$ rpki-client -vvf rpki.apnic.net/member_repository/A9118EDB/309BE6BE1DDD11EC883B4423C4F9AE02/5tdlUVTja2lxFXTiB5a2gCxDtxU.mft File: 5tdlUVTja2lxFXTiB5a2gCxDtxU.mft (raw, json) Hash identifier: 86HyK03hx0KWre4r79shfkhguOrvBWkgRfyMbdOZMdQ= Subject key identifier: BF:B6:F9:61:EF:2F:D6:90:F9:43:BF:3A:46:46:A8:FE:A5:DA:74:30 Authority key identifier: E6:D7:65:51:54:E3:6B:69:71:15:74:E2:07:96:B6:80:2C:43:B7:15 Certificate issuer: /CN=A9118EDB/serialNumber=E6D7655154E36B69711574E20796B6802C43B715 Certificate serial: 0421 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5tdlUVTja2lxFXTiB5a2gCxDtxU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118EDB/309BE6BE1DDD11EC883B4423C4F9AE02/5tdlUVTja2lxFXTiB5a2gCxDtxU.mft Manifest number: 041D Signing time: Fri 31 May 2024 02:38:35 +0000 Manifest this update: Fri 31 May 2024 02:38:35 +0000 Manifest next update: Fri 07 Jun 2024 02:38:35 +0000 Files and hashes: 1: 5tdlUVTja2lxFXTiB5a2gCxDtxU.crl (hash: efDIPc7dK3FlE3Q4xRnKTtgM3KN0JcFEVT6eJNGFmes=) 2: BA4D01561DE011ECB872BC27C4F9AE02.roa (hash: tDWTANfjrPDs2GQbILwkdwvre/uzXy+fisfpOKEdfcI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118EDB/309BE6BE1DDD11EC883B4423C4F9AE02/5tdlUVTja2lxFXTiB5a2gCxDtxU.crl rsync://rpki.apnic.net/member_repository/A9118EDB/309BE6BE1DDD11EC883B4423C4F9AE02/5tdlUVTja2lxFXTiB5a2gCxDtxU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5tdlUVTja2lxFXTiB5a2gCxDtxU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 02:38:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1057 (0x421) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118EDB/serialNumber=E6D7655154E36B69711574E20796B6802C43B715 Validity Not Before: May 31 02:38:35 2024 GMT Not After : Jun 7 02:38:35 2024 GMT Subject: CN=6659382b-ce3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:3d:a9:25:54:a3:9f:5a:5f:6e:5e:44:38:92: 50:e0:5d:82:fa:67:bd:75:b7:d3:a9:37:cd:17:65: 69:56:16:f8:13:b8:4d:8b:21:1e:74:82:7a:8a:5b: 97:c3:ea:60:0d:fb:04:2f:fa:83:3e:f3:33:ae:e3: 2f:d3:7d:7e:c4:c6:41:d2:a2:b8:ba:dc:34:df:20: ef:cd:cb:23:3d:fb:e0:a0:fe:3d:db:51:28:78:61: 9f:42:1a:fc:eb:8d:d8:96:a7:d3:43:a2:d0:b0:83: 44:ff:c9:99:23:11:84:72:a0:48:fb:8d:88:53:60: f5:67:45:35:49:be:ee:79:57:fe:cd:36:08:46:4c: ee:7a:43:7a:2f:ea:e3:36:2f:47:8f:cd:e0:61:41: 66:04:5f:cb:82:f2:03:c5:20:dd:d8:cf:97:c3:5b: 21:bd:5f:8c:18:00:76:59:3e:dc:58:c3:99:3f:33: f3:43:aa:17:ac:c2:43:25:4f:bc:41:ee:e2:89:19: 61:d5:2d:93:08:85:07:00:4e:f0:51:90:53:a3:97: 8c:31:da:5a:22:28:04:70:ca:0c:ee:b8:70:f6:61: 82:6b:05:e1:64:35:73:d6:59:b3:63:ca:55:e4:c7: e2:53:11:bb:30:ad:fe:57:36:98:3c:1a:6f:2b:79: 27:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:B6:F9:61:EF:2F:D6:90:F9:43:BF:3A:46:46:A8:FE:A5:DA:74:30 X509v3 Authority Key Identifier: keyid:E6:D7:65:51:54:E3:6B:69:71:15:74:E2:07:96:B6:80:2C:43:B7:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118EDB/309BE6BE1DDD11EC883B4423C4F9AE02/5tdlUVTja2lxFXTiB5a2gCxDtxU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5tdlUVTja2lxFXTiB5a2gCxDtxU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118EDB/309BE6BE1DDD11EC883B4423C4F9AE02/5tdlUVTja2lxFXTiB5a2gCxDtxU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:54:f9:71:b4:d8:2d:80:c6:3a:18:5f:e5:98:5f:ca:af:67: c8:34:cd:20:fa:b3:cd:41:98:19:5a:c1:73:c3:cb:85:fa:9a: 7e:53:21:ee:6a:4b:b7:e6:41:9b:ca:35:9e:0e:d0:f6:9e:55: d2:64:1f:5e:d4:e2:de:2b:9e:62:7b:00:4f:4f:33:e5:5d:78: 35:1e:94:f2:5f:fc:fa:e0:c7:dc:a3:51:41:53:03:66:85:95: a3:16:ea:05:e9:72:0f:1d:5c:58:ef:fe:db:0b:f3:17:1e:c9: a6:40:18:c8:c0:ca:00:56:20:75:23:63:8c:fb:0f:38:3a:5d: 9f:ba:de:25:70:2d:8d:e0:a9:6f:ad:d2:a8:6c:31:4a:a4:8a: 78:cd:ab:e7:54:ee:0b:54:85:9d:7b:ae:38:56:2e:19:2b:68: e5:1b:71:3f:08:e0:5d:9b:43:cf:ec:e9:3b:d4:a0:2c:05:de: a7:ed:42:9e:f5:22:d4:26:78:07:13:dd:29:b4:c5:f5:f4:57: 6e:bf:7f:c9:96:41:89:25:e3:98:89:3e:33:7b:30:41:f5:a4: cb:06:f0:c6:2f:f6:bc:6e:35:25:d3:e3:0d:dd:74:33:98:34: d0:04:e8:5c:0c:a7:a7:4d:15:80:df:aa:2f:8d:c8:cc:be:8a: a9:63:8e:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThFREIxMTAvBgNVBAUTKEU2RDc2NTUxNTRFMzZCNjk3MTE1NzRFMjA3OTZCNjgw MkM0M0I3MTUwHhcNMjQwNTMxMDIzODM1WhcNMjQwNjA3MDIzODM1WjAYMRYwFAYD VQQDEw02NjU5MzgyYi1jZTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyD2pJVSjn1pfbl5EOJJQ4F2C+me9dbfTqTfNF2VpVhb4E7hNiyEedIJ6iluX w+pgDfsEL/qDPvMzruMv031+xMZB0qK4utw03yDvzcsjPfvgoP4921EoeGGfQhr8 643YlqfTQ6LQsINE/8mZIxGEcqBI+42IU2D1Z0U1Sb7ueVf+zTYIRkzuekN6L+rj Ni9Hj83gYUFmBF/LgvIDxSDd2M+Xw1shvV+MGAB2WT7cWMOZPzPzQ6oXrMJDJU+8 Qe7iiRlh1S2TCIUHAE7wUZBTo5eMMdpaIigEcMoM7rhw9mGCawXhZDVz1lmzY8pV 5MfiUxG7MK3+VzaYPBpvK3knqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL+2+WHv L9aQ+UO/OkZGqP6l2nQwMB8GA1UdIwQYMBaAFObXZVFU42tpcRV04geWtoAsQ7cV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEVEQi8zMDlCRTZCRTFE REQxMUVDODgzQjQ0MjNDNEY5QUUwMi81dGRsVVZUamEybHhGWFRpQjVhMmdDeER0 eFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV0ZGxVVlRqYTJseEZYVGlCNWEyZ0N4RHR4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEVEQi8zMDlCRTZCRTFEREQxMUVDODgzQjQ0MjNDNEY5QUUwMi81dGRsVVZUamEy bHhGWFRpQjVhMmdDeER0eFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiVPlxtNgtgMY6GF/lmF/Kr2fINM0g+rPNQZgZWsFzw8uF+pp+UyHu aku35kGbyjWeDtD2nlXSZB9e1OLeK55iewBPTzPlXXg1HpTyX/z64Mfco1FBUwNm hZWjFuoF6XIPHVxY7/7bC/MXHsmmQBjIwMoAViB1I2OM+w84Ol2fut4lcC2N4Klv rdKobDFKpIp4zavnVO4LVIWde644Vi4ZK2jlG3E/COBdm0PP7Ok71KAsBd6n7UKe 9SLUJngHE90ptMX19Fduv3/JlkGJJeOYiT4zezBB9aTLBvDGL/a8bjUl0+MN3XQz mDTQBOhcDKenTRWA36ovjcjMvoqpY455 -----END CERTIFICATE-----Generated at Fri May 31 04:53:55 2024 by rpki-client on console-fra.rpki-client.org