$ rpki-client -vvf rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft File: IhKO6LQdoZG8pEiIxhUzENZmp78.mft (raw, json) Hash identifier: LLYSFYsLas9UAPS+jTE+41hPN9BJ1xCXbGHP6ERMHJg= Subject key identifier: 0E:B1:F7:19:C6:F2:08:CC:85:6C:1C:54:89:8C:D0:22:D6:4F:9D:7F Authority key identifier: 22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF Certificate issuer: /CN=A9135F03/serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Certificate serial: 0644 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft Manifest number: 0644 Signing time: Sat 18 May 2024 23:39:53 +0000 Manifest this update: Sat 18 May 2024 23:39:53 +0000 Manifest next update: Sat 25 May 2024 23:39:53 +0000 Files and hashes: 1: IhKO6LQdoZG8pEiIxhUzENZmp78.crl (hash: 9eQWlZtETJZH/ReZuLugA+f8cAtJbgu0aO0SZdI+rJQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1604 (0x644) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135F03/serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Validity Not Before: May 18 23:39:53 2024 GMT Not After : May 25 23:39:53 2024 GMT Subject: CN=66493c49-8429 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e8:2d:91:75:f9:a3:9b:76:2a:85:1e:d0:77: 7d:a1:ca:ef:10:ac:5a:d2:5e:ab:e8:dc:ca:c5:e5: 93:33:d3:fd:84:31:8e:c7:c9:df:89:49:fa:60:20: c9:c5:7c:b7:35:73:c7:ca:ca:f4:a3:64:67:7d:c1: 84:35:65:62:88:f1:72:91:14:92:04:19:b6:f2:89: ed:3b:35:14:83:61:bf:cc:49:12:61:00:c6:da:f9: c3:87:db:2d:dd:b3:6e:9a:ae:87:c6:6f:e9:bd:77: d7:29:b9:a3:a0:e0:7e:1a:71:41:b5:6b:f7:1d:2e: 3b:5b:37:01:d0:27:ef:fa:10:8d:74:4c:8e:98:89: 48:c3:a3:28:95:d1:ba:16:b3:1b:b2:c9:cd:67:d4: 30:26:6c:54:65:19:7b:f8:9c:40:c4:df:1a:9a:51: 14:9a:58:46:e3:b2:78:45:f9:fd:e4:89:06:7d:6a: f1:b4:40:1b:d3:f8:d3:5c:b5:1e:26:c3:14:87:18: 11:de:3b:41:f4:ab:a5:d2:ea:4d:80:53:e5:ac:97: e3:bf:0e:f0:83:b8:e8:bd:3f:0d:5e:24:ba:10:26: 3c:1c:bf:cd:b2:15:5a:4d:a6:6d:9d:12:92:a6:c4: 90:7f:b9:20:a3:07:2e:b2:83:4d:47:f9:71:cf:fb: 64:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:B1:F7:19:C6:F2:08:CC:85:6C:1C:54:89:8C:D0:22:D6:4F:9D:7F X509v3 Authority Key Identifier: keyid:22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:88:83:c8:11:bb:45:e6:22:73:6f:3b:b6:7d:53:88:69:4f: 47:48:11:89:b9:d6:0f:c4:d6:01:c0:87:b4:59:f7:12:be:a1: 6d:9a:67:df:76:04:f0:bd:63:4b:fe:54:e5:9e:db:ef:31:ef: 9e:95:91:25:22:78:51:de:61:35:e4:8f:95:9a:cd:5f:2a:91: a1:bb:43:f9:f4:a5:d0:0d:8e:e4:aa:a6:ff:3e:e9:1e:a2:5b: 02:1d:7e:cc:85:c0:71:52:09:3c:b2:cf:2f:06:7b:ba:d4:a0: 97:ed:5e:ce:26:a1:32:c8:31:7d:91:3b:2b:a2:33:cc:fb:d9: 4e:44:80:c6:c3:76:7c:6c:d1:22:2e:c9:ef:f4:4c:cd:c5:73: 42:d5:11:17:7f:26:ca:00:e3:3a:98:fd:6e:74:35:82:80:a5: 76:1b:c1:fa:53:62:00:2a:3a:fc:58:dd:46:8f:85:02:76:6d: da:45:a9:28:13:26:e8:15:27:fa:cf:59:65:e0:bc:c7:72:bc: 6d:ae:33:01:96:ef:6a:f5:ed:85:0e:62:0a:49:e1:6c:68:58: 80:09:e6:cc:96:b3:19:4f:80:c2:2c:93:9f:c5:83:c4:45:85: cb:4d:f7:b0:5b:ac:e4:4c:96:25:b1:bb:8b:b9:68:63:e3:e5: 76:ef:aa:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzVGMDMxMTAvBgNVBAUTKDIyMTI4RUU4QjQxREExOTFCQ0E0NDg4OEM2MTUzMzEw RDY2NkE3QkYwHhcNMjQwNTE4MjMzOTUzWhcNMjQwNTI1MjMzOTUzWjAYMRYwFAYD VQQDEw02NjQ5M2M0OS04NDI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyegtkXX5o5t2KoUe0Hd9ocrvEKxa0l6r6NzKxeWTM9P9hDGOx8nfiUn6YCDJ xXy3NXPHysr0o2RnfcGENWViiPFykRSSBBm28ontOzUUg2G/zEkSYQDG2vnDh9st 3bNumq6Hxm/pvXfXKbmjoOB+GnFBtWv3HS47WzcB0Cfv+hCNdEyOmIlIw6MoldG6 FrMbssnNZ9QwJmxUZRl7+JxAxN8amlEUmlhG47J4Rfn95IkGfWrxtEAb0/jTXLUe JsMUhxgR3jtB9Kul0upNgFPlrJfjvw7wg7jovT8NXiS6ECY8HL/NshVaTaZtnRKS psSQf7kgowcusoNNR/lxz/tkDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA6x9xnG 8gjMhWwcVImM0CLWT51/MB8GA1UdIwQYMBaAFCISjui0HaGRvKRIiMYVMxDWZqe/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUYwMy8xQkZDMDBFRTNG RTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9aRzhwRWlJeGhVekVOWm1w NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0loS082TFFkb1pHOHBFaUl4aFV6RU5abXA3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUYwMy8xQkZDMDBFRTNGRTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9a RzhwRWlJeGhVekVOWm1wNzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUiIPIEbtF5iJzbzu2fVOIaU9HSBGJudYPxNYBwIe0WfcSvqFtmmff dgTwvWNL/lTlntvvMe+elZElInhR3mE15I+Vms1fKpGhu0P59KXQDY7kqqb/Puke olsCHX7MhcBxUgk8ss8vBnu61KCX7V7OJqEyyDF9kTsrojPM+9lORIDGw3Z8bNEi Lsnv9EzNxXNC1REXfybKAOM6mP1udDWCgKV2G8H6U2IAKjr8WN1Gj4UCdm3aRako EyboFSf6z1ll4LzHcrxtrjMBlu9q9e2FDmIKSeFsaFiACebMlrMZT4DCLJOfxYPE RYXLTfewW6zkTJYlsbuLuWhj4+V276rG -----END CERTIFICATE-----Generated at Sun May 19 00:16:12 2024 by rpki-client on console-fra.rpki-client.org