$ rpki-client -vvf rpki.apnic.net/member_repository/A91C24C5/D1E2D968835911EEB25CF144C4F9AE02/imIbx3o91BcMuRA_-HiLyQkAgtE.mft File: imIbx3o91BcMuRA_-HiLyQkAgtE.mft (raw, json) Hash identifier: QJ3RU6sJW6FxlLvFIW9cT4mZwAYRtn7Q7dMjFzDFvuI= Subject key identifier: F1:5F:8B:5A:9B:83:5C:F4:5E:AE:0F:54:33:01:B4:D0:47:F6:77:33 Authority key identifier: 8A:62:1B:C7:7A:3D:D4:17:0C:B9:10:3F:F8:78:8B:C9:09:00:82:D1 Certificate issuer: /CN=A91C24C5/serialNumber=8A621BC77A3DD4170CB9103FF8788BC9090082D1 Certificate serial: 62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imIbx3o91BcMuRA_-HiLyQkAgtE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C24C5/D1E2D968835911EEB25CF144C4F9AE02/imIbx3o91BcMuRA_-HiLyQkAgtE.mft Manifest number: 60 Signing time: Fri 17 May 2024 07:46:45 +0000 Manifest this update: Fri 17 May 2024 07:46:44 +0000 Manifest next update: Fri 24 May 2024 07:46:44 +0000 Files and hashes: 1: imIbx3o91BcMuRA_-HiLyQkAgtE.crl (hash: lfJz4yToqQQTd2JdMnaoMHMxL5v/OktHzaPrE1QjqDg=) 2: 872F5E22835A11EE9FFEC146C4F9AE02.roa (hash: tjxh3rndOUkMSOmtwJhWl1k7jDHiKVupPT8znN9YBZ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C24C5/D1E2D968835911EEB25CF144C4F9AE02/imIbx3o91BcMuRA_-HiLyQkAgtE.crl rsync://rpki.apnic.net/member_repository/A91C24C5/D1E2D968835911EEB25CF144C4F9AE02/imIbx3o91BcMuRA_-HiLyQkAgtE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imIbx3o91BcMuRA_-HiLyQkAgtE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 07:35:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C24C5/serialNumber=8A621BC77A3DD4170CB9103FF8788BC9090082D1 Validity Not Before: May 17 07:46:44 2024 GMT Not After : May 24 07:46:44 2024 GMT Subject: CN=66470b64-b446 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:17:bf:ad:c2:95:f6:a0:d8:99:51:ae:7e:87: ae:08:41:95:13:b8:83:e2:ed:f3:0b:b0:ea:98:7e: 82:58:e6:9c:6b:6f:01:a3:0e:84:65:f2:01:85:c9: 6e:0e:27:4f:17:48:01:ab:c4:d0:59:19:52:24:b9: 51:04:d2:c6:52:33:52:08:2c:e3:b3:29:10:90:37: 5d:8e:15:1c:8e:80:f6:2f:66:7f:bf:49:5e:04:e8: 4f:73:8a:03:7f:04:35:00:01:ea:f4:10:7b:4f:ed: d9:f7:5a:b4:cb:8d:20:ec:80:fc:54:c4:22:8c:ab: 06:e2:72:0e:90:9d:91:d7:f1:d3:67:d0:e6:e5:e0: 18:53:fc:6b:85:25:98:b4:cd:4a:ad:de:82:50:7f: 50:93:eb:0b:e4:0f:d3:d3:69:68:b2:a7:5e:2a:48: ef:43:3a:9a:00:82:91:98:f3:93:c9:49:74:e9:22: 0c:3f:a1:56:bf:72:66:ad:60:18:cb:df:a5:88:c2: b4:44:1b:54:40:17:e1:0b:14:8a:15:03:3f:f7:b8: 30:62:cf:d5:d1:20:9f:b3:ab:12:b2:e9:80:a6:f0: 26:f0:c3:86:b6:8a:b5:76:67:f5:58:49:86:43:7e: e6:75:cc:b9:1a:ba:7d:9e:11:24:19:67:5f:01:41: 19:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:5F:8B:5A:9B:83:5C:F4:5E:AE:0F:54:33:01:B4:D0:47:F6:77:33 X509v3 Authority Key Identifier: keyid:8A:62:1B:C7:7A:3D:D4:17:0C:B9:10:3F:F8:78:8B:C9:09:00:82:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C24C5/D1E2D968835911EEB25CF144C4F9AE02/imIbx3o91BcMuRA_-HiLyQkAgtE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imIbx3o91BcMuRA_-HiLyQkAgtE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C24C5/D1E2D968835911EEB25CF144C4F9AE02/imIbx3o91BcMuRA_-HiLyQkAgtE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:cc:9d:99:c2:d6:21:da:88:c5:38:bd:c0:60:89:c9:c2:90: 4b:94:62:d6:ae:bc:de:06:70:be:e2:05:6e:8d:be:4b:4c:1d: 9d:83:21:4e:2a:21:cf:ac:6c:5e:32:21:13:5a:49:51:8f:c1: a2:39:52:fb:64:3c:29:60:af:33:34:40:94:9f:eb:e1:7c:c6: 90:4d:08:89:90:53:8f:56:9d:7a:f8:cc:b3:e5:6e:51:89:68: 9e:8f:9d:1e:cc:5f:aa:4e:bc:7a:e2:88:d0:bc:f0:92:04:8c: 08:b8:45:77:14:89:94:08:0a:6f:d8:7a:30:7f:f7:c4:a6:8b: 71:7f:59:af:3c:61:bb:33:39:38:62:60:7d:7e:fb:3e:4b:ca: 7c:25:67:9b:6c:62:2c:53:99:ce:4e:8a:98:c3:65:fa:a1:41: c6:d4:bc:c3:6b:10:f9:93:03:f4:23:86:1e:af:60:67:46:bc: a5:0a:93:2e:6a:03:19:fe:52:61:2a:e2:3e:6a:59:cb:cc:91: 3e:da:ee:3c:3a:3d:9b:d7:e9:7c:ec:a5:ce:57:23:e0:56:c5: a8:2e:0f:83:a8:4b:d5:fe:51:2e:22:bc:46:cc:4c:84:35:5c: 17:43:e9:7c:04:20:32:0d:df:d0:c5:a5:22:e3:22:df:01:46: 73:c9:83:41 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MjRDNTExMC8GA1UEBRMoOEE2MjFCQzc3QTNERDQxNzBDQjkxMDNGRjg3ODhCQzkw OTAwODJEMTAeFw0yNDA1MTcwNzQ2NDRaFw0yNDA1MjQwNzQ2NDRaMBgxFjAUBgNV BAMTDTY2NDcwYjY0LWI0NDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIF7+twpX2oNiZUa5+h64IQZUTuIPi7fMLsOqYfoJY5pxrbwGjDoRl8gGFyW4O J08XSAGrxNBZGVIkuVEE0sZSM1IILOOzKRCQN12OFRyOgPYvZn+/SV4E6E9zigN/ BDUAAer0EHtP7dn3WrTLjSDsgPxUxCKMqwbicg6QnZHX8dNn0Obl4BhT/GuFJZi0 zUqt3oJQf1CT6wvkD9PTaWiyp14qSO9DOpoAgpGY85PJSXTpIgw/oVa/cmatYBjL 36WIwrREG1RAF+ELFIoVAz/3uDBiz9XRIJ+zqxKy6YCm8Cbww4a2irV2Z/VYSYZD fuZ1zLkaun2eESQZZ18BQRlTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8V+LWpuD XPRerg9UMwG00Ef2dzMwHwYDVR0jBBgwFoAUimIbx3o91BcMuRA/+HiLyQkAgtEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMyNEM1L0QxRTJEOTY4ODM1 OTExRUVCMjVDRjE0NEM0RjlBRTAyL2ltSWJ4M285MUJjTXVSQV8tSGlMeVFrQWd0 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaW1JYngzbzkxQmNNdVJBXy1IaUx5UWtBZ3RFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMy NEM1L0QxRTJEOTY4ODM1OTExRUVCMjVDRjE0NEM0RjlBRTAyL2ltSWJ4M285MUJj TXVSQV8tSGlMeVFrQWd0RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEnMnZnC1iHaiMU4vcBgicnCkEuUYtauvN4GcL7iBW6NvktMHZ2DIU4q Ic+sbF4yIRNaSVGPwaI5UvtkPClgrzM0QJSf6+F8xpBNCImQU49WnXr4zLPlblGJ aJ6PnR7MX6pOvHriiNC88JIEjAi4RXcUiZQICm/YejB/98Smi3F/Wa88YbszOThi YH1++z5LynwlZ5tsYixTmc5OipjDZfqhQcbUvMNrEPmTA/Qjhh6vYGdGvKUKky5q Axn+UmEq4j5qWcvMkT7a7jw6PZvX6Xzspc5XI+BWxaguD4OoS9X+US4ivEbMTIQ1 XBdD6XwEIDIN39DFpSLjIt8BRnPJg0E= -----END CERTIFICATE-----Generated at Fri May 17 08:13:54 2024 by rpki-client on console-fra.rpki-client.org