$ rpki-client -vvf rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft File: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft (raw, json) Hash identifier: tgEHKzUyQVpe52ENxNJyZZekeJLq6My6+oNjQ3IrSYw= Subject key identifier: 8E:E3:0F:09:24:E0:83:B9:9A:85:49:EF:7D:4A:43:E8:41:07:6D:3D Authority key identifier: F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 Certificate issuer: /CN=A9156DB4/serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Certificate serial: 02DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft Manifest number: 02D5 Signing time: Sun 19 May 2024 03:22:32 +0000 Manifest this update: Sun 19 May 2024 03:22:31 +0000 Manifest next update: Sun 26 May 2024 03:22:31 +0000 Files and hashes: 1: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl (hash: RShcwmcLsM4dP3ccjSNi7+ZEszvjWTUJCEcbniYApvY=) 2: 688C6AC29D9D11EC958A216AC4F9AE02.roa (hash: UVjSmdKortc7xXR2V1ZwcpHYtGMB4B0YpUSbuXMU18w=) 3: 854ACCD2DFEA11ECB7DF0A2EC4F9AE02.roa (hash: u4ixDiIah0HRlbgq6Gff8MvIftonQjJ2hGXt/sRAB/s=) 4: 695DB5289D9D11EC958A216AC4F9AE02.roa (hash: SaFx1B9LN0ZyNkvHhJEWt5kJgn2PgssQSYvBTUpmMDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 734 (0x2de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156DB4/serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Validity Not Before: May 19 03:22:31 2024 GMT Not After : May 26 03:22:31 2024 GMT Subject: CN=66497078-af31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:ef:9c:b8:2c:ed:1b:88:59:85:fa:75:f8:9b: 10:6d:81:7a:60:7d:06:08:69:7b:f7:9f:3f:af:5c: ce:66:17:dc:6e:d0:4b:95:64:10:37:aa:dd:de:0e: df:a0:a6:14:a0:4f:78:d0:7c:d8:e7:dc:c9:27:54: 3a:bc:30:47:36:64:de:46:bc:b7:82:e4:61:fb:19: 76:ca:9e:d8:c5:eb:88:84:21:e6:13:ee:32:c2:c5: 27:35:97:35:12:18:54:33:fa:cd:f4:a8:5f:fb:18: 71:c9:ab:a6:ed:97:07:e9:e0:1c:23:4e:4a:2a:32: 0d:c0:cc:6f:9b:0b:47:c1:7e:d9:9c:c3:39:52:fa: ec:e2:30:b1:a8:ea:f9:11:8f:5d:21:4c:6e:76:ab: ab:f5:b5:72:d9:e4:24:bd:67:2d:17:06:77:a0:48: 25:30:03:be:3b:07:ee:6b:67:b0:63:17:2d:c4:41: c4:f1:3f:03:3c:43:7b:f0:c0:c3:a3:73:a7:89:05: 41:a9:ea:d3:71:ab:ce:41:39:10:f2:d8:22:d1:d1: de:10:12:e4:5a:cb:ce:41:69:d2:79:8d:f5:5c:76: 07:de:76:40:e6:7a:96:08:74:4f:69:e5:52:1d:32: 8c:47:eb:41:d9:59:43:f0:89:c1:90:fe:a2:39:c2: fc:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:E3:0F:09:24:E0:83:B9:9A:85:49:EF:7D:4A:43:E8:41:07:6D:3D X509v3 Authority Key Identifier: keyid:F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:31:82:ba:ca:71:e7:72:71:58:c7:7e:d9:92:d0:1a:6e:ec: 15:e6:d2:a6:a3:ff:38:3a:9b:3a:da:69:01:f1:46:18:3e:b7: e0:5e:9e:0c:8c:1e:11:92:ea:b7:86:1e:55:7a:47:15:19:b9: 5c:bf:83:d1:13:a9:32:1b:fd:1b:89:8c:e7:51:0c:39:ae:12: 1b:36:ce:27:49:d6:0a:4f:34:ec:b4:41:65:04:5e:c7:ad:26: 20:3d:d8:b7:3b:91:9f:66:f3:ed:c8:d9:c3:11:33:b3:a5:d2: ca:ff:cf:ae:5c:fd:33:d5:3e:bd:02:7e:7d:01:4b:c9:8b:28: 9e:3c:df:b3:11:c9:e6:1b:73:e6:ae:b5:9b:6d:81:6f:f7:b7: db:75:52:0d:70:11:3e:9a:99:65:f3:00:92:9a:38:a8:92:03: 4e:cd:21:ca:79:81:c6:32:bd:75:87:59:17:c6:13:3b:2c:28: d0:e6:e0:df:35:c9:ca:81:55:ef:05:39:9a:72:13:80:4b:07: fc:cf:3f:b1:08:a4:a3:b1:5f:0f:60:e1:0b:9c:20:5d:ca:91: 5f:26:d0:14:db:99:9d:16:ae:aa:0b:f3:bf:af:c9:26:f0:8b: 0a:b9:3a:b3:ac:4d:c7:0f:d8:4a:65:6c:96:fe:af:06:5d:7d: b6:10:d5:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAt4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTZEQjQxMTAvBgNVBAUTKEYyRDEyNkYxNDIwODZBMjZFM0M1ODRBNzBBQjNFNTI3 QjMwMzgxODIwHhcNMjQwNTE5MDMyMjMxWhcNMjQwNTI2MDMyMjMxWjAYMRYwFAYD VQQDEw02NjQ5NzA3OC1hZjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoO+cuCztG4hZhfp1+JsQbYF6YH0GCGl7958/r1zOZhfcbtBLlWQQN6rd3g7f oKYUoE940HzY59zJJ1Q6vDBHNmTeRry3guRh+xl2yp7YxeuIhCHmE+4ywsUnNZc1 EhhUM/rN9Khf+xhxyaum7ZcH6eAcI05KKjINwMxvmwtHwX7ZnMM5Uvrs4jCxqOr5 EY9dIUxudqur9bVy2eQkvWctFwZ3oEglMAO+Owfua2ewYxctxEHE8T8DPEN78MDD o3OniQVBqerTcavOQTkQ8tgi0dHeEBLkWsvOQWnSeY31XHYH3nZA5nqWCHRPaeVS HTKMR+tB2VlD8InBkP6iOcL8TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI7jDwkk 4IO5moVJ731KQ+hBB209MB8GA1UdIwQYMBaAFPLRJvFCCGom48WEpwqz5SezA4GC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NkRCNC9FODREQjk4QTlE OUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFpYmp4WVNuQ3JQbEo3TURn WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh0RW04VUlJYWlianhZU25DclBsSjdNRGdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NkRCNC9FODREQjk4QTlEOUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFp Ymp4WVNuQ3JQbEo3TURnWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOMYK6ynHncnFYx37ZktAabuwV5tKmo/84Ops62mkB8UYYPrfgXp4M jB4Rkuq3hh5VekcVGblcv4PRE6kyG/0biYznUQw5rhIbNs4nSdYKTzTstEFlBF7H rSYgPdi3O5GfZvPtyNnDETOzpdLK/8+uXP0z1T69An59AUvJiyiePN+zEcnmG3Pm rrWbbYFv97fbdVINcBE+mpll8wCSmjiokgNOzSHKeYHGMr11h1kXxhM7LCjQ5uDf NcnKgVXvBTmachOASwf8zz+xCKSjsV8PYOELnCBdypFfJtAU25mdFq6qC/O/r8km 8IsKuTqzrE3HD9hKZWyW/q8GXX22ENW0 -----END CERTIFICATE-----Generated at Sun May 19 03:48:51 2024 by rpki-client on console-fra.rpki-client.org