$ rpki-client -vvf rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft File: d9okgAToxYcr33K6wSIsfMtujjc.mft (raw, json) Hash identifier: ph4V/sUNYoYT/+cVzYMB+IWnZdx19lCLuiS3HuiMoz4= Subject key identifier: 31:91:64:A2:26:20:DB:4A:E0:76:FC:BE:49:9A:C5:BD:E2:A9:7D:C8 Authority key identifier: 77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 Certificate issuer: /CN=A9156342/serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Certificate serial: 08B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft Manifest number: 0896 Signing time: Sat 18 May 2024 21:34:49 +0000 Manifest this update: Sat 18 May 2024 21:34:48 +0000 Manifest next update: Sat 25 May 2024 21:34:48 +0000 Files and hashes: 1: d9okgAToxYcr33K6wSIsfMtujjc.crl (hash: pDmPrg1n0cm0PcDHX5p4iGSQ59QldCe02dQnyVM6vtQ=) 2: 3AFD491C99E611EAB3C00943C4F9AE02.roa (hash: l3rdDpZz30YsSC80nrWoniyy/AfdmnICXGfhctuIIDk=) 3: 3A58D9F499E611EAB3C00943C4F9AE02.roa (hash: QLB059PUHE1UbeMH66LaVQjEVmCcXSDSbvOoBGw3o3I=) 4: 3BABBD7699E611EAB3C00943C4F9AE02.roa (hash: ofC7tglYcEt0K5DgsHyHVWTgOvFGFcBwV3e64Pwy/mA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2227 (0x8b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156342/serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Validity Not Before: May 18 21:34:48 2024 GMT Not After : May 25 21:34:48 2024 GMT Subject: CN=66491ef9-9e62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:7b:ff:29:3a:fe:8b:b8:8c:72:8b:3c:d7:0b: 5c:8f:7d:04:ea:f5:eb:a3:50:ab:0e:f8:bc:93:8e: b7:42:67:9f:01:7a:4c:ba:87:9d:ef:e5:28:42:d3: 22:a5:6f:40:53:ce:a4:ef:a6:b5:be:9d:8f:d3:dd: 67:f5:98:12:e9:be:a2:c6:d0:4a:c3:ab:6a:25:0e: 56:57:cc:b1:8e:65:96:a7:b7:13:7a:cc:e9:24:72: 48:d6:95:e4:cd:ba:a6:39:a0:85:c1:8e:3d:85:3a: 5d:97:35:fc:54:c9:39:eb:8a:63:70:a1:de:c3:c9: 9a:1c:09:76:bc:b5:d1:d2:49:2e:45:28:89:3f:95: e1:d7:e8:4c:01:70:05:d0:6a:b4:a7:c2:96:4f:6c: d6:ef:52:74:de:a2:dc:5b:11:a8:81:2c:b6:d1:13: 71:2e:1e:02:1e:c2:5c:77:76:15:c1:72:a4:cd:e5: 14:20:c5:4c:ec:ad:cb:7d:f4:44:fb:b4:1f:d0:f0: cc:b7:ac:d7:a9:e4:74:f4:d9:fb:79:a9:54:ce:4f: f8:01:b7:8b:86:e6:8c:a8:fd:48:87:3f:61:0a:32: 19:99:f8:f8:1b:ce:f9:1d:09:5c:aa:43:30:ec:24: 81:f9:3b:ae:83:8e:5a:ae:1c:7e:53:58:0c:2c:03: f7:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:91:64:A2:26:20:DB:4A:E0:76:FC:BE:49:9A:C5:BD:E2:A9:7D:C8 X509v3 Authority Key Identifier: keyid:77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:a9:4d:ef:5b:11:d3:78:8a:cc:a4:fd:a7:aa:79:80:50:03: 3d:a8:9c:72:ee:9a:0b:dc:75:8d:fe:29:2e:9e:ec:82:e3:4f: 3f:d0:f4:fd:85:6d:5a:d9:87:e6:6c:56:1c:fd:3a:0b:c9:31: 0a:5c:d2:83:d6:c0:f9:db:b5:b9:71:ea:70:c2:21:ce:02:4b: 34:9e:6a:8e:59:d8:51:a3:56:e4:6d:3d:b4:4b:9d:0a:e9:1f: 5c:d1:b3:a2:20:a1:3d:77:64:0f:70:13:b7:87:9f:ec:4a:65: 65:73:56:34:a3:79:47:91:8b:9d:fa:c0:a6:e7:a1:b4:f2:b8: 0d:3f:54:19:cf:fe:86:9b:bb:f2:4c:13:15:96:17:03:7b:cd: 53:e3:66:60:ef:31:db:0d:68:06:ca:87:80:5f:f0:06:58:f0: 0a:fb:e0:c5:18:ba:f6:31:25:37:e3:b7:88:3b:ae:70:31:3f: 20:9c:98:1e:63:27:87:c1:af:25:ce:d5:61:ce:a3:05:ed:17: 94:7b:1b:dc:40:ff:3f:53:a4:a2:9a:ca:ee:a5:8b:15:4b:cf: 41:e5:3b:9e:25:9f:2b:c0:9f:10:2b:94:fa:ef:b1:4a:8c:8f: 83:e6:09:c2:dc:ac:83:2d:34:77:c9:1d:ac:22:af:c0:0d:5c: e5:f7:49:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYzNDIxMTAvBgNVBAUTKDc3REEyNDgwMDRFOEM1ODcyQkRGNzJCQUMxMjIyQzdD Q0I2RThFMzcwHhcNMjQwNTE4MjEzNDQ4WhcNMjQwNTI1MjEzNDQ4WjAYMRYwFAYD VQQDEw02NjQ5MWVmOS05ZTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXv/KTr+i7iMcos81wtcj30E6vXro1CrDvi8k463QmefAXpMuoed7+UoQtMi pW9AU86k76a1vp2P091n9ZgS6b6ixtBKw6tqJQ5WV8yxjmWWp7cTeszpJHJI1pXk zbqmOaCFwY49hTpdlzX8VMk564pjcKHew8maHAl2vLXR0kkuRSiJP5Xh1+hMAXAF 0Gq0p8KWT2zW71J03qLcWxGogSy20RNxLh4CHsJcd3YVwXKkzeUUIMVM7K3LffRE +7Qf0PDMt6zXqeR09Nn7ealUzk/4AbeLhuaMqP1Ihz9hCjIZmfj4G875HQlcqkMw 7CSB+Tuug45arhx+U1gMLAP3YwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDGRZKIm INtK4Hb8vkmaxb3iqX3IMB8GA1UdIwQYMBaAFHfaJIAE6MWHK99yusEiLHzLbo43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjM0Mi9CREY4OTA4MDk5 RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZY3IzM0s2d1NJc2ZNdHVq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q5b2tnQVRveFljcjMzSzZ3U0lzZk10dWpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjM0Mi9CREY4OTA4MDk5RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZ Y3IzM0s2d1NJc2ZNdHVqamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6qU3vWxHTeIrMpP2nqnmAUAM9qJxy7poL3HWN/ikunuyC408/0PT9 hW1a2YfmbFYc/ToLyTEKXNKD1sD527W5cepwwiHOAks0nmqOWdhRo1bkbT20S50K 6R9c0bOiIKE9d2QPcBO3h5/sSmVlc1Y0o3lHkYud+sCm56G08rgNP1QZz/6Gm7vy TBMVlhcDe81T42Zg7zHbDWgGyoeAX/AGWPAK++DFGLr2MSU347eIO65wMT8gnJge YyeHwa8lztVhzqMF7ReUexvcQP8/U6SimsrupYsVS89B5TueJZ8rwJ8QK5T677FK jI+D5gnC3KyDLTR3yR2sIq/ADVzl90mt -----END CERTIFICATE-----Generated at Sat May 18 22:14:03 2024 by rpki-client on console-fra.rpki-client.org