$ rpki-client -vvf rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft File: kI54kDTxhBXYdZwmo0brgQ71pBU.mft (raw, json) Hash identifier: dVQK/uOqmmM5AXL/5k37hXsWk6ahp95f95AdVdp2+24= Subject key identifier: 52:A7:2E:86:C6:26:6C:27:29:0B:2A:9E:9B:E3:B2:36:EE:FC:1A:FF Authority key identifier: 90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 Certificate issuer: /CN=A911B4ED/serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Certificate serial: AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft Manifest number: AA Signing time: Sun 19 May 2024 06:37:14 +0000 Manifest this update: Sun 19 May 2024 06:37:14 +0000 Manifest next update: Sun 26 May 2024 06:37:14 +0000 Files and hashes: 1: kI54kDTxhBXYdZwmo0brgQ71pBU.crl (hash: uSrETIcNBn7G1BXuICa0CaLKDRFqQ0RiNGKEVJN7s5M=) 2: 86A2CEB60F3E11EEA4C55465C4F9AE02.roa (hash: 2hsGSCNVZ1Q8oyfK9bt/7mvezeBVzyWoegIp7VxX4yI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B4ED/serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Validity Not Before: May 19 06:37:14 2024 GMT Not After : May 26 06:37:14 2024 GMT Subject: CN=66499e1a-6fc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:24:72:95:e6:3c:6b:f7:b5:b3:05:d1:93:39: ae:17:eb:3d:45:c3:42:84:04:87:d2:a4:41:70:e8: 47:a2:87:d8:0b:11:64:eb:ac:da:a7:3f:fa:39:26: 99:7c:d7:45:47:65:ee:05:8d:fd:4f:17:3d:f2:86: 0a:f9:cc:bf:9d:1c:f4:b2:ed:5b:a0:1b:b2:66:aa: 9a:32:ad:7e:22:41:97:8c:33:89:ce:f8:01:64:13: f0:39:2a:06:58:51:cd:f5:32:e9:57:9a:7a:b7:2c: eb:e9:cb:37:b6:9f:5a:01:f8:47:a6:2b:bb:0e:4e: 73:56:53:4a:02:15:a1:41:7e:f6:db:c8:e4:3c:82: 98:e4:67:9f:d0:d2:be:5f:80:8c:29:96:80:51:74: c3:58:d4:09:0f:7a:6c:ea:30:e9:1c:0f:59:f9:02: 64:b6:2b:7c:b8:14:7a:47:13:13:1a:4d:e9:4e:fc: a2:3c:d9:19:9f:c1:75:32:42:75:df:5d:da:0a:92: c4:6d:b8:c9:7a:dd:24:e4:f0:c1:08:8e:86:3c:f6: d3:14:a5:8c:a6:2a:34:36:c5:52:89:43:58:13:e3: d6:6c:71:38:de:65:13:56:02:24:6c:43:7d:69:80: 1c:45:09:7f:f3:75:78:f2:75:a3:1e:61:a9:98:13: 8c:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:A7:2E:86:C6:26:6C:27:29:0B:2A:9E:9B:E3:B2:36:EE:FC:1A:FF X509v3 Authority Key Identifier: keyid:90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:1e:16:66:ca:4d:77:c6:79:97:e6:c3:01:32:98:1b:5b:ba: 4a:97:8b:53:43:f6:ce:dc:7f:07:74:0b:ae:80:5b:df:43:aa: 11:e9:f3:a3:33:71:ca:74:13:1c:84:43:a7:79:84:03:91:7e: b6:04:32:ed:d4:cf:3c:26:58:0a:37:05:22:82:e6:91:1f:bf: f8:83:11:e5:76:f1:ba:c1:9d:36:0e:10:27:d0:a1:8d:c7:c2: 30:0f:e1:bd:ed:fa:9d:9a:f7:6a:2f:d8:00:11:98:dd:be:32: 87:68:e2:74:7a:2b:58:cd:2c:e2:dd:54:32:6c:ee:28:d6:e9: 4d:58:1b:9f:34:91:5c:5b:35:fc:94:67:f0:71:66:6c:3d:76: 81:35:e5:eb:18:f8:3a:27:f8:7d:24:91:78:c6:28:dd:1e:b9: f2:0d:a3:84:98:76:07:7f:aa:f0:44:ed:8b:af:c0:bc:df:bd: 24:bb:1e:7d:4d:9a:c1:56:11:47:ae:c4:ae:27:6d:e9:56:fa: 7a:1b:2d:83:49:6e:a1:b9:eb:93:52:63:a2:31:45:3a:16:33: 28:40:2e:7d:99:b3:27:93:6a:3e:0b:9a:bb:48:cc:f7:88:ca: 2f:ad:08:33:53:1a:51:da:d7:36:31:dd:76:ac:6e:cd:fa:a2: ec:8b:b9:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0RUQxMTAvBgNVBAUTKDkwOEU3ODkwMzRGMTg0MTVEODc1OUMyNkEzNDZFQjgx MEVGNUE0MTUwHhcNMjQwNTE5MDYzNzE0WhcNMjQwNTI2MDYzNzE0WjAYMRYwFAYD VQQDEw02NjQ5OWUxYS02ZmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6SRyleY8a/e1swXRkzmuF+s9RcNChASH0qRBcOhHoofYCxFk66zapz/6OSaZ fNdFR2XuBY39Txc98oYK+cy/nRz0su1boBuyZqqaMq1+IkGXjDOJzvgBZBPwOSoG WFHN9TLpV5p6tyzr6cs3tp9aAfhHpiu7Dk5zVlNKAhWhQX7228jkPIKY5Gef0NK+ X4CMKZaAUXTDWNQJD3ps6jDpHA9Z+QJktit8uBR6RxMTGk3pTvyiPNkZn8F1MkJ1 313aCpLEbbjJet0k5PDBCI6GPPbTFKWMpio0NsVSiUNYE+PWbHE43mUTVgIkbEN9 aYAcRQl/83V48nWjHmGpmBOMHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFKnLobG JmwnKQsqnpvjsjbu/Br/MB8GA1UdIwQYMBaAFJCOeJA08YQV2HWcJqNG64EO9aQV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjRFRC9GQTRCMEFDNDBG MzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhCWFlkWndtbzBicmdRNzFw QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJNTRrRFR4aEJYWWRad21vMGJyZ1E3MXBCVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjRFRC9GQTRCMEFDNDBGMzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhC WFlkWndtbzBicmdRNzFwQlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLHhZmyk13xnmX5sMBMpgbW7pKl4tTQ/bO3H8HdAuugFvfQ6oR6fOj M3HKdBMchEOneYQDkX62BDLt1M88JlgKNwUiguaRH7/4gxHldvG6wZ02DhAn0KGN x8IwD+G97fqdmvdqL9gAEZjdvjKHaOJ0eitYzSzi3VQybO4o1ulNWBufNJFcWzX8 lGfwcWZsPXaBNeXrGPg6J/h9JJF4xijdHrnyDaOEmHYHf6rwRO2Lr8C8370kux59 TZrBVhFHrsSuJ23pVvp6Gy2DSW6hueuTUmOiMUU6FjMoQC59mbMnk2o+C5q7SMz3 iMovrQgzUxpR2tc2Md12rG7N+qLsi7nF -----END CERTIFICATE-----Generated at Sun May 19 07:40:36 2024 by rpki-client on console-fra.rpki-client.org