$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft File: CUoNzYAqBb91c_96buCnqXIFUNE.mft (raw, json) Hash identifier: 7ABpDsUo+fgBO2xXKfzPM+TS0QQctQk+WTm5egu/Dsc= Subject key identifier: 6A:9C:99:E8:E1:67:9A:6E:51:53:18:A4:68:12:A8:3A:18:B6:73:53 Authority key identifier: 09:4A:0D:CD:80:2A:05:BF:75:73:FF:7A:6E:E0:A7:A9:72:05:50:D1 Certificate issuer: /CN=A91EC93F/serialNumber=094A0DCD802A05BF7573FF7A6EE0A7A9720550D1 Certificate serial: C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUoNzYAqBb91c_96buCnqXIFUNE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft Manifest number: C5 Signing time: Sun 05 May 2024 06:22:49 +0000 Manifest this update: Sun 05 May 2024 06:22:49 +0000 Manifest next update: Sun 12 May 2024 06:22:49 +0000 Files and hashes: 1: CUoNzYAqBb91c_96buCnqXIFUNE.crl (hash: bXjKUhjldUGlCFnMpAPhGWMrx6byguXbRkBtGjRIKy8=) 2: 5BA557A6DEB011EDB7B0C04EC4F9AE02.roa (hash: rqsGCczlTsAssnjE3lU2t0y5qqxlPSKotk0BlBeeudM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.crl rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUoNzYAqBb91c_96buCnqXIFUNE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 06:22:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC93F/serialNumber=094A0DCD802A05BF7573FF7A6EE0A7A9720550D1 Validity Not Before: May 5 06:22:49 2024 GMT Not After : May 12 06:22:49 2024 GMT Subject: CN=663725b9-36ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b5:da:7c:ab:53:44:01:60:4d:5a:38:d4:be: 55:eb:38:aa:06:3f:4d:b0:8a:ae:a0:20:a1:5e:b0: 07:0a:11:94:0e:d4:36:07:7e:db:c5:43:dc:f8:07: 09:26:e0:3e:e3:09:8c:fa:56:29:da:61:33:71:5a: 84:56:9b:72:41:15:0c:fc:69:c4:55:99:df:46:c3: 8b:3b:8d:bc:23:df:b9:6d:7e:b2:9d:ab:6b:f2:7a: 79:93:be:17:82:97:09:67:94:93:80:50:cf:38:e2: 85:f3:3f:46:91:45:cc:38:4f:7f:ec:33:30:06:fa: 6a:b9:ff:88:9f:74:65:b7:ca:5c:dd:bd:6d:64:24: 00:34:aa:b2:70:35:8e:91:a0:dd:ed:4d:27:a2:bb: 80:12:1c:b4:37:20:09:b8:b9:ea:00:0f:df:f2:6f: a8:b2:fe:fd:b6:65:61:0d:57:06:e1:4f:b5:80:a0: 5a:18:b7:b6:ee:6b:b9:4f:ef:bc:6b:01:fd:34:c7: 46:8a:c2:a3:9c:71:eb:04:31:cb:3a:39:33:7d:a9: 04:72:b5:98:f2:52:96:d2:ba:d7:b6:aa:a6:77:e6: 89:98:6c:ac:de:0b:46:72:64:a6:1e:dd:2f:db:53: 3e:e0:d6:dc:40:05:90:a0:f7:5d:bf:78:6f:6c:f0: 31:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:9C:99:E8:E1:67:9A:6E:51:53:18:A4:68:12:A8:3A:18:B6:73:53 X509v3 Authority Key Identifier: keyid:09:4A:0D:CD:80:2A:05:BF:75:73:FF:7A:6E:E0:A7:A9:72:05:50:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUoNzYAqBb91c_96buCnqXIFUNE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:19:ed:2b:0b:10:d7:9a:79:39:da:32:0b:88:ae:10:ee:90: d0:79:3e:8a:b3:41:fb:16:5d:52:24:c0:9d:29:77:9f:c3:5b: f5:b7:2b:3c:51:6e:3b:54:25:cc:72:26:79:1d:3d:1d:a6:0a: cb:94:e4:45:85:81:87:0c:f7:e4:a2:2d:92:38:ec:8b:13:fa: ba:27:4d:d9:45:ce:ef:b5:0c:d7:dc:ea:aa:88:75:99:c7:3f: 40:a8:a5:e1:da:d6:94:9d:54:14:e5:b8:58:62:09:02:ac:90: 47:a6:52:91:f9:0b:49:9a:98:e1:db:1b:d3:a6:dc:b0:67:af: 6c:94:68:75:d0:9d:62:e1:15:23:2e:cf:4e:a1:34:c7:22:c7: 42:7f:ed:b3:9e:5b:00:a8:11:19:6c:44:27:6c:82:e7:03:20: 93:f0:ee:c8:4b:0e:a1:10:10:04:88:f1:0d:31:99:dc:50:6a: ea:a7:30:7e:20:4c:cb:61:5c:62:cc:1b:6d:09:60:f4:84:40: c3:fa:73:91:39:d4:fa:a3:51:c8:a0:d9:11:d2:96:b6:d1:7f: ea:fc:4d:b0:75:3c:d5:1d:7b:8a:c3:9a:39:43:d4:24:91:a8: 7d:90:72:b6:a0:c2:c3:55:14:37:5b:66:22:fb:38:07:56:12: 31:4e:fe:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM5M0YxMTAvBgNVBAUTKDA5NEEwRENEODAyQTA1QkY3NTczRkY3QTZFRTBBN0E5 NzIwNTUwRDEwHhcNMjQwNTA1MDYyMjQ5WhcNMjQwNTEyMDYyMjQ5WjAYMRYwFAYD VQQDEw02NjM3MjViOS0zNmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsrXafKtTRAFgTVo41L5V6ziqBj9NsIquoCChXrAHChGUDtQ2B37bxUPc+AcJ JuA+4wmM+lYp2mEzcVqEVptyQRUM/GnEVZnfRsOLO428I9+5bX6ynatr8np5k74X gpcJZ5STgFDPOOKF8z9GkUXMOE9/7DMwBvpquf+In3Rlt8pc3b1tZCQANKqycDWO kaDd7U0noruAEhy0NyAJuLnqAA/f8m+osv79tmVhDVcG4U+1gKBaGLe27mu5T++8 awH9NMdGisKjnHHrBDHLOjkzfakEcrWY8lKW0rrXtqqmd+aJmGys3gtGcmSmHt0v 21M+4NbcQAWQoPddv3hvbPAx8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGqcmejh Z5puUVMYpGgSqDoYtnNTMB8GA1UdIwQYMBaAFAlKDc2AKgW/dXP/em7gp6lyBVDR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzkzRi82MEE4Rjg4Q0RF QUQxMUVEOEE2REYxNERDNEY5QUUwMi9DVW9OellBcUJiOTFjXzk2YnVDbnFYSUZV TkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NVb056WUFxQmI5MWNfOTZidUNucVhJRlVORS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzkzRi82MEE4Rjg4Q0RFQUQxMUVEOEE2REYxNERDNEY5QUUwMi9DVW9OellBcUJi OTFjXzk2YnVDbnFYSUZVTkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuGe0rCxDXmnk52jILiK4Q7pDQeT6Ks0H7Fl1SJMCdKXefw1v1tys8 UW47VCXMciZ5HT0dpgrLlORFhYGHDPfkoi2SOOyLE/q6J03ZRc7vtQzX3OqqiHWZ xz9AqKXh2taUnVQU5bhYYgkCrJBHplKR+QtJmpjh2xvTptywZ69slGh10J1i4RUj Ls9OoTTHIsdCf+2znlsAqBEZbEQnbILnAyCT8O7ISw6hEBAEiPENMZncUGrqpzB+ IEzLYVxizBttCWD0hEDD+nOROdT6o1HIoNkR0pa20X/q/E2wdTzVHXuKw5o5Q9Qk kah9kHK2oMLDVRQ3W2Yi+zgHVhIxTv66 -----END CERTIFICATE-----Generated at Sun May 5 08:39:15 2024 by rpki-client on console-fra.rpki-client.org