$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft File: I9szI90s15w3OFgdQvSrD0mINMI.mft (raw, json) Hash identifier: 8i+AVWP3gxNW6C3VxwGGzdQ43G1e9C5uQVyA24baZ9M= Subject key identifier: B0:A6:4D:1E:0D:9C:A3:DC:F5:70:19:32:0A:61:F4:02:60:FA:4E:DD Authority key identifier: 23:DB:33:23:DD:2C:D7:9C:37:38:58:1D:42:F4:AB:0F:49:88:34:C2 Certificate issuer: /CN=A911C28A/serialNumber=23DB3323DD2CD79C3738581D42F4AB0F498834C2 Certificate serial: 0507 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft Manifest number: 0502 Signing time: Sun 19 May 2024 01:11:25 +0000 Manifest this update: Sun 19 May 2024 01:11:24 +0000 Manifest next update: Sun 26 May 2024 01:11:24 +0000 Files and hashes: 1: I9szI90s15w3OFgdQvSrD0mINMI.crl (hash: r4LVTBRA9KfzrYgjDLwTC4/meGVijoVc00xcSt7Gg4U=) 2: 2D5E84AAC2A911EBB2025B36C4F9AE02.roa (hash: YXlqwalf4S9fVaZEQbU9JBdRoJrEUsovu3sf9Uc2gyc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.crl rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1287 (0x507) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28A/serialNumber=23DB3323DD2CD79C3738581D42F4AB0F498834C2 Validity Not Before: May 19 01:11:24 2024 GMT Not After : May 26 01:11:24 2024 GMT Subject: CN=664951bc-d007 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:9d:78:44:97:64:e9:8f:96:c7:f7:b9:61:57: 63:ea:a3:af:2b:57:80:2c:3c:f0:86:c9:f0:35:47: 7f:c6:bb:82:33:48:0d:fd:fb:03:96:d1:89:70:d6: e6:d2:51:56:af:0c:2a:03:87:6a:5d:76:97:8e:f4: 62:50:a9:ea:2d:1a:cf:43:3d:3a:82:52:b8:27:85: 6d:0e:a1:a6:22:53:88:cf:10:3f:62:f3:bb:a5:ce: 44:cf:69:87:99:f3:3e:e0:f4:eb:40:36:2b:dc:76: 2a:89:ca:c2:a4:c1:25:34:48:4f:9a:82:c9:f8:49: 32:5f:c8:eb:a5:b5:e0:88:a6:37:31:5d:50:02:8d: 2f:c9:46:1c:42:b3:a0:cf:91:c9:27:3b:95:f3:33: 10:2e:13:73:10:50:00:ab:4c:2f:7d:b7:15:03:3e: f6:c9:d0:f6:28:97:da:07:11:d3:84:43:2f:7e:e1: d0:a2:48:53:34:74:8f:49:8a:30:d2:f5:22:28:44: 2d:00:00:7f:8c:7d:2d:f9:3f:9e:7a:00:a5:ec:84: 91:61:1d:47:f5:01:28:c6:00:36:94:de:2a:6a:3c: 8c:35:33:5f:1e:e7:50:0f:19:76:7d:8d:27:11:46: 98:9d:26:7f:82:c5:19:5f:6f:44:c2:5e:08:3d:54: e2:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:A6:4D:1E:0D:9C:A3:DC:F5:70:19:32:0A:61:F4:02:60:FA:4E:DD X509v3 Authority Key Identifier: keyid:23:DB:33:23:DD:2C:D7:9C:37:38:58:1D:42:F4:AB:0F:49:88:34:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:6a:0a:db:d5:9f:4c:f5:9f:90:1d:bf:d9:c8:0f:75:c8:9f: 45:5c:78:44:4d:b0:01:04:49:7e:d0:db:17:5b:16:44:2f:ba: 67:cc:08:4f:99:b1:57:65:4e:c5:18:79:21:84:aa:69:51:da: 6d:84:72:9a:ac:8c:aa:bb:4f:aa:b6:c4:b5:32:83:63:7a:79: 5e:00:8c:7b:6a:97:b0:05:3e:10:93:47:35:4f:67:76:be:4a: b1:7f:16:9c:9e:47:c6:5d:c6:5f:e3:57:40:69:9c:1a:da:c4: 41:df:9e:70:14:99:21:b5:e3:84:85:80:91:d9:32:a1:22:1b: 6f:0d:6e:a1:9a:7c:f7:ed:43:aa:b2:a6:d3:0d:b9:3e:11:e4: fe:05:d8:aa:df:2b:b0:5e:0d:30:25:82:7a:da:3f:4e:c2:92: 25:5c:b1:1b:a0:b2:fd:eb:f6:f2:c7:fb:2c:50:f4:12:83:9d: 4a:36:12:f2:b1:6a:6b:2b:3d:5f:52:d8:2d:d7:e2:42:65:35: d7:42:39:5f:85:a6:b8:02:a1:93:03:6a:0c:fa:bc:b4:48:e8: d7:9f:6a:07:00:9b:62:bf:89:56:7e:f6:10:97:8c:71:99:64: 4b:56:c8:5a:a4:b1:09:09:22:de:e9:7b:06:6f:7b:44:88:4e: f4:56:b0:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEExMTAvBgNVBAUTKDIzREIzMzIzREQyQ0Q3OUMzNzM4NTgxRDQyRjRBQjBG NDk4ODM0QzIwHhcNMjQwNTE5MDExMTI0WhcNMjQwNTI2MDExMTI0WjAYMRYwFAYD VQQDEw02NjQ5NTFiYy1kMDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0p14RJdk6Y+Wx/e5YVdj6qOvK1eALDzwhsnwNUd/xruCM0gN/fsDltGJcNbm 0lFWrwwqA4dqXXaXjvRiUKnqLRrPQz06glK4J4VtDqGmIlOIzxA/YvO7pc5Ez2mH mfM+4PTrQDYr3HYqicrCpMElNEhPmoLJ+EkyX8jrpbXgiKY3MV1QAo0vyUYcQrOg z5HJJzuV8zMQLhNzEFAAq0wvfbcVAz72ydD2KJfaBxHThEMvfuHQokhTNHSPSYow 0vUiKEQtAAB/jH0t+T+eegCl7ISRYR1H9QEoxgA2lN4qajyMNTNfHudQDxl2fY0n EUaYnSZ/gsUZX29Ewl4IPVTiewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLCmTR4N nKPc9XAZMgph9AJg+k7dMB8GA1UdIwQYMBaAFCPbMyPdLNecNzhYHUL0qw9JiDTC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4QS8yQTM1NjZBOEMy QTUxMUVCQjREMzRFMzVDNEY5QUUwMi9JOXN6STkwczE1dzNPRmdkUXZTckQwbUlO TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k5c3pJOTBzMTV3M09GZ2RRdlNyRDBtSU5NSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzI4QS8yQTM1NjZBOEMyQTUxMUVCQjREMzRFMzVDNEY5QUUwMi9JOXN6STkwczE1 dzNPRmdkUXZTckQwbUlOTUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDPagrb1Z9M9Z+QHb/ZyA91yJ9FXHhETbABBEl+0NsXWxZEL7pnzAhP mbFXZU7FGHkhhKppUdpthHKarIyqu0+qtsS1MoNjenleAIx7apewBT4Qk0c1T2d2 vkqxfxacnkfGXcZf41dAaZwa2sRB355wFJkhteOEhYCR2TKhIhtvDW6hmnz37UOq sqbTDbk+EeT+Bdiq3yuwXg0wJYJ62j9OwpIlXLEboLL96/byx/ssUPQSg51KNhLy sWprKz1fUtgt1+JCZTXXQjlfhaa4AqGTA2oM+ry0SOjXn2oHAJtiv4lWfvYQl4xx mWRLVshapLEJCSLe6XsGb3tEiE70VrCS -----END CERTIFICATE-----Generated at Sun May 19 01:47:12 2024 by rpki-client on console-fra.rpki-client.org