$ rpki-client -vvf rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft File: ajK9E9_Nd-8bXAUr427YmtIScNs.mft (raw, json) Hash identifier: b0PfsWTgBlht8bXLzLY1L2/tqMncdc/SFIh3xLeV2Sg= Subject key identifier: 95:0C:07:37:F7:49:C1:8A:B0:B0:43:7A:03:35:4C:CA:81:A8:DB:D8 Authority key identifier: 6A:32:BD:13:DF:CD:77:EF:1B:5C:05:2B:E3:6E:D8:9A:D2:12:70:DB Certificate issuer: /CN=A911C812/serialNumber=6A32BD13DFCD77EF1B5C052BE36ED89AD21270DB Certificate serial: 0732 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ajK9E9_Nd-8bXAUr427YmtIScNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft Manifest number: 072D Signing time: Sat 18 May 2024 22:30:10 +0000 Manifest this update: Sat 18 May 2024 22:30:10 +0000 Manifest next update: Sat 25 May 2024 22:30:10 +0000 Files and hashes: 1: ajK9E9_Nd-8bXAUr427YmtIScNs.crl (hash: jHWU0S4q0KLKyk+ChVSaDpiY1uhiG0bLuo2+XH/D0ws=) 2: 477192ACF3FA11EAB9D11D26C4F9AE02.roa (hash: 8vb5a4zBRLuZPicvx+p1is1UuBlmZOpLFgTiD9Hokvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.crl rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ajK9E9_Nd-8bXAUr427YmtIScNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1842 (0x732) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C812/serialNumber=6A32BD13DFCD77EF1B5C052BE36ED89AD21270DB Validity Not Before: May 18 22:30:10 2024 GMT Not After : May 25 22:30:10 2024 GMT Subject: CN=66492bf2-b782 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d1:1b:6f:17:f1:54:79:75:c2:46:c5:d1:91: c9:ae:00:bf:4d:7c:dc:7b:e1:d5:87:79:38:61:b4: 46:d9:2d:38:3e:1e:2c:7d:be:32:7e:a1:7b:02:a6: d1:37:ad:ea:2d:96:44:83:e0:19:cd:88:7a:a5:ad: ee:31:54:33:b8:3e:9a:4f:88:0e:75:81:86:59:08: 17:29:26:3e:5b:fc:56:3b:e4:02:91:39:f9:8d:ae: 5f:6d:98:30:41:2c:b2:5b:4f:8d:6c:9e:14:36:c4: 41:b2:89:ff:ae:14:13:65:2b:8e:e3:fc:cb:4f:cd: f7:f7:8d:37:08:2b:7d:86:0e:7e:b3:f8:1e:5f:35: 63:a5:a8:3c:87:b6:91:78:e7:90:b4:9e:60:50:84: ac:77:bc:31:99:99:f9:c0:ef:b2:20:32:1f:80:09: db:48:de:41:43:d2:f2:65:4f:c4:bd:b2:d9:bc:63: 79:20:3d:61:3c:55:c6:d6:5b:91:f5:0e:c4:1a:30: ca:d5:02:ad:61:dc:44:5d:9f:c7:51:8c:d1:ee:9d: ae:23:0c:c4:73:81:95:42:63:4d:77:70:12:e3:af: 5c:e2:a7:ae:eb:9f:88:50:0d:7e:c9:32:7c:d6:6b: 11:c6:27:67:a9:ec:9e:7a:25:61:2d:b6:d4:91:4e: ca:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:0C:07:37:F7:49:C1:8A:B0:B0:43:7A:03:35:4C:CA:81:A8:DB:D8 X509v3 Authority Key Identifier: keyid:6A:32:BD:13:DF:CD:77:EF:1B:5C:05:2B:E3:6E:D8:9A:D2:12:70:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ajK9E9_Nd-8bXAUr427YmtIScNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:76:49:10:aa:0c:08:e7:da:6f:8c:9a:63:9a:0d:83:4a:05: 2e:9e:36:14:46:7d:f9:f8:40:27:93:14:48:4b:67:c9:a6:ec: a0:45:4a:1a:79:0c:4c:51:09:08:ec:70:e6:e0:7b:58:4a:d3: 9d:88:83:da:63:4e:f7:54:1b:23:32:2a:2f:b4:5a:1b:3a:aa: 52:ae:85:be:a8:e7:ed:fe:70:17:83:77:06:23:39:02:ee:a8: d1:e3:56:90:14:d7:61:0c:d2:18:3f:8a:7e:3f:6b:50:3e:95: 77:82:00:f7:0f:cf:d8:48:16:61:49:20:4a:c7:40:3f:29:28: 33:da:d4:7f:5d:a9:fe:ba:e7:e5:a9:cd:67:bd:db:92:1d:83: f9:39:fd:66:ff:13:5b:d3:19:1a:4f:96:7f:c3:90:85:a5:2b: d9:6a:97:72:98:a7:3c:ae:f2:71:4f:f8:a2:d1:13:24:08:29: ac:4d:29:96:62:6c:49:0f:b6:82:ce:f0:63:97:98:36:40:a7: 97:13:3a:52:31:bf:f0:8b:87:84:29:59:95:0f:ae:05:1a:97: 26:35:6c:5e:d1:17:8a:7c:94:af:92:e1:1c:ce:58:a3:a5:c7: a6:d5:0b:65:dd:ad:f7:ff:48:2f:a7:54:08:de:2f:3b:d0:bd: e7:a8:bf:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM4MTIxMTAvBgNVBAUTKDZBMzJCRDEzREZDRDc3RUYxQjVDMDUyQkUzNkVEODlB RDIxMjcwREIwHhcNMjQwNTE4MjIzMDEwWhcNMjQwNTI1MjIzMDEwWjAYMRYwFAYD VQQDEw02NjQ5MmJmMi1iNzgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqdEbbxfxVHl1wkbF0ZHJrgC/TXzce+HVh3k4YbRG2S04Ph4sfb4yfqF7AqbR N63qLZZEg+AZzYh6pa3uMVQzuD6aT4gOdYGGWQgXKSY+W/xWO+QCkTn5ja5fbZgw QSyyW0+NbJ4UNsRBson/rhQTZSuO4/zLT8339403CCt9hg5+s/geXzVjpag8h7aR eOeQtJ5gUISsd7wxmZn5wO+yIDIfgAnbSN5BQ9LyZU/EvbLZvGN5ID1hPFXG1luR 9Q7EGjDK1QKtYdxEXZ/HUYzR7p2uIwzEc4GVQmNNd3AS469c4qeu65+IUA1+yTJ8 1msRxidnqeyeeiVhLbbUkU7KEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJUMBzf3 ScGKsLBDegM1TMqBqNvYMB8GA1UdIwQYMBaAFGoyvRPfzXfvG1wFK+Nu2JrSEnDb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzgxMi9CMjVFRjk5MEU5 MTYxMUVBQTcwNUQ4NEZDNEY5QUUwMi9haks5RTlfTmQtOGJYQVVyNDI3WW10SVNj TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FqSzlFOV9OZC04YlhBVXI0MjdZbXRJU2NOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzgxMi9CMjVFRjk5MEU5MTYxMUVBQTcwNUQ4NEZDNEY5QUUwMi9haks5RTlfTmQt OGJYQVVyNDI3WW10SVNjTnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2dkkQqgwI59pvjJpjmg2DSgUunjYURn35+EAnkxRIS2fJpuygRUoa eQxMUQkI7HDm4HtYStOdiIPaY073VBsjMiovtFobOqpSroW+qOft/nAXg3cGIzkC 7qjR41aQFNdhDNIYP4p+P2tQPpV3ggD3D8/YSBZhSSBKx0A/KSgz2tR/Xan+uufl qc1nvduSHYP5Of1m/xNb0xkaT5Z/w5CFpSvZapdymKc8rvJxT/ii0RMkCCmsTSmW YmxJD7aCzvBjl5g2QKeXEzpSMb/wi4eEKVmVD64FGpcmNWxe0ReKfJSvkuEczlij pcem1Qtl3a33/0gvp1QI3i870L3nqL/W -----END CERTIFICATE-----Generated at Sun May 19 00:16:11 2024 by rpki-client on console-fra.rpki-client.org