$ rpki-client -vvf rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft File: RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft (raw, json) Hash identifier: /KqcdTM0+f5AF4NDE9Q8uHemQ8zSCTgOhkH3nIDk5cw= Subject key identifier: BF:18:A1:86:84:9D:B6:EB:5F:72:1F:04:C0:E6:05:4F:60:82:06:3E Authority key identifier: 47:34:64:84:71:59:BB:15:2F:BF:E1:DB:B5:A1:B0:15:46:82:2F:17 Certificate issuer: /CN=A911DD04/serialNumber=473464847159BB152FBFE1DBB5A1B01546822F17 Certificate serial: 47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft Manifest number: 43 Signing time: Sun 19 May 2024 08:11:50 +0000 Manifest this update: Sun 19 May 2024 08:11:49 +0000 Manifest next update: Sun 26 May 2024 08:11:49 +0000 Files and hashes: 1: RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl (hash: iTWLZHvglOPeTuxpOo0OYNwnIdQF+gMM8D7RHDsdtaE=) 2: 939790AAB9BD11EEA19BE74DC4F9AE02.roa (hash: usgNeDoGlzZoBDkMS+oNirA/1DpfH4pmT68FwmH4UH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DD04/serialNumber=473464847159BB152FBFE1DBB5A1B01546822F17 Validity Not Before: May 19 08:11:49 2024 GMT Not After : May 26 08:11:49 2024 GMT Subject: CN=6649b446-c1b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f6:1d:85:57:45:f8:32:c9:b6:8a:ff:75:ef: ad:b9:25:2e:fd:4f:bb:26:78:9b:df:c9:96:b6:a1: 72:1e:63:e2:79:b9:c5:64:17:a2:d0:30:5b:ba:c4: 77:a0:ef:1d:4d:77:0e:e5:df:db:17:24:0b:83:83: 80:6d:84:3a:60:27:ec:32:f2:15:28:00:88:5c:f4: 42:10:da:5d:de:ff:0b:e6:a8:e2:c4:4e:7b:56:69: 1f:b4:ad:9b:3b:a4:cd:21:b5:3f:8e:ab:f1:41:67: 32:da:1f:da:ac:58:c8:45:d5:19:ea:1d:d0:da:67: 24:ad:39:f2:41:0c:f4:36:31:d9:5f:b6:9a:9f:b1: eb:7f:ce:f6:0b:0a:1d:d5:c4:0e:0a:fb:e4:62:03: ca:77:8c:7d:39:78:96:d1:e8:f0:a3:5f:8a:f8:3a: 6d:1e:07:7a:c2:8a:79:7e:21:a9:c6:a2:95:77:47: 60:83:e6:66:0e:3c:93:9b:a2:5c:42:aa:44:a3:18: 13:14:fc:bd:df:dd:e6:5e:f2:96:21:3b:0d:e6:db: 23:7a:2f:27:fd:73:80:09:09:8c:12:6b:63:3b:86: 52:c7:38:74:75:2e:63:35:a5:7f:f6:9d:1e:92:f1: d6:88:e4:1f:3f:2e:cf:a3:27:1f:c8:85:93:e4:62: 2c:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:18:A1:86:84:9D:B6:EB:5F:72:1F:04:C0:E6:05:4F:60:82:06:3E X509v3 Authority Key Identifier: keyid:47:34:64:84:71:59:BB:15:2F:BF:E1:DB:B5:A1:B0:15:46:82:2F:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:8f:d8:32:f8:2a:13:e4:c6:f3:62:b9:2e:15:b6:92:fa:a8: 67:ae:1b:fc:5e:a0:6c:a0:a4:bf:84:2a:bb:15:ce:e3:47:71: ff:21:45:db:a7:e0:2e:e5:8d:9c:fc:d2:21:54:79:0a:cd:3f: 24:87:31:e5:43:0b:d6:21:da:9b:93:09:2b:d4:8b:0e:94:f2: a8:9c:95:98:52:a5:3d:82:69:02:d1:eb:c5:e7:44:ea:03:48: 26:10:4e:7e:03:73:64:0b:df:fd:22:4a:64:bb:78:f0:57:b3: 51:c8:be:50:e8:0e:d8:59:3a:7e:dd:f4:40:a4:13:d3:e2:41: 16:4e:cb:aa:bc:5c:e2:7c:30:ad:4e:11:44:18:2e:b2:54:f7: 77:cd:23:ea:e0:1f:15:4c:b3:8c:34:82:b5:9e:b1:9f:36:0f: 66:0e:ad:2e:42:35:93:67:00:aa:ec:3f:30:c6:d7:3a:a1:59: 44:f8:72:30:38:e6:9c:0b:cb:1f:bf:3a:d1:33:89:c6:11:b0: 3b:89:a0:35:66:68:5a:94:f2:99:0b:55:5b:9a:bf:ca:39:92: c7:16:64:df:52:c7:76:9a:c2:89:ee:06:c9:58:76:8f:38:f5: 90:87:21:4b:4b:0c:18:db:26:b1:fd:cf:1b:b8:96:c4:47:19: b6:13:12:6a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx REQwNDExMC8GA1UEBRMoNDczNDY0ODQ3MTU5QkIxNTJGQkZFMURCQjVBMUIwMTU0 NjgyMkYxNzAeFw0yNDA1MTkwODExNDlaFw0yNDA1MjYwODExNDlaMBgxFjAUBgNV BAMTDTY2NDliNDQ2LWMxYjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDW9h2FV0X4Msm2iv917625JS79T7smeJvfyZa2oXIeY+J5ucVkF6LQMFu6xHeg 7x1Ndw7l39sXJAuDg4BthDpgJ+wy8hUoAIhc9EIQ2l3e/wvmqOLETntWaR+0rZs7 pM0htT+Oq/FBZzLaH9qsWMhF1RnqHdDaZyStOfJBDPQ2Mdlftpqfset/zvYLCh3V xA4K++RiA8p3jH05eJbR6PCjX4r4Om0eB3rCinl+IanGopV3R2CD5mYOPJObolxC qkSjGBMU/L3f3eZe8pYhOw3m2yN6Lyf9c4AJCYwSa2M7hlLHOHR1LmM1pX/2nR6S 8daI5B8/Ls+jJx/IhZPkYiyTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvxihhoSd tutfch8EwOYFT2CCBj4wHwYDVR0jBBgwFoAURzRkhHFZuxUvv+HbtaGwFUaCLxcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFERDA0L0MzRDVGREM2QjlC QjExRUVBQTMyMjk1RUM0RjlBRTAyL1J6UmtoSEZadXhVdnYtSGJ0YUd3RlVhQ0x4 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUnpSa2hIRlp1eFV2di1IYnRhR3dGVWFDTHhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFE RDA0L0MzRDVGREM2QjlCQjExRUVBQTMyMjk1RUM0RjlBRTAyL1J6UmtoSEZadXhV dnYtSGJ0YUd3RlVhQ0x4Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ+P2DL4KhPkxvNiuS4VtpL6qGeuG/xeoGygpL+EKrsVzuNHcf8hRdun 4C7ljZz80iFUeQrNPySHMeVDC9Yh2puTCSvUiw6U8qiclZhSpT2CaQLR68XnROoD SCYQTn4Dc2QL3/0iSmS7ePBXs1HIvlDoDthZOn7d9ECkE9PiQRZOy6q8XOJ8MK1O EUQYLrJU93fNI+rgHxVMs4w0grWesZ82D2YOrS5CNZNnAKrsPzDG1zqhWUT4cjA4 5pwLyx+/OtEzicYRsDuJoDVmaFqU8pkLVVuav8o5kscWZN9Sx3aawonuBslYdo84 9ZCHIUtLDBjbJrH9zxu4lsRHGbYTEmo= -----END CERTIFICATE-----Generated at Sun May 19 09:04:12 2024 by rpki-client on console-fra.rpki-client.org