$ rpki-client -vvf rpki.apnic.net/member_repository/A913DF8A/8F011C6EF37911EEB7E9DC6AC4F9AE02/bI36BDwiuKJ-q2BHCvQGYCSmhEA.mft File: bI36BDwiuKJ-q2BHCvQGYCSmhEA.mft (raw, json) Hash identifier: BiEX/gZxc8OqbNVCYRSj2WdD3PYowN98JJQJjctklgA= Subject key identifier: 7B:03:77:14:0E:4E:FF:EB:77:34:86:1E:9E:BC:5F:FF:AC:DA:D6:EF Authority key identifier: 6C:8D:FA:04:3C:22:B8:A2:7E:AB:60:47:0A:F4:06:60:24:A6:84:40 Certificate issuer: /CN=A913DF8A/serialNumber=6C8DFA043C22B8A27EAB60470AF4066024A68440 Certificate serial: 1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bI36BDwiuKJ-q2BHCvQGYCSmhEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913DF8A/8F011C6EF37911EEB7E9DC6AC4F9AE02/bI36BDwiuKJ-q2BHCvQGYCSmhEA.mft Manifest number: 18 Signing time: Sun 19 May 2024 08:44:29 +0000 Manifest this update: Sun 19 May 2024 08:44:29 +0000 Manifest next update: Sun 26 May 2024 08:44:29 +0000 Files and hashes: 1: bI36BDwiuKJ-q2BHCvQGYCSmhEA.crl (hash: 37fyBlBZLRxKltRBDTtdg51H2W2g3543Yl+EwVrk5sI=) 2: EC873B66F37911EEA9FCAF6BC4F9AE02.roa (hash: rsabR21jqtcvoz4XthX1FqvEg0esDGA7DmhhfFQxiEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913DF8A/8F011C6EF37911EEB7E9DC6AC4F9AE02/bI36BDwiuKJ-q2BHCvQGYCSmhEA.crl rsync://rpki.apnic.net/member_repository/A913DF8A/8F011C6EF37911EEB7E9DC6AC4F9AE02/bI36BDwiuKJ-q2BHCvQGYCSmhEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bI36BDwiuKJ-q2BHCvQGYCSmhEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913DF8A/serialNumber=6C8DFA043C22B8A27EAB60470AF4066024A68440 Validity Not Before: May 19 08:44:29 2024 GMT Not After : May 26 08:44:29 2024 GMT Subject: CN=6649bbed-6a99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:cc:b4:21:6d:88:95:01:5d:71:cb:29:10:3e: b0:42:93:28:73:e7:fa:15:58:bb:4c:e0:e1:62:41: 25:8a:77:0a:de:2d:82:6a:23:17:96:ad:a9:8d:1e: 18:6a:33:4a:3c:60:e1:1f:8f:c6:3d:74:00:f4:59: 93:a1:02:0f:28:98:03:b4:b2:c3:19:77:44:3c:fe: f0:81:45:4f:03:7d:55:a7:04:0f:16:c8:3d:fd:1a: 02:2d:bb:df:93:80:b1:a6:90:db:b1:b8:94:30:6b: 53:ed:0d:84:64:db:2f:6c:9b:9c:37:d2:1c:52:ae: d7:1f:56:a2:f7:0c:41:e7:a1:e6:e1:33:f9:27:c5: b0:d7:ad:79:64:2f:dc:b2:36:83:84:5d:5c:c9:68: 83:0f:70:e7:1d:86:af:b4:d4:65:ca:29:a2:44:96: d0:6d:5f:df:8f:dd:be:8b:1f:a0:0d:5f:c4:f4:9a: 50:ac:f3:88:51:f5:81:d5:73:30:7a:f5:12:f3:66: 3c:d4:98:de:f2:86:fb:88:49:81:5c:dc:26:70:2a: 2f:0c:4e:97:e6:42:11:7f:21:e1:9a:46:70:17:15: a7:36:88:43:18:d8:e9:df:93:a1:b3:9d:ae:21:26: e1:57:bd:e8:4d:04:7c:88:62:de:2f:97:9e:cf:7c: e8:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:03:77:14:0E:4E:FF:EB:77:34:86:1E:9E:BC:5F:FF:AC:DA:D6:EF X509v3 Authority Key Identifier: keyid:6C:8D:FA:04:3C:22:B8:A2:7E:AB:60:47:0A:F4:06:60:24:A6:84:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913DF8A/8F011C6EF37911EEB7E9DC6AC4F9AE02/bI36BDwiuKJ-q2BHCvQGYCSmhEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bI36BDwiuKJ-q2BHCvQGYCSmhEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913DF8A/8F011C6EF37911EEB7E9DC6AC4F9AE02/bI36BDwiuKJ-q2BHCvQGYCSmhEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:b2:5f:b0:cc:7a:2f:ae:8b:dc:e6:8d:33:b2:b8:b4:0b:ca: 9c:61:eb:5a:68:52:45:e4:27:1c:32:e8:b3:27:06:73:e2:84: d6:b4:ee:24:b3:3b:27:1c:d6:eb:15:19:b3:41:27:e1:c0:b3: 39:da:95:d4:01:bb:52:0e:69:68:3e:2d:5e:90:a1:49:8c:9b: 5a:95:c9:ce:e8:60:22:f2:00:db:a6:b0:30:19:94:24:cf:d4: 9e:ae:b7:7f:6e:c3:ce:5a:f7:ca:85:8d:4d:d5:61:43:99:80: 4d:44:df:65:33:29:52:0e:1e:d2:21:df:1f:c3:7a:47:7b:e1: 74:5e:20:7a:b3:0f:b4:b6:79:c1:dc:48:4f:0a:8a:c2:f3:a6: b6:b0:a1:90:98:ee:aa:6f:6e:ab:29:de:46:69:3d:b2:39:eb: eb:02:dd:07:76:ad:99:e5:b0:3e:47:b0:8f:80:0f:00:ca:e2: 2f:b1:ad:19:46:fb:58:1c:26:e0:84:a8:9a:10:eb:4a:e4:ac: c0:2b:28:75:97:7b:0d:d4:dc:eb:4f:d7:4f:8c:5d:70:c8:5e: 89:49:d3:1e:e8:00:bb:9f:3b:dd:d1:7a:50:9a:54:64:4c:f5: 52:3a:32:4d:bf:03:4c:11:bc:39:96:b0:40:d3:2c:b3:04:7a: 4d:10:40:91 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz REY4QTExMC8GA1UEBRMoNkM4REZBMDQzQzIyQjhBMjdFQUI2MDQ3MEFGNDA2NjAy NEE2ODQ0MDAeFw0yNDA1MTkwODQ0MjlaFw0yNDA1MjYwODQ0MjlaMBgxFjAUBgNV BAMTDTY2NDliYmVkLTZhOTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPzLQhbYiVAV1xyykQPrBCkyhz5/oVWLtM4OFiQSWKdwreLYJqIxeWramNHhhq M0o8YOEfj8Y9dAD0WZOhAg8omAO0ssMZd0Q8/vCBRU8DfVWnBA8WyD39GgItu9+T gLGmkNuxuJQwa1PtDYRk2y9sm5w30hxSrtcfVqL3DEHnoebhM/knxbDXrXlkL9yy NoOEXVzJaIMPcOcdhq+01GXKKaJEltBtX9+P3b6LH6ANX8T0mlCs84hR9YHVczB6 9RLzZjzUmN7yhvuISYFc3CZwKi8MTpfmQhF/IeGaRnAXFac2iEMY2Onfk6Gzna4h JuFXvehNBHyIYt4vl57PfOhPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUewN3FA5O /+t3NIYenrxf/6za1u8wHwYDVR0jBBgwFoAUbI36BDwiuKJ+q2BHCvQGYCSmhEAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNERjhBLzhGMDExQzZFRjM3 OTExRUVCN0U5REM2QUM0RjlBRTAyL2JJMzZCRHdpdUtKLXEyQkhDdlFHWUNTbWhF QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYkkzNkJEd2l1S0otcTJCSEN2UUdZQ1NtaEVBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNE RjhBLzhGMDExQzZFRjM3OTExRUVCN0U5REM2QUM0RjlBRTAyL2JJMzZCRHdpdUtK LXEyQkhDdlFHWUNTbWhFQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIGyX7DMei+ui9zmjTOyuLQLypxh61poUkXkJxwy6LMnBnPihNa07iSz Oycc1usVGbNBJ+HAsznaldQBu1IOaWg+LV6QoUmMm1qVyc7oYCLyANumsDAZlCTP 1J6ut39uw85a98qFjU3VYUOZgE1E32UzKVIOHtIh3x/Dekd74XReIHqzD7S2ecHc SE8KisLzprawoZCY7qpvbqsp3kZpPbI56+sC3Qd2rZnlsD5HsI+ADwDK4i+xrRlG +1gcJuCEqJoQ60rkrMArKHWXew3U3OtP10+MXXDIXolJ0x7oALufO93RelCaVGRM 9VI6Mk2/A0wRvDmWsEDTLLMEek0QQJE= -----END CERTIFICATE-----Generated at Sun May 19 09:38:26 2024 by rpki-client on console-fra.rpki-client.org