$ rpki-client -vvf rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft File: IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft (raw, json) Hash identifier: NetTO80yUEMPCYpr4Ztslts0k2d6xrQtQ/ysisYaaRE= Subject key identifier: AD:31:2D:E5:FE:85:0C:F6:7B:44:15:D3:9C:4C:C0:F8:C0:70:FE:15 Authority key identifier: 21:93:41:98:E8:33:10:61:D2:75:B8:CF:C7:94:58:D3:2F:AB:D6:C9 Certificate issuer: /CN=A91C53FD/serialNumber=21934198E8331061D275B8CFC79458D32FABD6C9 Certificate serial: 10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZNBmOgzEGHSdbjPx5RY0y-r1sk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft Manifest number: 0F Signing time: Sun 19 May 2024 08:50:28 +0000 Manifest this update: Sun 19 May 2024 08:50:27 +0000 Manifest next update: Sun 26 May 2024 08:50:27 +0000 Files and hashes: 1: IZNBmOgzEGHSdbjPx5RY0y-r1sk.crl (hash: CiTyfKGRZOaYbGezpepUMR5lfUTSu/0thG2mnMgTTiU=) 2: B15E8BECFF3211EEA8607454C4F9AE02.roa (hash: 66CEx2AhD+vvEaTchdFR+b3tEtDEPiHRzWsmRxEj/Lk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.crl rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZNBmOgzEGHSdbjPx5RY0y-r1sk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C53FD/serialNumber=21934198E8331061D275B8CFC79458D32FABD6C9 Validity Not Before: May 19 08:50:27 2024 GMT Not After : May 26 08:50:27 2024 GMT Subject: CN=6649bd54-df58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:eb:68:34:92:94:5e:36:f8:cb:25:65:c9:35: 01:4e:5a:94:54:29:c8:cd:72:c9:02:99:47:99:6c: f8:d2:25:cb:aa:91:22:ef:f3:d1:46:30:da:c4:05: f6:8a:90:ed:58:6b:bb:27:20:2e:f2:e6:f4:fd:09: 81:41:33:b0:a9:d8:cd:72:f9:2d:a1:9c:d1:7b:b6: 6a:5d:b9:f9:03:c1:81:2c:1c:ed:0c:02:f3:88:2b: 33:55:9a:48:ef:c1:2e:f5:6f:cc:06:83:fb:d6:08: 32:99:9b:d0:69:ae:f7:70:81:fb:04:92:7a:48:48: de:a0:74:d9:e9:75:ca:e9:6c:e6:60:5d:2c:26:4f: ed:e2:81:d8:dd:59:7e:14:25:35:a4:90:d8:93:41: b5:b3:ec:da:bc:35:af:1a:6e:c2:71:ee:e5:fd:c6: 72:95:cf:b7:61:2a:50:27:05:e6:6f:19:5d:c6:fd: 5d:70:a9:82:a6:a3:bb:8f:ee:d9:7f:12:92:04:ff: 81:cb:45:94:25:57:31:94:b7:83:0e:1f:67:09:ce: 2d:00:6d:05:ab:6f:55:33:cb:39:23:e2:8e:62:cc: fe:9d:d5:48:3d:ad:c4:6b:2a:c0:65:b3:11:05:67: c6:0b:53:55:40:bb:70:ea:79:8a:45:a3:28:7f:5e: e5:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:31:2D:E5:FE:85:0C:F6:7B:44:15:D3:9C:4C:C0:F8:C0:70:FE:15 X509v3 Authority Key Identifier: keyid:21:93:41:98:E8:33:10:61:D2:75:B8:CF:C7:94:58:D3:2F:AB:D6:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZNBmOgzEGHSdbjPx5RY0y-r1sk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:41:ec:0f:f4:83:77:7f:f0:90:59:18:39:b9:7e:79:74:5d: 17:1f:b3:08:68:06:f2:c4:79:9a:ab:58:18:f8:41:01:82:2f: 78:73:71:47:23:cf:9f:51:b1:2d:c7:de:a0:73:91:7a:ee:21: b9:37:81:fe:1e:8f:c0:93:4d:4e:0e:11:7b:56:2e:f7:1a:15: 92:65:84:63:dd:3e:08:26:69:de:ac:40:58:37:83:93:c8:83: a1:fa:f1:26:d4:0d:54:0a:4e:84:41:c9:58:75:b7:c0:ea:98: 73:05:a3:c9:03:8d:81:b3:65:4c:ab:ec:86:f4:f4:5b:85:c1: 94:b8:09:54:5f:8e:c0:15:0e:5d:ab:6a:d5:87:49:b3:3d:68: 23:bd:67:94:4a:3d:1e:05:84:c7:dc:94:83:bb:11:0c:04:8a: 4f:04:67:09:7d:b5:10:21:b1:7a:c8:f6:3b:0d:13:4c:35:3d: 2d:19:e7:d9:d8:eb:75:d0:a8:7f:a3:ec:39:70:b2:da:b8:8f: 8d:5c:2e:27:9f:44:96:16:47:ee:d5:37:8e:86:9a:13:6e:92: c8:93:18:c1:c0:94:10:ed:00:5d:73:4d:c4:8e:61:35:e6:0a: 7f:31:4f:8d:90:eb:ca:f5:4d:7d:b2:1e:05:54:6a:1f:aa:0c: 35:bb:b1:db -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NTNGRDExMC8GA1UEBRMoMjE5MzQxOThFODMzMTA2MUQyNzVCOENGQzc5NDU4RDMy RkFCRDZDOTAeFw0yNDA1MTkwODUwMjdaFw0yNDA1MjYwODUwMjdaMBgxFjAUBgNV BAMTDTY2NDliZDU0LWRmNTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCw62g0kpReNvjLJWXJNQFOWpRUKcjNcskCmUeZbPjSJcuqkSLv89FGMNrEBfaK kO1Ya7snIC7y5vT9CYFBM7Cp2M1y+S2hnNF7tmpdufkDwYEsHO0MAvOIKzNVmkjv wS71b8wGg/vWCDKZm9BprvdwgfsEknpISN6gdNnpdcrpbOZgXSwmT+3igdjdWX4U JTWkkNiTQbWz7Nq8Na8absJx7uX9xnKVz7dhKlAnBeZvGV3G/V1wqYKmo7uP7tl/ EpIE/4HLRZQlVzGUt4MOH2cJzi0AbQWrb1Uzyzkj4o5izP6d1Ug9rcRrKsBlsxEF Z8YLU1VAu3DqeYpFoyh/XuWTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrTEt5f6F DPZ7RBXTnEzA+MBw/hUwHwYDVR0jBBgwFoAUIZNBmOgzEGHSdbjPx5RY0y+r1skw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1M0ZELzY4OEU1N0VFRkYz MjExRUVBNTVEOEU1M0M0RjlBRTAyL0laTkJtT2d6RUdIU2RialB4NVJZMHktcjFz ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSVpOQm1PZ3pFR0hTZGJqUHg1UlkweS1yMXNrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1 M0ZELzY4OEU1N0VFRkYzMjExRUVBNTVEOEU1M0M0RjlBRTAyL0laTkJtT2d6RUdI U2RialB4NVJZMHktcjFzay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFdB7A/0g3d/8JBZGDm5fnl0XRcfswhoBvLEeZqrWBj4QQGCL3hzcUcj z59RsS3H3qBzkXruIbk3gf4ej8CTTU4OEXtWLvcaFZJlhGPdPggmad6sQFg3g5PI g6H68SbUDVQKToRByVh1t8DqmHMFo8kDjYGzZUyr7Ib09FuFwZS4CVRfjsAVDl2r atWHSbM9aCO9Z5RKPR4FhMfclIO7EQwEik8EZwl9tRAhsXrI9jsNE0w1PS0Z59nY 63XQqH+j7Dlwstq4j41cLiefRJYWR+7VN46GmhNuksiTGMHAlBDtAF1zTcSOYTXm Cn8xT42Q68r1TX2yHgVUah+qDDW7sds= -----END CERTIFICATE-----Generated at Sun May 19 09:38:26 2024 by rpki-client on console-fra.rpki-client.org