$ rpki-client -vvf rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.mft File: tO2w1sy18AyTBDdO6B9eJhrmcck.mft (raw, json) Hash identifier: t+ET+KRMVcO3gKXkqEbkPvoqTkm+uJ4ztkdMbktTwv4= Subject key identifier: A1:D2:BE:F4:8A:AE:C1:DD:41:65:40:B0:BC:CD:E2:03:95:20:04:BE Authority key identifier: B4:ED:B0:D6:CC:B5:F0:0C:93:04:37:4E:E8:1F:5E:26:1A:E6:71:C9 Certificate issuer: /CN=A9116AC6/serialNumber=B4EDB0D6CCB5F00C9304374EE81F5E261AE671C9 Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tO2w1sy18AyTBDdO6B9eJhrmcck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.mft Manifest number: 70 Signing time: Fri 31 May 2024 08:25:58 +0000 Manifest this update: Fri 31 May 2024 08:25:57 +0000 Manifest next update: Fri 07 Jun 2024 08:25:57 +0000 Files and hashes: 1: tO2w1sy18AyTBDdO6B9eJhrmcck.crl (hash: tSV1nfyy9PcDU6TMmekXeJffuOvYrCx5Yxu/tVFhLy0=) 2: 34DED1A2798711EEA7D73423C4F9AE02.roa (hash: WSD7s6FqOh0iYhQmLGXX6qqH39LklCQwpZNKx6rnaR8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.crl rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tO2w1sy18AyTBDdO6B9eJhrmcck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 07:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116AC6/serialNumber=B4EDB0D6CCB5F00C9304374EE81F5E261AE671C9 Validity Not Before: May 31 08:25:57 2024 GMT Not After : Jun 7 08:25:57 2024 GMT Subject: CN=66598996-5d6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4d:4e:a9:90:e2:2c:77:20:4c:51:b2:a7:bd: 78:88:6e:2d:ab:67:b2:3f:fa:c4:af:de:52:99:94: 53:27:91:a9:cd:06:49:2a:88:49:42:ee:4a:8b:a0: 64:a4:2b:c2:cf:21:e2:c3:93:bd:96:99:d6:69:bd: f0:85:33:63:e1:cf:8c:c2:5f:76:b7:fa:48:50:b6: 69:ac:82:f5:ee:fe:08:4e:00:eb:62:c3:e5:3b:c7: ca:eb:87:43:2a:4a:fb:ff:18:1e:fc:2e:1c:4a:e0: 93:15:24:4d:67:e9:51:b0:37:04:43:47:af:d0:b5: b8:6e:ab:b4:27:84:a1:c9:bb:22:dd:77:a5:86:e4: e2:72:e3:2d:29:e8:e8:6a:88:fc:64:71:6c:7f:f5: 95:5b:70:6a:59:8b:4d:f0:5b:e6:7b:df:de:f6:6d: 85:65:3a:16:e1:a7:7c:d9:a9:f3:f4:be:cb:6c:0c: c9:ae:76:ce:48:38:b5:17:14:f0:bc:69:f6:75:ba: 11:20:eb:1b:dc:ff:a0:41:fd:4d:89:4b:f1:06:20: 42:f1:76:95:a7:7c:c6:36:c7:a1:4f:89:60:e5:5f: 7f:95:7c:94:4c:65:97:e9:ca:4f:c1:b0:e0:1a:f7: 70:e4:c1:b2:12:e9:16:c2:3f:54:cf:85:e9:7d:d6: ff:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:D2:BE:F4:8A:AE:C1:DD:41:65:40:B0:BC:CD:E2:03:95:20:04:BE X509v3 Authority Key Identifier: keyid:B4:ED:B0:D6:CC:B5:F0:0C:93:04:37:4E:E8:1F:5E:26:1A:E6:71:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tO2w1sy18AyTBDdO6B9eJhrmcck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:01:48:33:23:1a:45:23:78:80:68:49:3d:82:f0:46:0d:ef: 89:dc:8a:75:e9:ee:00:9b:54:a6:1d:75:25:ef:21:cf:ad:df: 19:79:50:3d:d5:04:83:cd:42:df:a0:5a:5e:ce:42:f3:20:1f: 65:04:56:ee:04:44:75:a6:2b:7f:a7:e2:61:90:ba:0f:c4:bc: 36:ad:fd:f1:32:49:00:2b:c1:a8:f3:23:4e:c9:c1:62:c8:4a: 9b:ab:2f:d4:9d:3b:e0:0b:3b:9c:41:6b:58:dd:e3:4b:92:33: e5:18:09:c8:92:34:9e:27:76:4b:8c:f9:b7:ee:e9:ba:16:84: fc:b0:90:1d:b7:8b:33:17:b1:af:c0:03:5b:02:5d:5c:50:7a: d1:38:22:1d:7e:6e:a3:bf:f3:2e:88:83:ab:12:99:c6:75:e5: 4f:14:ae:7d:de:5e:f1:80:f1:ab:b3:8b:14:a2:e4:db:b2:02: c3:ea:5a:3c:9a:16:ea:38:07:b6:35:75:1f:1c:19:e1:39:fe: aa:8d:9d:15:27:b2:2a:83:38:c6:26:0b:f4:a9:3e:45:88:62: b6:e8:c0:fd:a1:7c:15:4c:3e:4e:84:49:77:8e:e8:ca:03:03: 66:a8:ed:b0:da:7d:8e:60:2d:6d:c5:be:44:b6:eb:00:35:1b: 8b:e1:b5:ac -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NkFDNjExMC8GA1UEBRMoQjRFREIwRDZDQ0I1RjAwQzkzMDQzNzRFRTgxRjVFMjYx QUU2NzFDOTAeFw0yNDA1MzEwODI1NTdaFw0yNDA2MDcwODI1NTdaMBgxFjAUBgNV BAMTDTY2NTk4OTk2LTVkNmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/TU6pkOIsdyBMUbKnvXiIbi2rZ7I/+sSv3lKZlFMnkanNBkkqiElC7kqLoGSk K8LPIeLDk72WmdZpvfCFM2Phz4zCX3a3+khQtmmsgvXu/ghOAOtiw+U7x8rrh0Mq Svv/GB78LhxK4JMVJE1n6VGwNwRDR6/Qtbhuq7QnhKHJuyLdd6WG5OJy4y0p6Ohq iPxkcWx/9ZVbcGpZi03wW+Z73972bYVlOhbhp3zZqfP0vstsDMmuds5IOLUXFPC8 afZ1uhEg6xvc/6BB/U2JS/EGIELxdpWnfMY2x6FPiWDlX3+VfJRMZZfpyk/BsOAa 93DkwbIS6RbCP1TPhel91v//AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUodK+9Iqu wd1BZUCwvM3iA5UgBL4wHwYDVR0jBBgwFoAUtO2w1sy18AyTBDdO6B9eJhrmcckw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE2QUM2L0ExQjZDQkVBNzk3 RDExRUU5OTQ5QjA3M0M0RjlBRTAyL3RPMncxc3kxOEF5VEJEZE82QjllSmhybWNj ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdE8ydzFzeTE4QXlUQkRkTzZCOWVKaHJtY2NrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE2 QUM2L0ExQjZDQkVBNzk3RDExRUU5OTQ5QjA3M0M0RjlBRTAyL3RPMncxc3kxOEF5 VEJEZE82QjllSmhybWNjay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACcBSDMjGkUjeIBoST2C8EYN74ncinXp7gCbVKYddSXvIc+t3xl5UD3V BIPNQt+gWl7OQvMgH2UEVu4ERHWmK3+n4mGQug/EvDat/fEySQArwajzI07JwWLI SpurL9SdO+ALO5xBa1jd40uSM+UYCciSNJ4ndkuM+bfu6boWhPywkB23izMXsa/A A1sCXVxQetE4Ih1+bqO/8y6Ig6sSmcZ15U8Urn3eXvGA8auzixSi5NuyAsPqWjya Fuo4B7Y1dR8cGeE5/qqNnRUnsiqDOMYmC/SpPkWIYrbowP2hfBVMPk6ESXeO6MoD A2ao7bDafY5gLW3FvkS26wA1G4vhtaw= -----END CERTIFICATE-----Generated at Fri May 31 10:42:19 2024 by rpki-client on console-fra.rpki-client.org