$ rpki-client -vvf rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft File: 0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft (raw, json) Hash identifier: jUGn8vcHKwGmCDDdb5SFBnrsw9aozZgFUgkMnmLRqYk= Subject key identifier: DD:0B:48:56:3D:68:40:A2:49:7E:04:B8:76:47:B3:CE:AB:7D:75:AA Authority key identifier: D0:D2:F4:5A:46:D2:67:66:01:4B:78:60:19:A0:9A:83:34:87:3D:AD Certificate issuer: /CN=A9122219/serialNumber=D0D2F45A46D26766014B786019A09A8334873DAD Certificate serial: 0A70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft Manifest number: 0A68 Signing time: Sat 18 May 2024 20:18:46 +0000 Manifest this update: Sat 18 May 2024 20:18:45 +0000 Manifest next update: Sat 25 May 2024 20:18:45 +0000 Files and hashes: 1: 0NL0WkbSZ2YBS3hgGaCagzSHPa0.crl (hash: uYQEoEDkmFU3kIAkiu+rEhEOSw50DlGLN6bTrLVpl6Y=) 2: CD145D246E4E11EDBE02B065C4F9AE02.roa (hash: V3zMPliS6mR8rENzRZbv+Fm8qxtTgdFeCg1XmwCXLvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.crl rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2672 (0xa70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122219/serialNumber=D0D2F45A46D26766014B786019A09A8334873DAD Validity Not Before: May 18 20:18:45 2024 GMT Not After : May 25 20:18:45 2024 GMT Subject: CN=66490d25-a113 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:10:09:fc:d0:a5:14:1c:96:f8:ef:9b:7f:d2: cd:66:10:d4:06:c6:44:fc:bb:8f:e9:d3:a1:5f:bd: 2b:15:63:38:e8:81:00:0d:e7:b9:5f:fd:41:fb:d2: 51:ae:d0:b8:06:38:30:32:20:56:36:ee:40:de:41: 5b:ee:89:c4:be:b7:87:68:d3:dd:af:d0:b9:73:91: 6e:f0:f6:c3:00:5b:86:fb:dc:42:e3:17:73:7c:35: 72:2a:19:5d:78:79:2c:1f:b5:0a:a1:a7:61:06:ac: ec:24:f0:87:d7:e6:ca:1f:75:14:95:c7:0d:12:34: 33:f4:8f:19:31:b9:4e:ac:f0:2c:2e:94:d9:ba:06: a4:64:3a:41:e2:24:08:cf:dc:42:4d:93:58:75:22: d7:85:f8:ca:d3:f1:28:1b:ad:a7:f3:89:c2:96:6d: c9:97:10:20:ad:de:9e:14:8c:7e:98:89:4c:f4:c5: 79:9f:fb:f3:a0:c6:d0:71:df:d9:f5:c7:62:ad:34: 15:8a:0a:cc:c0:13:c7:b3:ec:b9:53:d8:57:a4:04: 03:13:d7:68:4f:30:66:13:65:bc:10:d0:95:e7:37: e5:67:9c:00:1b:45:42:cb:6b:de:ea:d7:b4:b2:50: 14:32:3b:fa:1a:25:f7:1b:5b:c0:7f:06:2f:94:d4: 97:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:0B:48:56:3D:68:40:A2:49:7E:04:B8:76:47:B3:CE:AB:7D:75:AA X509v3 Authority Key Identifier: keyid:D0:D2:F4:5A:46:D2:67:66:01:4B:78:60:19:A0:9A:83:34:87:3D:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:d4:b8:36:82:05:85:dd:36:20:2b:9a:7c:07:ff:b8:e5:b1: 48:d5:ec:c5:12:fc:6a:a5:98:29:af:08:1a:ec:5b:13:4f:7d: cf:12:ff:c4:08:f3:5d:32:b0:68:0a:ab:3a:fe:d5:bd:2d:1a: b8:af:e0:1a:f6:81:81:6d:e2:02:e8:7a:f0:73:00:e4:18:2c: d6:d1:f6:24:96:47:ab:f3:ff:95:f6:ff:f6:65:6b:d4:9c:3d: 20:d2:2b:59:a4:02:2a:94:97:ad:2f:3e:db:7e:f8:2f:02:f0: 1e:1d:41:f2:aa:29:48:de:2b:7f:e2:a6:46:b8:6f:04:09:3f: d5:11:34:32:b0:21:40:db:dd:20:61:51:ab:85:95:23:5b:de: 53:f6:68:43:a1:c0:ec:02:3b:86:91:23:1b:8f:f8:11:83:1c: 87:0d:27:97:ab:af:69:c6:c9:ad:ac:e4:82:29:3b:0f:de:fe: a9:59:91:dd:01:cc:f9:e3:18:18:25:26:9a:a7:dd:bb:52:33: d1:04:04:0c:be:f7:a2:d8:11:49:72:ee:66:66:5c:27:2a:b2: 75:f0:95:d7:3f:36:20:d8:69:61:02:9a:3d:d9:f5:50:bf:dd: 3a:ee:f2:b3:ca:7d:2a:e4:d1:c4:86:64:42:8e:1a:7e:7d:b1: 81:ed:ac:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIyMTkxMTAvBgNVBAUTKEQwRDJGNDVBNDZEMjY3NjYwMTRCNzg2MDE5QTA5QTgz MzQ4NzNEQUQwHhcNMjQwNTE4MjAxODQ1WhcNMjQwNTI1MjAxODQ1WjAYMRYwFAYD VQQDEw02NjQ5MGQyNS1hMTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4BAJ/NClFByW+O+bf9LNZhDUBsZE/LuP6dOhX70rFWM46IEADee5X/1B+9JR rtC4BjgwMiBWNu5A3kFb7onEvreHaNPdr9C5c5Fu8PbDAFuG+9xC4xdzfDVyKhld eHksH7UKoadhBqzsJPCH1+bKH3UUlccNEjQz9I8ZMblOrPAsLpTZugakZDpB4iQI z9xCTZNYdSLXhfjK0/EoG62n84nClm3JlxAgrd6eFIx+mIlM9MV5n/vzoMbQcd/Z 9cdirTQVigrMwBPHs+y5U9hXpAQDE9doTzBmE2W8ENCV5zflZ5wAG0VCy2ve6te0 slAUMjv6GiX3G1vAfwYvlNSXVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN0LSFY9 aECiSX4EuHZHs86rfXWqMB8GA1UdIwQYMBaAFNDS9FpG0mdmAUt4YBmgmoM0hz2t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjIxOS84MkZFODlDQzND MzcxMUVBODczRTE0NjBDNEY5QUUwMi8wTkwwV2tiU1oyWUJTM2hnR2FDYWd6U0hQ YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBOTDBXa2JTWjJZQlMzaGdHYUNhZ3pTSFBhMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjIxOS84MkZFODlDQzNDMzcxMUVBODczRTE0NjBDNEY5QUUwMi8wTkwwV2tiU1oy WUJTM2hnR2FDYWd6U0hQYTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB61Lg2ggWF3TYgK5p8B/+45bFI1ezFEvxqpZgprwga7FsTT33PEv/E CPNdMrBoCqs6/tW9LRq4r+Aa9oGBbeIC6HrwcwDkGCzW0fYklker8/+V9v/2ZWvU nD0g0itZpAIqlJetLz7bfvgvAvAeHUHyqilI3it/4qZGuG8ECT/VETQysCFA290g YVGrhZUjW95T9mhDocDsAjuGkSMbj/gRgxyHDSeXq69pxsmtrOSCKTsP3v6pWZHd Acz54xgYJSaap927UjPRBAQMvvei2BFJcu5mZlwnKrJ18JXXPzYg2GlhApo92fVQ v9067vKzyn0q5NHEhmRCjhp+fbGB7axv -----END CERTIFICATE-----Generated at Sat May 18 20:48:17 2024 by rpki-client on console-fra.rpki-client.org