$ rpki-client -vvf rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft File: _U2MY5rcFYR8e0kRFZ3nG9gTk64.mft (raw, json) Hash identifier: A7QM3UU90cI76OmuaNNvU+h+A1fROoHrRru3YprZC60= Subject key identifier: C5:A9:8C:0F:C2:22:9F:D5:1F:7D:1F:2A:2B:A7:CC:56:40:4F:E0:82 Authority key identifier: FD:4D:8C:63:9A:DC:15:84:7C:7B:49:11:15:9D:E7:1B:D8:13:93:AE Certificate issuer: /CN=A9152462/serialNumber=FD4D8C639ADC15847C7B4911159DE71BD81393AE Certificate serial: 074B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U2MY5rcFYR8e0kRFZ3nG9gTk64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft Manifest number: 0747 Signing time: Sat 18 May 2024 22:22:18 +0000 Manifest this update: Sat 18 May 2024 22:22:17 +0000 Manifest next update: Sat 25 May 2024 22:22:17 +0000 Files and hashes: 1: _U2MY5rcFYR8e0kRFZ3nG9gTk64.crl (hash: mxEpV6U0TedQ6hK4D3xlVdvcfOjxEJbcQm379MEO7n8=) 2: 4149D206DC4711EA80D5D916C4F9AE02.roa (hash: U5qwIcSE0jf6QudDGYVbl3Fu3p8nxRSluXp9BN5ItZo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.crl rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U2MY5rcFYR8e0kRFZ3nG9gTk64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1867 (0x74b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152462/serialNumber=FD4D8C639ADC15847C7B4911159DE71BD81393AE Validity Not Before: May 18 22:22:17 2024 GMT Not After : May 25 22:22:17 2024 GMT Subject: CN=66492a1a-a25c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c5:c7:f7:e9:16:6e:a5:32:ad:50:78:0e:4e: 16:80:cf:73:16:62:7d:16:b4:ea:e0:b2:1f:34:8f: f1:1a:d4:f8:b8:71:ae:92:81:d6:fa:6a:b9:9d:6e: d7:56:f5:d7:5b:d6:b8:8c:15:dd:48:8e:86:4f:60: c6:ac:ad:bb:84:c9:2d:e9:4b:63:0e:80:2a:a4:2f: 70:a4:6a:cb:38:80:8d:75:54:b2:c9:61:b7:bf:19: a7:a4:bc:74:76:6d:d6:b7:bc:ae:c9:97:cc:e5:d6: c8:3d:c2:e9:2c:13:ca:c8:f4:51:cf:6a:4e:44:88: e5:6b:68:c7:55:aa:4e:d3:fd:e3:13:35:58:a3:a6: 00:7f:4f:79:3a:a7:3e:c6:e6:f2:22:9d:38:0c:3b: 67:93:27:61:57:8c:43:27:dd:f6:a3:79:44:2b:7b: 85:19:f8:97:3d:31:af:40:bb:00:21:dc:02:a8:84: 90:8e:8f:65:80:c8:a1:f0:7e:44:7d:17:c9:22:3e: c6:10:2a:ec:bf:df:4c:6a:d3:38:9c:2c:c7:5f:ac: 9c:eb:ae:1a:ef:b6:53:31:5f:ab:c3:ac:ec:bb:6e: 12:64:01:6f:d4:43:77:e6:18:82:fc:83:e0:f5:95: 10:b0:cb:e9:96:3f:d5:8c:72:a9:ac:51:e1:34:a2: b7:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:A9:8C:0F:C2:22:9F:D5:1F:7D:1F:2A:2B:A7:CC:56:40:4F:E0:82 X509v3 Authority Key Identifier: keyid:FD:4D:8C:63:9A:DC:15:84:7C:7B:49:11:15:9D:E7:1B:D8:13:93:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U2MY5rcFYR8e0kRFZ3nG9gTk64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:fd:f3:e4:72:6a:bb:13:56:99:b4:58:eb:75:33:9b:a2:fb: 76:71:46:e9:a8:c7:d4:b4:b7:aa:04:7b:ae:f3:85:3c:09:60: ff:ce:e9:aa:8a:db:e5:c7:9b:35:58:eb:24:00:0a:21:c4:65: b9:bd:5c:06:90:4e:4a:94:c5:c3:ea:5d:dd:6e:43:ef:57:61: 93:8d:2c:79:48:1b:1f:59:c1:4b:5b:01:0d:dc:57:aa:03:c1: 37:3c:fc:0f:0f:84:a9:fd:31:6f:03:3c:1f:12:73:43:88:e7: 0e:f6:f8:be:ed:a5:4b:4d:db:33:25:10:2a:4f:82:1a:65:f8: c8:a4:66:f3:2d:eb:bb:90:b6:3a:5d:fc:45:26:e4:5e:71:52: 38:5c:3d:c1:83:db:36:1a:bb:8f:bf:99:40:d4:34:9c:61:6e: 8f:c1:98:e4:7c:d2:45:ae:04:b9:87:d9:14:53:b4:82:56:9b: 51:77:90:59:fb:32:19:d6:62:7c:fd:7a:3e:c6:59:e7:3d:2c: a9:21:da:e0:cb:3d:1f:34:47:95:b4:1a:59:d3:02:6e:7f:0b: 23:fe:da:ee:d1:1e:c5:9c:41:d5:16:93:ab:1a:15:ef:7c:3d: 84:00:5d:dd:0d:07:ba:69:46:9a:5d:d8:51:60:9a:34:64:0d: 84:6e:06:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI0NjIxMTAvBgNVBAUTKEZENEQ4QzYzOUFEQzE1ODQ3QzdCNDkxMTE1OURFNzFC RDgxMzkzQUUwHhcNMjQwNTE4MjIyMjE3WhcNMjQwNTI1MjIyMjE3WjAYMRYwFAYD VQQDEw02NjQ5MmExYS1hMjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwsXH9+kWbqUyrVB4Dk4WgM9zFmJ9FrTq4LIfNI/xGtT4uHGukoHW+mq5nW7X VvXXW9a4jBXdSI6GT2DGrK27hMkt6UtjDoAqpC9wpGrLOICNdVSyyWG3vxmnpLx0 dm3Wt7yuyZfM5dbIPcLpLBPKyPRRz2pORIjla2jHVapO0/3jEzVYo6YAf095Oqc+ xubyIp04DDtnkydhV4xDJ932o3lEK3uFGfiXPTGvQLsAIdwCqISQjo9lgMih8H5E fRfJIj7GECrsv99MatM4nCzHX6yc664a77ZTMV+rw6zsu24SZAFv1EN35hiC/IPg 9ZUQsMvplj/VjHKprFHhNKK3JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMWpjA/C Ip/VH30fKiunzFZAT+CCMB8GA1UdIwQYMBaAFP1NjGOa3BWEfHtJERWd5xvYE5Ou MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjQ2Mi8zMkM3NTdFNkRD NDUxMUVBODZBNzM3MTNDNEY5QUUwMi9fVTJNWTVyY0ZZUjhlMGtSRlozbkc5Z1Rr NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19VMk1ZNXJjRllSOGUwa1JGWjNuRzlnVGs2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjQ2Mi8zMkM3NTdFNkRDNDUxMUVBODZBNzM3MTNDNEY5QUUwMi9fVTJNWTVyY0ZZ UjhlMGtSRlozbkc5Z1RrNjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCY/fPkcmq7E1aZtFjrdTObovt2cUbpqMfUtLeqBHuu84U8CWD/zumq itvlx5s1WOskAAohxGW5vVwGkE5KlMXD6l3dbkPvV2GTjSx5SBsfWcFLWwEN3Feq A8E3PPwPD4Sp/TFvAzwfEnNDiOcO9vi+7aVLTdszJRAqT4IaZfjIpGbzLeu7kLY6 XfxFJuRecVI4XD3Bg9s2GruPv5lA1DScYW6PwZjkfNJFrgS5h9kUU7SCVptRd5BZ +zIZ1mJ8/Xo+xlnnPSypIdrgyz0fNEeVtBpZ0wJufwsj/tru0R7FnEHVFpOrGhXv fD2EAF3dDQe6aUaaXdhRYJo0ZA2EbgZM -----END CERTIFICATE-----Generated at Sun May 19 00:16:13 2024 by rpki-client on console-fra.rpki-client.org