$ rpki-client -vvf rpki.apnic.net/member_repository/A9144160/DD6571A64F9211E9AD10AA13C4F9AE02/_XRQsRgVCpshTxoL7t8-Oyb-0Es.mft File: _XRQsRgVCpshTxoL7t8-Oyb-0Es.mft (raw, json) Hash identifier: 7NEBKIMNistwnvRIUeYjZTHkfLwjxLLBrd9v6HMdH9g= Subject key identifier: 2B:3C:77:E0:0C:A3:DD:9C:15:5D:81:EB:F6:E3:40:85:4D:3B:71:30 Authority key identifier: FD:74:50:B1:18:15:0A:9B:21:4F:1A:0B:EE:DF:3E:3B:26:FE:D0:4B Certificate issuer: /CN=A9144160/serialNumber=FD7450B118150A9B214F1A0BEEDF3E3B26FED04B Certificate serial: 0F24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_XRQsRgVCpshTxoL7t8-Oyb-0Es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144160/DD6571A64F9211E9AD10AA13C4F9AE02/_XRQsRgVCpshTxoL7t8-Oyb-0Es.mft Manifest number: 0F1D Signing time: Sat 18 May 2024 18:12:41 +0000 Manifest this update: Sat 18 May 2024 18:12:41 +0000 Manifest next update: Sat 25 May 2024 18:12:41 +0000 Files and hashes: 1: _XRQsRgVCpshTxoL7t8-Oyb-0Es.crl (hash: fwfK7e0ctJgUYEezv9JEyjGL5YbanCwLYiNx0pftOKs=) 2: 378459525C6511E989D03610C4F9AE02.roa (hash: SpnN7c6eHl0EYy2wtohXpO+pAN3jiA1sdoHCwMdNrVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144160/DD6571A64F9211E9AD10AA13C4F9AE02/_XRQsRgVCpshTxoL7t8-Oyb-0Es.crl rsync://rpki.apnic.net/member_repository/A9144160/DD6571A64F9211E9AD10AA13C4F9AE02/_XRQsRgVCpshTxoL7t8-Oyb-0Es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_XRQsRgVCpshTxoL7t8-Oyb-0Es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3876 (0xf24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144160/serialNumber=FD7450B118150A9B214F1A0BEEDF3E3B26FED04B Validity Not Before: May 18 18:12:41 2024 GMT Not After : May 25 18:12:41 2024 GMT Subject: CN=6648ef99-4f8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:73:6f:6a:de:0b:fd:eb:0f:73:83:7b:a1:0a: 0c:62:7b:54:b7:d1:f0:e3:7e:49:49:1c:55:5b:99: 7a:62:74:de:42:8a:ce:d5:5d:88:4f:3c:16:e8:1c: 3c:19:ac:39:00:dc:23:92:e0:05:98:c9:a0:05:0e: 16:23:d9:1f:55:34:16:35:39:7c:38:e3:d2:e4:07: f8:98:92:b6:53:1e:12:51:26:15:fb:5f:2a:32:83: 4b:8a:56:cd:40:10:ac:f0:a5:fb:8a:b0:97:fd:0b: 19:ef:db:65:60:0f:ec:c2:f9:15:5e:38:9c:c7:8a: 50:16:2b:65:1f:54:df:de:45:6e:7a:13:3e:ed:60: 5b:4b:50:a2:02:09:59:bd:78:f2:26:bd:e5:9f:11: 7f:e0:71:c8:5d:b5:37:c0:69:ad:84:2d:d5:7c:f0: 3e:53:5e:4b:ad:e1:92:14:51:63:3b:94:6e:74:21: 21:89:09:76:b8:28:42:71:08:78:69:a2:c4:e5:2a: 4d:92:ad:f6:ff:57:b5:c7:92:2d:05:e0:d5:73:d7: b9:d2:c3:8a:42:30:75:5f:9b:a7:9d:a2:cb:45:31: 24:f9:76:31:b5:e5:93:2f:59:7f:c7:d4:6d:e7:aa: b0:70:86:02:89:10:36:99:8c:aa:8d:49:e4:7a:3b: ed:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:3C:77:E0:0C:A3:DD:9C:15:5D:81:EB:F6:E3:40:85:4D:3B:71:30 X509v3 Authority Key Identifier: keyid:FD:74:50:B1:18:15:0A:9B:21:4F:1A:0B:EE:DF:3E:3B:26:FE:D0:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144160/DD6571A64F9211E9AD10AA13C4F9AE02/_XRQsRgVCpshTxoL7t8-Oyb-0Es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_XRQsRgVCpshTxoL7t8-Oyb-0Es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144160/DD6571A64F9211E9AD10AA13C4F9AE02/_XRQsRgVCpshTxoL7t8-Oyb-0Es.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:7c:88:c8:3b:7f:3c:82:14:7f:ea:2a:b2:37:71:2b:d2:53: 0e:ec:6d:0b:e1:6a:60:d7:0a:d4:77:db:5a:86:e8:50:d4:7d: f0:66:0c:6f:3d:f5:f1:62:ab:2e:d5:f5:5b:a9:e9:99:0c:9a: 5b:61:c4:70:bf:ec:5b:c2:34:6b:88:9a:fd:01:34:c6:ba:b1: 5b:b4:c6:df:71:97:ab:f1:dd:da:33:e1:42:cb:ab:d4:3a:a4: b9:5a:37:f9:3c:aa:1b:9e:4f:a2:4e:db:5b:34:63:84:33:0b: 15:11:f7:32:e1:45:ea:cd:e2:7c:4b:47:80:36:a7:13:b5:31: 25:b1:fa:fe:5f:d2:4b:59:1e:b5:15:5b:e2:17:3f:7c:77:95: 73:54:56:05:64:58:34:20:e0:76:1e:0d:78:81:fa:89:c6:a3: f8:d1:bf:df:b4:c8:01:05:9a:29:fa:be:f7:34:fe:c5:d7:06: 4a:b7:fe:c9:74:97:92:a4:c0:d1:3c:d7:24:c0:ab:40:0a:55: 1d:03:6c:43:39:f6:66:d4:dd:e5:55:78:e5:0b:38:4c:89:0a: b6:23:91:49:52:cc:20:82:95:d5:58:28:b2:d0:76:39:49:0e: 28:83:5b:ca:b3:3b:e7:16:f2:e1:40:da:8b:01:29:0d:03:29: c0:b7:3d:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDyQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQxNjAxMTAvBgNVBAUTKEZENzQ1MEIxMTgxNTBBOUIyMTRGMUEwQkVFREYzRTNC MjZGRUQwNEIwHhcNMjQwNTE4MTgxMjQxWhcNMjQwNTI1MTgxMjQxWjAYMRYwFAYD VQQDEw02NjQ4ZWY5OS00ZjhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXNvat4L/esPc4N7oQoMYntUt9Hw435JSRxVW5l6YnTeQorO1V2ITzwW6Bw8 Gaw5ANwjkuAFmMmgBQ4WI9kfVTQWNTl8OOPS5Af4mJK2Ux4SUSYV+18qMoNLilbN QBCs8KX7irCX/QsZ79tlYA/swvkVXjicx4pQFitlH1Tf3kVuehM+7WBbS1CiAglZ vXjyJr3lnxF/4HHIXbU3wGmthC3VfPA+U15LreGSFFFjO5RudCEhiQl2uChCcQh4 aaLE5SpNkq32/1e1x5ItBeDVc9e50sOKQjB1X5unnaLLRTEk+XYxteWTL1l/x9Rt 56qwcIYCiRA2mYyqjUnkejvt8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCs8d+AM o92cFV2B6/bjQIVNO3EwMB8GA1UdIwQYMBaAFP10ULEYFQqbIU8aC+7fPjsm/tBL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDE2MC9ERDY1NzFBNjRG OTIxMUU5QUQxMEFBMTNDNEY5QUUwMi9fWFJRc1JnVkNwc2hUeG9MN3Q4LU95Yi0w RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19YUlFzUmdWQ3BzaFR4b0w3dDgtT3liLTBFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDE2MC9ERDY1NzFBNjRGOTIxMUU5QUQxMEFBMTNDNEY5QUUwMi9fWFJRc1JnVkNw c2hUeG9MN3Q4LU95Yi0wRXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcfIjIO388ghR/6iqyN3Er0lMO7G0L4Wpg1wrUd9tahuhQ1H3wZgxv PfXxYqsu1fVbqemZDJpbYcRwv+xbwjRriJr9ATTGurFbtMbfcZer8d3aM+FCy6vU OqS5Wjf5PKobnk+iTttbNGOEMwsVEfcy4UXqzeJ8S0eANqcTtTElsfr+X9JLWR61 FVviFz98d5VzVFYFZFg0IOB2Hg14gfqJxqP40b/ftMgBBZop+r73NP7F1wZKt/7J dJeSpMDRPNckwKtAClUdA2xDOfZm1N3lVXjlCzhMiQq2I5FJUswggpXVWCiy0HY5 SQ4og1vKszvnFvLhQNqLASkNAynAtz0y -----END CERTIFICATE-----Generated at Sat May 18 18:46:45 2024 by rpki-client on console-fra.rpki-client.org