$ rpki-client -vvf rpki.apnic.net/member_repository/A9153490/99198F12D05411EEAF799F16C4F9AE02/E3NT0OjBRaWAywC8MiIInEBIrlE.mft File: E3NT0OjBRaWAywC8MiIInEBIrlE.mft (raw, json) Hash identifier: S+WONDZx/KFMg1eY7q92vk78JhR1sVJYXFE6XoKtNOs= Subject key identifier: 2D:25:D4:29:D3:1C:BA:33:27:A9:61:64:DA:9B:1E:BF:B8:29:19:4F Authority key identifier: 13:73:53:D0:E8:C1:45:A5:80:CB:00:BC:32:22:08:9C:40:48:AE:51 Certificate issuer: /CN=A9153490/serialNumber=137353D0E8C145A580CB00BC3222089C4048AE51 Certificate serial: 34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E3NT0OjBRaWAywC8MiIInEBIrlE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153490/99198F12D05411EEAF799F16C4F9AE02/E3NT0OjBRaWAywC8MiIInEBIrlE.mft Manifest number: 30 Signing time: Sun 19 May 2024 08:25:20 +0000 Manifest this update: Sun 19 May 2024 08:25:20 +0000 Manifest next update: Sun 26 May 2024 08:25:20 +0000 Files and hashes: 1: E3NT0OjBRaWAywC8MiIInEBIrlE.crl (hash: xFz/SAHB1y0WJiJQClXKymWF0/fRda0C0FfnSvgbD4I=) 2: 0FE13C92EBB411EE9D86095BC4F9AE02.roa (hash: Urnbb3WwZrA7rnMnP0+t9Rx88lYq3mJh+CKBhIzde4E=) 3: 1040CDC4EBB411EE9D86095BC4F9AE02.roa (hash: HX1UJ6Z1gWtshlGvKrZML4BzjT3RV1AiLypvinMfc/s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153490/99198F12D05411EEAF799F16C4F9AE02/E3NT0OjBRaWAywC8MiIInEBIrlE.crl rsync://rpki.apnic.net/member_repository/A9153490/99198F12D05411EEAF799F16C4F9AE02/E3NT0OjBRaWAywC8MiIInEBIrlE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E3NT0OjBRaWAywC8MiIInEBIrlE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153490/serialNumber=137353D0E8C145A580CB00BC3222089C4048AE51 Validity Not Before: May 19 08:25:20 2024 GMT Not After : May 26 08:25:20 2024 GMT Subject: CN=6649b770-28f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:88:59:0c:de:a1:51:18:2f:a7:85:01:75:fb: 75:c8:2a:4d:3b:ed:e2:8d:c7:f8:30:f9:f9:0f:1e: 2e:f7:2f:e4:d5:a0:17:dc:1b:c6:93:33:19:45:c7: 72:d9:74:4b:00:60:3d:7d:07:eb:75:17:36:ff:32: ed:4a:84:df:0b:64:5b:4e:9d:7b:a8:8e:bb:3d:3e: 53:2c:7b:d4:f0:e5:b7:ee:e8:0a:50:ad:e8:d9:be: 3e:4b:de:b1:53:04:4f:af:48:9e:20:18:85:18:59: ae:fa:d4:4e:db:0d:a9:0e:fe:15:91:58:90:22:7f: b6:73:32:9b:7e:51:7d:a3:4e:53:91:92:82:e0:a7: 9a:14:3f:d0:0e:de:86:c1:09:5a:ee:6b:36:c7:a1: c0:05:26:30:4d:1c:9f:c7:94:8d:fb:bc:55:c5:94: d4:3c:d3:61:af:79:c8:4c:02:d5:a4:cf:44:0c:d0: c9:6f:e3:c0:6f:b4:4d:99:af:1b:0e:bc:3f:4d:61: 0f:d1:ac:bf:78:12:e8:4d:7a:6c:4a:75:6a:ac:f8: 60:87:9b:8a:15:a5:c1:da:70:1e:8c:f0:35:ed:ee: 3b:15:c4:e8:22:e7:61:d4:d4:95:58:3d:b3:cb:ce: 7a:00:7d:ac:15:39:df:b8:45:e8:70:0d:24:06:af: fa:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:25:D4:29:D3:1C:BA:33:27:A9:61:64:DA:9B:1E:BF:B8:29:19:4F X509v3 Authority Key Identifier: keyid:13:73:53:D0:E8:C1:45:A5:80:CB:00:BC:32:22:08:9C:40:48:AE:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153490/99198F12D05411EEAF799F16C4F9AE02/E3NT0OjBRaWAywC8MiIInEBIrlE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E3NT0OjBRaWAywC8MiIInEBIrlE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153490/99198F12D05411EEAF799F16C4F9AE02/E3NT0OjBRaWAywC8MiIInEBIrlE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:02:6a:ad:7e:23:5d:8f:56:02:69:f4:23:9c:23:de:14:c4: e8:81:d4:22:d0:2c:b8:d3:e5:fe:90:40:26:61:48:08:2c:ff: ed:39:f0:be:4f:6d:a2:b9:34:00:6d:f1:92:6b:07:c0:80:79: 75:82:75:c4:87:31:1c:eb:f5:f5:24:41:87:b0:72:6d:1a:7f: 46:2e:2c:4a:02:aa:c7:20:57:ba:ea:3a:a7:d7:7b:99:4f:27: 52:45:3e:f8:19:50:84:f8:08:ca:22:54:83:45:27:9a:3b:b0: 71:1c:de:0c:e2:a3:ed:28:f8:c4:c1:36:75:f7:68:06:e3:0d: 02:a0:91:97:df:94:d6:8b:07:6c:12:79:bc:52:28:8b:fb:93: 9a:ea:ef:3b:b1:d5:a3:3b:5f:eb:2e:63:f9:b9:52:cf:11:be: 89:79:ab:bb:53:25:bb:83:79:e1:f8:db:f9:ff:4a:82:f0:25: bf:fd:0b:f6:be:96:c5:2a:e9:02:52:4d:e6:05:77:4a:e1:cd: 09:5f:41:2c:76:9d:99:5e:a7:c4:13:3e:73:05:b4:ec:06:70: 33:a7:4a:47:14:b9:76:49:ca:7c:0e:cf:fc:03:b5:37:f0:a2: 95:e2:9a:d1:46:bf:25:49:8a:ff:90:f8:a7:ee:ba:4b:e7:80: 1d:ea:58:14 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MzQ5MDExMC8GA1UEBRMoMTM3MzUzRDBFOEMxNDVBNTgwQ0IwMEJDMzIyMjA4OUM0 MDQ4QUU1MTAeFw0yNDA1MTkwODI1MjBaFw0yNDA1MjYwODI1MjBaMBgxFjAUBgNV BAMTDTY2NDliNzcwLTI4ZjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCgiFkM3qFRGC+nhQF1+3XIKk077eKNx/gw+fkPHi73L+TVoBfcG8aTMxlFx3LZ dEsAYD19B+t1Fzb/Mu1KhN8LZFtOnXuojrs9PlMse9Tw5bfu6ApQrejZvj5L3rFT BE+vSJ4gGIUYWa761E7bDakO/hWRWJAif7ZzMpt+UX2jTlORkoLgp5oUP9AO3obB CVruazbHocAFJjBNHJ/HlI37vFXFlNQ802GvechMAtWkz0QM0Mlv48BvtE2ZrxsO vD9NYQ/RrL94EuhNemxKdWqs+GCHm4oVpcHacB6M8DXt7jsVxOgi52HU1JVYPbPL znoAfawVOd+4RehwDSQGr/rFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQULSXUKdMc ujMnqWFk2psev7gpGU8wHwYDVR0jBBgwFoAUE3NT0OjBRaWAywC8MiIInEBIrlEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUzNDkwLzk5MTk4RjEyRDA1 NDExRUVBRjc5OUYxNkM0RjlBRTAyL0UzTlQwT2pCUmFXQXl3QzhNaUlJbkVCSXJs RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRTNOVDBPakJSYVdBeXdDOE1pSUluRUJJcmxFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUz NDkwLzk5MTk4RjEyRDA1NDExRUVBRjc5OUYxNkM0RjlBRTAyL0UzTlQwT2pCUmFX QXl3QzhNaUlJbkVCSXJsRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGoCaq1+I12PVgJp9COcI94UxOiB1CLQLLjT5f6QQCZhSAgs/+058L5P baK5NABt8ZJrB8CAeXWCdcSHMRzr9fUkQYewcm0af0YuLEoCqscgV7rqOqfXe5lP J1JFPvgZUIT4CMoiVINFJ5o7sHEc3gzio+0o+MTBNnX3aAbjDQKgkZfflNaLB2wS ebxSKIv7k5rq7zux1aM7X+suY/m5Us8Rvol5q7tTJbuDeeH42/n/SoLwJb/9C/a+ lsUq6QJSTeYFd0rhzQlfQSx2nZlep8QTPnMFtOwGcDOnSkcUuXZJynwOz/wDtTfw opXimtFGvyVJiv+Q+KfuukvngB3qWBQ= -----END CERTIFICATE-----Generated at Sun May 19 09:04:13 2024 by rpki-client on console-fra.rpki-client.org