$ rpki-client -vvf rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.mft File: 9fHi3rMlVisihf-LXeJd8srfdwc.mft (raw, json) Hash identifier: RC2WeRRtqsxXAUtaG789ukotcxim5XeJofhK3u+JtSc= Subject key identifier: A7:A3:D3:04:11:4A:DB:D5:BF:0B:D3:9A:4A:B2:92:64:F6:C0:C0:41 Authority key identifier: F5:F1:E2:DE:B3:25:56:2B:22:85:FF:8B:5D:E2:5D:F2:CA:DF:77:07 Certificate issuer: /CN=A915B4B5/serialNumber=F5F1E2DEB325562B2285FF8B5DE25DF2CADF7707 Certificate serial: 18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9fHi3rMlVisihf-LXeJd8srfdwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.mft Manifest number: 17 Signing time: Sun 19 May 2024 08:42:55 +0000 Manifest this update: Sun 19 May 2024 08:42:55 +0000 Manifest next update: Sun 26 May 2024 08:42:55 +0000 Files and hashes: 1: 9fHi3rMlVisihf-LXeJd8srfdwc.crl (hash: fEOfJnzupohAetTyH4BLfwwQZP7IWsUQ0+LgrskZh9Y=) 2: E0207030F13611EE869F9E34C4F9AE02.roa (hash: OsYm03YOb1sFS9q082zuXs6miPfh1tqBo5SwMn83UWQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.crl rsync://rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9fHi3rMlVisihf-LXeJd8srfdwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B4B5/serialNumber=F5F1E2DEB325562B2285FF8B5DE25DF2CADF7707 Validity Not Before: May 19 08:42:55 2024 GMT Not After : May 26 08:42:55 2024 GMT Subject: CN=6649bb8f-5b9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:57:76:4f:f1:6f:05:d6:0d:45:eb:f0:7c:0a: 21:46:bc:3a:09:b4:7b:9b:2f:be:54:02:ef:7c:f4: 7c:c1:37:89:27:10:ac:85:94:e7:3f:1e:ee:85:89: bf:9e:f6:35:73:06:05:36:c3:15:dc:7a:4b:d3:25: d0:2f:71:bd:47:da:b0:db:4b:75:83:ab:c9:78:96: 08:0e:cf:ce:55:e7:19:55:5b:22:d6:8b:25:f5:f5: 73:1b:c4:01:54:62:46:2d:82:a1:b0:e7:2f:da:3f: 68:9e:42:f9:ae:5a:6b:9e:41:86:c5:72:47:78:2e: 5f:22:a1:a7:cb:73:aa:f6:e3:fe:1a:3a:e1:dd:ed: 7f:49:1c:01:43:f2:fd:2b:e1:3f:4b:39:43:ca:4d: 4d:65:9c:17:47:ce:07:f2:c8:32:ba:a7:e4:99:14: 38:0d:a1:88:b1:2a:00:28:5f:42:ab:5c:a0:27:6e: 0f:e2:6b:2b:43:6f:40:d4:c5:b7:99:69:1e:85:06: bb:7a:5e:8d:48:97:68:55:b4:63:a4:50:d0:ca:11: 60:23:6c:2b:58:ec:40:7a:f4:0e:97:c1:e6:09:83: 06:4d:4a:72:7d:34:b4:8e:ed:21:92:e2:65:19:de: d7:e2:49:da:22:9e:c2:8d:78:7f:8a:1c:a0:d9:33: 1a:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:A3:D3:04:11:4A:DB:D5:BF:0B:D3:9A:4A:B2:92:64:F6:C0:C0:41 X509v3 Authority Key Identifier: keyid:F5:F1:E2:DE:B3:25:56:2B:22:85:FF:8B:5D:E2:5D:F2:CA:DF:77:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9fHi3rMlVisihf-LXeJd8srfdwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:5f:f1:4f:5b:cc:e7:4f:d1:18:ce:ec:69:27:a0:31:8c:a6: a5:9b:87:bc:0b:e9:cc:b1:e4:3a:f1:ab:7d:3a:11:04:e0:8f: 6e:bb:79:fd:15:9e:11:0d:bf:ac:85:f9:ae:f0:d3:04:45:ca: c6:60:d0:ba:17:9f:31:49:9b:c3:af:ca:32:8f:99:69:8b:ae: 28:b3:8f:3a:89:0f:a8:c4:41:61:c6:e2:a9:c4:e1:a4:47:15: 00:8e:6b:a0:9c:e4:8c:0f:af:d8:80:00:56:9e:45:93:49:22: 12:b7:f8:93:ef:fd:c2:6f:02:b1:4d:50:6d:cd:bf:bd:e2:ba: 99:94:1a:9f:fb:c2:58:9d:1f:bb:77:44:38:56:ef:92:55:b4: 37:9f:1d:53:15:75:a7:fe:f1:78:ae:ce:95:0a:c8:38:63:b2: 43:9c:36:b8:eb:a6:38:cf:0f:d7:03:6a:27:32:96:c3:bb:a1: 70:03:b4:16:ba:c7:30:c5:1b:19:96:20:f8:d8:20:14:7d:c0: 50:ce:38:d5:7b:ed:cb:8c:dc:4d:02:ff:0c:4f:ec:18:30:a1: f0:49:30:78:f2:4d:03:f0:eb:84:83:23:47:a8:4e:c5:42:71: 0a:f7:8d:89:04:92:67:e4:da:af:82:26:4b:af:03:c3:c4:66: be:40:ba:86 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QjRCNTExMC8GA1UEBRMoRjVGMUUyREVCMzI1NTYyQjIyODVGRjhCNURFMjVERjJD QURGNzcwNzAeFw0yNDA1MTkwODQyNTVaFw0yNDA1MjYwODQyNTVaMBgxFjAUBgNV BAMTDTY2NDliYjhmLTViOWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCfV3ZP8W8F1g1F6/B8CiFGvDoJtHubL75UAu989HzBN4knEKyFlOc/Hu6Fib+e 9jVzBgU2wxXcekvTJdAvcb1H2rDbS3WDq8l4lggOz85V5xlVWyLWiyX19XMbxAFU YkYtgqGw5y/aP2ieQvmuWmueQYbFckd4Ll8ioafLc6r24/4aOuHd7X9JHAFD8v0r 4T9LOUPKTU1lnBdHzgfyyDK6p+SZFDgNoYixKgAoX0KrXKAnbg/iaytDb0DUxbeZ aR6FBrt6Xo1Il2hVtGOkUNDKEWAjbCtY7EB69A6XweYJgwZNSnJ9NLSO7SGS4mUZ 3tfiSdoinsKNeH+KHKDZMxrvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUp6PTBBFK 29W/C9OaSrKSZPbAwEEwHwYDVR0jBBgwFoAU9fHi3rMlVisihf+LXeJd8srfdwcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVCNEI1LzQwQ0U5RjJBRjEz NjExRUU5MDhCRjAzMkM0RjlBRTAyLzlmSGkzck1sVmlzaWhmLUxYZUpkOHNyZmR3 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOWZIaTNyTWxWaXNpaGYtTFhlSmQ4c3JmZHdjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVC NEI1LzQwQ0U5RjJBRjEzNjExRUU5MDhCRjAzMkM0RjlBRTAyLzlmSGkzck1sVmlz aWhmLUxYZUpkOHNyZmR3Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAItf8U9bzOdP0RjO7GknoDGMpqWbh7wL6cyx5Drxq306EQTgj267ef0V nhENv6yF+a7w0wRFysZg0LoXnzFJm8OvyjKPmWmLriizjzqJD6jEQWHG4qnE4aRH FQCOa6Cc5IwPr9iAAFaeRZNJIhK3+JPv/cJvArFNUG3Nv73iupmUGp/7wlidH7t3 RDhW75JVtDefHVMVdaf+8XiuzpUKyDhjskOcNrjrpjjPD9cDaicylsO7oXADtBa6 xzDFGxmWIPjYIBR9wFDOONV77cuM3E0C/wxP7BgwofBJMHjyTQPw64SDI0eoTsVC cQr3jYkEkmfk2q+CJkuvA8PEZr5AuoY= -----END CERTIFICATE-----Generated at Sun May 19 09:38:26 2024 by rpki-client on console-fra.rpki-client.org