$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft File: CB6icKn0s2sOyJai0hSO5Ok-Xys.mft (raw, json) Hash identifier: 0y+ciIdyHCKomcnf4mXhrluctHNPZkWJqWaQpZfhoRM= Subject key identifier: 12:77:F6:86:8A:73:8D:6B:87:4F:CC:22:A3:50:D5:82:E1:4E:BF:88 Authority key identifier: 08:1E:A2:70:A9:F4:B3:6B:0E:C8:96:A2:D2:14:8E:E4:E9:3E:5F:2B Certificate issuer: /CN=A91BB921/serialNumber=081EA270A9F4B36B0EC896A2D2148EE4E93E5F2B Certificate serial: 68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft Manifest number: 67 Signing time: Wed 15 May 2024 07:40:45 +0000 Manifest this update: Wed 15 May 2024 07:40:45 +0000 Manifest next update: Wed 22 May 2024 07:40:45 +0000 Files and hashes: 1: CB6icKn0s2sOyJai0hSO5Ok-Xys.crl (hash: qDKd48+jIZSIS9Bn4sHOxbycKRY4eJ+V9C3rR/G0Hco=) 2: 5A387584756311EEA256FD57C4F9AE02.roa (hash: rKlNDAL+YS5APh9mVe38YNcav6hea+4bXzjYijoMe5E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.crl rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:40:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB921/serialNumber=081EA270A9F4B36B0EC896A2D2148EE4E93E5F2B Validity Not Before: May 15 07:40:45 2024 GMT Not After : May 22 07:40:45 2024 GMT Subject: CN=664466fd-b9bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a9:d5:0f:e8:e3:82:d4:26:ef:38:19:1e:1d: 34:f8:a9:80:79:37:27:13:c8:25:d1:5c:09:d1:12: cd:06:83:20:bb:9c:8a:ac:23:7b:79:49:a4:cd:39: e4:05:e2:68:89:d7:b1:c5:f0:d0:ed:e2:b2:13:8a: 53:a4:80:9f:32:2f:fb:77:ec:d5:aa:37:cb:e8:6b: 54:5b:31:2e:46:81:e5:cd:e0:e3:cb:9e:6f:43:86: b5:22:b3:48:4e:ee:3c:25:b1:6a:e8:42:9d:8c:e4: 4c:0f:27:0e:94:93:ae:94:4e:3b:fa:c2:c4:f2:65: 10:69:a7:73:d6:68:52:d3:d8:1e:92:0b:b9:8c:b9: 52:33:19:cd:cf:4d:84:24:72:98:12:be:ae:6a:80: a9:09:7b:78:e0:7f:56:a3:78:23:4c:5a:77:0b:6b: e5:31:4c:dc:9a:f9:1e:38:5e:07:19:7c:ae:1d:7c: a4:72:81:17:cb:42:06:f6:d1:9b:4c:5f:02:c1:75: 41:d4:24:79:be:8a:67:c8:87:ae:b2:29:5a:94:b2: ec:2b:ab:c5:51:69:5d:44:ef:a6:1a:2d:65:ce:a2: b9:dd:59:1b:f9:93:ee:38:b3:17:97:8a:fb:c3:dd: a9:62:3c:39:43:d6:81:66:39:89:85:29:c2:9b:13: 77:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:77:F6:86:8A:73:8D:6B:87:4F:CC:22:A3:50:D5:82:E1:4E:BF:88 X509v3 Authority Key Identifier: keyid:08:1E:A2:70:A9:F4:B3:6B:0E:C8:96:A2:D2:14:8E:E4:E9:3E:5F:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:04:c1:2c:11:86:f7:37:25:44:7d:a4:ba:26:36:df:fb:76: a7:8e:f3:47:f3:72:ce:c4:bb:78:f2:a2:a7:9a:36:c5:f8:da: 1e:3d:04:19:36:af:52:b7:5e:f3:bc:3b:5d:f2:1f:f1:27:d7: 33:a4:94:c6:82:9e:c0:47:86:2b:84:7f:07:37:7f:7e:52:88: 8e:4d:8f:6e:29:29:9d:60:1c:7a:ec:b6:68:8c:a7:49:0c:4c: be:18:1b:14:44:68:af:ce:7a:ec:84:0b:7a:3b:a1:e9:e2:85: 04:b0:58:ad:04:2c:89:3b:31:da:aa:b8:42:02:9d:fe:19:5b: da:23:fd:08:4d:ef:0c:f8:3f:2d:5c:6a:f1:10:6f:15:e8:97: 7e:7c:f9:4f:c5:c0:2e:3d:9c:17:fc:8b:b3:9e:42:20:2d:37: b5:9b:bf:00:48:75:cf:51:46:06:3f:25:25:19:35:e9:61:49: 0b:5e:e7:29:c3:b7:3f:39:38:16:3e:05:4f:f3:e8:38:80:18: a2:2f:10:83:d2:f1:ef:0d:df:06:02:ed:a4:7c:0d:61:a6:bb: 78:a9:c1:07:d3:84:e4:c2:63:0c:72:f5:93:57:af:d0:dd:53: 1e:43:82:33:e6:ac:9d:1f:4e:b6:13:47:f9:f6:23:ed:7c:e1: 5c:27:f5:2f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QjkyMTExMC8GA1UEBRMoMDgxRUEyNzBBOUY0QjM2QjBFQzg5NkEyRDIxNDhFRTRF OTNFNUYyQjAeFw0yNDA1MTUwNzQwNDVaFw0yNDA1MjIwNzQwNDVaMBgxFjAUBgNV BAMTDTY2NDQ2NmZkLWI5YmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+qdUP6OOC1CbvOBkeHTT4qYB5NycTyCXRXAnREs0GgyC7nIqsI3t5SaTNOeQF 4miJ17HF8NDt4rITilOkgJ8yL/t37NWqN8voa1RbMS5GgeXN4OPLnm9DhrUis0hO 7jwlsWroQp2M5EwPJw6Uk66UTjv6wsTyZRBpp3PWaFLT2B6SC7mMuVIzGc3PTYQk cpgSvq5qgKkJe3jgf1ajeCNMWncLa+UxTNya+R44XgcZfK4dfKRygRfLQgb20ZtM XwLBdUHUJHm+imfIh66yKVqUsuwrq8VRaV1E76YaLWXOorndWRv5k+44sxeXivvD 3aliPDlD1oFmOYmFKcKbE3fjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEnf2hopz jWuHT8wio1DVguFOv4gwHwYDVR0jBBgwFoAUCB6icKn0s2sOyJai0hSO5Ok+Xysw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCOTIxL0REQjhFMTRDNzU2 MjExRUVCQjgyNTI1N0M0RjlBRTAyL0NCNmljS24wczJzT3lKYWkwaFNPNU9rLVh5 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ0I2aWNLbjBzMnNPeUphaTBoU081T2stWHlzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJC OTIxL0REQjhFMTRDNzU2MjExRUVCQjgyNTI1N0M0RjlBRTAyL0NCNmljS24wczJz T3lKYWkwaFNPNU9rLVh5cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJAEwSwRhvc3JUR9pLomNt/7dqeO80fzcs7Eu3jyoqeaNsX42h49BBk2 r1K3XvO8O13yH/En1zOklMaCnsBHhiuEfwc3f35SiI5Nj24pKZ1gHHrstmiMp0kM TL4YGxREaK/OeuyEC3o7oenihQSwWK0ELIk7MdqquEICnf4ZW9oj/QhN7wz4Py1c avEQbxXol358+U/FwC49nBf8i7OeQiAtN7WbvwBIdc9RRgY/JSUZNelhSQte5ynD tz85OBY+BU/z6DiAGKIvEIPS8e8N3wYC7aR8DWGmu3ipwQfThOTCYwxy9ZNXr9Dd Ux5DgjPmrJ0fTrYTR/n2I+184Vwn9S8= -----END CERTIFICATE-----Generated at Wed May 15 09:28:14 2024 by rpki-client on console-fra.rpki-client.org