$ rpki-client -vvf rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft File: ioDqhWIqoHAhvfSshBiw2aU5rOE.mft (raw, json) Hash identifier: v8RtvFXjLDTnZxret0kfcOcJ36yinDr0sZPxrIwC400= Subject key identifier: 9B:46:E3:CC:0B:67:3F:A8:01:8E:34:7D:3E:28:00:48:A2:6A:08:D3 Authority key identifier: 8A:80:EA:85:62:2A:A0:70:21:BD:F4:AC:84:18:B0:D9:A5:39:AC:E1 Certificate issuer: /CN=A912D9BE/serialNumber=8A80EA85622AA07021BDF4AC8418B0D9A539ACE1 Certificate serial: 0439 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft Manifest number: 0436 Signing time: Sun 19 May 2024 01:58:21 +0000 Manifest this update: Sun 19 May 2024 01:58:21 +0000 Manifest next update: Sun 26 May 2024 01:58:21 +0000 Files and hashes: 1: ioDqhWIqoHAhvfSshBiw2aU5rOE.crl (hash: PIxJUDrx1+LTrtA/n3DT09E6Bz804ExPhJ/xwCJARmY=) 2: 8E806136117D11ECB7B68E43C4F9AE02.roa (hash: b6uj6dwxXCsv8J7j8qp5OXl/r0h0l4b73MZ/xHXhJf0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.crl rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1081 (0x439) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D9BE/serialNumber=8A80EA85622AA07021BDF4AC8418B0D9A539ACE1 Validity Not Before: May 19 01:58:21 2024 GMT Not After : May 26 01:58:21 2024 GMT Subject: CN=66495cbd-7869 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0b:16:30:15:73:17:36:f9:e6:80:35:b2:80: 49:f0:11:d2:d7:57:b1:1d:d0:84:3f:48:c7:f9:6d: 8f:fa:49:74:7c:9e:d5:46:fb:f0:bd:c3:0d:89:be: 7a:37:74:52:8a:14:da:1c:0f:13:12:45:ab:7b:b0: 5a:c6:0c:47:de:24:eb:42:cb:4e:e5:d8:76:14:8c: ec:7a:1c:95:78:6b:bd:37:12:d6:c7:0f:63:48:e1: 8b:42:83:db:9c:f3:88:24:28:3a:aa:df:74:b6:c0: da:b1:91:fd:f9:d4:39:79:e4:d9:d5:e7:99:00:36: d3:7e:83:98:fe:a0:83:9b:bb:c7:a5:70:a4:62:92: a8:79:11:ca:a4:fb:89:fd:d5:f2:5d:93:cf:f9:ba: 96:32:73:3c:8f:de:28:9f:13:95:5f:69:89:22:74: 7a:8d:75:d8:87:f9:e7:6f:63:a6:e1:12:6e:3c:b9: 5d:87:b5:c3:6c:3b:4d:09:3d:8b:c6:85:7b:56:2c: 08:27:6b:2d:cc:e7:e2:06:62:d8:ce:44:55:be:66: bb:99:80:8c:cc:7d:e9:1a:e9:eb:d3:a9:c0:44:ab: 6f:3b:6d:bb:a1:ed:e2:a2:6e:f9:5b:eb:89:07:34: d8:1d:6d:bc:8c:7f:2d:9a:db:29:dd:cd:bb:37:bb: c7:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:46:E3:CC:0B:67:3F:A8:01:8E:34:7D:3E:28:00:48:A2:6A:08:D3 X509v3 Authority Key Identifier: keyid:8A:80:EA:85:62:2A:A0:70:21:BD:F4:AC:84:18:B0:D9:A5:39:AC:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:7b:16:37:0b:bc:b1:aa:a5:0e:24:4d:ae:ae:e2:72:54:1f: 07:a8:6b:18:d4:d4:64:2d:14:99:5a:67:0a:12:6a:33:f8:de: 85:8b:f7:1b:fc:2b:70:6f:dc:20:e3:12:f6:95:79:91:de:f3: d9:c4:5d:65:35:ab:df:1c:a9:41:60:1d:11:94:5b:65:d0:60: 86:c5:58:d7:f2:aa:75:e9:ea:b5:67:af:56:41:71:72:1b:2d: 85:5f:5d:3b:c5:a4:89:a9:81:6f:47:c7:7d:52:9a:55:2c:be: 9f:4a:22:21:73:ab:6b:92:38:7f:9c:cb:08:f7:df:52:08:0f: c1:df:2d:4c:c5:4e:a1:0d:22:6f:62:4d:02:03:6c:fa:7e:3a: 77:9c:21:c8:bb:46:47:c4:32:da:3b:50:af:49:35:fa:4f:4a: a2:a0:fd:9a:3a:b2:8f:c5:84:4d:9a:ef:b7:f3:bc:14:eb:cb: c6:f4:9c:c9:81:ef:0c:38:0d:95:51:76:ed:09:30:b6:60:59: d7:e7:29:2d:8c:e0:fc:bf:1d:d6:bd:74:87:ee:8a:e9:1e:3b: 9e:08:a7:17:46:ce:5a:28:52:a8:46:eb:6e:9b:8e:fe:56:9c: 8f:87:e1:6b:06:db:2c:99:ab:fd:c5:bc:0b:ed:44:21:b8:f8: 55:76:10:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ5QkUxMTAvBgNVBAUTKDhBODBFQTg1NjIyQUEwNzAyMUJERjRBQzg0MThCMEQ5 QTUzOUFDRTEwHhcNMjQwNTE5MDE1ODIxWhcNMjQwNTI2MDE1ODIxWjAYMRYwFAYD VQQDEw02NjQ5NWNiZC03ODY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwsWMBVzFzb55oA1soBJ8BHS11exHdCEP0jH+W2P+kl0fJ7VRvvwvcMNib56 N3RSihTaHA8TEkWre7BaxgxH3iTrQstO5dh2FIzsehyVeGu9NxLWxw9jSOGLQoPb nPOIJCg6qt90tsDasZH9+dQ5eeTZ1eeZADbTfoOY/qCDm7vHpXCkYpKoeRHKpPuJ /dXyXZPP+bqWMnM8j94onxOVX2mJInR6jXXYh/nnb2Om4RJuPLldh7XDbDtNCT2L xoV7ViwIJ2stzOfiBmLYzkRVvma7mYCMzH3pGunr06nARKtvO227oe3iom75W+uJ BzTYHW28jH8tmtsp3c27N7vHSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJtG48wL Zz+oAY40fT4oAEiiagjTMB8GA1UdIwQYMBaAFIqA6oViKqBwIb30rIQYsNmlOazh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDlCRS9CMDlDM0NFMjEx N0IxMUVDODBFNDIxNDNDNEY5QUUwMi9pb0RxaFdJcW9IQWh2ZlNzaEJpdzJhVTVy T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lvRHFoV0lxb0hBaHZmU3NoQml3MmFVNXJPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDlCRS9CMDlDM0NFMjExN0IxMUVDODBFNDIxNDNDNEY5QUUwMi9pb0RxaFdJcW9I QWh2ZlNzaEJpdzJhVTVyT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2exY3C7yxqqUOJE2uruJyVB8HqGsY1NRkLRSZWmcKEmoz+N6Fi/cb /Ctwb9wg4xL2lXmR3vPZxF1lNavfHKlBYB0RlFtl0GCGxVjX8qp16eq1Z69WQXFy Gy2FX107xaSJqYFvR8d9UppVLL6fSiIhc6trkjh/nMsI999SCA/B3y1MxU6hDSJv Yk0CA2z6fjp3nCHIu0ZHxDLaO1CvSTX6T0qioP2aOrKPxYRNmu+387wU68vG9JzJ ge8MOA2VUXbtCTC2YFnX5yktjOD8vx3WvXSH7orpHjueCKcXRs5aKFKoRutum47+ VpyPh+FrBtssmav9xbwL7UQhuPhVdhAX -----END CERTIFICATE-----Generated at Sun May 19 02:39:35 2024 by rpki-client on console-fra.rpki-client.org