$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC28E/B5CA896876CD11ED8DC63A64C4F9AE02/m_aWWObA_qLqCOOn_dKtysoTOUk.mft File: m_aWWObA_qLqCOOn_dKtysoTOUk.mft (raw, json) Hash identifier: OApvd6B+o6mhpp5Mk+ZfTPcDEV4WzK8Ev3lxeBEoYEs= Subject key identifier: 98:9D:DB:27:0D:25:0F:54:A8:5F:D4:85:3E:6D:46:CC:43:0B:66:EF Authority key identifier: 9B:F6:96:58:E6:C0:FE:A2:EA:08:E3:A7:FD:D2:AD:CA:CA:13:39:49 Certificate issuer: /CN=A91CC28E/serialNumber=9BF69658E6C0FEA2EA08E3A7FDD2ADCACA133949 Certificate serial: 010B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m_aWWObA_qLqCOOn_dKtysoTOUk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC28E/B5CA896876CD11ED8DC63A64C4F9AE02/m_aWWObA_qLqCOOn_dKtysoTOUk.mft Manifest number: 0109 Signing time: Sun 05 May 2024 05:34:16 +0000 Manifest this update: Sun 05 May 2024 05:34:15 +0000 Manifest next update: Sun 12 May 2024 05:34:15 +0000 Files and hashes: 1: m_aWWObA_qLqCOOn_dKtysoTOUk.crl (hash: 2P0Zc8gdmG7BbAwuX29vSlRnv9q+bsE0q1MRfYLdLE0=) 2: 73E253FC76D011EDBAECD665C4F9AE02.roa (hash: 0fgfwSnBPj1wqSMD+aZskb0Kd5Z6w3jmnUcNUmB5tFc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC28E/B5CA896876CD11ED8DC63A64C4F9AE02/m_aWWObA_qLqCOOn_dKtysoTOUk.crl rsync://rpki.apnic.net/member_repository/A91CC28E/B5CA896876CD11ED8DC63A64C4F9AE02/m_aWWObA_qLqCOOn_dKtysoTOUk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m_aWWObA_qLqCOOn_dKtysoTOUk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 05:34:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC28E/serialNumber=9BF69658E6C0FEA2EA08E3A7FDD2ADCACA133949 Validity Not Before: May 5 05:34:15 2024 GMT Not After : May 12 05:34:15 2024 GMT Subject: CN=66371a58-adcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4d:97:0f:5a:f5:c8:b1:e3:77:b8:60:e1:d6: b7:32:fd:dd:6a:23:f5:50:bc:29:16:c7:a2:8d:fb: 36:e9:94:3e:9c:a8:50:06:fd:6f:02:d6:41:6b:29: be:cb:b3:48:22:c9:c8:e9:bc:cb:30:d3:e3:8a:85: cd:63:46:8d:84:18:03:03:1a:ad:55:a8:92:e1:38: 24:72:70:7d:f7:64:d4:fd:9b:d6:4e:51:85:d9:d0: f4:2c:e9:74:43:af:ee:7d:b1:f3:15:6f:fe:bb:b6: b9:58:03:17:cc:22:cb:e4:4b:50:ff:e6:51:dd:86: 31:86:57:f3:27:31:0d:ce:1a:30:ff:eb:fd:c2:24: 55:96:1f:aa:15:aa:bc:a8:ca:10:42:ef:80:ef:13: 35:62:ec:92:8a:49:37:06:c0:b5:c9:10:57:eb:b2: d2:18:5c:c2:33:d8:03:ed:17:73:e2:53:9a:37:32: 81:7b:fd:bb:1d:aa:4d:95:25:cf:fb:68:55:58:75: 1a:94:95:e4:04:8e:56:1e:66:03:60:8c:39:3a:7d: d4:fa:5f:3d:65:5a:77:13:60:32:95:d0:63:67:4b: d1:a1:16:95:a8:9b:d8:64:dc:f2:da:9a:5c:26:62: 42:c4:25:3e:c7:31:31:72:1b:aa:19:98:dd:14:c1: 53:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:9D:DB:27:0D:25:0F:54:A8:5F:D4:85:3E:6D:46:CC:43:0B:66:EF X509v3 Authority Key Identifier: keyid:9B:F6:96:58:E6:C0:FE:A2:EA:08:E3:A7:FD:D2:AD:CA:CA:13:39:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC28E/B5CA896876CD11ED8DC63A64C4F9AE02/m_aWWObA_qLqCOOn_dKtysoTOUk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m_aWWObA_qLqCOOn_dKtysoTOUk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC28E/B5CA896876CD11ED8DC63A64C4F9AE02/m_aWWObA_qLqCOOn_dKtysoTOUk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:f7:96:04:e3:e1:68:6e:2f:50:00:9a:48:78:bb:37:de:36: 59:a5:8f:0c:d1:82:9d:38:bf:9a:31:92:42:c5:42:34:ed:68: 4a:82:11:17:5f:25:15:cb:53:76:84:e2:63:2b:4c:86:f4:71: 80:2e:d8:77:9f:9b:4c:07:13:e6:81:51:01:2c:73:ed:16:92: a7:93:b5:4b:29:b9:b2:42:71:f7:84:e7:cd:3d:e6:f4:92:2b: 63:49:ef:c3:83:99:2e:bf:e8:b1:2f:27:be:87:b0:05:76:24: e2:98:b1:4b:9a:e3:7d:94:a0:df:57:15:a6:1d:96:7d:35:51: 31:63:7b:da:12:b0:24:ba:eb:69:01:6e:b0:8e:f6:74:90:62: ea:a8:71:d2:be:98:96:03:c1:d5:57:ef:04:eb:90:91:12:c7: da:d4:20:21:27:ca:14:f4:7e:78:69:28:ef:66:c7:e0:c1:51: 5d:6e:b1:33:56:85:be:9e:0f:3b:be:4b:dd:44:f0:28:a7:c0: 19:62:a7:02:ff:04:ff:bc:f6:d5:2f:21:5d:1f:21:b5:e7:7f: 32:e3:d3:e9:57:cc:b8:52:44:63:98:5c:6f:cb:57:22:2b:5f: c9:e2:d1:90:42:cb:37:fb:fd:54:8a:02:94:59:ea:45:40:88: 37:6f:da:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0MyOEUxMTAvBgNVBAUTKDlCRjY5NjU4RTZDMEZFQTJFQTA4RTNBN0ZERDJBRENB Q0ExMzM5NDkwHhcNMjQwNTA1MDUzNDE1WhcNMjQwNTEyMDUzNDE1WjAYMRYwFAYD VQQDEw02NjM3MWE1OC1hZGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx02XD1r1yLHjd7hg4da3Mv3daiP1ULwpFseijfs26ZQ+nKhQBv1vAtZBaym+ y7NIIsnI6bzLMNPjioXNY0aNhBgDAxqtVaiS4TgkcnB992TU/ZvWTlGF2dD0LOl0 Q6/ufbHzFW/+u7a5WAMXzCLL5EtQ/+ZR3YYxhlfzJzENzhow/+v9wiRVlh+qFaq8 qMoQQu+A7xM1YuySikk3BsC1yRBX67LSGFzCM9gD7Rdz4lOaNzKBe/27HapNlSXP +2hVWHUalJXkBI5WHmYDYIw5On3U+l89ZVp3E2AyldBjZ0vRoRaVqJvYZNzy2ppc JmJCxCU+xzExchuqGZjdFMFTsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJid2ycN JQ9UqF/UhT5tRsxDC2bvMB8GA1UdIwQYMBaAFJv2lljmwP6i6gjjp/3SrcrKEzlJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzI4RS9CNUNBODk2ODc2 Q0QxMUVEOERDNjNBNjRDNEY5QUUwMi9tX2FXV09iQV9xTHFDT09uX2RLdHlzb1RP VWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21fYVdXT2JBX3FMcUNPT25fZEt0eXNvVE9Vay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzI4RS9CNUNBODk2ODc2Q0QxMUVEOERDNjNBNjRDNEY5QUUwMi9tX2FXV09iQV9x THFDT09uX2RLdHlzb1RPVWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAw95YE4+Fobi9QAJpIeLs33jZZpY8M0YKdOL+aMZJCxUI07WhKghEX XyUVy1N2hOJjK0yG9HGALth3n5tMBxPmgVEBLHPtFpKnk7VLKbmyQnH3hOfNPeb0 kitjSe/Dg5kuv+ixLye+h7AFdiTimLFLmuN9lKDfVxWmHZZ9NVExY3vaErAkuutp AW6wjvZ0kGLqqHHSvpiWA8HVV+8E65CREsfa1CAhJ8oU9H54aSjvZsfgwVFdbrEz VoW+ng87vkvdRPAop8AZYqcC/wT/vPbVLyFdHyG1538y49PpV8y4UkRjmFxvy1ci K1/J4tGQQss3+/1UigKUWepFQIg3b9rY -----END CERTIFICATE-----Generated at Sun May 5 08:39:13 2024 by rpki-client on console-fra.rpki-client.org