$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft File: cM9awmFE6NdDsVID4mwiBG-iQHo.mft (raw, json) Hash identifier: ifi8fOR4qedjWZvVr/5klIVbsLwXYxn0Fh/Di0VTQYo= Subject key identifier: DF:54:44:CD:D4:9B:B1:6B:71:01:3E:FD:E3:E1:5F:8F:66:53:A3:55 Authority key identifier: 70:CF:5A:C2:61:44:E8:D7:43:B1:52:03:E2:6C:22:04:6F:A2:40:7A Certificate issuer: /CN=A91DB128/serialNumber=70CF5AC26144E8D743B15203E26C22046FA2407A Certificate serial: D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM9awmFE6NdDsVID4mwiBG-iQHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft Manifest number: CB Signing time: Tue 07 May 2024 06:16:43 +0000 Manifest this update: Tue 07 May 2024 06:16:42 +0000 Manifest next update: Tue 14 May 2024 06:16:42 +0000 Files and hashes: 1: cM9awmFE6NdDsVID4mwiBG-iQHo.crl (hash: LPW8N8eOqDZLwhoTP+MkAx0hDYvTsq56Mtka6wsp/Gs=) 2: ABD7D9FCDDEC11EDB14EDA32C4F9AE02.roa (hash: ZkY0KzzTYIOlfe+QFFr6ughVl7NAzRhvIrPiqzSn17g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.crl rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM9awmFE6NdDsVID4mwiBG-iQHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 05:49:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB128/serialNumber=70CF5AC26144E8D743B15203E26C22046FA2407A Validity Not Before: May 7 06:16:42 2024 GMT Not After : May 14 06:16:42 2024 GMT Subject: CN=6639c74a-7a52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b3:0b:b0:fc:de:4e:0e:58:c2:6b:61:c5:10: 3c:66:bb:ed:b2:6f:50:13:bd:4e:3b:9a:c1:67:33: 67:f4:29:88:af:c8:1a:53:07:6e:67:57:fb:26:ec: 80:bb:58:2c:cc:f5:a1:7c:9f:9d:af:5a:9f:51:86: 57:88:d2:b0:3b:3d:1f:db:fb:8a:c9:3c:72:5a:9e: ea:bf:94:4f:6c:b0:39:d0:4a:d2:b1:39:45:6d:2d: 99:23:75:b0:4b:13:b2:1c:61:e8:00:97:3f:e7:21: 08:5a:20:a9:cb:ad:fc:f8:be:15:e0:ce:55:69:df: 9c:f2:9c:40:57:3d:fb:c6:44:9b:02:93:7f:f7:c2: be:a3:e5:65:8f:f2:93:db:9e:11:18:e9:34:73:90: aa:1f:07:4d:ab:4c:70:bb:08:74:4c:80:02:2d:17: 46:c0:a5:fe:d5:ff:ff:63:01:5d:98:48:a9:b0:21: be:8a:1e:48:58:f8:cd:2d:62:70:bb:cd:ce:06:87: 9d:b6:27:66:72:7c:8b:af:0c:0c:65:74:86:5f:d5: db:93:95:18:af:00:ae:9c:46:e9:88:20:62:60:a2: 53:3a:97:83:8f:7c:86:d5:84:b0:ab:8b:78:c2:73: 46:4c:65:4c:ef:c9:1a:cf:2a:87:8b:2a:01:94:38: 59:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:54:44:CD:D4:9B:B1:6B:71:01:3E:FD:E3:E1:5F:8F:66:53:A3:55 X509v3 Authority Key Identifier: keyid:70:CF:5A:C2:61:44:E8:D7:43:B1:52:03:E2:6C:22:04:6F:A2:40:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM9awmFE6NdDsVID4mwiBG-iQHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:63:c7:c6:c0:8e:a0:5c:ab:ff:ea:31:25:e8:db:25:3f:d8: 1b:15:42:f2:9e:ad:42:db:c5:06:62:49:db:25:a7:f7:6f:5a: 44:2f:fe:d0:c2:b0:4e:36:65:7e:08:9d:20:5e:5d:70:0b:6a: 25:83:dc:15:6d:65:d1:31:03:09:26:1c:5a:30:ca:ee:26:55: 02:ea:3b:5c:0c:08:c0:d0:a3:cc:9f:dc:57:88:00:b6:0f:57: 9b:27:02:81:99:2d:72:e4:e6:5e:59:21:57:13:96:f5:c4:1b: db:c2:13:3d:35:af:7b:fe:c8:4c:37:02:28:8d:d8:9d:a3:bc: f8:f4:88:2f:c7:01:01:20:99:61:da:64:57:91:59:36:ee:2d: 48:03:01:81:d2:38:30:df:a0:d8:f0:94:7f:3f:4d:a4:37:1b: fe:25:b5:28:31:00:d5:a3:b0:76:9d:52:5e:6b:94:8e:04:e7: 4e:0b:50:2d:06:a0:f2:08:93:49:c3:f9:bf:a1:a4:ed:15:56: 84:ef:9b:43:36:e8:2d:f3:fb:4d:c7:a9:ca:24:dd:46:19:27: 1d:b9:6b:01:4e:40:ea:df:57:2f:ef:93:dc:b7:e4:a4:5c:af: ba:09:38:53:a6:4a:9f:a9:f0:c7:2d:2c:e3:bd:34:27:da:87: 68:ba:f1:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REIxMjgxMTAvBgNVBAUTKDcwQ0Y1QUMyNjE0NEU4RDc0M0IxNTIwM0UyNkMyMjA0 NkZBMjQwN0EwHhcNMjQwNTA3MDYxNjQyWhcNMjQwNTE0MDYxNjQyWjAYMRYwFAYD VQQDEw02NjM5Yzc0YS03YTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqrMLsPzeTg5YwmthxRA8Zrvtsm9QE71OO5rBZzNn9CmIr8gaUwduZ1f7JuyA u1gszPWhfJ+dr1qfUYZXiNKwOz0f2/uKyTxyWp7qv5RPbLA50ErSsTlFbS2ZI3Ww SxOyHGHoAJc/5yEIWiCpy638+L4V4M5Vad+c8pxAVz37xkSbApN/98K+o+Vlj/KT 254RGOk0c5CqHwdNq0xwuwh0TIACLRdGwKX+1f//YwFdmEipsCG+ih5IWPjNLWJw u83OBoedtidmcnyLrwwMZXSGX9Xbk5UYrwCunEbpiCBiYKJTOpeDj3yG1YSwq4t4 wnNGTGVM78kazyqHiyoBlDhZ8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN9URM3U m7FrcQE+/ePhX49mU6NVMB8GA1UdIwQYMBaAFHDPWsJhROjXQ7FSA+JsIgRvokB6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjEyOC83QkYyM0FDNERE RTgxMUVEQkY4Qzk3M0FDNEY5QUUwMi9jTTlhd21GRTZOZERzVklENG13aUJHLWlR SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NNOWF3bUZFNk5kRHNWSUQ0bXdpQkctaVFIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjEyOC83QkYyM0FDNERERTgxMUVEQkY4Qzk3M0FDNEY5QUUwMi9jTTlhd21GRTZO ZERzVklENG13aUJHLWlRSG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUY8fGwI6gXKv/6jEl6NslP9gbFULynq1C28UGYknbJaf3b1pEL/7Q wrBONmV+CJ0gXl1wC2olg9wVbWXRMQMJJhxaMMruJlUC6jtcDAjA0KPMn9xXiAC2 D1ebJwKBmS1y5OZeWSFXE5b1xBvbwhM9Na97/shMNwIojdido7z49IgvxwEBIJlh 2mRXkVk27i1IAwGB0jgw36DY8JR/P02kNxv+JbUoMQDVo7B2nVJea5SOBOdOC1At BqDyCJNJw/m/oaTtFVaE75tDNugt8/tNx6nKJN1GGScduWsBTkDq31cv75Pct+Sk XK+6CThTpkqfqfDHLSzjvTQn2odouvE/ -----END CERTIFICATE-----Generated at Tue May 7 07:01:24 2024 by rpki-client on console-fra.rpki-client.org