$ rpki-client -vvf rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/xgN4bVWpBBJOdZLu0ome9XiSEQA.mft File: xgN4bVWpBBJOdZLu0ome9XiSEQA.mft (raw, json) Hash identifier: 1j21sl4KlJTwoVacSv2DlyLmFrxQ+rt+76pYj7XBL0o= Subject key identifier: BB:05:AE:AE:96:3D:EF:26:C1:66:9A:44:E7:4C:46:D4:B2:97:F5:0F Authority key identifier: C6:03:78:6D:55:A9:04:12:4E:75:92:EE:D2:89:9E:F5:78:92:11:00 Certificate issuer: /CN=A913900D/serialNumber=C603786D55A904124E7592EED2899EF578921100 Certificate serial: 7C91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgN4bVWpBBJOdZLu0ome9XiSEQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/xgN4bVWpBBJOdZLu0ome9XiSEQA.mft Manifest number: 475C Signing time: Sat 04 May 2024 17:48:08 +0000 Manifest this update: Sat 04 May 2024 17:48:07 +0000 Manifest next update: Sat 11 May 2024 17:48:07 +0000 Files and hashes: 1: xgN4bVWpBBJOdZLu0ome9XiSEQA.crl (hash: RH3OCSi7/eg8FrWUacRE2fWsqqK+qNP305fHnH5mB2o=) 2: 51DB195AACA011E8BA30FF16C4F9AE02.roa (hash: fTo67cfOQf95vwAlDVnUdgu+YtzhOO5BbOF9R/1LmEQ=) 3: 596D48ACC17311EAB16B1912C4F9AE02.roa (hash: u9u0dpfGGZsdlwbuLeEJYqRFpxbA95xWTK0N5fjgVz8=) 4: A160BBAEC17711EABFFC9E1FC4F9AE02.roa (hash: jpSXaqvFDMZt8dpSV1a0hO/a+U/Tjex7ukyDTSO3kCM=) 5: 0F7F7F6A072311ED8067812FC4F9AE02.roa (hash: DhwMFnUZQB/f3TGPpuAZRsXHmvWzDgaPXM6D5bpKbz8=) 6: 5079D4A2ACA011E8BA30FF16C4F9AE02.roa (hash: FZDXtnkRxjEAjjk86h/ZsEmxRp+nHFowVvqrillclCo=) 7: A2696B18D16C11EA8886BE5DC4F9AE02.roa (hash: G1O056AnCvEMlJC2dAM7Tau1pxvqG6AlEVHoettZ9H4=) 8: 2A329982168611EE8DC17442C4F9AE02.roa (hash: UE5taCBFG1yQ4DXIBVVF1fNqzfO2MRWtYsgMEKxs8Z0=) 9: 1ACCB31CCA2011EEAAE0BC1DC4F9AE02.roa (hash: 2jMXUjVfOgy/50+CPqnxen8oRiMd5S/hCM8lt109GmU=) 10: 0526730C2C4811EEAC2E4D46C4F9AE02.roa (hash: lh1IP/4Ww0cL2oj/3L5MxIkhl8QDAUmjblwq6SiCKDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/xgN4bVWpBBJOdZLu0ome9XiSEQA.crl rsync://rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/xgN4bVWpBBJOdZLu0ome9XiSEQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgN4bVWpBBJOdZLu0ome9XiSEQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:48:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31889 (0x7c91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913900D/serialNumber=C603786D55A904124E7592EED2899EF578921100 Validity Not Before: May 4 17:48:07 2024 GMT Not After : May 11 17:48:07 2024 GMT Subject: CN=663674d8-b9a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:78:1c:2e:60:e2:d8:22:0d:da:97:77:e0:08: f9:25:3a:be:3f:ed:dc:ec:7b:59:d1:22:3a:42:dd: 3f:4c:ea:2c:36:a3:2b:6f:cc:29:d6:db:d7:c9:fc: d4:02:86:26:b5:cb:2b:51:d9:95:11:5b:22:a9:7d: ad:63:d9:dd:c3:51:4f:5c:52:28:af:e5:0e:50:67: 30:d5:fb:2e:ad:04:db:3c:28:a7:0f:24:39:c2:e4: cc:1a:03:f2:c8:a7:a6:b8:80:68:3f:20:33:30:97: c4:72:d3:a1:e6:91:81:4b:45:44:4a:f9:3f:33:cf: da:de:f3:3d:1d:79:26:a9:cb:85:5d:f2:93:67:ae: 27:69:6e:4d:2a:29:94:e4:12:b1:50:e0:22:97:ab: 57:8a:01:dd:73:c4:9b:83:fc:5e:07:4e:63:f3:5e: 49:24:b0:ca:68:e3:5a:5d:a2:cb:cf:af:9b:fb:ef: 8a:51:0e:72:02:3a:8e:01:13:22:e0:b0:5f:32:92: 7a:f6:d5:55:ca:51:7f:5e:eb:dc:6e:98:6a:de:48: dd:62:28:e6:95:55:5c:14:0e:ee:f8:36:ae:4a:1f: 00:44:76:32:e3:24:20:1c:1a:b9:a7:81:e0:f8:11: ec:9c:35:7b:97:1f:75:97:a6:7a:61:43:33:ba:a4: 1f:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:05:AE:AE:96:3D:EF:26:C1:66:9A:44:E7:4C:46:D4:B2:97:F5:0F X509v3 Authority Key Identifier: keyid:C6:03:78:6D:55:A9:04:12:4E:75:92:EE:D2:89:9E:F5:78:92:11:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/xgN4bVWpBBJOdZLu0ome9XiSEQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgN4bVWpBBJOdZLu0ome9XiSEQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/xgN4bVWpBBJOdZLu0ome9XiSEQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:55:c9:2f:19:88:2d:2a:a8:9b:24:55:8e:ce:34:b2:e7:a6: db:b3:45:ba:15:64:34:53:5b:29:0d:43:0d:ef:41:e3:b7:45: 2c:17:68:03:93:5a:ac:a1:3a:93:89:94:a9:26:62:9b:6d:2d: 11:d3:b9:9a:f8:11:27:99:c8:6a:0d:87:9d:1f:d7:31:a3:5e: 3f:57:3a:c0:ac:e1:e9:ac:cd:27:f7:c1:9d:e7:aa:0a:9c:9e: c9:c7:dd:d5:2a:d2:f8:9c:5a:0d:b1:32:31:18:02:b7:f3:2b: 06:a4:53:3d:1d:8d:b6:51:05:5f:82:24:e2:56:20:7b:90:67: b9:12:b3:31:50:2d:17:f1:17:d7:7d:cd:4d:66:31:c8:fc:30: dc:b1:d0:65:e4:13:be:1a:a3:6b:4d:42:20:2c:3a:3f:65:ce: d9:70:3d:0e:e7:72:2e:66:62:2c:b1:a6:5c:64:28:17:25:3e: 3a:78:67:10:94:cc:9c:05:48:40:ac:e0:18:51:c6:03:0d:02: 3d:eb:28:ec:bb:71:14:95:bc:f2:a6:05:1e:fe:a6:e3:68:3e: 6b:94:6f:f4:5b:25:94:58:c4:0f:78:89:3a:f7:96:dd:07:43: 72:63:1e:11:36:da:01:d5:e1:1c:3f:f2:eb:1d:25:a6:79:97: da:5d:55:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICfJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkwMEQxMTAvBgNVBAUTKEM2MDM3ODZENTVBOTA0MTI0RTc1OTJFRUQyODk5RUY1 Nzg5MjExMDAwHhcNMjQwNTA0MTc0ODA3WhcNMjQwNTExMTc0ODA3WjAYMRYwFAYD VQQDEw02NjM2NzRkOC1iOWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoXgcLmDi2CIN2pd34Aj5JTq+P+3c7HtZ0SI6Qt0/TOosNqMrb8wp1tvXyfzU AoYmtcsrUdmVEVsiqX2tY9ndw1FPXFIor+UOUGcw1fsurQTbPCinDyQ5wuTMGgPy yKemuIBoPyAzMJfEctOh5pGBS0VESvk/M8/a3vM9HXkmqcuFXfKTZ64naW5NKimU 5BKxUOAil6tXigHdc8Sbg/xeB05j815JJLDKaONaXaLLz6+b+++KUQ5yAjqOARMi 4LBfMpJ69tVVylF/Xuvcbphq3kjdYijmlVVcFA7u+DauSh8ARHYy4yQgHBq5p4Hg +BHsnDV7lx91l6Z6YUMzuqQfUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLsFrq6W Pe8mwWaaROdMRtSyl/UPMB8GA1UdIwQYMBaAFMYDeG1VqQQSTnWS7tKJnvV4khEA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTAwRC9GQ0RDRDNBMEFD OUQxMUU4OTJDREFEMERDNEY5QUUwMi94Z040YlZXcEJCSk9kWkx1MG9tZTlYaVNF UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hnTjRiVldwQkJKT2RaTHUwb21lOVhpU0VRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTAwRC9GQ0RDRDNBMEFDOUQxMUU4OTJDREFEMERDNEY5QUUwMi94Z040YlZXcEJC Sk9kWkx1MG9tZTlYaVNFUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlVckvGYgtKqibJFWOzjSy56bbs0W6FWQ0U1spDUMN70Hjt0UsF2gD k1qsoTqTiZSpJmKbbS0R07ma+BEnmchqDYedH9cxo14/VzrArOHprM0n98Gd56oK nJ7Jx93VKtL4nFoNsTIxGAK38ysGpFM9HY22UQVfgiTiViB7kGe5ErMxUC0X8RfX fc1NZjHI/DDcsdBl5BO+GqNrTUIgLDo/Zc7ZcD0O53IuZmIssaZcZCgXJT46eGcQ lMycBUhArOAYUcYDDQI96yjsu3EUlbzypgUe/qbjaD5rlG/0WyWUWMQPeIk695bd B0NyYx4RNtoB1eEcP/LrHSWmeZfaXVU4 -----END CERTIFICATE-----Generated at Sat May 4 20:37:07 2024 by rpki-client on console-fra.rpki-client.org