$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.mft File: SBcgosjubOySR3dhkymcEP63ykQ.mft (raw, json) Hash identifier: Aew2tbxyiP1Jm5g/c35jtRr/bV391cdsj86oNA41epo= Subject key identifier: 04:FA:F9:7A:A2:03:80:25:BB:EC:DE:62:73:A1:B9:EF:55:EF:13:88 Authority key identifier: 48:17:20:A2:C8:EE:6C:EC:92:47:77:61:93:29:9C:10:FE:B7:CA:44 Certificate issuer: /CN=A91FD2E3/serialNumber=481720A2C8EE6CEC9247776193299C10FEB7CA44 Certificate serial: 6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SBcgosjubOySR3dhkymcEP63ykQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.mft Manifest number: 6B Signing time: Fri 17 May 2024 07:39:35 +0000 Manifest this update: Fri 17 May 2024 07:39:34 +0000 Manifest next update: Fri 24 May 2024 07:39:34 +0000 Files and hashes: 1: SBcgosjubOySR3dhkymcEP63ykQ.crl (hash: 6xDaC0iiEOszslcJKy6U2GvgbjpbbbxBwtY8rSz5cwg=) 2: A38F041873C011EEB1A68245C4F9AE02.roa (hash: 3gJO0VRROU7x0qzNJEOCSuT5XEYFBGwoi9G8E3dV0i0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.crl rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SBcgosjubOySR3dhkymcEP63ykQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 07:35:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD2E3/serialNumber=481720A2C8EE6CEC9247776193299C10FEB7CA44 Validity Not Before: May 17 07:39:34 2024 GMT Not After : May 24 07:39:34 2024 GMT Subject: CN=664709b6-3531 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:7c:36:99:e0:0f:29:9e:04:27:dc:e3:ee:22: 9a:e4:54:dc:26:ac:dd:6e:8a:3b:3c:df:aa:cb:7b: 66:86:77:45:e5:4f:8c:86:2d:5e:06:77:ed:4d:98: 0c:20:9c:c9:11:96:36:7e:4b:8f:80:9b:88:e5:a7: 74:0c:46:0c:84:4b:56:7d:31:05:6c:48:8c:5c:5b: 9d:5e:68:af:67:fa:6c:d0:6d:81:1e:3b:10:dd:2f: 77:00:ee:87:b2:ca:b1:dc:79:39:e6:63:3e:04:d4: f1:79:90:12:58:2b:54:1f:c0:28:60:76:45:e4:ec: 0f:ce:4b:86:29:2d:37:9f:57:51:9d:1d:71:4a:fc: b8:36:50:aa:9b:78:bd:c1:09:db:8e:08:cc:62:ed: 93:2c:8e:b4:22:2f:17:8f:97:48:de:77:c7:70:2d: 30:71:fc:e0:78:d6:ac:5e:50:d4:3c:dc:7a:69:6d: a3:f7:51:17:6a:d9:6f:b0:da:d1:e8:83:71:34:9e: 41:02:f7:0f:16:43:b1:4f:2c:8b:57:47:fa:3a:b4: c8:88:61:39:68:3a:09:a9:9e:6f:12:54:12:9e:66: b4:8b:31:f0:49:89:e7:3d:79:69:c6:9c:2c:e9:3a: 7e:ce:20:5a:b9:ef:aa:17:2e:4a:f7:4d:a1:c3:be: ff:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:FA:F9:7A:A2:03:80:25:BB:EC:DE:62:73:A1:B9:EF:55:EF:13:88 X509v3 Authority Key Identifier: keyid:48:17:20:A2:C8:EE:6C:EC:92:47:77:61:93:29:9C:10:FE:B7:CA:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SBcgosjubOySR3dhkymcEP63ykQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:43:b3:61:a9:dc:ed:2f:dd:2b:a4:0c:85:0b:99:2b:2c:be: f8:79:d1:fd:28:bd:56:a2:bb:20:da:08:5c:6d:06:41:a9:0c: c7:b8:e1:ab:92:6b:23:dd:70:33:76:99:d9:26:f6:90:61:ec: 8e:3e:3d:bb:d8:9a:01:9a:1d:bd:d2:0c:b1:5f:6a:cb:35:96: b1:f8:32:92:2e:66:20:c4:b5:fc:42:4a:af:01:8d:01:9a:2b: 17:9d:c3:33:54:a7:7a:d1:6a:fd:cf:e2:8d:62:77:9f:cb:f4: ab:4c:55:21:a5:f7:ea:f2:5d:d1:72:b6:36:16:ca:0e:54:fd: f4:85:41:f0:26:9f:23:58:8f:d0:04:c8:c2:c6:81:e4:5f:24: e9:f2:5a:89:50:b6:b4:d3:b3:63:c5:24:a9:72:17:f2:dd:df: 29:5d:a3:e6:e4:c9:77:7d:c9:e2:ce:2e:8f:dd:c7:48:f9:fc: 5e:e0:84:da:4c:fa:ce:1a:3f:af:a8:ec:9c:f1:d6:ef:87:60: 16:35:9a:36:c5:cb:d9:9b:d9:71:87:51:56:e4:ba:32:13:e3: 8f:7a:7a:50:7d:a4:a2:d7:0a:9a:6e:3a:47:ce:bd:83:e5:70: fb:86:2d:86:47:ed:3f:e6:18:b7:30:53:0c:06:ac:10:e6:be: a4:85:80:25 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RDJFMzExMC8GA1UEBRMoNDgxNzIwQTJDOEVFNkNFQzkyNDc3NzYxOTMyOTlDMTBG RUI3Q0E0NDAeFw0yNDA1MTcwNzM5MzRaFw0yNDA1MjQwNzM5MzRaMBgxFjAUBgNV BAMTDTY2NDcwOWI2LTM1MzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCVfDaZ4A8pngQn3OPuIprkVNwmrN1uijs836rLe2aGd0XlT4yGLV4Gd+1NmAwg nMkRljZ+S4+Am4jlp3QMRgyES1Z9MQVsSIxcW51eaK9n+mzQbYEeOxDdL3cA7oey yrHceTnmYz4E1PF5kBJYK1QfwChgdkXk7A/OS4YpLTefV1GdHXFK/Lg2UKqbeL3B CduOCMxi7ZMsjrQiLxePl0jed8dwLTBx/OB41qxeUNQ83HppbaP3URdq2W+w2tHo g3E0nkEC9w8WQ7FPLItXR/o6tMiIYTloOgmpnm8SVBKeZrSLMfBJiec9eWnGnCzp On7OIFq576oXLkr3TaHDvv8/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBPr5eqID gCW77N5ic6G571XvE4gwHwYDVR0jBBgwFoAUSBcgosjubOySR3dhkymcEP63ykQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZEMkUzLzRGNDE3OUE0NzND MDExRUVCODI3RjQ0NEM0RjlBRTAyL1NCY2dvc2p1Yk95U1IzZGhreW1jRVA2M3lr US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU0JjZ29zanViT3lTUjNkaGt5bWNFUDYzeWtRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZE MkUzLzRGNDE3OUE0NzNDMDExRUVCODI3RjQ0NEM0RjlBRTAyL1NCY2dvc2p1Yk95 U1IzZGhreW1jRVA2M3lrUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE9Ds2Gp3O0v3SukDIULmSssvvh50f0ovVaiuyDaCFxtBkGpDMe44auS ayPdcDN2mdkm9pBh7I4+PbvYmgGaHb3SDLFfass1lrH4MpIuZiDEtfxCSq8BjQGa KxedwzNUp3rRav3P4o1id5/L9KtMVSGl9+ryXdFytjYWyg5U/fSFQfAmnyNYj9AE yMLGgeRfJOnyWolQtrTTs2PFJKlyF/Ld3yldo+bkyXd9yeLOLo/dx0j5/F7ghNpM +s4aP6+o7Jzx1u+HYBY1mjbFy9mb2XGHUVbkujIT4496elB9pKLXCppuOkfOvYPl cPuGLYZH7T/mGLcwUwwGrBDmvqSFgCU= -----END CERTIFICATE-----Generated at Fri May 17 08:13:56 2024 by rpki-client on console-fra.rpki-client.org