtZjks8= -----END CERTIFICATE-----Generated at Wed May 15 09:28:14 2024 by rpki-client on console-fra.rpki-client.org