$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.mft File: JCI9DH0QHbetfjy43bFwYpNlyu4.mft (raw, json) Hash identifier: 5ull/i8jDrGjhJDlOw8FiTExzCl2FBa3hW779nOI8yw= Subject key identifier: 24:D5:7A:BF:D1:B0:50:C1:01:66:09:23:7B:85:38:FD:A6:D8:45:F0 Authority key identifier: 24:22:3D:0C:7D:10:1D:B7:AD:7E:3C:B8:DD:B1:70:62:93:65:CA:EE Certificate issuer: /CN=A911AE24/serialNumber=24223D0C7D101DB7AD7E3CB8DDB170629365CAEE Certificate serial: C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCI9DH0QHbetfjy43bFwYpNlyu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.mft Manifest number: C1 Signing time: Sun 19 May 2024 06:23:11 +0000 Manifest this update: Sun 19 May 2024 06:23:10 +0000 Manifest next update: Sun 26 May 2024 06:23:10 +0000 Files and hashes: 1: JCI9DH0QHbetfjy43bFwYpNlyu4.crl (hash: 0rhhcqDr8sPvsxoQvDYPusK1ldOUgrQI53apt/xBl78=) 2: EDDDD55C252E11EEB91A8941C4F9AE02.roa (hash: XdjG4uHL5z6+XBjKDCeJYvoNR322IymaPGaDji///S0=) 3: EC081D70FA4811EDA9C77777C4F9AE02.roa (hash: Nd8Xg3w8bT1Gp6BbYLh8IpKdI4rHMo3hUB4EEQjEyVI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.crl rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCI9DH0QHbetfjy43bFwYpNlyu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 198 (0xc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE24/serialNumber=24223D0C7D101DB7AD7E3CB8DDB170629365CAEE Validity Not Before: May 19 06:23:10 2024 GMT Not After : May 26 06:23:10 2024 GMT Subject: CN=66499ace-6e17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:65:5d:36:31:ca:05:dd:33:7a:a5:5f:7c:4c: d4:f9:c6:bf:29:e6:91:7c:07:0c:0b:80:cb:65:2b: 4c:52:f4:08:41:a9:23:07:19:03:0c:dc:c3:32:61: 30:11:7d:e9:b3:8d:9a:19:ef:21:c0:dd:5a:6a:42: 85:19:59:0a:fc:6a:80:9c:cd:ad:06:0d:32:8c:ba: f4:c9:4b:f5:47:8a:9c:ff:12:4c:7d:60:0b:ae:67: d7:f8:ad:46:7d:e7:49:03:2e:28:57:2b:78:8c:cd: 6a:04:3d:3f:14:62:bf:13:a4:78:4e:6e:65:56:d0: e2:13:6b:c7:4a:ad:9f:0e:f3:21:45:7f:01:da:f2: 12:2a:b4:9d:80:7d:f9:a9:ac:9c:ed:c4:d6:1c:d6: fb:2c:67:77:b6:41:68:f4:5d:45:ea:57:19:b8:2d: 41:a4:76:2a:a3:03:b6:02:59:2c:a6:06:43:b7:19: 76:e5:2a:7f:75:23:48:b3:5d:9d:a8:14:60:b3:8b: 8d:91:cf:42:2b:0c:94:b9:e2:3c:e9:5c:0f:a7:2d: 01:41:b5:f5:c2:f7:6a:9b:cb:e1:11:08:6c:ec:8b: e4:6b:da:1d:c3:6c:81:f5:08:c4:14:08:3a:1f:ae: 54:37:b3:5b:b6:43:a1:77:f0:c5:99:02:3b:d2:9d: ab:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:D5:7A:BF:D1:B0:50:C1:01:66:09:23:7B:85:38:FD:A6:D8:45:F0 X509v3 Authority Key Identifier: keyid:24:22:3D:0C:7D:10:1D:B7:AD:7E:3C:B8:DD:B1:70:62:93:65:CA:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCI9DH0QHbetfjy43bFwYpNlyu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:1c:8d:87:40:7b:41:f0:f5:83:82:79:4f:36:bb:9e:a6:1e: e6:b0:13:cd:05:2a:d7:39:a4:40:1d:8d:36:99:54:cb:39:bc: fb:b9:32:a2:21:ce:3e:b9:25:5d:1d:ef:ed:ec:b1:a0:01:9d: bb:dc:22:61:1a:f3:eb:6f:bb:b4:5d:13:a4:99:9f:ee:05:26: a7:d0:25:e8:d3:25:cf:a0:67:45:b5:9b:d1:8c:20:21:d8:c4: 2f:b6:20:97:c7:da:3a:93:15:52:b2:76:3a:05:60:59:9e:8a: 74:22:97:31:61:10:5e:5d:08:af:8d:4e:40:d1:b3:41:09:6c: bb:67:88:3d:06:b1:7d:58:1d:96:7a:ae:09:52:92:f4:74:44: 1d:de:b4:75:35:2f:4a:05:ce:15:2f:8f:7a:11:a5:52:02:0d: 22:1a:3b:5e:82:ab:05:1c:76:a7:65:90:84:d7:61:92:4e:22: a1:a3:4e:18:34:38:49:bd:59:22:2d:4c:8e:31:78:1c:c0:91: c2:8b:15:e7:e5:d9:17:c7:30:bc:69:5b:ab:4e:00:c5:2d:bd: 50:e7:0b:b0:ec:a5:f4:18:d5:d2:53:c9:9d:d7:b0:c3:af:82: 4c:cd:d6:8d:2c:d1:bc:20:76:08:26:da:f6:b2:63:ec:48:64: 26:ed:3b:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFMjQxMTAvBgNVBAUTKDI0MjIzRDBDN0QxMDFEQjdBRDdFM0NCOEREQjE3MDYy OTM2NUNBRUUwHhcNMjQwNTE5MDYyMzEwWhcNMjQwNTI2MDYyMzEwWjAYMRYwFAYD VQQDEw02NjQ5OWFjZS02ZTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz2VdNjHKBd0zeqVffEzU+ca/KeaRfAcMC4DLZStMUvQIQakjBxkDDNzDMmEw EX3ps42aGe8hwN1aakKFGVkK/GqAnM2tBg0yjLr0yUv1R4qc/xJMfWALrmfX+K1G fedJAy4oVyt4jM1qBD0/FGK/E6R4Tm5lVtDiE2vHSq2fDvMhRX8B2vISKrSdgH35 qayc7cTWHNb7LGd3tkFo9F1F6lcZuC1BpHYqowO2AlkspgZDtxl25Sp/dSNIs12d qBRgs4uNkc9CKwyUueI86VwPpy0BQbX1wvdqm8vhEQhs7Ivka9odw2yB9QjEFAg6 H65UN7NbtkOhd/DFmQI70p2rawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCTVer/R sFDBAWYJI3uFOP2m2EXwMB8GA1UdIwQYMBaAFCQiPQx9EB23rX48uN2xcGKTZcru MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUUyNC9GMkY2NzVGRUYz RkYxMUVEOTUyRDc0MUNDNEY5QUUwMi9KQ0k5REgwUUhiZXRmank0M2JGd1lwTmx5 dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pDSTlESDBRSGJldGZqeTQzYkZ3WXBObHl1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUUyNC9GMkY2NzVGRUYzRkYxMUVEOTUyRDc0MUNDNEY5QUUwMi9KQ0k5REgwUUhi ZXRmank0M2JGd1lwTmx5dTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDEHI2HQHtB8PWDgnlPNrueph7msBPNBSrXOaRAHY02mVTLObz7uTKi Ic4+uSVdHe/t7LGgAZ273CJhGvPrb7u0XROkmZ/uBSan0CXo0yXPoGdFtZvRjCAh 2MQvtiCXx9o6kxVSsnY6BWBZnop0IpcxYRBeXQivjU5A0bNBCWy7Z4g9BrF9WB2W eq4JUpL0dEQd3rR1NS9KBc4VL496EaVSAg0iGjtegqsFHHanZZCE12GSTiKho04Y NDhJvVkiLUyOMXgcwJHCixXn5dkXxzC8aVurTgDFLb1Q5wuw7KX0GNXSU8md17DD r4JMzdaNLNG8IHYIJtr2smPsSGQm7Tub -----END CERTIFICATE-----Generated at Sun May 19 07:40:36 2024 by rpki-client on console-fra.rpki-client.org