$ rpki-client -vvf rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/40soVCBWzp4GUP78CrEkIWy1-cE.mft File: 40soVCBWzp4GUP78CrEkIWy1-cE.mft (raw, json) Hash identifier: q8IehPiKqxR52LyFloF9rZEmYZkR6NaereBeIyOrddQ= Subject key identifier: F7:82:84:26:E8:AB:F4:D7:E6:55:A6:8F:BE:9A:1D:24:9B:39:C5:88 Authority key identifier: E3:4B:28:54:20:56:CE:9E:06:50:FE:FC:0A:B1:24:21:6C:B5:F9:C1 Certificate issuer: /CN=A911C6E1/serialNumber=E34B28542056CE9E0650FEFC0AB124216CB5F9C1 Certificate serial: 0223 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40soVCBWzp4GUP78CrEkIWy1-cE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/40soVCBWzp4GUP78CrEkIWy1-cE.mft Manifest number: 021A Signing time: Sun 19 May 2024 04:05:37 +0000 Manifest this update: Sun 19 May 2024 04:05:37 +0000 Manifest next update: Sun 26 May 2024 04:05:37 +0000 Files and hashes: 1: 40soVCBWzp4GUP78CrEkIWy1-cE.crl (hash: KrhGffk5qveX0TeSdVyKrDOz9FgXmfwff+JUxqkdnsQ=) 2: FB1BF574E7E411EC84283679C4F9AE02.roa (hash: Y0xU0sF/YnU5X2Wjw8sN3PDglph7zaRxBU1JVkINP7k=) 3: FBB9FE90E7E411EC84283679C4F9AE02.roa (hash: E3gDAkKJ2VLLNW3fqfi+UMppLgBJC54lp9rLDOblL1M=) 4: 43CEF64C5E7111EDAD328E21C4F9AE02.roa (hash: 2v9nZEXKE2n7zN/qeQ9UGMLEIjdnl9icDJiQyK5zYRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/40soVCBWzp4GUP78CrEkIWy1-cE.crl rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/40soVCBWzp4GUP78CrEkIWy1-cE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40soVCBWzp4GUP78CrEkIWy1-cE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 547 (0x223) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C6E1/serialNumber=E34B28542056CE9E0650FEFC0AB124216CB5F9C1 Validity Not Before: May 19 04:05:37 2024 GMT Not After : May 26 04:05:37 2024 GMT Subject: CN=66497a91-b79f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:84:f0:09:9f:cb:e0:a3:40:37:c3:ad:9b:0f: 54:ce:85:e0:c6:8d:de:f7:0f:62:9b:3a:a4:d1:d7: cc:ed:95:30:1d:c9:c6:38:41:26:7e:0f:3e:5f:04: 17:9d:e3:0a:7a:1c:01:50:c0:bb:ce:ce:74:45:63: d1:98:30:cb:92:44:40:a6:8f:e0:1b:51:0a:e9:69: a0:aa:02:33:13:92:64:89:2b:f4:99:e0:cb:b9:f0: 77:c5:71:9b:7f:ec:69:59:b9:35:6d:b9:30:d7:bf: 6e:8f:44:12:d5:05:1b:32:db:b3:21:8d:65:d4:1f: 2e:e3:c3:c8:ed:40:e8:8b:2e:9f:4f:24:35:71:ed: dd:92:61:78:59:0a:c6:12:89:d0:17:c5:61:38:b4: ae:14:17:68:56:4b:c4:7e:57:7f:ab:a2:16:0f:be: 4c:d4:7b:77:fc:fd:19:14:5d:5d:b8:ba:5d:a8:92: 01:79:87:ba:a9:27:0c:c8:ec:d2:13:e2:97:9e:61: 9b:36:20:df:7f:2d:95:52:39:12:dd:20:fc:92:7f: a0:5f:53:b4:17:bb:56:dc:13:85:29:b7:e6:65:fd: 73:bb:77:cd:e2:85:86:65:f1:ad:f1:cf:1c:c3:75: 94:32:86:3b:bc:e1:3d:53:e0:81:11:14:49:04:81: 94:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:82:84:26:E8:AB:F4:D7:E6:55:A6:8F:BE:9A:1D:24:9B:39:C5:88 X509v3 Authority Key Identifier: keyid:E3:4B:28:54:20:56:CE:9E:06:50:FE:FC:0A:B1:24:21:6C:B5:F9:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/40soVCBWzp4GUP78CrEkIWy1-cE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40soVCBWzp4GUP78CrEkIWy1-cE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/40soVCBWzp4GUP78CrEkIWy1-cE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:e7:b5:db:be:77:e3:7e:92:fd:c0:9f:65:1b:d3:53:66:04: 38:4b:49:6b:30:cd:39:cb:c5:94:a9:ea:d9:77:4a:78:f1:b6: 97:8e:ff:9f:28:e0:79:56:73:62:98:63:f4:66:a1:28:4e:0a: 38:0d:22:68:3a:2a:99:e9:45:3c:98:eb:1f:7e:a3:3e:86:9e: 42:34:4c:12:7b:59:73:c2:a3:1e:60:b8:91:aa:e2:4a:51:bb: 51:8b:61:d3:51:b1:03:5e:2f:56:2f:a3:31:70:73:b5:61:7d: 40:7c:80:46:cc:bb:d2:78:c9:c7:15:7f:60:0d:d5:c2:10:8c: 13:87:9d:09:07:c9:40:c1:dd:33:3e:c3:c5:87:44:54:4f:94: 0f:26:7c:5f:02:f3:82:10:c1:92:a2:ca:45:e0:c6:d5:ef:ab: f4:5e:7c:33:41:11:3f:0b:c3:59:6a:cd:f7:5e:8d:e2:0b:8a: 89:da:d4:58:1f:b9:d5:7a:09:33:11:54:27:93:ed:fb:d7:55: a5:bb:19:15:36:fe:c2:d7:1f:ad:ff:a5:86:a7:07:d7:c9:5e: 08:ac:7f:f9:27:03:99:11:ed:f7:0d:fe:2a:22:17:b9:2d:13: fa:26:35:fa:6c:4f:af:9c:5a:df:a2:f6:f0:30:02:e0:a8:52: ac:3f:fd:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM2RTExMTAvBgNVBAUTKEUzNEIyODU0MjA1NkNFOUUwNjUwRkVGQzBBQjEyNDIx NkNCNUY5QzEwHhcNMjQwNTE5MDQwNTM3WhcNMjQwNTI2MDQwNTM3WjAYMRYwFAYD VQQDEw02NjQ5N2E5MS1iNzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw4TwCZ/L4KNAN8Otmw9UzoXgxo3e9w9imzqk0dfM7ZUwHcnGOEEmfg8+XwQX neMKehwBUMC7zs50RWPRmDDLkkRApo/gG1EK6WmgqgIzE5JkiSv0meDLufB3xXGb f+xpWbk1bbkw179uj0QS1QUbMtuzIY1l1B8u48PI7UDoiy6fTyQ1ce3dkmF4WQrG EonQF8VhOLSuFBdoVkvEfld/q6IWD75M1Ht3/P0ZFF1duLpdqJIBeYe6qScMyOzS E+KXnmGbNiDffy2VUjkS3SD8kn+gX1O0F7tW3BOFKbfmZf1zu3fN4oWGZfGt8c8c w3WUMoY7vOE9U+CBERRJBIGUaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPeChCbo q/TX5lWmj76aHSSbOcWIMB8GA1UdIwQYMBaAFONLKFQgVs6eBlD+/AqxJCFstfnB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzZFMS9BNTdEODZEOEU3 REUxMUVDOEQ4QzVDNURDNEY5QUUwMi80MHNvVkNCV3pwNEdVUDc4Q3JFa0lXeTEt Y0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwc29WQ0JXenA0R1VQNzhDckVrSVd5MS1jRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzZFMS9BNTdEODZEOEU3REUxMUVDOEQ4QzVDNURDNEY5QUUwMi80MHNvVkNCV3pw NEdVUDc4Q3JFa0lXeTEtY0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAg57XbvnfjfpL9wJ9lG9NTZgQ4S0lrMM05y8WUqerZd0p48baXjv+f KOB5VnNimGP0ZqEoTgo4DSJoOiqZ6UU8mOsffqM+hp5CNEwSe1lzwqMeYLiRquJK UbtRi2HTUbEDXi9WL6MxcHO1YX1AfIBGzLvSeMnHFX9gDdXCEIwTh50JB8lAwd0z PsPFh0RUT5QPJnxfAvOCEMGSospF4MbV76v0XnwzQRE/C8NZas33Xo3iC4qJ2tRY H7nVegkzEVQnk+3711WluxkVNv7C1x+t/6WGpwfXyV4IrH/5JwOZEe33Df4qIhe5 LRP6JjX6bE+vnFrfovbwMALgqFKsP/1/ -----END CERTIFICATE-----Generated at Sun May 19 04:56:54 2024 by rpki-client on console-fra.rpki-client.org