$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft File: CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft (raw, json) Hash identifier: f6DbPpNiHh2FqRY1w8/X9BxJgySSh5TS91uG+HFTNeU= Subject key identifier: 4F:CA:5C:32:51:47:14:E7:B7:E8:BE:30:10:C9:E6:50:89:54:77:22 Authority key identifier: 0A:A5:DE:29:26:5A:08:E2:7A:58:1D:89:44:65:BD:CD:B7:37:09:BB Certificate issuer: /CN=A91DC017/serialNumber=0AA5DE29265A08E27A581D894465BDCDB73709BB Certificate serial: FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft Manifest number: F6 Signing time: Sun 05 May 2024 05:46:59 +0000 Manifest this update: Sun 05 May 2024 05:46:58 +0000 Manifest next update: Sun 12 May 2024 05:46:58 +0000 Files and hashes: 1: CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl (hash: 3YBT21pV/KhJ/ke2nfy/weHIiD09nD6Fv3zIAAeditU=) 2: F41B795490C511EDA07C3025C4F9AE02.roa (hash: dNEoEyeAi95Co85zt2kwlrsirilS9aclVux/GGaj3ZU=) 3: F4D5EBF490C511EDA07C3025C4F9AE02.roa (hash: 1rgt0+rQ3Dub709HW/O/W4oJXJYJkQ3NKVM+Csjy/RQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 05:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 251 (0xfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC017/serialNumber=0AA5DE29265A08E27A581D894465BDCDB73709BB Validity Not Before: May 5 05:46:58 2024 GMT Not After : May 12 05:46:58 2024 GMT Subject: CN=66371d52-b8a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b1:ed:a9:bc:21:a2:83:1d:1b:45:8b:bd:cd: 1a:a8:9e:2a:dc:04:7b:2a:12:6f:a9:cc:90:e6:75: 12:a0:b7:ac:5b:8b:d3:74:30:e2:5a:b6:59:41:9b: ab:85:f2:cb:18:b8:54:3c:9f:5d:8b:32:1f:9e:84: ed:58:a9:32:57:34:93:be:c5:87:22:d2:c6:16:0a: a2:b8:86:75:29:12:c8:e8:bf:63:00:f7:34:21:61: f6:7f:bb:92:78:a9:ba:c4:4e:a5:fe:e6:16:3d:1a: 39:e3:37:d0:cd:11:e3:b3:42:38:82:51:54:c8:66: ee:2f:91:cb:ff:ed:ef:ff:72:1d:27:15:49:1d:24: 23:8f:90:ae:38:2f:29:f9:0f:74:c2:9e:a1:d7:1e: d1:f7:19:db:f8:cd:04:bc:d0:a2:5b:a7:3b:06:05: b5:65:7e:ff:7b:3a:21:2e:94:8f:18:a0:88:3c:e9: 19:a5:f1:5f:49:06:bf:2c:3e:cd:7a:4d:e2:24:19: 3d:e7:f0:95:4f:db:0a:05:a6:e8:ce:a0:c1:8b:d5: f3:05:30:36:8f:eb:4b:ef:a5:67:58:6b:ce:39:b3: 64:86:85:40:c9:c0:c4:8a:15:0b:b9:ce:7f:1d:d6: c4:eb:9f:8a:83:32:22:a9:11:8f:3b:9b:e2:63:bc: ad:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:CA:5C:32:51:47:14:E7:B7:E8:BE:30:10:C9:E6:50:89:54:77:22 X509v3 Authority Key Identifier: keyid:0A:A5:DE:29:26:5A:08:E2:7A:58:1D:89:44:65:BD:CD:B7:37:09:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:52:4c:3e:f3:24:36:fe:39:b3:77:a0:2d:33:ab:2e:38:6c: bd:10:65:37:f6:f9:50:db:9f:f0:45:b3:99:96:ec:14:6d:a4: 69:54:2d:69:29:8e:2a:ac:92:f6:c7:53:dc:bd:9f:97:92:f4: b3:20:89:e1:98:8d:07:28:68:6d:29:d9:69:eb:21:14:40:d5: c8:ef:3d:40:d6:6a:e4:6c:6f:ae:9e:94:25:58:0e:f1:d1:2c: 26:93:2b:6a:41:1a:f5:89:f5:15:d3:73:0e:c1:aa:97:96:2b: 73:11:58:dc:64:37:04:70:eb:21:f5:51:e5:0d:dd:56:8e:b7: d4:fb:ad:e8:9c:c1:29:af:e1:ab:33:26:57:d5:29:51:e1:10: c6:08:27:79:cb:c5:79:67:3e:b2:ff:d0:65:e7:4f:40:ca:94: e1:77:78:fd:ba:27:4f:59:a5:93:03:af:9e:aa:71:58:20:5d: 41:cf:38:15:ea:30:f6:cd:bc:3e:b8:b8:9d:ae:d2:0d:71:a6: 65:63:77:fb:0c:2b:2d:3e:2d:01:ae:71:0a:c6:b8:4f:50:9c: 5b:69:3c:05:93:72:89:5e:15:ba:3c:cb:f8:d2:f0:a8:8d:39: 40:91:3a:96:9e:9b:09:77:d0:d4:78:e5:95:65:01:81:f8:65: 1d:2e:b1:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwMTcxMTAvBgNVBAUTKDBBQTVERTI5MjY1QTA4RTI3QTU4MUQ4OTQ0NjVCRENE QjczNzA5QkIwHhcNMjQwNTA1MDU0NjU4WhcNMjQwNTEyMDU0NjU4WjAYMRYwFAYD VQQDEw02NjM3MWQ1Mi1iOGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz7HtqbwhooMdG0WLvc0aqJ4q3AR7KhJvqcyQ5nUSoLesW4vTdDDiWrZZQZur hfLLGLhUPJ9dizIfnoTtWKkyVzSTvsWHItLGFgqiuIZ1KRLI6L9jAPc0IWH2f7uS eKm6xE6l/uYWPRo54zfQzRHjs0I4glFUyGbuL5HL/+3v/3IdJxVJHSQjj5CuOC8p +Q90wp6h1x7R9xnb+M0EvNCiW6c7BgW1ZX7/ezohLpSPGKCIPOkZpfFfSQa/LD7N ek3iJBk95/CVT9sKBabozqDBi9XzBTA2j+tL76VnWGvOObNkhoVAycDEihULuc5/ HdbE65+KgzIiqRGPO5viY7yt8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE/KXDJR RxTnt+i+MBDJ5lCJVHciMB8GA1UdIwQYMBaAFAql3ikmWgjielgdiURlvc23Nwm7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzAxNy8xMDVBQzhGQzkw QzMxMUVEQkExRENDMjNDNEY5QUUwMi9DcVhlS1NaYUNPSjZXQjJKUkdXOXpiYzND YnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NxWGVLU1phQ09KNldCMkpSR1c5emJjM0Nicy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzAxNy8xMDVBQzhGQzkwQzMxMUVEQkExRENDMjNDNEY5QUUwMi9DcVhlS1NaYUNP SjZXQjJKUkdXOXpiYzNDYnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmUkw+8yQ2/jmzd6AtM6suOGy9EGU39vlQ25/wRbOZluwUbaRpVC1p KY4qrJL2x1PcvZ+XkvSzIInhmI0HKGhtKdlp6yEUQNXI7z1A1mrkbG+unpQlWA7x 0SwmkytqQRr1ifUV03MOwaqXlitzEVjcZDcEcOsh9VHlDd1WjrfU+63onMEpr+Gr MyZX1SlR4RDGCCd5y8V5Zz6y/9Bl509AypThd3j9uidPWaWTA6+eqnFYIF1BzzgV 6jD2zbw+uLidrtINcaZlY3f7DCstPi0BrnEKxrhPUJxbaTwFk3KJXhW6PMv40vCo jTlAkTqWnpsJd9DUeOWVZQGB+GUdLrFi -----END CERTIFICATE-----Generated at Sun May 5 08:39:14 2024 by rpki-client on console-fra.rpki-client.org