$ rpki-client -vvf rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft File: 1fozYzT5muNj6lhn0o6KUCMeQiA.mft (raw, json) Hash identifier: LWmkGjwgrzpIClFXvf9ri/xN/rE0llAABTsa+uhBy1Q= Subject key identifier: 8E:A6:F2:B5:43:C7:DF:F6:CA:A3:B7:74:60:2F:E5:A3:4D:52:8B:F4 Authority key identifier: D5:FA:33:63:34:F9:9A:E3:63:EA:58:67:D2:8E:8A:50:23:1E:42:20 Certificate issuer: /CN=A915F2B8/serialNumber=D5FA336334F99AE363EA5867D28E8A50231E4220 Certificate serial: DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft Manifest number: D9 Signing time: Sun 19 May 2024 06:04:54 +0000 Manifest this update: Sun 19 May 2024 06:04:53 +0000 Manifest next update: Sun 26 May 2024 06:04:53 +0000 Files and hashes: 1: 1fozYzT5muNj6lhn0o6KUCMeQiA.crl (hash: xFFs1HAzGiY3dVBA+2ICtJvAc459rYRQP+3f8aYdkhU=) 2: 207C45B0CC2F11EDABE25F72C4F9AE02.roa (hash: 2eqS5cjF9sa6KMzGcQfKPVCA5SVXZZKPARO3qSqHB6Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.crl rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F2B8/serialNumber=D5FA336334F99AE363EA5867D28E8A50231E4220 Validity Not Before: May 19 06:04:53 2024 GMT Not After : May 26 06:04:53 2024 GMT Subject: CN=66499685-dbb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:6f:c5:9c:43:f5:66:78:4a:95:64:5e:84:c5: a7:02:27:a0:07:46:f7:cd:e3:c7:fe:1a:f2:48:2d: ce:61:21:5c:67:58:48:16:34:fc:64:e3:bb:06:60: 01:1f:60:26:a4:70:8a:44:a7:c8:28:fa:de:6f:8e: e1:c4:c6:8f:af:05:c3:7e:0a:b4:40:ad:fb:55:af: 9c:bc:01:60:4b:2a:6c:b7:31:01:9a:16:38:d0:de: 22:82:bf:bd:41:11:5c:0d:9f:5f:3d:ff:89:6d:99: 93:5e:29:20:95:b6:2e:8d:dd:95:57:dd:fd:ed:9e: 55:93:5e:79:d0:a1:e0:28:66:fc:42:24:61:96:08: 04:ee:df:0b:e9:41:37:67:2b:1a:52:40:d3:5c:f1: d2:95:42:a7:4b:19:88:69:25:42:38:5a:84:58:96: 15:84:8e:ba:84:bb:d0:2c:46:09:d3:17:42:1c:60: a9:62:eb:73:64:e1:c3:b4:9e:9d:ee:fe:a1:fc:8d: b6:99:e1:df:84:c0:f4:23:fe:a9:f8:8b:aa:bc:37: 3f:f3:a0:be:9d:35:fe:2f:51:2d:0b:03:db:20:b3: f8:13:ea:4a:40:96:23:9f:d8:2f:74:79:f1:0e:6c: 0d:e1:72:86:ed:02:cd:31:b4:e1:f2:93:21:10:12: 79:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:A6:F2:B5:43:C7:DF:F6:CA:A3:B7:74:60:2F:E5:A3:4D:52:8B:F4 X509v3 Authority Key Identifier: keyid:D5:FA:33:63:34:F9:9A:E3:63:EA:58:67:D2:8E:8A:50:23:1E:42:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:8a:ff:b4:de:6a:f9:63:b7:8e:4e:33:1b:ca:70:1f:7b:cf: 1f:ba:6a:bf:40:41:3e:7b:61:f2:5a:e4:fd:03:53:7e:cd:a3: fd:72:0f:c3:ab:bb:c7:0c:ec:3e:82:ee:74:57:a7:6a:1e:b7: af:39:0c:17:06:02:81:c4:50:8f:d5:b3:4f:5d:56:9e:1d:c8: b9:0f:fa:ff:c9:a6:9a:b8:fd:65:06:3a:a9:88:92:7a:d8:a8: 2a:40:14:88:23:03:5a:3b:10:0f:5f:c8:cc:c1:ec:c8:d2:ce: 61:f4:36:af:42:5b:2d:67:2f:85:4b:29:94:b1:45:ed:3a:2f: 74:e3:33:9c:63:ee:d9:be:5d:35:0e:2e:a7:6f:62:18:41:00: ea:32:0f:b7:2d:9c:84:fe:c6:79:83:4a:41:69:cc:4a:ba:cd: 02:35:d6:c6:7b:62:30:21:52:a6:73:87:c7:e2:b7:42:07:31: 53:13:a0:4b:fe:91:94:50:b3:ba:9d:76:ba:87:eb:bd:7d:b9: 34:27:6f:4c:8b:df:4b:a3:48:2b:2d:3a:11:1f:c8:bb:50:40: 7b:62:71:d1:88:dc:7b:c7:5a:12:bf:03:e4:82:55:a9:a2:99: 99:6c:c8:18:55:2d:c6:b2:a3:75:a2:dd:60:61:27:79:bc:7b: 13:e1:fa:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUYyQjgxMTAvBgNVBAUTKEQ1RkEzMzYzMzRGOTlBRTM2M0VBNTg2N0QyOEU4QTUw MjMxRTQyMjAwHhcNMjQwNTE5MDYwNDUzWhcNMjQwNTI2MDYwNDUzWjAYMRYwFAYD VQQDEw02NjQ5OTY4NS1kYmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAum/FnEP1ZnhKlWRehMWnAiegB0b3zePH/hrySC3OYSFcZ1hIFjT8ZOO7BmAB H2AmpHCKRKfIKPreb47hxMaPrwXDfgq0QK37Va+cvAFgSypstzEBmhY40N4igr+9 QRFcDZ9fPf+JbZmTXikglbYujd2VV9397Z5Vk1550KHgKGb8QiRhlggE7t8L6UE3 ZysaUkDTXPHSlUKnSxmIaSVCOFqEWJYVhI66hLvQLEYJ0xdCHGCpYutzZOHDtJ6d 7v6h/I22meHfhMD0I/6p+IuqvDc/86C+nTX+L1EtCwPbILP4E+pKQJYjn9gvdHnx DmwN4XKG7QLNMbTh8pMhEBJ5swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI6m8rVD x9/2yqO3dGAv5aNNUov0MB8GA1UdIwQYMBaAFNX6M2M0+ZrjY+pYZ9KOilAjHkIg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RjJCOC8yRjE3NjA4QUND MkMxMUVEQjk4NjA1NzFDNEY5QUUwMi8xZm96WXpUNW11Tmo2bGhuMG82S1VDTWVR aUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFmb3pZelQ1bXVOajZsaG4wbzZLVUNNZVFpQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RjJCOC8yRjE3NjA4QUNDMkMxMUVEQjk4NjA1NzFDNEY5QUUwMi8xZm96WXpUNW11 Tmo2bGhuMG82S1VDTWVRaUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjiv+03mr5Y7eOTjMbynAfe88fumq/QEE+e2HyWuT9A1N+zaP9cg/D q7vHDOw+gu50V6dqHrevOQwXBgKBxFCP1bNPXVaeHci5D/r/yaaauP1lBjqpiJJ6 2KgqQBSIIwNaOxAPX8jMwezI0s5h9DavQlstZy+FSymUsUXtOi904zOcY+7Zvl01 Di6nb2IYQQDqMg+3LZyE/sZ5g0pBacxKus0CNdbGe2IwIVKmc4fH4rdCBzFTE6BL /pGUULO6nXa6h+u9fbk0J29Mi99Lo0grLToRH8i7UEB7YnHRiNx7x1oSvwPkglWp opmZbMgYVS3GsqN1ot1gYSd5vHsT4frb -----END CERTIFICATE-----Generated at Sun May 19 07:40:39 2024 by rpki-client on console-fra.rpki-client.org