$ rpki-client -vvf rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft File: 1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft (raw, json) Hash identifier: IYmHEr6c+RfIZ20Uj51bRGmK1alEMQ5gRiz7dznIw98= Subject key identifier: AD:9E:DA:BD:40:FF:6D:4E:D9:95:BB:C7:42:D7:8D:A4:95:95:83:2E Authority key identifier: D5:A0:25:06:34:DF:C0:3D:C9:CF:CA:BA:97:95:18:0F:F0:51:58:FC Certificate issuer: /CN=A914247C/serialNumber=D5A0250634DFC03DC9CFCABA9795180FF05158FC Certificate serial: 0A5E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft Manifest number: 0A52 Signing time: Thu 30 May 2024 20:52:35 +0000 Manifest this update: Thu 30 May 2024 20:52:34 +0000 Manifest next update: Thu 06 Jun 2024 20:52:34 +0000 Files and hashes: 1: 1aAlBjTfwD3Jz8q6l5UYD_BRWPw.crl (hash: cnrtY14xHeQnN6ymC+AdN+EBEuBOBFOezWlkWMENl/c=) 2: 9156042083EB11ECB7EC3B76C4F9AE02.roa (hash: GlJ1yeFR55LNoLckk6GQUAc5SYT4WibNg/OgJ7dHJMQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.crl rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 16:43:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2654 (0xa5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914247C/serialNumber=D5A0250634DFC03DC9CFCABA9795180FF05158FC Validity Not Before: May 30 20:52:34 2024 GMT Not After : Jun 6 20:52:34 2024 GMT Subject: CN=6658e712-9492 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:8c:1a:fe:a9:b5:fd:33:69:6c:5f:62:61:ba: 1b:3a:0f:bf:47:de:4b:b8:40:84:55:f2:22:bf:b6: 75:bf:2b:4d:d9:47:88:89:fb:4d:75:36:45:76:5f: ca:c7:f5:ac:45:e6:26:9d:81:fc:00:68:ce:8c:d4: b2:74:ce:29:5f:12:5c:32:7c:b6:54:77:6f:ad:94: 18:0c:70:31:c2:e5:4b:5a:b2:e4:50:ca:8d:72:93: 10:49:38:21:3b:7f:08:fb:5d:cd:bd:d4:ef:31:7f: ae:a0:aa:f2:41:dc:38:0c:66:f3:66:51:6a:eb:1c: b6:d6:7b:cd:94:14:5f:9f:cb:b5:71:a1:4a:40:55: 50:45:b0:11:f9:93:15:3b:99:5a:5c:58:24:67:78: 57:c3:7b:11:8d:45:a0:30:19:53:85:e0:ca:01:61: 2a:ba:cc:21:68:81:a5:47:74:88:ee:3c:7a:7d:c4: 9a:87:e1:e2:6f:97:9a:f6:e9:f6:7e:6d:3f:74:db: a3:64:7f:ea:de:81:0d:ea:23:46:bb:d3:9f:71:41: 1b:b3:40:95:a5:85:01:8c:13:09:96:cc:57:08:fd: 00:ef:6a:37:0a:78:d3:3a:c1:af:66:49:de:2a:36: 02:b9:37:27:ae:47:d2:4b:be:f4:28:d8:45:06:68: 08:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:9E:DA:BD:40:FF:6D:4E:D9:95:BB:C7:42:D7:8D:A4:95:95:83:2E X509v3 Authority Key Identifier: keyid:D5:A0:25:06:34:DF:C0:3D:C9:CF:CA:BA:97:95:18:0F:F0:51:58:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:1f:1d:72:6b:f4:99:9e:61:d2:c2:ee:2d:c7:92:06:6e:c9: 21:36:92:e3:a1:54:e6:8f:42:08:cf:48:23:28:87:cc:af:e5: e5:bd:f4:6a:7c:88:dd:0c:ba:eb:36:b5:e1:bb:fc:dd:b2:ab: 3e:77:b7:e2:75:95:11:5b:cf:57:bb:7f:47:ba:6b:e9:9a:f3: 05:c9:79:bd:15:26:d6:f7:a7:5c:7a:1a:a1:44:dc:13:cc:09: e5:5d:e4:54:c6:06:41:be:d6:e8:d2:be:89:9d:b9:13:fc:91: 71:8a:72:b5:66:5e:5c:61:e9:06:09:40:30:57:b3:44:10:43: 45:74:51:69:30:f9:2c:31:50:80:64:b7:cd:e1:fe:fa:42:93: 88:3c:6c:af:d3:c0:8e:1e:5b:86:eb:29:62:5e:44:e7:1e:a3: 2e:4f:81:2a:45:dc:28:e4:0c:13:7a:50:bf:93:51:8a:7f:9f: 0c:51:17:bf:f7:af:81:44:e0:c3:05:8f:1f:b9:f0:70:aa:83: eb:1d:38:bd:dc:f7:3c:e2:e2:9a:4f:96:5c:ee:cb:ed:c7:63: 6d:17:af:3c:40:ce:e9:87:5e:c4:42:61:ef:eb:4d:58:6b:49: 2b:d4:ba:c0:be:7b:a1:bc:a1:6a:f0:3c:31:7e:93:a9:48:50: 35:94:ca:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI0N0MxMTAvBgNVBAUTKEQ1QTAyNTA2MzRERkMwM0RDOUNGQ0FCQTk3OTUxODBG RjA1MTU4RkMwHhcNMjQwNTMwMjA1MjM0WhcNMjQwNjA2MjA1MjM0WjAYMRYwFAYD VQQDEw02NjU4ZTcxMi05NDkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxowa/qm1/TNpbF9iYbobOg+/R95LuECEVfIiv7Z1vytN2UeIiftNdTZFdl/K x/WsReYmnYH8AGjOjNSydM4pXxJcMny2VHdvrZQYDHAxwuVLWrLkUMqNcpMQSTgh O38I+13NvdTvMX+uoKryQdw4DGbzZlFq6xy21nvNlBRfn8u1caFKQFVQRbAR+ZMV O5laXFgkZ3hXw3sRjUWgMBlTheDKAWEquswhaIGlR3SI7jx6fcSah+Hib5ea9un2 fm0/dNujZH/q3oEN6iNGu9OfcUEbs0CVpYUBjBMJlsxXCP0A72o3CnjTOsGvZkne KjYCuTcnrkfSS770KNhFBmgIywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK2e2r1A /21O2ZW7x0LXjaSVlYMuMB8GA1UdIwQYMBaAFNWgJQY038A9yc/KupeVGA/wUVj8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjQ3Qy84QTFDNDYxNjQz MEExMUVBODU4Q0RDNzZDNEY5QUUwMi8xYUFsQmpUZndEM0p6OHE2bDVVWURfQlJX UHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFhQWxCalRmd0QzSno4cTZsNVVZRF9CUldQdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjQ3Qy84QTFDNDYxNjQzMEExMUVBODU4Q0RDNzZDNEY5QUUwMi8xYUFsQmpUZndE M0p6OHE2bDVVWURfQlJXUHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaHx1ya/SZnmHSwu4tx5IGbskhNpLjoVTmj0IIz0gjKIfMr+XlvfRq fIjdDLrrNrXhu/zdsqs+d7fidZURW89Xu39HumvpmvMFyXm9FSbW96dcehqhRNwT zAnlXeRUxgZBvtbo0r6JnbkT/JFxinK1Zl5cYekGCUAwV7NEEENFdFFpMPksMVCA ZLfN4f76QpOIPGyv08COHluG6yliXkTnHqMuT4EqRdwo5AwTelC/k1GKf58MURe/ 96+BRODDBY8fufBwqoPrHTi93Pc84uKaT5Zc7svtx2NtF688QM7ph17EQmHv601Y a0kr1LrAvnuhvKFq8DwxfpOpSFA1lMo/ -----END CERTIFICATE-----Generated at Thu May 30 21:37:28 2024 by rpki-client on console-fra.rpki-client.org