$ rpki-client -vvf rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft File: -ibzSoM5sd823JwRkSBXw6WD9nM.mft (raw, json) Hash identifier: SjCcXhWFWLKXMCBXIOINqam0qTaaLUk3uhYQfrLXYjM= Subject key identifier: AC:17:00:B8:F3:DB:D5:95:13:AF:23:8F:08:68:56:40:09:32:0E:37 Authority key identifier: FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 Certificate issuer: /CN=A914711C/serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Certificate serial: 0287 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft Manifest number: 0285 Signing time: Sun 19 May 2024 03:41:14 +0000 Manifest this update: Sun 19 May 2024 03:41:13 +0000 Manifest next update: Sun 26 May 2024 03:41:13 +0000 Files and hashes: 1: -ibzSoM5sd823JwRkSBXw6WD9nM.crl (hash: 6HkUWaRWkQ3LnQUAg25Lqsm/Anz0RWOcS/dp3y1mLao=) 2: 1AF42E76BBAC11EC8A07FE72C4F9AE02.roa (hash: MwnEW/Y/9OLxa3x5+lImXnMGXDKOiCHipmXBcdsFQU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 647 (0x287) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914711C/serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Validity Not Before: May 19 03:41:13 2024 GMT Not After : May 26 03:41:13 2024 GMT Subject: CN=664974da-3079 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d5:95:09:32:9e:69:fe:ad:5f:8e:13:1e:61: cf:fe:22:7c:b1:92:5f:47:45:8d:bf:2d:88:c4:74: ef:c1:6c:c3:74:11:8e:c5:3e:2d:13:fc:dd:73:f5: 43:16:d1:51:23:8c:6b:29:83:48:eb:3b:7e:6e:07: 65:ba:fc:a7:16:21:5a:da:8c:2b:29:04:34:15:63: 28:18:c8:bd:e6:3f:ad:86:20:96:b1:8f:4e:52:94: 8a:93:58:5a:b8:fd:05:24:a1:a0:73:78:53:89:12: 90:b1:57:ae:5d:03:69:36:f1:a1:86:96:35:00:aa: 60:77:1a:28:03:8a:34:a0:e0:ac:3f:56:2c:ab:5d: 77:02:e0:75:fe:2f:56:f5:47:75:fd:8f:a6:15:f5: e7:c0:42:fd:ca:b2:b1:1b:8f:53:9b:68:61:a6:2c: 57:9b:e1:b9:4c:21:03:da:a5:dd:f0:11:3e:1d:9e: 0c:c0:41:3f:45:56:bd:42:d4:e2:a2:90:0e:f4:63: 5f:58:7f:d8:a4:c6:59:ba:ea:4d:9a:0c:c0:dd:b1: 37:14:11:10:a2:c4:e3:5c:98:00:aa:3e:06:00:dd: c7:27:f0:14:ac:c5:52:d7:ee:5d:56:74:28:7c:5e: 52:19:60:0e:3c:56:4f:f2:f1:e0:d2:5c:a2:b4:c3: e1:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:17:00:B8:F3:DB:D5:95:13:AF:23:8F:08:68:56:40:09:32:0E:37 X509v3 Authority Key Identifier: keyid:FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:52:5e:ef:fd:4a:00:df:92:14:9c:9f:45:76:b1:6d:31:83: 07:c9:25:65:d2:2e:eb:56:9a:69:00:7a:f1:c9:74:73:1b:55: 86:56:67:93:59:21:f1:d9:d7:71:66:0c:6e:c9:79:be:76:7f: 44:f9:4c:28:53:49:74:71:7c:ff:2f:7a:2f:62:95:35:06:7d: 78:d5:b0:cc:b4:5c:87:4e:c7:bf:7f:ab:2e:15:9b:51:50:59: f9:0e:b9:3e:76:f1:fd:27:63:3c:a1:d6:a9:08:a1:d5:3c:b1: 36:1d:59:dd:96:9b:9e:8f:3b:1e:ae:40:cc:8b:4e:b5:d3:36: 35:9a:79:b3:d3:f4:1d:95:b9:d9:4d:55:04:27:29:d3:ef:5a: eb:3d:25:53:42:38:d5:ef:12:89:a8:b4:b5:92:98:c6:9f:59: 3a:29:ea:54:77:48:47:99:c0:47:4a:ec:5a:4a:e4:2a:4b:d7: 3b:84:e0:98:8a:be:19:11:06:b9:98:72:3e:22:29:42:2e:d1: 09:e4:fe:38:86:e5:fd:a4:c1:98:c0:2a:70:b1:9a:23:0c:0d: f1:02:74:ff:20:80:40:f9:c0:bc:a7:e6:88:95:e8:32:95:c0: 3d:35:e2:80:bc:fd:69:1a:2d:e1:91:aa:f7:94:7e:9f:ff:ca: 4f:32:06:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcxMUMxMTAvBgNVBAUTKEZBMjZGMzRBODMzOUIxREYzNkRDOUMxMTkxMjA1N0Mz QTU4M0Y2NzMwHhcNMjQwNTE5MDM0MTEzWhcNMjQwNTI2MDM0MTEzWjAYMRYwFAYD VQQDEw02NjQ5NzRkYS0zMDc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtNWVCTKeaf6tX44THmHP/iJ8sZJfR0WNvy2IxHTvwWzDdBGOxT4tE/zdc/VD FtFRI4xrKYNI6zt+bgdluvynFiFa2owrKQQ0FWMoGMi95j+thiCWsY9OUpSKk1ha uP0FJKGgc3hTiRKQsVeuXQNpNvGhhpY1AKpgdxooA4o0oOCsP1Ysq113AuB1/i9W 9Ud1/Y+mFfXnwEL9yrKxG49Tm2hhpixXm+G5TCED2qXd8BE+HZ4MwEE/RVa9QtTi opAO9GNfWH/YpMZZuupNmgzA3bE3FBEQosTjXJgAqj4GAN3HJ/AUrMVS1+5dVnQo fF5SGWAOPFZP8vHg0lyitMPhVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKwXALjz 29WVE68jjwhoVkAJMg43MB8GA1UdIwQYMBaAFPom80qDObHfNtycEZEgV8Olg/Zz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzExQy9BOEFDNzI1MEJC QTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNkODIzSndSa1NCWHc2V0Q5 bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1pYnpTb001c2Q4MjNKd1JrU0JYdzZXRDluTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzExQy9BOEFDNzI1MEJCQTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNk ODIzSndSa1NCWHc2V0Q5bk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0Ul7v/UoA35IUnJ9FdrFtMYMHySVl0i7rVpppAHrxyXRzG1WGVmeT WSHx2ddxZgxuyXm+dn9E+UwoU0l0cXz/L3ovYpU1Bn141bDMtFyHTse/f6suFZtR UFn5Drk+dvH9J2M8odapCKHVPLE2HVndlpuejzserkDMi0610zY1mnmz0/QdlbnZ TVUEJynT71rrPSVTQjjV7xKJqLS1kpjGn1k6KepUd0hHmcBHSuxaSuQqS9c7hOCY ir4ZEQa5mHI+IilCLtEJ5P44huX9pMGYwCpwsZojDA3xAnT/IIBA+cC8p+aIlegy lcA9NeKAvP1pGi3hkar3lH6f/8pPMgbu -----END CERTIFICATE-----Generated at Sun May 19 04:22:04 2024 by rpki-client on console-fra.rpki-client.org