$ rpki-client -vvf rpki.apnic.net/member_repository/A911B11E/06AF1FB2131811ECA1734356C4F9AE02/_3X-k_hGLLdjrVYZkrA9Fj0W7V8.mft File: _3X-k_hGLLdjrVYZkrA9Fj0W7V8.mft (raw, json) Hash identifier: +cBreqA8dn/0H++nIA9uw2mJZdVn4yAjet4ZfnueX14= Subject key identifier: 05:F3:D1:0F:9E:8E:3C:E8:A0:4C:3D:50:BD:80:EA:78:8C:94:80:42 Authority key identifier: FF:75:FE:93:F8:46:2C:B7:63:AD:56:19:92:B0:3D:16:3D:16:ED:5F Certificate issuer: /CN=A911B11E/serialNumber=FF75FE93F8462CB763AD561992B03D163D16ED5F Certificate serial: 0436 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_3X-k_hGLLdjrVYZkrA9Fj0W7V8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B11E/06AF1FB2131811ECA1734356C4F9AE02/_3X-k_hGLLdjrVYZkrA9Fj0W7V8.mft Manifest number: 0432 Signing time: Sun 19 May 2024 01:59:03 +0000 Manifest this update: Sun 19 May 2024 01:59:03 +0000 Manifest next update: Sun 26 May 2024 01:59:03 +0000 Files and hashes: 1: _3X-k_hGLLdjrVYZkrA9Fj0W7V8.crl (hash: KLCmkm9Yv6slL7AIq+C40B4SXT5nOKgU3D5+S4h1P1E=) 2: 22DA1C02131B11EC83377D59C4F9AE02.roa (hash: Q+QV50Ae1OC4CB4UHmHO0exvqTzzrDQ//cgoO0wBYEw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B11E/06AF1FB2131811ECA1734356C4F9AE02/_3X-k_hGLLdjrVYZkrA9Fj0W7V8.crl rsync://rpki.apnic.net/member_repository/A911B11E/06AF1FB2131811ECA1734356C4F9AE02/_3X-k_hGLLdjrVYZkrA9Fj0W7V8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_3X-k_hGLLdjrVYZkrA9Fj0W7V8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1078 (0x436) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B11E/serialNumber=FF75FE93F8462CB763AD561992B03D163D16ED5F Validity Not Before: May 19 01:59:03 2024 GMT Not After : May 26 01:59:03 2024 GMT Subject: CN=66495ce7-7141 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:8e:3b:36:4b:09:04:3b:79:e2:09:f3:01:74: 42:8c:e1:8a:02:11:52:49:42:2b:bb:25:72:0a:d6: 2b:a5:9e:c4:3f:eb:30:a3:79:10:e6:9b:1a:cd:22: 87:05:58:5b:f2:d4:b3:87:3a:a7:b0:34:04:c3:fb: 0e:6d:1b:31:73:82:b8:91:52:3f:4a:60:6f:25:e1: 88:e0:3e:51:03:0c:4c:2d:79:cd:b4:f8:75:f9:8a: 25:9d:c0:91:df:5d:e7:dd:02:ba:45:02:e9:78:ec: fc:8e:ce:55:90:5e:0f:02:ff:ee:7d:2b:d6:39:6f: d0:c8:f5:1a:32:bd:dd:dd:8b:a7:a2:51:ae:19:c4: d8:1e:dd:39:bf:a7:07:77:e3:ed:52:23:62:4a:a3: d6:47:fc:df:b9:11:2d:a4:4f:10:04:4c:aa:82:5e: 24:34:96:d9:e7:71:3b:5a:d8:d0:bf:13:9e:30:51: f6:46:aa:64:ab:6a:ba:32:1f:88:78:6f:1e:c6:1e: 3b:15:83:8f:28:42:72:b6:59:8e:aa:1b:d2:40:ee: 1e:51:ed:a8:f0:c9:bf:82:aa:41:7b:e2:e4:1e:47: 35:37:13:96:ce:a4:78:37:8e:c8:fb:a7:fb:06:97: 8a:f4:3e:79:23:e2:c1:76:0e:2a:fa:ab:d4:8a:be: 97:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:F3:D1:0F:9E:8E:3C:E8:A0:4C:3D:50:BD:80:EA:78:8C:94:80:42 X509v3 Authority Key Identifier: keyid:FF:75:FE:93:F8:46:2C:B7:63:AD:56:19:92:B0:3D:16:3D:16:ED:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B11E/06AF1FB2131811ECA1734356C4F9AE02/_3X-k_hGLLdjrVYZkrA9Fj0W7V8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_3X-k_hGLLdjrVYZkrA9Fj0W7V8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B11E/06AF1FB2131811ECA1734356C4F9AE02/_3X-k_hGLLdjrVYZkrA9Fj0W7V8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:7b:51:a4:13:7b:ba:2c:3c:7c:23:0e:bd:07:e4:64:22:25: cc:fa:60:db:8b:1f:87:5a:df:c7:0d:fe:e7:04:0e:b3:b4:98: f0:96:19:c5:68:a0:d6:61:9e:a4:38:92:3e:2d:3a:6b:c7:f2: 65:39:e3:a3:10:90:80:7d:8f:99:26:8a:9a:ff:a8:ae:5f:7a: 19:4e:73:a2:e7:28:e5:f7:22:d9:57:88:8d:62:a4:74:b4:ed: cd:c1:84:c4:28:9e:c0:63:4d:90:bd:95:d8:6d:e3:e1:f0:59: 50:23:66:db:93:07:3d:11:6c:41:50:f7:7f:58:ac:a8:a9:9b: cc:08:2d:f9:b3:80:fe:ac:a3:5c:78:b1:bc:02:38:ad:df:d6: a8:bc:1d:10:ea:99:42:dd:b8:77:f9:b9:5e:32:57:6e:2e:9f: 0b:b5:a5:95:89:a9:fa:ac:ed:19:0e:8e:36:d7:c2:16:dd:25: d0:c2:11:d0:c0:ba:44:60:2d:bc:d9:fe:af:22:51:05:45:9e: 34:73:47:23:40:91:ba:ef:5a:7a:29:75:2f:28:12:38:49:5e: df:73:ec:f2:ec:53:82:7e:74:cf:92:bf:cc:66:b7:c2:fc:ff: cc:26:bc:cd:84:79:1f:90:60:f8:e9:98:80:19:d0:4e:c8:0e: 22:d3:e4:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUIxMUUxMTAvBgNVBAUTKEZGNzVGRTkzRjg0NjJDQjc2M0FENTYxOTkyQjAzRDE2 M0QxNkVENUYwHhcNMjQwNTE5MDE1OTAzWhcNMjQwNTI2MDE1OTAzWjAYMRYwFAYD VQQDEw02NjQ5NWNlNy03MTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0o47NksJBDt54gnzAXRCjOGKAhFSSUIruyVyCtYrpZ7EP+swo3kQ5psazSKH BVhb8tSzhzqnsDQEw/sObRsxc4K4kVI/SmBvJeGI4D5RAwxMLXnNtPh1+YolncCR 313n3QK6RQLpeOz8js5VkF4PAv/ufSvWOW/QyPUaMr3d3YunolGuGcTYHt05v6cH d+PtUiNiSqPWR/zfuREtpE8QBEyqgl4kNJbZ53E7WtjQvxOeMFH2Rqpkq2q6Mh+I eG8exh47FYOPKEJytlmOqhvSQO4eUe2o8Mm/gqpBe+LkHkc1NxOWzqR4N47I+6f7 BpeK9D55I+LBdg4q+qvUir6XzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAXz0Q+e jjzooEw9UL2A6niMlIBCMB8GA1UdIwQYMBaAFP91/pP4Riy3Y61WGZKwPRY9Fu1f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjExRS8wNkFGMUZCMjEz MTgxMUVDQTE3MzQzNTZDNEY5QUUwMi9fM1gta19oR0xMZGpyVllaa3JBOUZqMFc3 VjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18zWC1rX2hHTExkanJWWVprckE5RmowVzdWOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjExRS8wNkFGMUZCMjEzMTgxMUVDQTE3MzQzNTZDNEY5QUUwMi9fM1gta19oR0xM ZGpyVllaa3JBOUZqMFc3VjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQe1GkE3u6LDx8Iw69B+RkIiXM+mDbix+HWt/HDf7nBA6ztJjwlhnF aKDWYZ6kOJI+LTprx/JlOeOjEJCAfY+ZJoqa/6iuX3oZTnOi5yjl9yLZV4iNYqR0 tO3NwYTEKJ7AY02QvZXYbePh8FlQI2bbkwc9EWxBUPd/WKyoqZvMCC35s4D+rKNc eLG8Ajit39aovB0Q6plC3bh3+bleMlduLp8LtaWVian6rO0ZDo4218IW3SXQwhHQ wLpEYC282f6vIlEFRZ40c0cjQJG671p6KXUvKBI4SV7fc+zy7FOCfnTPkr/MZrfC /P/MJrzNhHkfkGD46ZiAGdBOyA4i0+RT -----END CERTIFICATE-----Generated at Sun May 19 02:39:35 2024 by rpki-client on console-fra.rpki-client.org