$ rpki-client -vvf rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft File: 3glSX1epVbpvLTKtIoMwQhUYLkU.mft (raw, json) Hash identifier: zlilg+zYS2rfYF0bAeuvspwzunwuhip36662N8qqO6g= Subject key identifier: A6:6A:A4:F3:B5:47:17:DF:08:E9:3D:83:88:40:6A:BC:7A:65:17:9E Authority key identifier: DE:09:52:5F:57:A9:55:BA:6F:2D:32:AD:22:83:30:42:15:18:2E:45 Certificate issuer: /CN=A9119C32/serialNumber=DE09525F57A955BA6F2D32AD2283304215182E45 Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3glSX1epVbpvLTKtIoMwQhUYLkU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft Manifest number: 8A Signing time: Sun 19 May 2024 07:05:18 +0000 Manifest this update: Sun 19 May 2024 07:05:18 +0000 Manifest next update: Sun 26 May 2024 07:05:18 +0000 Files and hashes: 1: 3glSX1epVbpvLTKtIoMwQhUYLkU.crl (hash: iQDKdgGr3dnEgsqrX7cAdaoFslxXxc83yrlnYqU87YE=) 2: 5D79BDF8486C11EEB3C19A71C4F9AE02.roa (hash: JR4QCnQHMEnbae0jDivqa08cLD58ejemmAtSkeG22K8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.crl rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3glSX1epVbpvLTKtIoMwQhUYLkU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119C32/serialNumber=DE09525F57A955BA6F2D32AD2283304215182E45 Validity Not Before: May 19 07:05:18 2024 GMT Not After : May 26 07:05:18 2024 GMT Subject: CN=6649a4ae-b25b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:89:31:1d:83:24:b1:9e:ab:49:98:ce:57:e6: 3a:2b:dd:9e:ed:62:74:38:68:24:f9:4a:51:ec:17: f1:12:ac:f8:0a:a3:2f:80:75:89:7f:96:31:dd:ba: 06:1b:2f:60:c4:d3:0a:2b:40:3e:0f:33:9d:6a:91: fa:07:3b:97:5b:2a:b6:17:d8:2f:cc:eb:ed:c6:c2: 3a:f9:c9:1a:86:7a:e9:94:20:ae:37:b1:d4:e7:23: cf:71:9c:dd:85:6b:c8:ba:80:48:ef:dd:68:7e:45: 77:59:cc:ab:a4:4b:14:90:12:de:36:11:9b:a2:5c: 8e:f4:e0:30:27:57:a4:f3:22:4f:ca:ab:99:20:c8: 80:16:83:09:f7:7e:64:f9:79:eb:89:35:be:0b:79: 4f:2d:94:c7:42:1f:60:a5:64:32:c1:75:ad:5a:52: e0:10:af:b6:d9:a6:57:bf:95:58:80:a2:58:c5:52: 78:0e:8e:e1:4d:0c:b2:d2:ca:0a:a6:b9:72:4c:8d: 35:51:2f:39:39:0e:c1:7f:e3:86:b1:70:4f:56:4b: e2:07:8d:7d:3b:d0:0a:97:c7:62:f1:8d:c4:7b:b3: bf:1e:24:ca:69:f3:d9:f1:3f:15:27:93:21:f0:93: f1:2f:91:49:9d:a9:83:13:1a:5a:a0:5f:a0:0d:76: 28:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:6A:A4:F3:B5:47:17:DF:08:E9:3D:83:88:40:6A:BC:7A:65:17:9E X509v3 Authority Key Identifier: keyid:DE:09:52:5F:57:A9:55:BA:6F:2D:32:AD:22:83:30:42:15:18:2E:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3glSX1epVbpvLTKtIoMwQhUYLkU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:80:67:8c:de:af:70:20:57:54:2e:bc:e6:50:68:11:3a:b3: b2:3a:32:73:c9:71:a4:b7:86:70:66:30:1e:f2:f4:d2:42:cb: 6a:e0:a9:35:50:0e:e1:28:57:06:c3:10:53:fe:f8:9d:77:42: 8c:fe:95:b1:e0:32:cf:ff:86:2d:4e:f9:ee:1e:ac:76:69:14: 3f:a1:e8:69:bb:77:d5:f1:84:36:42:78:54:f9:c7:64:52:ad: e2:1f:ca:5e:b3:0d:f9:94:62:16:51:e0:84:29:4b:a2:59:3b: af:e5:99:17:82:c5:b1:57:f1:ae:ba:8f:1b:0b:5f:d6:5b:94: 36:52:e5:da:d5:fa:3b:ea:cf:b0:02:56:f1:78:e1:d2:40:0e: 77:15:b5:f8:e6:8d:2a:2d:88:84:34:cf:0d:94:36:ee:19:9b: 4e:f1:f9:c3:91:2a:10:28:ce:5e:bb:6f:70:99:a5:66:dc:f0: b9:cb:34:8f:77:6a:5d:9f:52:74:e3:83:3e:21:6c:5b:be:bc: e8:65:37:30:28:05:d7:3e:ab:69:f2:94:fc:ae:c2:30:1f:50: 6a:4b:3e:bb:57:1f:eb:3a:a4:8a:7d:91:ba:3f:22:60:b2:53: 04:00:f4:d7:31:9b:cf:08:f3:b7:ee:bc:b0:6b:f5:61:c0:50: 99:c5:1e:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlDMzIxMTAvBgNVBAUTKERFMDk1MjVGNTdBOTU1QkE2RjJEMzJBRDIyODMzMDQy MTUxODJFNDUwHhcNMjQwNTE5MDcwNTE4WhcNMjQwNTI2MDcwNTE4WjAYMRYwFAYD VQQDEw02NjQ5YTRhZS1iMjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5okxHYMksZ6rSZjOV+Y6K92e7WJ0OGgk+UpR7BfxEqz4CqMvgHWJf5Yx3boG Gy9gxNMKK0A+DzOdapH6BzuXWyq2F9gvzOvtxsI6+ckahnrplCCuN7HU5yPPcZzd hWvIuoBI791ofkV3WcyrpEsUkBLeNhGbolyO9OAwJ1ek8yJPyquZIMiAFoMJ935k +XnriTW+C3lPLZTHQh9gpWQywXWtWlLgEK+22aZXv5VYgKJYxVJ4Do7hTQyy0soK prlyTI01US85OQ7Bf+OGsXBPVkviB419O9AKl8di8Y3Ee7O/HiTKafPZ8T8VJ5Mh 8JPxL5FJnamDExpaoF+gDXYo7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKZqpPO1 RxffCOk9g4hAarx6ZReeMB8GA1UdIwQYMBaAFN4JUl9XqVW6by0yrSKDMEIVGC5F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUMzMi9DNEVBMUI5RTQ2 RTIxMUVFQTIzNzJGNDFDNEY5QUUwMi8zZ2xTWDFlcFZicHZMVEt0SW9Nd1FoVVlM a1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNnbFNYMWVwVmJwdkxUS3RJb013UWhVWUxrVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUMzMi9DNEVBMUI5RTQ2RTIxMUVFQTIzNzJGNDFDNEY5QUUwMi8zZ2xTWDFlcFZi cHZMVEt0SW9Nd1FoVVlMa1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBygGeM3q9wIFdULrzmUGgROrOyOjJzyXGkt4ZwZjAe8vTSQstq4Kk1 UA7hKFcGwxBT/vidd0KM/pWx4DLP/4YtTvnuHqx2aRQ/oehpu3fV8YQ2QnhU+cdk Uq3iH8pesw35lGIWUeCEKUuiWTuv5ZkXgsWxV/Guuo8bC1/WW5Q2UuXa1fo76s+w AlbxeOHSQA53FbX45o0qLYiENM8NlDbuGZtO8fnDkSoQKM5eu29wmaVm3PC5yzSP d2pdn1J044M+IWxbvrzoZTcwKAXXPqtp8pT8rsIwH1BqSz67Vx/rOqSKfZG6PyJg slMEAPTXMZvPCPO37rywa/VhwFCZxR55 -----END CERTIFICATE-----Generated at Sun May 19 07:40:36 2024 by rpki-client on console-fra.rpki-client.org