$ rpki-client -vvf rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft File: b09GjkMIsA0N9f6shChm1U539dM.mft (raw, json) Hash identifier: lDf7VG4tvrM6DiC7ZMLJ0ZDBbprmEzuvYD6CV16/XG8= Subject key identifier: 71:E9:FB:A4:06:27:31:76:F1:F0:0D:29:9D:05:4E:E8:DC:37:F4:4D Authority key identifier: 6F:4F:46:8E:43:08:B0:0D:0D:F5:FE:AC:84:28:66:D5:4E:77:F5:D3 Certificate issuer: /CN=A915D1A2/serialNumber=6F4F468E4308B00D0DF5FEAC842866D54E77F5D3 Certificate serial: 0BA9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft Manifest number: 0B92 Signing time: Sat 18 May 2024 19:26:28 +0000 Manifest this update: Sat 18 May 2024 19:26:27 +0000 Manifest next update: Sat 25 May 2024 19:26:27 +0000 Files and hashes: 1: b09GjkMIsA0N9f6shChm1U539dM.crl (hash: rEINT9ulklmBLPGJvThbAAX9c+8sdx/RA0DEneQrKuc=) 2: 6D8B82D0D6D811EE8BBA8938C4F9AE02.roa (hash: XbQlgJ5ij8Zawt91ZOfJM2GofSHHlhd8JxuJOM9FhXM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.crl rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2985 (0xba9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D1A2/serialNumber=6F4F468E4308B00D0DF5FEAC842866D54E77F5D3 Validity Not Before: May 18 19:26:27 2024 GMT Not After : May 25 19:26:27 2024 GMT Subject: CN=664900e3-a157 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:f2:7f:3f:88:b0:42:37:b0:0e:32:7e:f3:56: 81:cb:31:d9:d5:3a:85:df:76:d2:74:0b:07:af:95: 8b:ca:65:b6:70:06:4c:55:32:d3:8e:ea:88:3c:78: 6a:bc:fd:6b:b2:4e:d9:22:01:c0:2a:ad:4d:60:e6: 21:29:43:00:87:c3:aa:9b:95:08:5f:da:22:0e:71: e1:b9:ad:dc:e0:26:be:6a:47:5f:05:bc:e3:a3:72: ec:27:4a:6c:78:b4:f7:68:22:c6:3c:0e:85:21:d6: d8:f4:bc:d1:59:5e:46:12:98:13:a6:a8:8c:4a:19: 44:1f:17:f0:9f:39:bf:bc:e0:a0:34:21:e2:7f:ba: 8c:dc:80:c8:31:26:bf:85:c2:5f:21:84:9c:85:65: 5d:c8:b1:0e:cf:13:01:f0:49:0f:3d:c4:d8:98:bc: f8:99:37:59:52:61:a1:eb:8a:e9:f3:ee:5f:31:ed: e7:7f:a6:4f:e8:f6:a9:93:ac:70:2f:47:c1:e3:43: a9:de:4c:91:5b:96:3e:d8:c6:e8:cb:b7:95:cb:5b: d0:1c:35:70:aa:a5:b2:ae:49:3e:1b:f5:10:39:77: cd:5d:f9:72:db:7b:d0:d9:11:6c:47:1c:9a:57:4c: dc:0e:cc:62:f0:d9:0f:af:7d:21:6f:ab:53:08:e1: cd:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:E9:FB:A4:06:27:31:76:F1:F0:0D:29:9D:05:4E:E8:DC:37:F4:4D X509v3 Authority Key Identifier: keyid:6F:4F:46:8E:43:08:B0:0D:0D:F5:FE:AC:84:28:66:D5:4E:77:F5:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:9c:d4:cb:2a:cb:0f:97:03:0a:94:4d:8e:57:3b:56:48:ed: e2:ed:bd:2e:95:3c:8d:fb:ba:e7:0d:7c:78:85:97:94:74:85: bc:7c:5e:71:71:cb:51:94:52:79:9b:aa:a2:68:06:2a:a0:f5: 7e:49:26:12:27:c3:de:3e:6c:9e:ed:90:4b:fd:de:49:db:a1: bd:ff:b3:b9:5c:1c:ff:00:9c:35:79:f6:fa:f0:16:7c:03:45: 9b:36:ef:d7:57:77:ee:4f:31:c2:d0:f4:c5:8c:e6:83:c1:b5: 2a:b6:24:3a:3c:86:ae:b9:1b:bb:f6:46:3a:67:6f:eb:ed:1d: 8e:65:7f:0d:bf:71:a3:ea:db:ce:6b:29:db:ac:39:8c:bf:d7: 0a:26:49:e4:50:9d:f4:21:4e:93:ca:c6:85:db:51:dc:3d:88: 79:f6:5d:d4:0b:9d:4b:a2:46:4a:92:2d:73:45:ce:6a:f6:87: bc:93:c7:0d:e4:10:dc:ab:96:5e:66:87:aa:80:08:78:01:88: 30:cc:63:a9:f7:ea:0b:cf:8f:3e:41:32:25:f6:6e:61:88:b3: da:fc:94:48:39:94:cc:0c:5c:8f:11:7e:19:54:bd:b3:f1:e8: df:23:de:7a:1d:45:54:93:6b:31:45:0f:d7:a5:c7:a2:37:e3: 0f:94:9d:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQxQTIxMTAvBgNVBAUTKDZGNEY0NjhFNDMwOEIwMEQwREY1RkVBQzg0Mjg2NkQ1 NEU3N0Y1RDMwHhcNMjQwNTE4MTkyNjI3WhcNMjQwNTI1MTkyNjI3WjAYMRYwFAYD VQQDEw02NjQ5MDBlMy1hMTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4/J/P4iwQjewDjJ+81aByzHZ1TqF33bSdAsHr5WLymW2cAZMVTLTjuqIPHhq vP1rsk7ZIgHAKq1NYOYhKUMAh8Oqm5UIX9oiDnHhua3c4Ca+akdfBbzjo3LsJ0ps eLT3aCLGPA6FIdbY9LzRWV5GEpgTpqiMShlEHxfwnzm/vOCgNCHif7qM3IDIMSa/ hcJfIYSchWVdyLEOzxMB8EkPPcTYmLz4mTdZUmGh64rp8+5fMe3nf6ZP6Papk6xw L0fB40Op3kyRW5Y+2Mboy7eVy1vQHDVwqqWyrkk+G/UQOXfNXfly23vQ2RFsRxya V0zcDsxi8NkPr30hb6tTCOHN+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHHp+6QG JzF28fANKZ0FTujcN/RNMB8GA1UdIwQYMBaAFG9PRo5DCLANDfX+rIQoZtVOd/XT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDFBMi9ERkQxMUYyODA2 QTYxMUVBODk3NUUzNDFDNEY5QUUwMi9iMDlHamtNSXNBME45ZjZzaENobTFVNTM5 ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IwOUdqa01Jc0EwTjlmNnNoQ2htMVU1MzlkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDFBMi9ERkQxMUYyODA2QTYxMUVBODk3NUUzNDFDNEY5QUUwMi9iMDlHamtNSXNB ME45ZjZzaENobTFVNTM5ZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1nNTLKssPlwMKlE2OVztWSO3i7b0ulTyN+7rnDXx4hZeUdIW8fF5x cctRlFJ5m6qiaAYqoPV+SSYSJ8PePmye7ZBL/d5J26G9/7O5XBz/AJw1efb68BZ8 A0WbNu/XV3fuTzHC0PTFjOaDwbUqtiQ6PIauuRu79kY6Z2/r7R2OZX8Nv3Gj6tvO aynbrDmMv9cKJknkUJ30IU6TysaF21HcPYh59l3UC51LokZKki1zRc5q9oe8k8cN 5BDcq5ZeZoeqgAh4AYgwzGOp9+oLz48+QTIl9m5hiLPa/JRIOZTMDFyPEX4ZVL2z 8ejfI956HUVUk2sxRQ/XpceiN+MPlJ3F -----END CERTIFICATE-----Generated at Sat May 18 19:56:05 2024 by rpki-client on console-fra.rpki-client.org