$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC84C/F35B305EBF3111EEA79C8E3DC4F9AE02/bCTOJGStN3HjLDMIGNG32gFMaQk.mft File: bCTOJGStN3HjLDMIGNG32gFMaQk.mft (raw, json) Hash identifier: /nMjmmptARIIUvRyFMmFU3MKaO56A3/IxXgsXEfc60I= Subject key identifier: 88:8C:42:BA:CC:9C:F6:40:0C:48:65:8A:88:8F:80:D7:D9:7D:E8:BD Authority key identifier: 6C:24:CE:24:64:AD:37:71:E3:2C:33:08:18:D1:B7:DA:01:4C:69:09 Certificate issuer: /CN=A91DC84C/serialNumber=6C24CE2464AD3771E32C330818D1B7DA014C6909 Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bCTOJGStN3HjLDMIGNG32gFMaQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC84C/F35B305EBF3111EEA79C8E3DC4F9AE02/bCTOJGStN3HjLDMIGNG32gFMaQk.mft Manifest number: 3A Signing time: Sun 19 May 2024 08:15:35 +0000 Manifest this update: Sun 19 May 2024 08:15:35 +0000 Manifest next update: Sun 26 May 2024 08:15:35 +0000 Files and hashes: 1: bCTOJGStN3HjLDMIGNG32gFMaQk.crl (hash: hDxYDyZ8Hcg9oux5VAsx5AnNZVgnAtphsh/iRh8cYrg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC84C/F35B305EBF3111EEA79C8E3DC4F9AE02/bCTOJGStN3HjLDMIGNG32gFMaQk.crl rsync://rpki.apnic.net/member_repository/A91DC84C/F35B305EBF3111EEA79C8E3DC4F9AE02/bCTOJGStN3HjLDMIGNG32gFMaQk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bCTOJGStN3HjLDMIGNG32gFMaQk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC84C/serialNumber=6C24CE2464AD3771E32C330818D1B7DA014C6909 Validity Not Before: May 19 08:15:35 2024 GMT Not After : May 26 08:15:35 2024 GMT Subject: CN=6649b527-0b29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:8b:5c:61:5b:0c:02:4b:55:7f:fe:1c:58:d9: 2a:6a:f1:30:6a:95:45:e7:1d:be:97:8a:3b:81:75: 48:e8:e6:09:0a:00:82:f7:b7:d1:83:8a:9f:2c:c1: 77:f4:2e:86:14:2b:de:83:2c:cd:7c:3e:15:19:b3: 52:c8:0b:96:6f:79:68:84:a0:03:e6:25:c4:a2:da: f8:a2:a3:5c:0a:08:35:14:6c:1f:bc:cb:f0:8e:45: 63:e4:67:2d:f3:98:48:48:24:37:31:1f:43:57:40: b0:93:64:14:86:ae:18:89:57:06:61:0a:de:6c:7f: e7:d0:f6:ce:40:11:0e:74:30:41:58:a1:e0:ce:1d: b1:2c:f5:51:d9:98:39:5f:0c:df:cd:c3:67:43:c8: 64:d0:3a:0d:a9:95:c3:fa:f6:60:ff:32:c6:81:eb: 0a:e2:d8:76:14:8b:c4:9d:24:ea:4b:34:56:80:0e: 4e:38:2e:61:d3:1f:6e:41:11:5a:24:d6:e4:b0:ee: 27:46:bc:76:ce:55:15:e0:2c:a3:71:ec:a3:3f:c3: 23:e1:ff:5a:a0:83:4c:93:2f:30:ca:37:14:c6:b0: d6:e9:dc:da:82:02:b2:51:68:48:96:9f:f2:f0:5d: 17:f9:0b:3d:08:c0:bf:b9:56:48:c1:d5:f2:09:de: ff:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:8C:42:BA:CC:9C:F6:40:0C:48:65:8A:88:8F:80:D7:D9:7D:E8:BD X509v3 Authority Key Identifier: keyid:6C:24:CE:24:64:AD:37:71:E3:2C:33:08:18:D1:B7:DA:01:4C:69:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC84C/F35B305EBF3111EEA79C8E3DC4F9AE02/bCTOJGStN3HjLDMIGNG32gFMaQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bCTOJGStN3HjLDMIGNG32gFMaQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC84C/F35B305EBF3111EEA79C8E3DC4F9AE02/bCTOJGStN3HjLDMIGNG32gFMaQk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:7a:ab:e9:d7:ea:0f:ae:8e:0e:aa:52:de:fe:29:1d:58:05: 57:8c:48:48:2c:77:b9:f4:cc:9d:a8:a9:98:49:dc:5c:5f:ab: c4:ed:f0:63:e0:16:80:70:2a:b0:23:24:52:b1:0c:fc:e2:95: ea:6e:03:b7:fc:0c:ee:7e:24:8c:6c:b6:db:c0:07:55:95:5f: 06:e9:1c:64:cf:37:04:3d:45:5a:fc:8a:f4:db:a7:c4:4f:37: 67:d4:27:86:0f:5f:4b:6b:7b:f7:ad:a7:be:9e:d9:c3:6c:ef: d9:2e:0d:cb:c6:97:31:4b:c6:e2:12:86:84:74:19:0f:22:45: 66:24:c9:ba:68:c7:99:15:a5:88:06:9e:02:09:cc:f4:8c:bb: 79:6f:54:7d:e6:23:57:63:5f:07:e2:4c:5e:8e:ae:27:62:d8: e9:9d:27:71:f2:3b:40:1b:91:da:71:a3:01:73:42:0f:a2:f3: f8:63:43:9f:e8:03:4d:3f:66:15:ca:28:5f:db:c5:9d:e5:3f: f7:16:81:c6:d2:55:33:f4:e0:eb:12:17:00:f8:50:fe:9f:4d: b1:87:49:b9:78:dd:51:ce:6a:05:16:d0:34:a2:59:94:a2:8f: e7:2f:5d:19:b8:01:6a:1f:90:4a:20:b9:4e:33:78:92:dd:94: 92:4c:a4:cf -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE Qzg0QzExMC8GA1UEBRMoNkMyNENFMjQ2NEFEMzc3MUUzMkMzMzA4MThEMUI3REEw MTRDNjkwOTAeFw0yNDA1MTkwODE1MzVaFw0yNDA1MjYwODE1MzVaMBgxFjAUBgNV BAMTDTY2NDliNTI3LTBiMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDei1xhWwwCS1V//hxY2Spq8TBqlUXnHb6XijuBdUjo5gkKAIL3t9GDip8swXf0 LoYUK96DLM18PhUZs1LIC5ZveWiEoAPmJcSi2viio1wKCDUUbB+8y/CORWPkZy3z mEhIJDcxH0NXQLCTZBSGrhiJVwZhCt5sf+fQ9s5AEQ50MEFYoeDOHbEs9VHZmDlf DN/Nw2dDyGTQOg2plcP69mD/MsaB6wri2HYUi8SdJOpLNFaADk44LmHTH25BEVok 1uSw7idGvHbOVRXgLKNx7KM/wyPh/1qgg0yTLzDKNxTGsNbp3NqCArJRaEiWn/Lw XRf5Cz0IwL+5VkjB1fIJ3v9dAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUiIxCusyc 9kAMSGWKiI+A19l96L0wHwYDVR0jBBgwFoAUbCTOJGStN3HjLDMIGNG32gFMaQkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURDODRDL0YzNUIzMDVFQkYz MTExRUVBNzlDOEUzREM0RjlBRTAyL2JDVE9KR1N0TjNIakxETUlHTkczMmdGTWFR ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYkNUT0pHU3ROM0hqTERNSUdORzMyZ0ZNYVFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURD ODRDL0YzNUIzMDVFQkYzMTExRUVBNzlDOEUzREM0RjlBRTAyL2JDVE9KR1N0TjNI akxETUlHTkczMmdGTWFRay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIB6q+nX6g+ujg6qUt7+KR1YBVeMSEgsd7n0zJ2oqZhJ3Fxfq8Tt8GPg FoBwKrAjJFKxDPzilepuA7f8DO5+JIxsttvAB1WVXwbpHGTPNwQ9RVr8ivTbp8RP N2fUJ4YPX0tre/etp76e2cNs79kuDcvGlzFLxuIShoR0GQ8iRWYkybpox5kVpYgG ngIJzPSMu3lvVH3mI1djXwfiTF6Oridi2OmdJ3HyO0AbkdpxowFzQg+i8/hjQ5/o A00/ZhXKKF/bxZ3lP/cWgcbSVTP04OsSFwD4UP6fTbGHSbl43VHOagUW0DSiWZSi j+cvXRm4AWofkEoguU4zeJLdlJJMpM8= -----END CERTIFICATE-----Generated at Sun May 19 09:04:14 2024 by rpki-client on console-fra.rpki-client.org