$ rpki-client -vvf rpki.apnic.net/member_repository/A91E82F0/5C57E5C0828311EE90C8816AC4F9AE02/7unhDCkeVsgtdwcgELDlgAg_5yk.mft File: 7unhDCkeVsgtdwcgELDlgAg_5yk.mft (raw, json) Hash identifier: U+kEfeOY9GGqAsbtpr0xO17biGS4UqKb8A3wiuNWCfI= Subject key identifier: 38:7B:CB:E2:56:15:B9:F4:D2:EE:FB:E4:E3:68:F2:3B:61:0F:E5:B3 Authority key identifier: EE:E9:E1:0C:29:1E:56:C8:2D:77:07:20:10:B0:E5:80:08:3F:E7:29 Certificate issuer: /CN=A91E82F0/serialNumber=EEE9E10C291E56C82D77072010B0E580083FE729 Certificate serial: 60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7unhDCkeVsgtdwcgELDlgAg_5yk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E82F0/5C57E5C0828311EE90C8816AC4F9AE02/7unhDCkeVsgtdwcgELDlgAg_5yk.mft Manifest number: 60 Signing time: Fri 17 May 2024 07:45:31 +0000 Manifest this update: Fri 17 May 2024 07:45:30 +0000 Manifest next update: Fri 24 May 2024 07:45:30 +0000 Files and hashes: 1: 7unhDCkeVsgtdwcgELDlgAg_5yk.crl (hash: O9sZWjoGZUgRCHgvx209OpmlXTi4VMocrtYhkNbcaBI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E82F0/5C57E5C0828311EE90C8816AC4F9AE02/7unhDCkeVsgtdwcgELDlgAg_5yk.crl rsync://rpki.apnic.net/member_repository/A91E82F0/5C57E5C0828311EE90C8816AC4F9AE02/7unhDCkeVsgtdwcgELDlgAg_5yk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7unhDCkeVsgtdwcgELDlgAg_5yk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 07:35:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E82F0/serialNumber=EEE9E10C291E56C82D77072010B0E580083FE729 Validity Not Before: May 17 07:45:30 2024 GMT Not After : May 24 07:45:30 2024 GMT Subject: CN=66470b1a-952f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:54:f3:c9:18:20:b0:73:c3:0a:e6:87:57:d3: 8a:f7:f1:42:78:5c:f9:2e:56:b3:ce:df:a8:50:5f: 75:a9:07:8f:74:8e:b1:c1:67:42:f7:8b:e6:ba:13: b6:13:2b:82:53:5c:fb:e3:11:51:8b:7e:d4:78:6e: 4c:e1:0a:67:69:85:ff:57:fd:47:00:68:fd:74:09: d3:dd:53:17:07:87:2c:56:f1:1a:cf:3d:be:b1:db: a3:b8:e3:c9:39:e9:e5:6a:ff:91:ca:7f:3f:ca:62: d8:1b:3c:67:bb:3e:26:67:c3:11:3b:3c:66:a8:f5: b3:41:28:62:91:59:48:ac:08:22:cc:d3:c9:e0:87: fa:b3:a1:f3:ae:c1:05:2a:5f:39:b5:59:8e:f2:ba: 10:64:ac:c5:57:c7:5c:33:1e:40:85:55:74:95:2b: c3:0a:62:46:90:41:5a:26:75:e0:df:fb:d3:1a:b5: ed:33:d6:d9:40:ca:ef:42:72:58:3f:22:45:21:0c: d7:c0:e3:c9:8b:38:18:75:46:06:21:c3:bc:6c:88: 88:b0:8d:be:3f:62:93:bb:7f:e2:93:fd:ec:de:5d: 51:e1:58:80:bc:87:e5:9d:14:8b:db:a5:10:51:c2: 3b:4a:4b:92:53:50:d2:9b:08:3d:62:ac:f1:62:91: 59:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:7B:CB:E2:56:15:B9:F4:D2:EE:FB:E4:E3:68:F2:3B:61:0F:E5:B3 X509v3 Authority Key Identifier: keyid:EE:E9:E1:0C:29:1E:56:C8:2D:77:07:20:10:B0:E5:80:08:3F:E7:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E82F0/5C57E5C0828311EE90C8816AC4F9AE02/7unhDCkeVsgtdwcgELDlgAg_5yk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7unhDCkeVsgtdwcgELDlgAg_5yk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E82F0/5C57E5C0828311EE90C8816AC4F9AE02/7unhDCkeVsgtdwcgELDlgAg_5yk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:8a:63:5b:c5:1d:9f:d6:29:53:29:b3:40:f1:c1:0f:84:a6: 49:38:0e:ed:23:4d:67:65:31:47:5a:f2:44:53:aa:54:f9:f1: f3:81:4a:7b:26:0c:d7:7f:95:dd:a3:c5:d4:5d:7f:f4:10:d0: f5:d6:4c:c8:f1:92:f9:e5:18:18:1f:af:f5:81:f4:ff:e6:be: c1:18:3d:d8:75:e1:2d:3a:57:d0:11:f0:8c:4d:1b:84:89:09: 18:36:13:cc:95:44:98:f4:d9:54:a7:28:ee:54:56:28:83:d2: fd:9f:04:91:9b:09:d3:20:f0:70:ab:a5:ad:22:17:6f:96:95: 14:43:bc:cd:be:a4:13:85:96:19:c0:bf:1b:35:a4:84:a1:73: 8e:0d:2d:38:b7:cb:59:32:a8:fb:65:1e:d6:6d:9d:6d:ef:e8: 3b:b2:68:0a:aa:61:b8:a1:3c:13:52:d7:9e:f8:08:bd:d9:8f: 63:a0:c4:8b:31:f5:db:9b:a6:72:2f:33:83:f2:73:5a:99:bf: d7:cf:7a:79:a3:89:fc:4b:d4:ba:56:29:fa:38:ac:5b:33:3f: cd:4e:84:a3:a9:1f:5e:53:24:c4:fc:da:d2:9b:81:81:cc:28: 5f:5a:ea:fa:0c:7e:2e:f8:aa:8c:7e:c2:27:a6:98:22:9b:33: cb:e9:8d:59 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF ODJGMDExMC8GA1UEBRMoRUVFOUUxMEMyOTFFNTZDODJENzcwNzIwMTBCMEU1ODAw ODNGRTcyOTAeFw0yNDA1MTcwNzQ1MzBaFw0yNDA1MjQwNzQ1MzBaMBgxFjAUBgNV BAMTDTY2NDcwYjFhLTk1MmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKVPPJGCCwc8MK5odX04r38UJ4XPkuVrPO36hQX3WpB490jrHBZ0L3i+a6E7YT K4JTXPvjEVGLftR4bkzhCmdphf9X/UcAaP10CdPdUxcHhyxW8RrPPb6x26O448k5 6eVq/5HKfz/KYtgbPGe7PiZnwxE7PGao9bNBKGKRWUisCCLM08ngh/qzofOuwQUq Xzm1WY7yuhBkrMVXx1wzHkCFVXSVK8MKYkaQQVomdeDf+9Mate0z1tlAyu9Cclg/ IkUhDNfA48mLOBh1RgYhw7xsiIiwjb4/YpO7f+KT/ezeXVHhWIC8h+WdFIvbpRBR wjtKS5JTUNKbCD1irPFikVmHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUOHvL4lYV ufTS7vvk42jyO2EP5bMwHwYDVR0jBBgwFoAU7unhDCkeVsgtdwcgELDlgAg/5ykw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4MkYwLzVDNTdFNUMwODI4 MzExRUU5MEM4ODE2QUM0RjlBRTAyLzd1bmhEQ2tlVnNndGR3Y2dFTERsZ0FnXzV5 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN3VuaERDa2VWc2d0ZHdjZ0VMRGxnQWdfNXlrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4 MkYwLzVDNTdFNUMwODI4MzExRUU5MEM4ODE2QUM0RjlBRTAyLzd1bmhEQ2tlVnNn dGR3Y2dFTERsZ0FnXzV5ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABqKY1vFHZ/WKVMps0DxwQ+Epkk4Du0jTWdlMUda8kRTqlT58fOBSnsm DNd/ld2jxdRdf/QQ0PXWTMjxkvnlGBgfr/WB9P/mvsEYPdh14S06V9AR8IxNG4SJ CRg2E8yVRJj02VSnKO5UViiD0v2fBJGbCdMg8HCrpa0iF2+WlRRDvM2+pBOFlhnA vxs1pIShc44NLTi3y1kyqPtlHtZtnW3v6DuyaAqqYbihPBNS1574CL3Zj2OgxIsx 9dubpnIvM4Pyc1qZv9fPenmjifxL1LpWKfo4rFszP81OhKOpH15TJMT82tKbgYHM KF9a6voMfi74qox+wiemmCKbM8vpjVk= -----END CERTIFICATE-----Generated at Fri May 17 08:13:55 2024 by rpki-client on console-fra.rpki-client.org