$ rpki-client -vvf rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft File: r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft (raw, json) Hash identifier: AzaoYPjxRgKLNfaoq4EuvG6Dg7gWlXYejKSoOTC0sRQ= Subject key identifier: 90:27:FB:ED:E2:F9:69:A6:E8:D7:0E:DD:8F:84:CD:67:9F:10:80:56 Authority key identifier: AF:71:F5:B1:67:95:F9:B7:CF:2B:24:58:48:07:7E:11:68:5B:A6:F0 Certificate issuer: /CN=A9127686/serialNumber=AF71F5B16795F9B7CF2B245848077E11685BA6F0 Certificate serial: 03F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3H1sWeV-bfPKyRYSAd-EWhbpvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft Manifest number: 03EF Signing time: Sun 19 May 2024 02:14:54 +0000 Manifest this update: Sun 19 May 2024 02:14:54 +0000 Manifest next update: Sun 26 May 2024 02:14:54 +0000 Files and hashes: 1: r3H1sWeV-bfPKyRYSAd-EWhbpvA.crl (hash: EKnJuDVKQ6BzTWdwpv9J5sXtIokOm3dm4rCZV3+N7oM=) 2: 54BBE48A304411EC830F8610C4F9AE02.roa (hash: H1iIPAe1JccYvdw8kKI9ShVen2Ai6Zn5Tp5ucOlGusg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.crl rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3H1sWeV-bfPKyRYSAd-EWhbpvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1011 (0x3f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127686/serialNumber=AF71F5B16795F9B7CF2B245848077E11685BA6F0 Validity Not Before: May 19 02:14:54 2024 GMT Not After : May 26 02:14:54 2024 GMT Subject: CN=6649609e-cd95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9e:c0:da:26:5d:cf:a5:79:13:7f:f6:51:df: be:69:a1:40:ff:73:ac:57:9e:06:cf:49:e3:ed:32: 5a:0b:b4:0a:2a:da:b0:1a:5f:f2:9f:ff:ff:ce:ee: bf:0d:c0:7d:f9:40:c0:fa:67:ee:2b:32:6c:d1:af: cc:09:e0:44:85:29:7b:8f:0c:80:e7:cc:22:da:74: 6c:83:30:9c:a8:ae:01:ec:2f:54:86:f2:a6:26:ef: 9a:0b:5e:06:2f:51:77:7e:75:17:8e:a2:b5:ba:73: ff:43:f2:90:30:1c:29:9a:d2:38:12:9b:57:62:a3: c1:6d:db:64:f4:0a:b8:b4:0e:53:b1:8a:4f:85:73: c8:f1:7b:4d:a8:1c:2b:59:05:5a:6c:83:6d:9b:85: 5e:63:0d:d0:0f:54:b7:84:03:1e:a9:39:ed:54:9f: 8e:7c:02:f1:39:ba:3f:5d:2f:3f:a8:6c:f7:22:18: 48:d9:e4:00:c5:7b:af:59:cf:ea:70:15:ea:da:46: d8:09:c9:25:48:88:2d:fb:f7:68:48:9d:3f:e3:5a: 98:98:a9:17:13:0b:1c:8d:cb:fa:7f:e4:03:5b:3c: 95:7d:ac:2a:57:9c:61:dc:ef:8c:3e:7e:41:89:ff: 0a:6f:c2:0d:45:41:10:3b:1b:55:38:6e:09:9c:0a: e2:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:27:FB:ED:E2:F9:69:A6:E8:D7:0E:DD:8F:84:CD:67:9F:10:80:56 X509v3 Authority Key Identifier: keyid:AF:71:F5:B1:67:95:F9:B7:CF:2B:24:58:48:07:7E:11:68:5B:A6:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3H1sWeV-bfPKyRYSAd-EWhbpvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:a3:99:4a:02:c9:01:5a:36:92:0b:ab:f2:5e:6d:eb:d0:cf: 1e:76:44:a6:09:e7:9e:89:8d:4d:db:8c:d5:f4:e0:a9:7c:ca: 22:3d:dd:8f:4d:fe:7e:7f:5c:3b:1a:45:95:62:8c:95:40:40: cf:c1:3f:d3:64:4b:a5:56:8b:57:c6:4d:24:df:32:71:85:40: 4f:c6:cc:1a:fe:98:2d:1f:d6:d3:cd:9c:0a:78:f3:33:ef:53: a2:c8:58:1f:82:62:a6:77:a0:90:51:99:97:5d:18:1d:47:ca: 5e:14:7d:b5:c3:6a:ae:b1:df:ed:34:22:b6:3d:a5:e5:1b:22: 34:e6:74:1f:b5:2d:f3:3d:7b:a2:13:9f:32:60:10:ed:21:4c: 68:f9:82:c9:2f:7d:46:18:1c:59:71:d0:33:48:76:71:94:20: 07:a8:5e:b1:32:ea:c0:12:f5:e5:8c:9c:4d:2b:09:17:2b:6f: 2f:25:79:09:23:d1:da:9e:68:7a:b4:6b:79:42:a8:92:c5:27: 91:5b:d4:2e:b9:b5:2c:ca:5c:5e:aa:75:ea:6f:23:e0:c4:48: c4:86:48:b8:e4:37:0b:84:05:01:ed:e0:8b:20:aa:1a:fd:c1: 72:2b:8a:8c:b8:3b:21:1c:20:1b:f8:ad:dd:8c:ff:c4:21:91: d8:1f:25:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2ODYxMTAvBgNVBAUTKEFGNzFGNUIxNjc5NUY5QjdDRjJCMjQ1ODQ4MDc3RTEx Njg1QkE2RjAwHhcNMjQwNTE5MDIxNDU0WhcNMjQwNTI2MDIxNDU0WjAYMRYwFAYD VQQDEw02NjQ5NjA5ZS1jZDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZ7A2iZdz6V5E3/2Ud++aaFA/3OsV54Gz0nj7TJaC7QKKtqwGl/yn///zu6/ DcB9+UDA+mfuKzJs0a/MCeBEhSl7jwyA58wi2nRsgzCcqK4B7C9UhvKmJu+aC14G L1F3fnUXjqK1unP/Q/KQMBwpmtI4EptXYqPBbdtk9Aq4tA5TsYpPhXPI8XtNqBwr WQVabINtm4VeYw3QD1S3hAMeqTntVJ+OfALxObo/XS8/qGz3IhhI2eQAxXuvWc/q cBXq2kbYCcklSIgt+/doSJ0/41qYmKkXEwscjcv6f+QDWzyVfawqV5xh3O+MPn5B if8Kb8INRUEQOxtVOG4JnAri8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJAn++3i +Wmm6NcO3Y+EzWefEIBWMB8GA1UdIwQYMBaAFK9x9bFnlfm3zyskWEgHfhFoW6bw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzY4Ni9DNzRCMUZGRTMw NDIxMUVDQUYxODVBMTBDNEY5QUUwMi9yM0gxc1dlVi1iZlBLeVJZU0FkLUVXaGJw dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IzSDFzV2VWLWJmUEt5UllTQWQtRVdoYnB2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzY4Ni9DNzRCMUZGRTMwNDIxMUVDQUYxODVBMTBDNEY5QUUwMi9yM0gxc1dlVi1i ZlBLeVJZU0FkLUVXaGJwdkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6o5lKAskBWjaSC6vyXm3r0M8edkSmCeeeiY1N24zV9OCpfMoiPd2P Tf5+f1w7GkWVYoyVQEDPwT/TZEulVotXxk0k3zJxhUBPxswa/pgtH9bTzZwKePMz 71OiyFgfgmKmd6CQUZmXXRgdR8peFH21w2qusd/tNCK2PaXlGyI05nQftS3zPXui E58yYBDtIUxo+YLJL31GGBxZcdAzSHZxlCAHqF6xMurAEvXljJxNKwkXK28vJXkJ I9Hanmh6tGt5QqiSxSeRW9QuubUsylxeqnXqbyPgxEjEhki45DcLhAUB7eCLIKoa /cFyK4qMuDshHCAb+K3djP/EIZHYHyXn -----END CERTIFICATE-----Generated at Sun May 19 02:39:35 2024 by rpki-client on console-fra.rpki-client.org