$ rpki-client -vvf rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft File: D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft (raw, json) Hash identifier: Q+HB1HCW33ba4n6izCR/xgVNp6fNW3iJLQ3E9dtRqwc= Subject key identifier: BB:89:AA:94:95:93:45:3E:9E:F5:5F:B0:BF:50:12:33:B4:32:47:8A Authority key identifier: 0F:61:42:AE:41:68:DF:0B:18:05:FA:58:1D:20:39:47:67:AA:22:58 Certificate issuer: /CN=A9134BB0/serialNumber=0F6142AE4168DF0B1805FA581D20394767AA2258 Certificate serial: B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft Manifest number: AF Signing time: Sun 19 May 2024 06:35:47 +0000 Manifest this update: Sun 19 May 2024 06:35:47 +0000 Manifest next update: Sun 26 May 2024 06:35:47 +0000 Files and hashes: 1: D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl (hash: H7rWZCZ+3hC7VAsNDqYbK5sCrxJdb/9FqZoOi1g/1wI=) 2: 075B4CC80AC511EEB25A152AC4F9AE02.roa (hash: N7buuVY+ecDIzSoYukHeCFEfFQ0zl4C0Rq6x+/cw45Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 177 (0xb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134BB0/serialNumber=0F6142AE4168DF0B1805FA581D20394767AA2258 Validity Not Before: May 19 06:35:47 2024 GMT Not After : May 26 06:35:47 2024 GMT Subject: CN=66499dc3-13b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:11:bc:91:09:76:03:32:5a:f6:48:1e:fd:d5: f7:85:72:58:77:83:0b:7a:3a:83:27:ea:87:9d:ac: 6d:f4:bd:d8:04:f0:5b:ae:de:5c:03:d0:3d:74:a2: 37:f4:6c:ff:6b:59:cc:cf:01:e4:56:81:5d:f9:4c: 37:af:18:26:80:57:e1:51:c3:34:85:c4:a7:20:72: e7:98:ca:48:f0:da:df:45:0f:2a:d0:34:c0:d6:2c: d0:f9:e8:0d:42:39:f0:6f:42:1c:3a:0f:a3:6e:91: ce:bb:6c:8f:97:39:31:a9:5b:79:23:e2:7f:85:73: b4:b3:c5:11:df:36:e4:a3:72:58:01:6c:ca:39:b9: 3d:9b:d6:12:a2:73:9b:1b:25:2b:70:e8:fa:e0:e1: 09:0a:ff:97:5a:35:8c:b0:f0:04:1f:ad:b9:45:cb: 75:c0:4c:ef:b0:4d:18:59:bc:0a:72:de:56:b4:e1: 17:99:8b:ce:2f:5d:ba:2e:a2:5b:8e:d0:6e:aa:c1: a0:f7:5c:4c:d8:bd:5e:b7:4a:56:1a:58:f3:cf:90: 76:f9:d5:5e:ef:d2:e4:b5:1a:4e:f5:b2:4c:15:39: 9c:aa:22:d5:46:80:0c:7b:a3:09:89:da:f0:30:2e: ae:92:3d:b1:93:0b:c7:7f:ea:18:54:5a:c4:9d:7d: 6a:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:89:AA:94:95:93:45:3E:9E:F5:5F:B0:BF:50:12:33:B4:32:47:8A X509v3 Authority Key Identifier: keyid:0F:61:42:AE:41:68:DF:0B:18:05:FA:58:1D:20:39:47:67:AA:22:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:a4:df:d1:2e:da:a3:76:21:c2:85:3e:c0:30:5f:28:47:ac: 44:b3:96:d2:8d:d9:89:e4:e0:47:45:ee:e3:12:0e:7e:0b:f6: 00:f0:c2:43:8d:53:23:7a:09:de:80:7d:ac:57:49:0e:52:44: d9:91:7a:65:ab:ef:80:25:aa:14:6a:67:14:c3:d8:63:d7:bd: dd:8b:54:5f:a1:f5:7b:e9:ee:96:32:30:90:11:6d:48:35:3b: 0d:21:a4:49:3b:54:0d:ca:90:03:9a:8a:ab:a9:db:0c:de:91: 1b:c6:b3:89:5c:57:09:ff:57:f6:57:a8:72:3e:9d:73:52:83: 3f:96:eb:43:3f:e3:40:f4:9a:12:12:ce:21:1a:a0:4f:35:09: 57:3c:a4:06:84:43:0f:e8:17:99:3f:db:7a:f2:c0:30:2e:87: 38:25:bd:52:9e:cd:f2:60:1d:97:06:c2:64:88:a7:ac:a4:5d: 1b:0e:b8:7d:c7:cb:8f:9d:1c:0a:7f:db:d8:2a:da:f7:46:04: 48:63:d0:70:7e:91:de:02:c3:72:9d:b0:dc:a7:cb:c8:37:a2: 6a:b1:9b:94:af:a1:53:ee:16:a0:2b:3e:91:3d:51:98:d2:6d: a6:9d:ac:3a:a7:27:51:c8:95:5e:f8:44:fe:c2:6a:ad:9f:b6: 3c:13:72:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRCQjAxMTAvBgNVBAUTKDBGNjE0MkFFNDE2OERGMEIxODA1RkE1ODFEMjAzOTQ3 NjdBQTIyNTgwHhcNMjQwNTE5MDYzNTQ3WhcNMjQwNTI2MDYzNTQ3WjAYMRYwFAYD VQQDEw02NjQ5OWRjMy0xM2I1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBG8kQl2AzJa9kge/dX3hXJYd4MLejqDJ+qHnaxt9L3YBPBbrt5cA9A9dKI3 9Gz/a1nMzwHkVoFd+Uw3rxgmgFfhUcM0hcSnIHLnmMpI8NrfRQ8q0DTA1izQ+egN Qjnwb0IcOg+jbpHOu2yPlzkxqVt5I+J/hXO0s8UR3zbko3JYAWzKObk9m9YSonOb GyUrcOj64OEJCv+XWjWMsPAEH625Rct1wEzvsE0YWbwKct5WtOEXmYvOL126LqJb jtBuqsGg91xM2L1et0pWGljzz5B2+dVe79LktRpO9bJMFTmcqiLVRoAMe6MJidrw MC6ukj2xkwvHf+oYVFrEnX1qewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLuJqpSV k0U+nvVfsL9QEjO0MkeKMB8GA1UdIwQYMBaAFA9hQq5BaN8LGAX6WB0gOUdnqiJY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNEJCMC9ERDQ3MzhFMDBB QkQxMUVFOTE3REE2NTVDNEY5QUUwMi9EMkZDcmtGbzN3c1lCZnBZSFNBNVIyZXFJ bGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QyRkNya0ZvM3dzWUJmcFlIU0E1UjJlcUlsZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NEJCMC9ERDQ3MzhFMDBBQkQxMUVFOTE3REE2NTVDNEY5QUUwMi9EMkZDcmtGbzN3 c1lCZnBZSFNBNVIyZXFJbGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGpN/RLtqjdiHChT7AMF8oR6xEs5bSjdmJ5OBHRe7jEg5+C/YA8MJD jVMjegnegH2sV0kOUkTZkXplq++AJaoUamcUw9hj173di1RfofV76e6WMjCQEW1I NTsNIaRJO1QNypADmoqrqdsM3pEbxrOJXFcJ/1f2V6hyPp1zUoM/lutDP+NA9JoS Es4hGqBPNQlXPKQGhEMP6BeZP9t68sAwLoc4Jb1Sns3yYB2XBsJkiKespF0bDrh9 x8uPnRwKf9vYKtr3RgRIY9BwfpHeAsNynbDcp8vIN6JqsZuUr6FT7hagKz6RPVGY 0m2mnaw6pydRyJVe+ET+wmqtn7Y8E3KN -----END CERTIFICATE-----Generated at Sun May 19 07:40:38 2024 by rpki-client on console-fra.rpki-client.org