$ rpki-client -vvf rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft File: -xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft (raw, json) Hash identifier: tIxjkLs26/jyBLiV6pYNAouI925O4HxFHu2kK4QTn3c= Subject key identifier: 68:E9:8E:B6:C3:19:5E:FF:35:AC:44:02:5A:A7:C9:59:D0:C6:D8:5E Authority key identifier: FB:11:A2:D8:36:8C:15:02:1A:5B:F3:12:F5:1D:44:CE:58:FD:44:51 Certificate issuer: /CN=A912FF6F/serialNumber=FB11A2D8368C15021A5BF312F51D44CE58FD4451 Certificate serial: 01A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft Manifest number: 01A4 Signing time: Sun 19 May 2024 04:36:41 +0000 Manifest this update: Sun 19 May 2024 04:36:41 +0000 Manifest next update: Sun 26 May 2024 04:36:41 +0000 Files and hashes: 1: -xGi2DaMFQIaW_MS9R1Ezlj9RFE.crl (hash: iNPtW9F/LOawLfMipwI1BiFtT7Iqo46VlhGq7JT9Cpw=) 2: 6D5014F2146F11EDB756F727C4F9AE02.roa (hash: sSRGVEBzASY8Umw1zkpTyHPoXEabklGOxKI2hTKzelI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.crl rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 422 (0x1a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FF6F/serialNumber=FB11A2D8368C15021A5BF312F51D44CE58FD4451 Validity Not Before: May 19 04:36:41 2024 GMT Not After : May 26 04:36:41 2024 GMT Subject: CN=664981d9-d065 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:6d:4a:ce:c6:47:fb:1a:48:fc:f5:35:86:e2: 30:e8:6e:56:ad:bd:e9:1f:13:f6:d5:ab:7b:73:89: cd:8d:31:e5:03:57:ae:7c:43:8e:a5:50:13:f7:44: 6c:19:66:cf:db:6b:a3:b0:f2:79:21:6c:14:93:f1: 94:4e:e6:4b:21:b8:50:a1:95:66:c2:a8:82:0e:f4: db:58:02:92:4b:89:03:63:27:c8:eb:84:07:7e:21: 66:93:4c:f8:d6:f2:82:91:2a:21:8c:f2:bc:c4:99: 2d:bf:e5:55:79:96:70:1b:a8:05:c4:ae:11:3f:b1: fe:dd:0e:66:cf:c0:d6:17:c6:d8:85:31:c3:ea:7e: 01:7a:f4:65:85:57:fe:6a:57:a2:8d:fe:a4:0f:99: fb:54:ec:32:6c:30:35:46:d5:23:db:f8:e1:95:00: 1d:b5:3a:23:cb:b7:ae:ef:17:7a:65:a4:47:f6:45: 4f:96:e0:21:e7:e5:16:ca:9f:39:c5:a1:cc:f3:91: 9b:ce:07:61:49:b0:64:e5:fd:6d:4b:52:11:45:41: 8e:2a:63:e1:bd:58:cd:80:16:69:30:ee:05:5b:45: 2b:3a:c0:81:9f:82:d4:92:19:68:87:bd:75:36:da: ba:0d:26:7c:46:49:8d:5b:ff:0c:5a:f4:43:96:8d: 89:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:E9:8E:B6:C3:19:5E:FF:35:AC:44:02:5A:A7:C9:59:D0:C6:D8:5E X509v3 Authority Key Identifier: keyid:FB:11:A2:D8:36:8C:15:02:1A:5B:F3:12:F5:1D:44:CE:58:FD:44:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:69:6d:e3:5a:0d:3f:26:74:95:25:24:9d:63:1f:38:c7:5c: 50:da:88:98:80:bb:a6:ff:b7:b9:a7:7e:fd:3e:78:19:6d:8b: 2f:b0:94:c8:3d:2b:eb:7a:af:98:54:88:f4:b3:4e:8a:d2:96: 86:fc:91:94:55:91:52:1e:9a:a9:8e:1f:30:2f:62:6e:52:be: 5b:ae:ea:34:dc:3a:0f:04:60:fc:ef:7a:fa:ba:a8:60:b0:0c: 73:21:1b:50:1f:c5:fa:c3:d1:b5:be:6c:55:d6:1e:21:0f:6a: 08:89:73:a1:8f:3c:b2:7f:a6:5a:6f:f0:c3:8b:71:35:37:4f: 3e:8e:83:61:65:95:74:93:3b:07:4f:1d:b9:e4:2c:a0:03:41: 4d:d6:ca:f2:3a:52:91:0c:e0:83:62:b8:26:22:31:7e:97:f6: da:f8:bb:ad:46:b0:3b:1f:4f:d9:72:8b:2a:fa:b6:0b:a1:38: f9:90:25:f4:03:1d:8d:29:4e:4b:35:30:6d:86:20:3d:da:32: 32:aa:ce:8e:ee:3a:ac:e1:84:9f:5a:8f:03:7f:1b:1f:d9:e9: 97:69:78:21:49:c2:df:f9:3c:75:f6:92:e5:2d:a4:2d:d1:26: fd:cb:33:c3:7d:07:24:88:b9:10:a8:fc:eb:b3:5d:9a:0e:a8: 64:66:d5:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZGNkYxMTAvBgNVBAUTKEZCMTFBMkQ4MzY4QzE1MDIxQTVCRjMxMkY1MUQ0NENF NThGRDQ0NTEwHhcNMjQwNTE5MDQzNjQxWhcNMjQwNTI2MDQzNjQxWjAYMRYwFAYD VQQDEw02NjQ5ODFkOS1kMDY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzm1KzsZH+xpI/PU1huIw6G5Wrb3pHxP21at7c4nNjTHlA1eufEOOpVAT90Rs GWbP22ujsPJ5IWwUk/GUTuZLIbhQoZVmwqiCDvTbWAKSS4kDYyfI64QHfiFmk0z4 1vKCkSohjPK8xJktv+VVeZZwG6gFxK4RP7H+3Q5mz8DWF8bYhTHD6n4BevRlhVf+ aleijf6kD5n7VOwybDA1RtUj2/jhlQAdtTojy7eu7xd6ZaRH9kVPluAh5+UWyp85 xaHM85GbzgdhSbBk5f1tS1IRRUGOKmPhvVjNgBZpMO4FW0UrOsCBn4LUkhloh711 Ntq6DSZ8RkmNW/8MWvRDlo2JHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGjpjrbD GV7/NaxEAlqnyVnQxtheMB8GA1UdIwQYMBaAFPsRotg2jBUCGlvzEvUdRM5Y/URR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkY2Ri8xMkUyNTE3QzE0 NkMxMUVEQjdDNDBBMjNDNEY5QUUwMi8teEdpMkRhTUZRSWFXX01TOVIxRXpsajlS RkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy14R2kyRGFNRlFJYVdfTVM5UjFFemxqOVJGRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkY2Ri8xMkUyNTE3QzE0NkMxMUVEQjdDNDBBMjNDNEY5QUUwMi8teEdpMkRhTUZR SWFXX01TOVIxRXpsajlSRkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlaW3jWg0/JnSVJSSdYx84x1xQ2oiYgLum/7e5p379PngZbYsvsJTI PSvreq+YVIj0s06K0paG/JGUVZFSHpqpjh8wL2JuUr5bruo03DoPBGD873r6uqhg sAxzIRtQH8X6w9G1vmxV1h4hD2oIiXOhjzyyf6Zab/DDi3E1N08+joNhZZV0kzsH Tx255CygA0FN1sryOlKRDOCDYrgmIjF+l/ba+LutRrA7H0/Zcosq+rYLoTj5kCX0 Ax2NKU5LNTBthiA92jIyqs6O7jqs4YSfWo8Dfxsf2emXaXghScLf+Tx19pLlLaQt 0Sb9yzPDfQckiLkQqPzrs12aDqhkZtWm -----END CERTIFICATE-----Generated at Sun May 19 05:48:50 2024 by rpki-client on console-fra.rpki-client.org