$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.mft File: CuIi7F4XpuYytVnUnFse8zLaQ8s.mft (raw, json) Hash identifier: rRhtKX1abV8rblLCb+DuFrE68ZN4BA//vxPQe+7P/hk= Subject key identifier: F5:4C:A8:BD:76:4D:CD:A5:9A:AE:F2:34:B6:35:E3:87:1A:61:60:31 Authority key identifier: 0A:E2:22:EC:5E:17:A6:E6:32:B5:59:D4:9C:5B:1E:F3:32:DA:43:CB Certificate issuer: /CN=A91C7C04/serialNumber=0AE222EC5E17A6E632B559D49C5B1EF332DA43CB Certificate serial: 0609 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CuIi7F4XpuYytVnUnFse8zLaQ8s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.mft Manifest number: 05F9 Signing time: Wed 01 May 2024 00:18:32 +0000 Manifest this update: Wed 01 May 2024 00:18:31 +0000 Manifest next update: Wed 08 May 2024 00:18:31 +0000 Files and hashes: 1: CuIi7F4XpuYytVnUnFse8zLaQ8s.crl (hash: PXCi/3PS4wer6had2nUB9d9YIce79JyQ7ZwqRhERlhE=) 2: 95739D2EB35F11EE9F1AE83EC4F9AE02.roa (hash: 6zLGN36NBQQNLuIDmbtI228vtnkr7oIStcx8yaPuYEc=) 3: DA45147EB35E11EE8EED0E37C4F9AE02.roa (hash: O762b9O8eAbqPwdVQTVdzB2ShiBwgCIaagmOOLFp5cQ=) 4: A825CC96324011EC9E90243EC4F9AE02.roa (hash: 2z+OR2rQu6sBEbJLOp/mMwO5osx9cmu/7grhbghdb1o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.crl rsync://rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CuIi7F4XpuYytVnUnFse8zLaQ8s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 23:50:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1545 (0x609) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7C04/serialNumber=0AE222EC5E17A6E632B559D49C5B1EF332DA43CB Validity Not Before: May 1 00:18:31 2024 GMT Not After : May 8 00:18:31 2024 GMT Subject: CN=66318a58-12eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f6:1c:4f:a4:96:dc:d0:3e:38:da:8f:ed:32: 72:cb:ed:24:79:62:b9:95:9b:53:56:94:a6:63:17: 04:18:b2:2b:e9:86:26:89:a3:9b:2b:cc:45:72:0f: 4b:ed:ba:93:7a:0b:1d:cb:3b:1d:da:b2:53:67:96: d4:97:ae:05:8f:9a:dc:9a:a1:e7:fe:90:5a:ee:4e: cd:7a:b5:c0:b0:c2:07:8d:69:6e:d0:cc:3d:44:8f: 55:68:f1:0f:bf:d8:c1:d1:4e:c3:b3:c8:4b:6c:5c: 92:8d:f4:a4:96:b7:45:c3:ec:7a:08:74:c4:55:6d: 4f:41:e0:4a:d7:c5:fd:1c:d6:77:3a:d4:53:a4:bb: 7e:3f:70:66:3c:cc:6b:21:4e:82:9a:b6:f3:08:3b: 12:0b:6f:8d:21:40:e3:e8:4c:1c:4b:1d:af:43:33: c7:0a:8a:4f:be:c8:a4:ad:7c:cd:9a:29:21:19:f1: 6f:fb:38:e1:48:2f:87:51:5a:20:13:56:10:da:8a: ae:73:b7:b5:17:e0:6a:d3:c7:f6:d9:2b:eb:0c:81: 8e:83:14:12:5d:a8:c9:b5:f0:31:ca:d9:04:bb:67: ce:6f:48:cc:c4:b2:45:e2:29:18:c0:c7:8e:f8:d9: bf:3d:b5:79:e2:fe:58:1a:cc:87:79:79:49:44:0c: 8e:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:4C:A8:BD:76:4D:CD:A5:9A:AE:F2:34:B6:35:E3:87:1A:61:60:31 X509v3 Authority Key Identifier: keyid:0A:E2:22:EC:5E:17:A6:E6:32:B5:59:D4:9C:5B:1E:F3:32:DA:43:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CuIi7F4XpuYytVnUnFse8zLaQ8s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:90:25:65:93:54:ab:dd:b7:1e:a1:49:cf:cd:c4:30:c3:e6: b5:32:22:0c:7b:39:d8:58:d9:64:43:cb:75:3c:c6:8c:d1:38: 55:56:7b:e2:bf:a9:09:b9:fc:b9:46:69:30:0c:11:ce:a4:96: 4c:44:c3:0b:ef:f7:25:e6:58:2c:c7:42:0e:77:f4:a1:98:00: 14:d9:90:1d:ff:e5:ba:65:77:3a:ec:01:ff:9a:45:a8:f9:8e: 1b:16:3e:d1:f5:fb:29:a8:ed:ad:2d:68:bf:e0:ab:7d:cd:86: 71:d9:e0:55:42:e1:6d:ae:a3:99:84:b8:59:75:f9:70:06:45: 7d:13:fd:82:6b:4d:f0:79:ea:0b:19:3d:3d:e6:0b:6f:54:62: 2a:8f:89:01:3c:0a:61:96:0e:33:6f:8c:5c:75:ba:00:23:5f: 6a:47:b5:f0:3a:56:c8:9b:95:63:bf:09:51:dc:13:00:30:66: ea:f7:c3:00:86:e7:e2:c1:76:e5:7e:05:96:b4:e8:5d:17:21: ec:01:a0:9f:f0:a1:ed:81:ab:f9:00:2c:37:21:24:8d:08:c2: 17:f5:79:9d:6f:2a:b2:6f:b2:f8:9c:58:4f:f3:10:be:e0:11: 04:0b:57:f1:a3:39:31:12:69:c5:8e:84:ef:b8:a7:3b:0b:fb: 01:70:f4:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdDMDQxMTAvBgNVBAUTKDBBRTIyMkVDNUUxN0E2RTYzMkI1NTlENDlDNUIxRUYz MzJEQTQzQ0IwHhcNMjQwNTAxMDAxODMxWhcNMjQwNTA4MDAxODMxWjAYMRYwFAYD VQQDEw02NjMxOGE1OC0xMmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvvYcT6SW3NA+ONqP7TJyy+0keWK5lZtTVpSmYxcEGLIr6YYmiaObK8xFcg9L 7bqTegsdyzsd2rJTZ5bUl64Fj5rcmqHn/pBa7k7NerXAsMIHjWlu0Mw9RI9VaPEP v9jB0U7Ds8hLbFySjfSklrdFw+x6CHTEVW1PQeBK18X9HNZ3OtRTpLt+P3BmPMxr IU6CmrbzCDsSC2+NIUDj6EwcSx2vQzPHCopPvsikrXzNmikhGfFv+zjhSC+HUVog E1YQ2oquc7e1F+Bq08f22SvrDIGOgxQSXajJtfAxytkEu2fOb0jMxLJF4ikYwMeO +Nm/PbV54v5YGsyHeXlJRAyOmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPVMqL12 Tc2lmq7yNLY144caYWAxMB8GA1UdIwQYMBaAFAriIuxeF6bmMrVZ1JxbHvMy2kPL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0MwNC9BMERCMzU1MjVG QjQxMUVCQUI3QzZBMjNDNEY5QUUwMi9DdUlpN0Y0WHB1WXl0Vm5VbkZzZTh6TGFR OHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0N1SWk3RjRYcHVZeXRWblVuRnNlOHpMYVE4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0MwNC9BMERCMzU1MjVGQjQxMUVCQUI3QzZBMjNDNEY5QUUwMi9DdUlpN0Y0WHB1 WXl0Vm5VbkZzZTh6TGFROHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzkCVlk1Sr3bceoUnPzcQww+a1MiIMeznYWNlkQ8t1PMaM0ThVVnvi v6kJufy5RmkwDBHOpJZMRMML7/cl5lgsx0IOd/ShmAAU2ZAd/+W6ZXc67AH/mkWo +Y4bFj7R9fspqO2tLWi/4Kt9zYZx2eBVQuFtrqOZhLhZdflwBkV9E/2Ca03weeoL GT095gtvVGIqj4kBPAphlg4zb4xcdboAI19qR7XwOlbIm5VjvwlR3BMAMGbq98MA hufiwXblfgWWtOhdFyHsAaCf8KHtgav5ACw3ISSNCMIX9Xmdbyqyb7L4nFhP8xC+ 4BEEC1fxozkxEmnFjoTvuKc7C/sBcPRl -----END CERTIFICATE-----Generated at Wed May 1 01:04:06 2024 by rpki-client on console-fra.rpki-client.org