$ rpki-client -vvf rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft File: drnTOfrNYrR-k-iITehQOW2877Q.mft (raw, json) Hash identifier: 79aTYUDV8rKoQD8QUvalhxr3WNo9EZIAuUPETLoTHE0= Subject key identifier: 0D:72:C6:6D:32:39:C7:AC:58:25:B8:BB:3F:08:B4:87:D7:4D:2A:81 Authority key identifier: 76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 Certificate issuer: /CN=A911E6CA/serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Certificate serial: 0A26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft Manifest number: 0A11 Signing time: Sat 18 May 2024 20:38:28 +0000 Manifest this update: Sat 18 May 2024 20:38:27 +0000 Manifest next update: Sat 25 May 2024 20:38:27 +0000 Files and hashes: 1: drnTOfrNYrR-k-iITehQOW2877Q.crl (hash: sx/QtTfW6SMN9x6oA7g4FSl3yFQ5AHpU42MPIhYUnBE=) 2: 83882F7AF83B11ECB4154E31C4F9AE02.roa (hash: EhSHrFVVtHL5lFFl+aVbUcLo1qXdi3FAtdOJlX814u4=) 3: 4FFC83964CA311EE815AF017C4F9AE02.roa (hash: vgN7wLEDbyrBifRerfum3Fk0T52cGWinYY+zg+1VrHM=) 4: AA1ABF0AB20011EA9C0DFB2FC4F9AE02.roa (hash: H5ZVPVTct0U6OTmtMr1f5SRBkjmlilrIyET1lT5wzps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2598 (0xa26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E6CA/serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Validity Not Before: May 18 20:38:27 2024 GMT Not After : May 25 20:38:27 2024 GMT Subject: CN=664911c4-9c15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:fb:89:46:04:9a:08:aa:07:d6:d9:3e:a7:c6: 0b:62:eb:e2:d6:dc:c5:4b:fc:70:15:19:86:f6:37: b4:91:ee:ba:dc:e4:b8:ba:c8:13:a9:47:ff:d5:a2: ee:be:28:95:cb:d4:c4:2c:14:0e:24:3d:7e:55:d8: 9e:44:e7:ae:0e:40:e6:ac:21:c3:cc:06:e3:03:9e: f1:f4:4b:ac:55:a9:c4:48:e9:85:45:59:ff:3a:19: 51:b7:de:f8:d7:79:d2:96:98:64:be:60:36:ff:ca: e8:b0:c3:00:79:8f:f9:4b:83:59:25:74:fc:27:f1: 5f:d3:2f:cf:66:ce:1f:3a:6c:87:0a:10:6a:db:ad: 3d:ba:a8:20:15:ee:b5:d7:d3:42:77:69:e4:3b:d8: ce:34:9b:76:1d:6b:60:a6:42:97:e8:a2:97:43:94: 12:6a:4a:14:19:3a:14:e1:a2:2a:44:02:cc:6f:6b: 56:da:3b:18:c3:22:30:25:5d:af:bc:ac:23:c5:a2: fb:1b:e7:cc:cc:60:51:7e:c6:2a:35:19:74:bb:36: 6c:31:98:d9:04:54:2a:75:39:b9:bd:be:e0:ee:50: 3e:2d:38:e0:e1:c9:27:f1:ce:77:f7:49:3c:06:49: 25:3e:20:87:1b:a6:75:32:d3:ab:ff:bd:82:0c:3c: 84:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:72:C6:6D:32:39:C7:AC:58:25:B8:BB:3F:08:B4:87:D7:4D:2A:81 X509v3 Authority Key Identifier: keyid:76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:d3:2d:64:1b:fd:6e:e9:0d:a4:43:73:48:a9:61:7a:a6:bd: ad:af:01:b6:8f:35:cb:03:f6:6b:0b:f4:80:8a:a3:b5:80:56: d1:72:85:3e:fc:c7:8c:20:b5:bc:df:3e:39:ac:76:65:b9:cc: 5c:d4:bd:ab:a7:ae:f2:c0:be:7c:45:ed:2e:bf:89:35:89:a1: ba:4e:72:33:0f:34:e1:3c:9c:14:14:9c:94:40:7a:eb:65:2f: 1d:87:ec:c4:93:f7:b3:62:96:70:e4:70:23:16:7e:f4:a1:30: 3c:94:39:22:db:6b:bf:fa:fb:05:2a:f6:b9:48:c5:c8:63:ba: b4:14:10:0e:8b:0c:81:72:01:60:3b:72:f1:01:3b:8f:cb:1e: 2e:46:0b:1f:55:72:05:ff:26:05:bf:57:37:88:4b:a9:48:8c: 1a:44:de:98:3d:1a:54:21:08:d8:79:d2:0a:9e:f2:98:7d:5c: 8c:71:a9:fe:e8:8b:86:f4:28:23:13:87:ea:b9:3c:9b:48:7b: a1:e2:1e:32:74:97:61:3b:2f:7d:fb:96:f3:68:8e:ac:95:fb: 0a:3d:01:38:d9:a4:aa:42:90:aa:e4:0d:01:a8:1a:d7:b4:ed: dd:f2:3a:9e:27:0f:60:45:ec:f0:31:c4:5b:29:9f:06:38:5f: 8d:e1:79:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU2Q0ExMTAvBgNVBAUTKDc2QjlEMzM5RkFDRDYyQjQ3RTkzRTg4ODRERTg1MDM5 NkRCQ0VGQjQwHhcNMjQwNTE4MjAzODI3WhcNMjQwNTI1MjAzODI3WjAYMRYwFAYD VQQDEw02NjQ5MTFjNC05YzE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzPuJRgSaCKoH1tk+p8YLYuvi1tzFS/xwFRmG9je0ke663OS4usgTqUf/1aLu viiVy9TELBQOJD1+VdieROeuDkDmrCHDzAbjA57x9EusVanESOmFRVn/OhlRt974 13nSlphkvmA2/8rosMMAeY/5S4NZJXT8J/Ff0y/PZs4fOmyHChBq2609uqggFe61 19NCd2nkO9jONJt2HWtgpkKX6KKXQ5QSakoUGToU4aIqRALMb2tW2jsYwyIwJV2v vKwjxaL7G+fMzGBRfsYqNRl0uzZsMZjZBFQqdTm5vb7g7lA+LTjg4ckn8c5390k8 BkklPiCHG6Z1MtOr/72CDDyE+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA1yxm0y OcesWCW4uz8ItIfXTSqBMB8GA1UdIwQYMBaAFHa50zn6zWK0fpPoiE3oUDltvO+0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTZDQS83NDA5QjQ3QTRG QzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTllyUi1rLWlJVGVoUU9XMjg3 N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RyblRPZnJOWXJSLWstaUlUZWhRT1cyODc3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTZDQS83NDA5QjQ3QTRGQzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTlly Ui1rLWlJVGVoUU9XMjg3N1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAM0y1kG/1u6Q2kQ3NIqWF6pr2trwG2jzXLA/ZrC/SAiqO1gFbRcoU+ /MeMILW83z45rHZlucxc1L2rp67ywL58Re0uv4k1iaG6TnIzDzThPJwUFJyUQHrr ZS8dh+zEk/ezYpZw5HAjFn70oTA8lDki22u/+vsFKva5SMXIY7q0FBAOiwyBcgFg O3LxATuPyx4uRgsfVXIF/yYFv1c3iEupSIwaRN6YPRpUIQjYedIKnvKYfVyMcan+ 6IuG9CgjE4fquTybSHuh4h4ydJdhOy99+5bzaI6slfsKPQE42aSqQpCq5A0BqBrX tO3d8jqeJw9gRezwMcRbKZ8GOF+N4Xm3 -----END CERTIFICATE-----Generated at Sat May 18 21:24:20 2024 by rpki-client on console-fra.rpki-client.org