$ rpki-client -vvf rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft File: aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft (raw, json) Hash identifier: t3ufsmxHUSZiiOeMRozdKIInDLrVW4ETnbHfrFLxPEQ= Subject key identifier: 4B:67:23:90:E7:89:97:94:F4:85:78:85:30:38:FA:BC:82:3E:95:68 Authority key identifier: 69:9E:67:42:56:7B:E7:32:9C:C3:A7:86:DE:B7:85:7E:2C:24:20:F9 Certificate issuer: /CN=A9119333/serialNumber=699E6742567BE7329CC3A786DEB7857E2C2420F9 Certificate serial: 21D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft Manifest number: 21A9 Signing time: Sat 18 May 2024 16:13:15 +0000 Manifest this update: Sat 18 May 2024 16:13:15 +0000 Manifest next update: Sat 25 May 2024 16:13:15 +0000 Files and hashes: 1: aZ5nQlZ75zKcw6eG3reFfiwkIPk.crl (hash: rGibk13MYSgq5xM8Bu2TX8gevyfDSy1XeN+Q5qCtBCc=) 2: 16D9F79EE1DE11EEA385B763C4F9AE02.roa (hash: cczU69wISt7/AR5yeZ1XveY0HlidI8LzNJiDO6ld4tc=) 3: 93C4474E085411EBB9F0635DC4F9AE02.roa (hash: r4oGdwh1wAA/HZZJFxAlSneBYqCxvrvBZTgJ6fejU+A=) 4: 079604B0A61711EE8BA59F82C4F9AE02.roa (hash: dtcFzj+VwSVoFg70xLTgFsl+ZSL0ZYc+/CB+JFv535A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.crl rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8665 (0x21d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119333/serialNumber=699E6742567BE7329CC3A786DEB7857E2C2420F9 Validity Not Before: May 18 16:13:15 2024 GMT Not After : May 25 16:13:15 2024 GMT Subject: CN=6648d39b-8786 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:10:6a:ab:47:19:d7:4c:eb:8e:86:43:dc:58: 48:88:45:86:eb:d9:1c:06:cd:06:b2:6a:c0:a5:42: 76:1e:09:57:fd:22:76:25:a1:65:e6:7e:71:31:51: 92:74:03:68:0c:ee:54:fa:de:22:c8:02:71:fd:58: f7:f0:8c:b4:6f:90:fc:cb:37:84:7c:3d:5a:86:24: b7:8e:bf:42:b9:91:80:a5:3f:45:92:9b:dd:59:81: 2c:e6:e1:9a:0e:2c:23:dd:56:d3:fe:b8:20:9b:19: 93:66:22:da:14:d7:7f:77:54:f8:fa:7f:ea:e7:16: a8:32:8d:b9:93:0c:60:f5:ab:a9:a1:8e:19:86:a6: aa:67:9b:bb:a4:df:8f:60:eb:4a:38:4f:36:71:83: d1:25:b7:d1:54:f5:6d:28:7f:b2:03:31:33:35:ad: aa:2c:04:f1:a3:39:ca:e5:0f:52:b0:21:82:ce:f1: 0e:f2:a3:23:6e:fc:17:66:be:cd:5d:34:a5:93:88: ec:c2:ce:5e:14:47:4d:f1:db:7e:2c:b2:37:19:1a: 68:c7:85:27:77:cf:52:a9:eb:c0:b9:93:b4:f1:57: c0:8c:88:e9:fe:5c:86:ab:5a:f6:bc:2d:8c:b4:5c: 8d:72:24:28:83:28:54:3c:95:f0:0f:cb:d7:cc:8c: 32:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:67:23:90:E7:89:97:94:F4:85:78:85:30:38:FA:BC:82:3E:95:68 X509v3 Authority Key Identifier: keyid:69:9E:67:42:56:7B:E7:32:9C:C3:A7:86:DE:B7:85:7E:2C:24:20:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:87:a1:ed:bd:08:8c:06:8f:88:f3:d7:b7:da:68:ec:08:06: c5:7b:25:32:3b:bf:9b:35:ed:4d:b7:dc:c6:d7:49:83:2c:33: 5b:33:9a:67:b5:b9:93:0c:ac:ac:07:b5:13:22:58:d4:2d:ba: 21:de:eb:40:f5:53:19:c4:a0:94:bb:72:68:66:b5:03:f6:45: a0:fb:fa:49:ff:e7:62:02:8c:31:97:f8:7e:7d:9e:6f:0e:e9: cb:c9:f8:08:9c:62:65:ff:7d:cb:e2:9c:14:e4:b2:d9:96:0b: 53:32:4c:90:84:be:74:57:e4:b4:5a:25:c0:bd:94:ec:ca:07: 7f:2e:e2:6a:1e:0b:ad:5d:d4:d4:69:13:80:50:a6:cc:bd:b6: e6:27:2f:d1:61:e2:55:10:a6:50:df:29:89:cb:8b:10:45:ca: 19:62:43:cd:0a:16:2a:c8:f2:a6:c7:5a:89:84:ff:21:ac:c0: c9:a6:b8:2f:01:4e:a1:dd:c6:df:4d:f6:9d:e2:dd:90:68:26: 6a:65:3c:e1:ee:1c:41:27:93:9d:9f:74:df:75:7b:d5:6d:6e: 54:2f:13:4b:73:bc:94:fe:a1:59:e5:6c:ae:57:15:97:1b:d1: 71:e9:9b:bb:3e:02:bf:c8:e7:a4:9b:1f:a8:54:eb:f1:a1:d9: d1:a3:42:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkzMzMxMTAvBgNVBAUTKDY5OUU2NzQyNTY3QkU3MzI5Q0MzQTc4NkRFQjc4NTdF MkMyNDIwRjkwHhcNMjQwNTE4MTYxMzE1WhcNMjQwNTI1MTYxMzE1WjAYMRYwFAYD VQQDEw02NjQ4ZDM5Yi04Nzg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9hBqq0cZ10zrjoZD3FhIiEWG69kcBs0GsmrApUJ2HglX/SJ2JaFl5n5xMVGS dANoDO5U+t4iyAJx/Vj38Iy0b5D8yzeEfD1ahiS3jr9CuZGApT9FkpvdWYEs5uGa Diwj3VbT/rggmxmTZiLaFNd/d1T4+n/q5xaoMo25kwxg9aupoY4ZhqaqZ5u7pN+P YOtKOE82cYPRJbfRVPVtKH+yAzEzNa2qLATxoznK5Q9SsCGCzvEO8qMjbvwXZr7N XTSlk4jsws5eFEdN8dt+LLI3GRpox4Und89SqevAuZO08VfAjIjp/lyGq1r2vC2M tFyNciQogyhUPJXwD8vXzIwyZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEtnI5Dn iZeU9IV4hTA4+ryCPpVoMB8GA1UdIwQYMBaAFGmeZ0JWe+cynMOnht63hX4sJCD5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTMzMy8wNjVEQTNCQUI4 NDQxMUU1QjUzNTdCMkZDNEY5QUUwMi9hWjVuUWxaNzV6S2N3NmVHM3JlRmZpd2tJ UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FaNW5RbFo3NXpLY3c2ZUczcmVGZml3a0lQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTMzMy8wNjVEQTNCQUI4NDQxMUU1QjUzNTdCMkZDNEY5QUUwMi9hWjVuUWxaNzV6 S2N3NmVHM3JlRmZpd2tJUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAch6HtvQiMBo+I89e32mjsCAbFeyUyO7+bNe1Nt9zG10mDLDNbM5pn tbmTDKysB7UTIljULboh3utA9VMZxKCUu3JoZrUD9kWg+/pJ/+diAowxl/h+fZ5v DunLyfgInGJl/33L4pwU5LLZlgtTMkyQhL50V+S0WiXAvZTsygd/LuJqHgutXdTU aROAUKbMvbbmJy/RYeJVEKZQ3ymJy4sQRcoZYkPNChYqyPKmx1qJhP8hrMDJprgv AU6h3cbfTfad4t2QaCZqZTzh7hxBJ5Odn3TfdXvVbW5ULxNLc7yU/qFZ5WyuVxWX G9Fx6Zu7PgK/yOekmx+oVOvxodnRo0LK -----END CERTIFICATE-----Generated at Sat May 18 16:57:52 2024 by rpki-client on console-fra.rpki-client.org