$ rpki-client -vvf rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft File: -xaxnfv3ymrECmtqNT94V4kX4P0.mft (raw, json) Hash identifier: 3YMwD6g0MCo1nvObNKOXvl26nOctZ9mI1ijg75aRZSM= Subject key identifier: 0C:56:99:8E:19:0B:A9:E9:77:99:5B:2D:D8:5D:24:63:56:3E:EA:86 Authority key identifier: FB:16:B1:9D:FB:F7:CA:6A:C4:0A:6B:6A:35:3F:78:57:89:17:E0:FD Certificate issuer: /CN=A9146CB4/serialNumber=FB16B19DFBF7CA6AC40A6B6A353F78578917E0FD Certificate serial: BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xaxnfv3ymrECmtqNT94V4kX4P0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft Manifest number: B9 Signing time: Sun 19 May 2024 06:27:42 +0000 Manifest this update: Sun 19 May 2024 06:27:41 +0000 Manifest next update: Sun 26 May 2024 06:27:41 +0000 Files and hashes: 1: -xaxnfv3ymrECmtqNT94V4kX4P0.crl (hash: XV0kAqMrLLO4TZzhDveplQuWRWK68vx5BqXPqPGZces=) 2: DFC662EC415B11EE9E83852AC4F9AE02.roa (hash: QTEO5MAXQNjAJQZNIuOvPQ9n5+DrX/cptcb5jtiM5q8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.crl rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xaxnfv3ymrECmtqNT94V4kX4P0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146CB4/serialNumber=FB16B19DFBF7CA6AC40A6B6A353F78578917E0FD Validity Not Before: May 19 06:27:41 2024 GMT Not After : May 26 06:27:41 2024 GMT Subject: CN=66499bdd-f0e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:9b:58:98:21:01:84:28:2f:00:09:4e:dc:67: 2f:bb:93:38:1b:03:0c:6d:09:13:a8:34:05:5c:ad: a7:6c:eb:c3:40:27:fe:01:e8:78:ac:b6:52:ca:68: c2:72:67:f3:6b:fe:87:31:61:0c:6f:c0:8c:4e:58: 4a:6a:5c:60:8f:69:78:d6:9b:e6:00:f2:68:09:5b: bc:02:56:c9:4b:f4:53:d2:80:1e:b3:49:16:25:a6: c4:de:7b:08:be:7e:5c:53:10:22:98:ba:62:53:4f: 6a:86:ae:ca:7d:84:7d:5c:7a:9d:e7:20:15:aa:5c: 5f:6d:9e:9a:81:41:62:c2:c9:f5:4c:9f:af:7d:15: 30:64:43:c0:e8:b4:a2:e5:56:5f:6d:30:91:b4:ca: a3:5f:72:bc:42:f2:46:38:6a:f6:32:16:8d:da:9e: 91:2d:51:0f:81:17:80:7d:aa:3e:fb:b0:8a:15:fb: 4b:e1:b7:71:ec:33:7e:15:1f:31:66:2a:d5:13:9d: e9:af:92:17:a2:e9:f2:3d:f9:31:34:ba:0c:23:62: 88:da:b4:dd:72:71:3b:d0:b8:bd:ba:a5:4a:24:bf: bc:99:a6:b0:51:26:0d:a5:fd:db:ae:18:c5:23:e2: 16:18:2d:41:59:b6:47:85:90:68:ee:b1:d6:5e:6a: a7:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:56:99:8E:19:0B:A9:E9:77:99:5B:2D:D8:5D:24:63:56:3E:EA:86 X509v3 Authority Key Identifier: keyid:FB:16:B1:9D:FB:F7:CA:6A:C4:0A:6B:6A:35:3F:78:57:89:17:E0:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xaxnfv3ymrECmtqNT94V4kX4P0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:e0:03:57:dd:c4:24:2e:15:5a:88:44:51:34:81:97:a9:f7: 43:12:6f:9f:00:e2:4d:1e:e5:b6:aa:a2:6a:86:54:a9:05:5f: 8a:e9:ae:ee:95:97:fa:ef:37:f3:91:c1:25:c3:da:82:7c:89: b6:c9:f5:2e:9b:90:c6:78:d0:87:fa:29:0c:c7:e1:f8:76:64: f9:9c:4b:b6:b7:6e:67:a7:71:b6:85:7c:09:29:9e:62:47:3c: 38:9a:21:b4:c2:89:f5:a7:c0:77:97:4d:30:c8:43:d0:e1:71: 4e:4e:94:ba:08:9f:d4:9b:09:70:17:5b:4b:a2:b6:39:56:1f: f5:fb:7f:18:29:5c:7e:58:6f:4b:4b:70:65:ff:94:c5:21:3c: 2c:81:f6:98:94:07:cd:ea:a0:4e:8b:cd:9c:a8:3b:54:c9:5b: 4c:a1:97:b7:57:e2:e9:1c:51:16:94:d9:f6:dd:32:eb:95:44: 84:37:77:85:7e:c1:2f:6e:a3:77:57:93:3c:4d:86:d7:c2:cf: a7:57:85:1a:01:bd:35:af:46:d0:f3:f4:1e:ea:16:b1:6b:d9: 82:f2:f4:04:51:07:20:99:31:02:de:23:1d:3e:9d:ee:10:72: 81:7b:6f:25:51:00:bd:b8:27:fc:31:fd:14:22:6d:ac:8a:b1: 68:79:38:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZDQjQxMTAvBgNVBAUTKEZCMTZCMTlERkJGN0NBNkFDNDBBNkI2QTM1M0Y3ODU3 ODkxN0UwRkQwHhcNMjQwNTE5MDYyNzQxWhcNMjQwNTI2MDYyNzQxWjAYMRYwFAYD VQQDEw02NjQ5OWJkZC1mMGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6ZtYmCEBhCgvAAlO3Gcvu5M4GwMMbQkTqDQFXK2nbOvDQCf+Aeh4rLZSymjC cmfza/6HMWEMb8CMTlhKalxgj2l41pvmAPJoCVu8AlbJS/RT0oAes0kWJabE3nsI vn5cUxAimLpiU09qhq7KfYR9XHqd5yAVqlxfbZ6agUFiwsn1TJ+vfRUwZEPA6LSi 5VZfbTCRtMqjX3K8QvJGOGr2MhaN2p6RLVEPgReAfao++7CKFftL4bdx7DN+FR8x ZirVE53pr5IXounyPfkxNLoMI2KI2rTdcnE70Li9uqVKJL+8maawUSYNpf3brhjF I+IWGC1BWbZHhZBo7rHWXmqnzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAxWmY4Z C6npd5lbLdhdJGNWPuqGMB8GA1UdIwQYMBaAFPsWsZ3798pqxAprajU/eFeJF+D9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkNCNC8yQTg0RDFEOEZE QzgxMUVEOTcyRURCMUVDNEY5QUUwMi8teGF4bmZ2M3ltckVDbXRxTlQ5NFY0a1g0 UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy14YXhuZnYzeW1yRUNtdHFOVDk0VjRrWDRQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkNCNC8yQTg0RDFEOEZEQzgxMUVEOTcyRURCMUVDNEY5QUUwMi8teGF4bmZ2M3lt ckVDbXRxTlQ5NFY0a1g0UDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBc4ANX3cQkLhVaiERRNIGXqfdDEm+fAOJNHuW2qqJqhlSpBV+K6a7u lZf67zfzkcElw9qCfIm2yfUum5DGeNCH+ikMx+H4dmT5nEu2t25np3G2hXwJKZ5i Rzw4miG0won1p8B3l00wyEPQ4XFOTpS6CJ/UmwlwF1tLorY5Vh/1+38YKVx+WG9L S3Bl/5TFITwsgfaYlAfN6qBOi82cqDtUyVtMoZe3V+LpHFEWlNn23TLrlUSEN3eF fsEvbqN3V5M8TYbXws+nV4UaAb01r0bQ8/Qe6haxa9mC8vQEUQcgmTEC3iMdPp3u EHKBe28lUQC9uCf8Mf0UIm2sirFoeTiT -----END CERTIFICATE-----Generated at Sun May 19 07:40:38 2024 by rpki-client on console-fra.rpki-client.org