$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/1BN478zNyo5lN-lfJ6o7NTdYCvM.mft File: 1BN478zNyo5lN-lfJ6o7NTdYCvM.mft (raw, json) Hash identifier: 8dRmqn37aW3fh9orXQVjbP5mnVpNyxi+lIci/Yhit9A= Subject key identifier: 6F:22:01:E0:90:27:AC:5F:66:BA:C2:8D:D7:E6:9A:5D:B0:39:BD:56 Authority key identifier: D4:13:78:EF:CC:CD:CA:8E:65:37:E9:5F:27:AA:3B:35:37:58:0A:F3 Certificate issuer: /CN=A91F2E76/serialNumber=D41378EFCCCDCA8E6537E95F27AA3B3537580AF3 Certificate serial: 06D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1BN478zNyo5lN-lfJ6o7NTdYCvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/1BN478zNyo5lN-lfJ6o7NTdYCvM.mft Manifest number: 06CD Signing time: Fri 24 May 2024 23:09:39 +0000 Manifest this update: Fri 24 May 2024 23:09:39 +0000 Manifest next update: Fri 31 May 2024 23:09:39 +0000 Files and hashes: 1: 1BN478zNyo5lN-lfJ6o7NTdYCvM.crl (hash: T2nGDop6RV7POSrrqBH78c/KlvIE5dGpnMwDQkQUndA=) 2: 86AE60140D7A11EB9D346C48C4F9AE02.roa (hash: EnKj89o4/2sutrwYpg7UxwXHFBOFSGJviP9dKcMIsAc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/1BN478zNyo5lN-lfJ6o7NTdYCvM.crl rsync://rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/1BN478zNyo5lN-lfJ6o7NTdYCvM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1BN478zNyo5lN-lfJ6o7NTdYCvM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 23:09:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1746 (0x6d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2E76/serialNumber=D41378EFCCCDCA8E6537E95F27AA3B3537580AF3 Validity Not Before: May 24 23:09:39 2024 GMT Not After : May 31 23:09:39 2024 GMT Subject: CN=66511e33-63cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:fb:c7:b7:8e:72:db:08:66:6b:9e:28:67:39: 21:db:f1:01:03:7c:ff:a5:f1:21:8a:6b:bb:70:c1: 7c:ae:ee:af:0b:3f:32:84:e8:5a:68:9e:6b:d7:34: 39:78:3d:d7:e9:b1:55:52:d0:ae:77:ac:cf:15:e0: 9d:9f:ab:88:7a:0a:23:48:7a:2c:83:54:0a:55:2f: 56:ca:86:cd:5d:98:ed:20:61:de:2b:06:9c:7e:bf: ea:26:d0:1d:9d:93:89:eb:aa:ff:d9:05:68:76:29: 88:ab:1f:ce:aa:5d:5e:08:8b:93:5a:df:eb:b8:74: 15:d6:7e:fd:e4:77:f8:bf:fd:a6:ba:1b:8c:10:06: 47:7d:04:eb:ff:2c:7c:80:a0:67:d5:a1:6f:d3:b7: 3d:1b:d8:fb:1f:c8:3c:30:5a:13:3b:81:4a:74:db: d2:10:ed:f9:b9:11:d3:05:44:71:46:e6:14:4c:3d: b6:fd:4d:30:0a:af:3f:fc:b1:f8:69:a6:80:6b:08: 96:2e:bb:eb:b0:38:af:b9:27:91:b8:f5:87:12:24: c0:66:81:68:33:9f:66:64:b2:df:85:e6:aa:3a:5a: 2b:66:1e:ba:60:2f:cb:54:b9:ff:0f:ce:22:1b:b5: 31:bb:7c:31:67:d7:1a:c3:c2:15:4e:45:44:a8:57: e6:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:22:01:E0:90:27:AC:5F:66:BA:C2:8D:D7:E6:9A:5D:B0:39:BD:56 X509v3 Authority Key Identifier: keyid:D4:13:78:EF:CC:CD:CA:8E:65:37:E9:5F:27:AA:3B:35:37:58:0A:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/1BN478zNyo5lN-lfJ6o7NTdYCvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1BN478zNyo5lN-lfJ6o7NTdYCvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/1BN478zNyo5lN-lfJ6o7NTdYCvM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:da:62:4a:aa:f8:73:90:7d:dc:dc:ff:66:2f:08:6e:d5:5c: f6:fe:40:f3:30:1b:99:3e:5b:0e:ce:6b:6e:dc:ee:76:7d:43: 1e:06:53:b5:29:b0:ea:09:34:c6:1a:8b:f5:a6:84:ee:5a:7f: 5e:85:6a:ab:a1:d5:d6:b7:6c:6a:de:5d:98:2d:17:46:77:73: 39:da:26:8d:ff:2b:bc:cd:33:32:c3:53:14:ba:7a:ee:0a:ea: b6:f8:4a:2f:e5:be:b4:9d:66:f2:72:39:78:db:89:01:a7:6e: 2f:97:4c:73:fb:d2:bd:8b:80:86:a6:8d:2d:01:23:9f:84:3f: d5:e4:d4:16:64:b0:0d:55:30:b5:56:26:b8:0c:4d:ca:ca:fa: 2e:8c:8d:a3:6d:20:86:f9:8c:19:d5:af:9f:cc:e1:19:51:c4: 1c:76:cc:d8:49:2d:f9:3a:4b:ca:02:8b:11:1b:98:cb:67:3d: 3c:21:3b:38:65:32:83:3c:54:98:84:53:bc:78:d2:6c:f0:fa: b5:11:53:e9:53:bb:1f:89:c7:2a:6d:0b:2f:03:6c:9f:d0:4d: b4:4b:af:47:b5:b6:8a:8f:62:cd:2d:8d:3a:ad:4b:76:96:96: 20:ac:8e:49:34:97:fc:00:f0:3b:b5:f2:fb:88:ac:67:5f:0f: cb:c9:d7:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJFNzYxMTAvBgNVBAUTKEQ0MTM3OEVGQ0NDRENBOEU2NTM3RTk1RjI3QUEzQjM1 Mzc1ODBBRjMwHhcNMjQwNTI0MjMwOTM5WhcNMjQwNTMxMjMwOTM5WjAYMRYwFAYD VQQDEw02NjUxMWUzMy02M2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/vHt45y2whma54oZzkh2/EBA3z/pfEhimu7cMF8ru6vCz8yhOhaaJ5r1zQ5 eD3X6bFVUtCud6zPFeCdn6uIegojSHosg1QKVS9WyobNXZjtIGHeKwacfr/qJtAd nZOJ66r/2QVodimIqx/Oql1eCIuTWt/ruHQV1n795Hf4v/2muhuMEAZHfQTr/yx8 gKBn1aFv07c9G9j7H8g8MFoTO4FKdNvSEO35uRHTBURxRuYUTD22/U0wCq8//LH4 aaaAawiWLrvrsDivuSeRuPWHEiTAZoFoM59mZLLfheaqOlorZh66YC/LVLn/D84i G7Uxu3wxZ9caw8IVTkVEqFfmUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG8iAeCQ J6xfZrrCjdfmml2wOb1WMB8GA1UdIwQYMBaAFNQTeO/MzcqOZTfpXyeqOzU3WArz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkU3Ni84RjNDOUU2QTBE NzcxMUVCQkJBRTM0NDBDNEY5QUUwMi8xQk40Nzh6TnlvNWxOLWxmSjZvN05UZFlD dk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFCTjQ3OHpOeW81bE4tbGZKNm83TlRkWUN2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkU3Ni84RjNDOUU2QTBENzcxMUVCQkJBRTM0NDBDNEY5QUUwMi8xQk40Nzh6Tnlv NWxOLWxmSjZvN05UZFlDdk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAs2mJKqvhzkH3c3P9mLwhu1Vz2/kDzMBuZPlsOzmtu3O52fUMeBlO1 KbDqCTTGGov1poTuWn9ehWqrodXWt2xq3l2YLRdGd3M52iaN/yu8zTMyw1MUunru Cuq2+Eov5b60nWbycjl424kBp24vl0xz+9K9i4CGpo0tASOfhD/V5NQWZLANVTC1 Via4DE3KyvoujI2jbSCG+YwZ1a+fzOEZUcQcdszYSS35OkvKAosRG5jLZz08ITs4 ZTKDPFSYhFO8eNJs8Pq1EVPpU7sficcqbQsvA2yf0E20S69HtbaKj2LNLY06rUt2 lpYgrI5JNJf8APA7tfL7iKxnXw/Lydcu -----END CERTIFICATE-----Generated at Sat May 25 01:24:55 2024 by rpki-client on console-fra.rpki-client.org