$ rpki-client -vvf rpki.apnic.net/member_repository/A91E11D6/77DEFD32063911ED818C4016C4F9AE02/woYQciwbyJvjK01LiizCHeZxfMg.mft File: woYQciwbyJvjK01LiizCHeZxfMg.mft (raw, json) Hash identifier: zG8lzClZ9L3MAf0pQzCSo765PSfi+vx5zMi2ScjjTpE= Subject key identifier: A1:8D:94:D8:02:12:27:CD:6D:71:E1:7C:77:99:7A:5D:D2:6A:B5:91 Authority key identifier: C2:86:10:72:2C:1B:C8:9B:E3:2B:4D:4B:8A:2C:C2:1D:E6:71:7C:C8 Certificate issuer: /CN=A91E11D6/serialNumber=C28610722C1BC89BE32B4D4B8A2CC21DE6717CC8 Certificate serial: 01CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/woYQciwbyJvjK01LiizCHeZxfMg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E11D6/77DEFD32063911ED818C4016C4F9AE02/woYQciwbyJvjK01LiizCHeZxfMg.mft Manifest number: 01C6 Signing time: Sun 05 May 2024 04:33:08 +0000 Manifest this update: Sun 05 May 2024 04:33:08 +0000 Manifest next update: Sun 12 May 2024 04:33:08 +0000 Files and hashes: 1: woYQciwbyJvjK01LiizCHeZxfMg.crl (hash: bl8YjYebc6MFU6A/ZCHJB3I2eN3xVspH2zI7l4caCbw=) 2: BEABC886064711EDB2563973C4F9AE02.roa (hash: BE0gpaLb7EzpcRjZQd7cVu3uKgEf0/Bby993Dib0Qls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E11D6/77DEFD32063911ED818C4016C4F9AE02/woYQciwbyJvjK01LiizCHeZxfMg.crl rsync://rpki.apnic.net/member_repository/A91E11D6/77DEFD32063911ED818C4016C4F9AE02/woYQciwbyJvjK01LiizCHeZxfMg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/woYQciwbyJvjK01LiizCHeZxfMg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 458 (0x1ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E11D6/serialNumber=C28610722C1BC89BE32B4D4B8A2CC21DE6717CC8 Validity Not Before: May 5 04:33:08 2024 GMT Not After : May 12 04:33:08 2024 GMT Subject: CN=66370c04-c491 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:fc:81:25:c1:8e:c8:64:b0:2d:df:84:a7:a5: cb:c0:df:0d:c6:1c:df:39:6a:67:9b:a0:1a:62:6d: 5f:90:eb:ca:ba:17:61:ca:61:4d:5c:7a:04:7c:ec: 8e:ff:e9:09:99:ce:91:8c:03:5c:f7:55:ca:77:63: d9:f1:81:b3:03:1f:8e:22:db:85:7f:5f:99:19:e4: 0f:2c:c1:90:8b:ea:05:6d:f7:bf:6d:89:ee:fe:81: a8:7c:1b:78:21:b8:24:10:33:23:93:1e:45:6d:41: f0:d1:81:03:a1:22:57:8a:22:5f:24:df:90:4d:39: 18:ba:a7:a5:2f:c3:08:bf:8c:59:cd:c9:06:5e:88: 81:f1:b5:2e:bd:78:c4:50:01:fe:e8:d2:c6:78:21: e5:ed:46:45:f5:55:8d:0c:5f:fa:92:f2:db:18:5c: 5d:b3:4d:d5:ef:00:f6:7f:06:51:fa:c4:6c:26:22: a0:b5:30:cf:6f:aa:4d:3d:3c:2a:7a:02:a5:46:09: 25:34:04:35:a6:88:2c:69:70:84:82:37:95:36:08: 8f:74:ee:04:13:c2:66:a7:2e:c0:01:b2:65:8d:49: 39:0b:cf:87:08:78:df:5e:ea:ea:a4:d3:b8:0f:ed: 1d:23:ce:b1:60:d2:6b:2f:e0:aa:c6:cc:0c:10:1b: 7f:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:8D:94:D8:02:12:27:CD:6D:71:E1:7C:77:99:7A:5D:D2:6A:B5:91 X509v3 Authority Key Identifier: keyid:C2:86:10:72:2C:1B:C8:9B:E3:2B:4D:4B:8A:2C:C2:1D:E6:71:7C:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E11D6/77DEFD32063911ED818C4016C4F9AE02/woYQciwbyJvjK01LiizCHeZxfMg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/woYQciwbyJvjK01LiizCHeZxfMg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E11D6/77DEFD32063911ED818C4016C4F9AE02/woYQciwbyJvjK01LiizCHeZxfMg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:9c:c4:ec:91:24:f5:a4:c9:45:d8:ae:0b:03:c3:2a:4f:b3: d0:6b:00:4f:38:ae:7a:7b:74:e7:30:42:4a:0b:8f:7b:6f:49: a6:a1:34:fd:c3:de:ba:c3:10:19:40:f1:ef:0c:f2:e2:89:ac: 45:9f:e5:45:23:67:42:36:b8:ba:10:60:7f:2f:af:39:a5:4e: 88:c2:e0:36:04:35:e0:7d:a5:4a:07:31:c0:d0:32:6c:4e:85: 5c:9a:f1:6c:61:a0:df:23:21:72:5b:7d:27:ba:82:62:67:25: 92:21:f9:f7:db:0e:3e:7b:89:ed:ea:31:24:dd:0f:f1:56:f0: 17:2c:de:37:dc:68:bf:76:2d:d0:1e:63:61:55:31:65:07:db: 15:d2:39:6d:e6:cf:d7:8f:32:dd:fe:22:6e:7b:1e:b2:90:4b: 9a:44:1d:3b:ad:31:81:7c:16:c9:61:2e:db:c1:ca:60:bb:2f: 9b:1d:34:f0:22:7f:76:7b:70:91:84:68:21:fd:dc:1b:16:cf: 60:01:a8:87:1a:c5:75:5d:64:87:1d:91:8b:ca:50:9e:a2:24: 51:ac:4c:97:7d:ae:c1:53:77:ca:f0:b0:d2:f5:8c:6e:86:3e: f5:bb:a5:b6:64:c8:2e:67:19:e8:d8:5b:a1:d5:89:aa:16:57: ce:0b:7a:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTExRDYxMTAvBgNVBAUTKEMyODYxMDcyMkMxQkM4OUJFMzJCNEQ0QjhBMkNDMjFE RTY3MTdDQzgwHhcNMjQwNTA1MDQzMzA4WhcNMjQwNTEyMDQzMzA4WjAYMRYwFAYD VQQDEw02NjM3MGMwNC1jNDkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyPyBJcGOyGSwLd+Ep6XLwN8NxhzfOWpnm6AaYm1fkOvKuhdhymFNXHoEfOyO /+kJmc6RjANc91XKd2PZ8YGzAx+OItuFf1+ZGeQPLMGQi+oFbfe/bYnu/oGofBt4 IbgkEDMjkx5FbUHw0YEDoSJXiiJfJN+QTTkYuqelL8MIv4xZzckGXoiB8bUuvXjE UAH+6NLGeCHl7UZF9VWNDF/6kvLbGFxds03V7wD2fwZR+sRsJiKgtTDPb6pNPTwq egKlRgklNAQ1pogsaXCEgjeVNgiPdO4EE8Jmpy7AAbJljUk5C8+HCHjfXurqpNO4 D+0dI86xYNJrL+CqxswMEBt/vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKGNlNgC EifNbXHhfHeZel3SarWRMB8GA1UdIwQYMBaAFMKGEHIsG8ib4ytNS4oswh3mcXzI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTFENi83N0RFRkQzMjA2 MzkxMUVEODE4QzQwMTZDNEY5QUUwMi93b1lRY2l3YnlKdmpLMDFMaWl6Q0hlWnhm TWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dvWVFjaXdieUp2akswMUxpaXpDSGVaeGZNZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTFENi83N0RFRkQzMjA2MzkxMUVEODE4QzQwMTZDNEY5QUUwMi93b1lRY2l3YnlK dmpLMDFMaWl6Q0hlWnhmTWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJnMTskST1pMlF2K4LA8MqT7PQawBPOK56e3TnMEJKC497b0mmoTT9 w966wxAZQPHvDPLiiaxFn+VFI2dCNri6EGB/L685pU6IwuA2BDXgfaVKBzHA0DJs ToVcmvFsYaDfIyFyW30nuoJiZyWSIfn32w4+e4nt6jEk3Q/xVvAXLN433Gi/di3Q HmNhVTFlB9sV0jlt5s/XjzLd/iJuex6ykEuaRB07rTGBfBbJYS7bwcpguy+bHTTw In92e3CRhGgh/dwbFs9gAaiHGsV1XWSHHZGLylCeoiRRrEyXfa7BU3fK8LDS9Yxu hj71u6W2ZMguZxno2Fuh1YmqFlfOC3p0 -----END CERTIFICATE-----Generated at Sun May 5 05:21:59 2024 by rpki-client on console-fra.rpki-client.org