$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft File: 2QaTkaPngEpuvd-dQfLeTZG9UbM.mft (raw, json) Hash identifier: 4qyStg/T/6UbADkRUnuAyqqbUc+9TQHES8ExHE1Rh5M= Subject key identifier: 1A:DF:2B:96:11:FB:35:7C:3B:E8:49:83:08:CB:F0:44:85:D6:44:BB Authority key identifier: D9:06:93:91:A3:E7:80:4A:6E:BD:DF:9D:41:F2:DE:4D:91:BD:51:B3 Certificate issuer: /CN=A9125C22/serialNumber=D9069391A3E7804A6EBDDF9D41F2DE4D91BD51B3 Certificate serial: 05B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QaTkaPngEpuvd-dQfLeTZG9UbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft Manifest number: 05AB Signing time: Sun 19 May 2024 00:17:44 +0000 Manifest this update: Sun 19 May 2024 00:17:44 +0000 Manifest next update: Sun 26 May 2024 00:17:44 +0000 Files and hashes: 1: 2QaTkaPngEpuvd-dQfLeTZG9UbM.crl (hash: 0C1e5Zg7wTp/+vbBKDh+Ax8VMUGLKKZTD3hHWXc9DiM=) 2: 406C49067FB011EB92379937C4F9AE02.roa (hash: 0ossOkUAWoJyMXHO/vsMbGmRVqnumnMvXWcRgIyy14Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.crl rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QaTkaPngEpuvd-dQfLeTZG9UbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1459 (0x5b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C22/serialNumber=D9069391A3E7804A6EBDDF9D41F2DE4D91BD51B3 Validity Not Before: May 19 00:17:44 2024 GMT Not After : May 26 00:17:44 2024 GMT Subject: CN=66494528-a9cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:84:f1:fb:2f:4d:d0:07:ce:d8:d0:ae:32:6d: 97:fc:b3:43:f3:cd:14:e7:e1:e7:2a:19:d6:ae:b7: f3:de:f5:06:f4:68:49:38:19:13:4b:f1:59:06:4c: 0a:a0:5f:77:55:e9:cb:ab:7f:bf:2f:e6:42:83:8e: 44:84:2b:2b:43:46:d8:fc:24:a3:13:69:82:71:67: c0:2f:a7:32:95:1e:9f:2e:f3:b3:a6:fd:c0:d9:44: 0d:f8:b9:91:38:ff:a1:30:39:da:61:a4:08:c8:c3: 8f:b8:14:8f:61:90:61:b8:f0:37:3a:b3:83:1c:fd: 8f:62:6d:49:a5:74:60:ef:ca:e9:82:9b:94:4f:1e: fd:0d:6c:d9:3d:91:24:c1:0a:12:96:f1:9a:38:9c: a9:c9:66:2b:3f:00:5d:e9:83:3e:3a:2b:a2:0d:b3: fd:6b:7d:bb:87:b3:73:c1:e1:66:74:53:59:e8:9f: f4:ec:51:7e:60:5d:19:2d:7a:48:24:68:a7:fb:23: 17:e9:9f:19:38:b2:52:2e:ed:a0:35:6e:ec:bc:99: 99:28:7e:32:66:a1:d1:df:c6:1c:46:77:4d:40:81: f2:9b:70:9e:48:d9:ef:9c:69:32:f2:c7:82:05:44: c0:a5:9e:9b:c1:0a:db:4d:e3:5b:a1:44:01:c5:33: c1:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:DF:2B:96:11:FB:35:7C:3B:E8:49:83:08:CB:F0:44:85:D6:44:BB X509v3 Authority Key Identifier: keyid:D9:06:93:91:A3:E7:80:4A:6E:BD:DF:9D:41:F2:DE:4D:91:BD:51:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QaTkaPngEpuvd-dQfLeTZG9UbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:99:57:ce:e1:13:8a:d3:a4:c4:9e:3b:b7:98:96:59:fa:dc: 4c:04:c7:45:e0:7d:9b:94:17:d6:fd:fc:45:29:c1:38:fa:df: fd:f2:cf:85:a9:c3:19:ef:21:eb:24:07:30:4a:f0:e6:85:f7: 1a:72:8a:f5:cf:c7:86:5e:99:7f:2f:ff:f6:4e:10:9f:23:33: 29:a4:45:d4:b7:7e:e4:8a:e5:5f:0f:08:d3:99:3e:03:b4:85: f9:f4:d2:68:4a:be:ae:60:e9:b8:9a:0b:8b:b0:e8:f0:b2:5d: 6c:ff:76:72:f1:bb:46:f0:2b:e1:c3:f1:f5:a2:6b:13:6f:ec: 00:4a:b7:73:1c:21:e6:06:4a:ba:bb:ff:0f:e4:55:65:a2:93: 0d:f7:51:7e:e2:aa:8b:9c:54:15:3d:bc:ec:27:f7:99:4d:7a: 75:e3:35:16:d9:43:72:21:01:b1:02:1c:bc:ad:71:4b:f1:00: 40:7d:1f:5f:09:f8:5c:ef:14:9c:be:d7:3d:41:46:21:49:7e: 7a:4e:c0:4f:74:07:44:e5:a8:ec:5c:63:03:ef:36:26:b2:fe: 45:d3:0f:70:55:15:63:03:a9:5f:bb:55:b5:4d:b3:79:9e:f6: 63:d6:6a:16:3d:db:6d:e2:b1:0c:8c:36:44:55:65:4e:e3:cf: a3:95:bf:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMjIxMTAvBgNVBAUTKEQ5MDY5MzkxQTNFNzgwNEE2RUJEREY5RDQxRjJERTRE OTFCRDUxQjMwHhcNMjQwNTE5MDAxNzQ0WhcNMjQwNTI2MDAxNzQ0WjAYMRYwFAYD VQQDEw02NjQ5NDUyOC1hOWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYTx+y9N0AfO2NCuMm2X/LND880U5+HnKhnWrrfz3vUG9GhJOBkTS/FZBkwK oF93VenLq3+/L+ZCg45EhCsrQ0bY/CSjE2mCcWfAL6cylR6fLvOzpv3A2UQN+LmR OP+hMDnaYaQIyMOPuBSPYZBhuPA3OrODHP2PYm1JpXRg78rpgpuUTx79DWzZPZEk wQoSlvGaOJypyWYrPwBd6YM+OiuiDbP9a327h7NzweFmdFNZ6J/07FF+YF0ZLXpI JGin+yMX6Z8ZOLJSLu2gNW7svJmZKH4yZqHR38YcRndNQIHym3CeSNnvnGky8seC BUTApZ6bwQrbTeNboUQBxTPBHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBrfK5YR +zV8O+hJgwjL8ESF1kS7MB8GA1UdIwQYMBaAFNkGk5Gj54BKbr3fnUHy3k2RvVGz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMyMi8wNDU2OTVCODdG QUUxMUVCOTc3QjUzMzVDNEY5QUUwMi8yUWFUa2FQbmdFcHV2ZC1kUWZMZVRaRzlV Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRYVRrYVBuZ0VwdXZkLWRRZkxlVFpHOVViTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMyMi8wNDU2OTVCODdGQUUxMUVCOTc3QjUzMzVDNEY5QUUwMi8yUWFUa2FQbmdF cHV2ZC1kUWZMZVRaRzlVYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClmVfO4ROK06TEnju3mJZZ+txMBMdF4H2blBfW/fxFKcE4+t/98s+F qcMZ7yHrJAcwSvDmhfcacor1z8eGXpl/L//2ThCfIzMppEXUt37kiuVfDwjTmT4D tIX59NJoSr6uYOm4mguLsOjwsl1s/3Zy8btG8Cvhw/H1omsTb+wASrdzHCHmBkq6 u/8P5FVlopMN91F+4qqLnFQVPbzsJ/eZTXp14zUW2UNyIQGxAhy8rXFL8QBAfR9f Cfhc7xScvtc9QUYhSX56TsBPdAdE5ajsXGMD7zYmsv5F0w9wVRVjA6lfu1W1TbN5 nvZj1moWPdtt4rEMjDZEVWVO48+jlb/R -----END CERTIFICATE-----Generated at Sun May 19 00:59:40 2024 by rpki-client on console-fra.rpki-client.org