$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft File: ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft (raw, json) Hash identifier: bYzOLrdYdbkN4V3bbHSSnu74vV9Cp/XGsnU1IbOqo20= Subject key identifier: 70:B0:65:07:21:60:F2:9F:39:31:88:98:61:81:A6:87:FD:73:54:8B Authority key identifier: 72:D1:57:43:F5:9C:83:A5:C1:95:A5:E6:DB:1E:A4:64:76:34:BE:F7 Certificate issuer: /CN=A91CC1E9/serialNumber=72D15743F59C83A5C195A5E6DB1EA4647634BEF7 Certificate serial: CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft Manifest number: C8 Signing time: Sun 19 May 2024 06:20:36 +0000 Manifest this update: Sun 19 May 2024 06:20:36 +0000 Manifest next update: Sun 26 May 2024 06:20:36 +0000 Files and hashes: 1: ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl (hash: Pvm8miJjI3N5IZ0d6M58meTN9fvwIVOgenPa+4uwxCU=) 2: 2AB990CAF0A911ED80D2CB35C4F9AE02.roa (hash: h0OHHfyqua5aHyvIAMrPgr0AnTnOs5NGoLfx1yUR4Yw=) 3: F8F1CAD6F09D11ED96BA6D66C4F9AE02.roa (hash: pm/iT+02G+62pDwe2s4D7yK+mZHuZy8yyY7IKbX7Ek0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC1E9/serialNumber=72D15743F59C83A5C195A5E6DB1EA4647634BEF7 Validity Not Before: May 19 06:20:36 2024 GMT Not After : May 26 06:20:36 2024 GMT Subject: CN=66499a34-6488 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:34:19:3c:f6:10:3e:b4:91:52:f0:e4:e6:d8: 2b:b9:3e:6e:92:03:86:a7:39:43:a0:dc:79:bd:b1: b2:62:21:ad:7e:8e:a6:c9:41:b1:13:25:15:b4:6f: 3a:33:d6:3a:8c:16:0d:25:bf:03:58:da:71:4d:e3: f5:98:b5:7b:b5:49:4e:a4:d2:63:e2:52:a1:4b:b5: 13:27:85:20:e2:a5:bf:ce:a6:be:f2:f0:54:df:77: 1d:f6:a9:0a:1d:69:f5:81:fd:6a:3f:44:2f:c2:8a: 1c:3f:1b:7c:1e:22:d1:57:76:a4:61:70:6d:65:3b: b2:5c:f6:72:28:aa:34:9a:60:0f:11:ac:a6:6c:cd: 84:3b:ba:f6:99:31:e8:94:02:9f:fc:46:84:f2:20: c6:36:c5:b3:77:eb:81:d1:c3:32:a5:68:86:e1:97: 24:3b:3e:12:21:49:85:f0:13:d8:82:ab:f6:7e:cc: cc:b6:51:f5:c9:0b:14:e6:54:03:69:a5:30:5b:39: 4b:54:f8:84:95:6c:b9:3e:8e:b1:43:5c:5a:1d:32: e4:54:42:91:58:8c:2c:70:20:52:90:b6:e7:f3:d7: a5:cc:eb:04:c6:d2:8b:67:25:fc:4f:ac:a7:f9:33: 5e:fd:40:25:02:31:d0:5b:49:06:61:69:aa:20:22: 94:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:B0:65:07:21:60:F2:9F:39:31:88:98:61:81:A6:87:FD:73:54:8B X509v3 Authority Key Identifier: keyid:72:D1:57:43:F5:9C:83:A5:C1:95:A5:E6:DB:1E:A4:64:76:34:BE:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:46:6f:46:42:e3:8c:56:eb:a5:5f:e9:86:88:d2:cb:48:7c: 34:7f:61:39:fc:d9:2e:b8:5d:ee:78:75:bc:5f:be:43:a3:a0: 86:fe:3c:95:cd:68:ec:a6:cb:d6:f1:4b:52:6e:d7:91:2b:cc: 15:8e:d5:70:a7:54:2a:81:55:46:4a:0d:be:03:14:b4:d7:6e: 71:0c:e0:10:0c:2c:36:5e:6b:bb:d3:95:03:17:94:60:2b:51: 01:8a:da:69:28:45:7f:86:42:53:c9:a9:df:fb:6e:eb:44:dc: a4:ba:36:7a:73:a9:96:81:a8:0d:4f:7d:59:0f:75:29:d1:df: fc:5a:5f:36:ab:cb:ee:21:1c:59:ee:e2:08:55:23:c8:d1:02: cd:e5:d6:34:a1:43:04:71:2e:21:fc:27:ad:08:d4:5c:e5:2b: a4:8f:eb:3d:0c:1a:df:71:16:48:d8:6a:86:00:cd:bc:93:85: c6:14:4f:ea:d0:25:0b:1e:18:d4:ab:b0:90:d9:88:e2:ac:dd: f1:14:1c:d9:01:6b:81:7d:73:13:ee:bd:e1:a6:00:8d:2f:04: b7:39:a3:d6:51:cc:d0:c8:da:4d:44:c4:c1:5f:db:c6:b7:1d: 15:22:ee:c6:29:3e:38:45:96:a0:96:36:39:e1:4b:12:96:26: 73:0f:31:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0MxRTkxMTAvBgNVBAUTKDcyRDE1NzQzRjU5QzgzQTVDMTk1QTVFNkRCMUVBNDY0 NzYzNEJFRjcwHhcNMjQwNTE5MDYyMDM2WhcNMjQwNTI2MDYyMDM2WjAYMRYwFAYD VQQDEw02NjQ5OWEzNC02NDg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0zQZPPYQPrSRUvDk5tgruT5ukgOGpzlDoNx5vbGyYiGtfo6myUGxEyUVtG86 M9Y6jBYNJb8DWNpxTeP1mLV7tUlOpNJj4lKhS7UTJ4Ug4qW/zqa+8vBU33cd9qkK HWn1gf1qP0QvwoocPxt8HiLRV3akYXBtZTuyXPZyKKo0mmAPEaymbM2EO7r2mTHo lAKf/EaE8iDGNsWzd+uB0cMypWiG4ZckOz4SIUmF8BPYgqv2fszMtlH1yQsU5lQD aaUwWzlLVPiElWy5Po6xQ1xaHTLkVEKRWIwscCBSkLbn89elzOsExtKLZyX8T6yn +TNe/UAlAjHQW0kGYWmqICKU9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHCwZQch YPKfOTGImGGBpof9c1SLMB8GA1UdIwQYMBaAFHLRV0P1nIOlwZWl5tsepGR2NL73 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzFFOS9CQkNENUQyQ0VG Q0MxMUVEQjI5QkIwNkNDNEY5QUUwMi9jdEZYUV9XY2c2WEJsYVhtMng2a1pIWTB2 dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N0RlhRX1djZzZYQmxhWG0yeDZrWkhZMHZ2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzFFOS9CQkNENUQyQ0VGQ0MxMUVEQjI5QkIwNkNDNEY5QUUwMi9jdEZYUV9XY2c2 WEJsYVhtMng2a1pIWTB2dmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhRm9GQuOMVuulX+mGiNLLSHw0f2E5/NkuuF3ueHW8X75Do6CG/jyV zWjspsvW8UtSbteRK8wVjtVwp1QqgVVGSg2+AxS0125xDOAQDCw2Xmu705UDF5Rg K1EBitppKEV/hkJTyanf+27rRNykujZ6c6mWgagNT31ZD3Up0d/8Wl82q8vuIRxZ 7uIIVSPI0QLN5dY0oUMEcS4h/CetCNRc5Sukj+s9DBrfcRZI2GqGAM28k4XGFE/q 0CULHhjUq7CQ2YjirN3xFBzZAWuBfXMT7r3hpgCNLwS3OaPWUczQyNpNRMTBX9vG tx0VIu7GKT44RZagljY54UsSliZzDzGR -----END CERTIFICATE-----Generated at Sun May 19 07:40:45 2024 by rpki-client on console-fra.rpki-client.org