$ rpki-client -vvf rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft File: 1iOjklgIuuhMJxThaoeEBOBgSNE.mft (raw, json) Hash identifier: 7LboxFJMR+OI3aT45S9X5OVMJNfj4gr7dhB/o0chrpI= Subject key identifier: 9B:73:28:4E:5D:60:DD:EC:D1:7A:76:10:9D:56:F0:12:BA:85:29:E8 Authority key identifier: D6:23:A3:92:58:08:BA:E8:4C:27:14:E1:6A:87:84:04:E0:60:48:D1 Certificate issuer: /CN=A912A1E7/serialNumber=D623A3925808BAE84C2714E16A878404E06048D1 Certificate serial: 0463 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft Manifest number: 045D Signing time: Sun 19 May 2024 01:50:42 +0000 Manifest this update: Sun 19 May 2024 01:50:41 +0000 Manifest next update: Sun 26 May 2024 01:50:41 +0000 Files and hashes: 1: 1iOjklgIuuhMJxThaoeEBOBgSNE.crl (hash: b88/fVnrmJKA/iWejxX/qeHKBNO+Vmf1NwksNc+QAFM=) 2: C3BF0EF80A5F11EC8EDB0221C4F9AE02.roa (hash: WFXX4UmF86zpOxHqIS+f0NCV866umMyT/tuApJ3cViE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.crl rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1123 (0x463) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A1E7/serialNumber=D623A3925808BAE84C2714E16A878404E06048D1 Validity Not Before: May 19 01:50:41 2024 GMT Not After : May 26 01:50:41 2024 GMT Subject: CN=66495af1-8eab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:73:ff:09:09:e4:12:61:49:08:d4:ee:f9:ee: e9:85:43:e2:74:e7:21:08:2d:b5:94:b0:69:6e:9a: 27:33:ec:5d:46:1c:46:c3:6a:0a:b3:6e:30:1b:32: 8f:8b:1c:a7:78:28:e4:18:02:96:79:df:0a:60:07: a0:70:6a:33:83:0f:c4:80:fe:f9:70:f3:f3:9a:9f: af:2f:c0:c4:b8:5f:0c:b3:4f:d3:47:26:c3:6f:bd: 34:46:06:1e:af:de:dd:2a:7c:4a:2f:20:2d:86:b7: be:c8:6e:5c:be:03:88:8a:93:82:2f:35:4b:97:45: a1:18:b2:90:fe:33:2d:1c:6b:e9:e9:8f:ec:84:15: 4d:c3:ea:c2:b4:bd:43:e4:c1:c2:a9:e7:f2:9d:ca: 1f:0f:ad:4b:c6:5b:b5:6a:08:36:ac:40:03:ea:7c: 0a:7e:c7:7f:2f:30:1c:cb:f8:6c:9d:53:05:0c:41: 5e:58:6a:4c:a1:24:dd:14:e1:89:1b:b3:bc:f0:a8: 2c:03:66:8d:64:ab:fa:09:bf:f8:0b:26:69:16:d0: 40:8b:2a:19:13:3d:3b:13:76:b6:c4:30:7c:3a:f5: 9c:6c:3d:5c:41:24:9b:60:62:c0:63:e2:fa:47:36: 97:65:4c:d5:4d:8c:8e:e6:cc:c0:a1:ec:5d:d9:a9: 95:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:73:28:4E:5D:60:DD:EC:D1:7A:76:10:9D:56:F0:12:BA:85:29:E8 X509v3 Authority Key Identifier: keyid:D6:23:A3:92:58:08:BA:E8:4C:27:14:E1:6A:87:84:04:E0:60:48:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:19:a1:4c:b4:05:51:62:9a:ab:e9:1a:f1:c3:c0:d4:59:ef: d1:f8:e8:e2:4d:91:33:73:f8:5e:6b:f0:37:a3:09:86:52:74: 1e:4a:eb:6e:b1:cc:7b:a9:d5:2e:a7:02:fd:c7:8c:60:d2:08: 2c:ca:d8:e2:1f:10:18:a8:65:71:c8:c6:93:d8:75:13:20:11: 9a:0f:cc:b1:24:53:53:3a:21:28:b7:2b:01:1b:6c:25:66:1b: 4a:22:0e:0c:df:51:6c:13:07:85:38:d6:52:d5:88:99:7a:67: e8:d0:df:a8:56:34:d7:35:44:a5:89:c5:b8:ab:d3:0d:99:dc: b6:e3:77:9e:00:19:d3:5b:6d:0f:10:40:36:03:63:f9:7d:98: 79:f1:b2:b9:4b:8b:20:e3:91:54:35:6b:21:c1:a2:bc:11:9d: b0:61:f0:61:f7:3d:2d:ae:5f:78:c1:57:5b:90:b9:7f:32:73: 2a:2f:d7:bc:94:7c:01:93:e5:7f:96:fa:c9:1f:35:d1:18:f1: f6:f3:7f:d3:63:ac:b0:3d:89:82:fe:ac:fa:c0:67:5d:db:c7: 92:20:bd:01:f7:9f:77:9e:3f:76:9a:d7:69:7c:83:82:2f:ed: 05:0d:94:b7:bb:14:24:db:fc:66:18:15:65:0c:95:75:39:29: e5:36:1f:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkExRTcxMTAvBgNVBAUTKEQ2MjNBMzkyNTgwOEJBRTg0QzI3MTRFMTZBODc4NDA0 RTA2MDQ4RDEwHhcNMjQwNTE5MDE1MDQxWhcNMjQwNTI2MDE1MDQxWjAYMRYwFAYD VQQDEw02NjQ5NWFmMS04ZWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHP/CQnkEmFJCNTu+e7phUPidOchCC21lLBpbponM+xdRhxGw2oKs24wGzKP ixyneCjkGAKWed8KYAegcGozgw/EgP75cPPzmp+vL8DEuF8Ms0/TRybDb700RgYe r97dKnxKLyAthre+yG5cvgOIipOCLzVLl0WhGLKQ/jMtHGvp6Y/shBVNw+rCtL1D 5MHCqefyncofD61Lxlu1agg2rEAD6nwKfsd/LzAcy/hsnVMFDEFeWGpMoSTdFOGJ G7O88KgsA2aNZKv6Cb/4CyZpFtBAiyoZEz07E3a2xDB8OvWcbD1cQSSbYGLAY+L6 RzaXZUzVTYyO5szAoexd2amVXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJtzKE5d YN3s0Xp2EJ1W8BK6hSnoMB8GA1UdIwQYMBaAFNYjo5JYCLroTCcU4WqHhATgYEjR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTFFNy8xMEZBQkVEMjAy NTUxMUVDOEVEMjQwODVDNEY5QUUwMi8xaU9qa2xnSXV1aE1KeFRoYW9lRUJPQmdT TkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFpT2prbGdJdXVoTUp4VGhhb2VFQk9CZ1NORS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTFFNy8xMEZBQkVEMjAyNTUxMUVDOEVEMjQwODVDNEY5QUUwMi8xaU9qa2xnSXV1 aE1KeFRoYW9lRUJPQmdTTkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5GaFMtAVRYpqr6Rrxw8DUWe/R+OjiTZEzc/hea/A3owmGUnQeSutu scx7qdUupwL9x4xg0ggsytjiHxAYqGVxyMaT2HUTIBGaD8yxJFNTOiEotysBG2wl ZhtKIg4M31FsEweFONZS1YiZemfo0N+oVjTXNUSlicW4q9MNmdy243eeABnTW20P EEA2A2P5fZh58bK5S4sg45FUNWshwaK8EZ2wYfBh9z0trl94wVdbkLl/MnMqL9e8 lHwBk+V/lvrJHzXRGPH283/TY6ywPYmC/qz6wGdd28eSIL0B9593nj92mtdpfIOC L+0FDZS3uxQk2/xmGBVlDJV1OSnlNh/o -----END CERTIFICATE-----Generated at Sun May 19 02:39:35 2024 by rpki-client on console-fra.rpki-client.org