$ rpki-client -vvf rpki.apnic.net/member_repository/A9162661/32911D184FDB11E99AF34C5CC4F9AE02/rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.mft File: rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.mft (raw, json) Hash identifier: kyD9s7W5sGWDle35W3RxOE0SxTuxt6h5rFFT7kB0/50= Subject key identifier: B7:20:09:4B:ED:8D:11:CF:CA:B2:0C:36:57:6E:C5:A7:CC:84:82:FF Authority key identifier: AC:D2:6F:13:4F:CE:07:64:CC:67:FC:9F:26:5C:78:53:41:C1:B5:D4 Certificate issuer: /CN=A9162661/serialNumber=ACD26F134FCE0764CC67FC9F265C785341C1B5D4 Certificate serial: 0F27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9162661/32911D184FDB11E99AF34C5CC4F9AE02/rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.mft Manifest number: 0F1D Signing time: Sat 18 May 2024 18:13:05 +0000 Manifest this update: Sat 18 May 2024 18:13:04 +0000 Manifest next update: Sat 25 May 2024 18:13:04 +0000 Files and hashes: 1: rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.crl (hash: q5K+wWqHpL4DGsF4pSL1uWlABmlRsk0dcBl6tyhUEQk=) 2: EA88C7CAE17A11EC93AB7473C4F9AE02.roa (hash: QpqS9rWaSIODcNEhubTPIYFD1obbpwik5EwG/Xe9goY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9162661/32911D184FDB11E99AF34C5CC4F9AE02/rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.crl rsync://rpki.apnic.net/member_repository/A9162661/32911D184FDB11E99AF34C5CC4F9AE02/rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3879 (0xf27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162661/serialNumber=ACD26F134FCE0764CC67FC9F265C785341C1B5D4 Validity Not Before: May 18 18:13:04 2024 GMT Not After : May 25 18:13:04 2024 GMT Subject: CN=6648efb1-bcb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:74:6d:51:74:d5:76:9b:a1:fe:d4:15:c0:d4: c9:d5:7d:87:87:d7:86:98:d4:12:0d:cc:3a:4f:65: 59:84:d9:cf:d7:fb:68:75:f0:63:00:b5:5d:2c:7a: 2c:67:b5:3b:d8:f8:cd:9f:8a:8c:a5:45:9e:a5:35: 2a:83:d4:cf:ef:e5:d3:9b:da:01:a4:d9:28:fd:14: 32:58:05:d3:41:6d:2a:95:cb:9d:ee:87:82:a1:af: b6:a6:bf:89:b7:ca:f8:6c:26:82:bd:cd:af:ca:7b: be:b9:0c:db:49:e2:1c:03:59:8a:61:54:af:7f:c0: 7e:16:a7:de:90:b4:15:2f:b5:7c:46:55:f9:dc:3d: 75:c3:56:2a:93:57:1e:45:33:88:6a:35:6f:ab:c5: 11:43:9a:e3:1c:92:83:3d:ac:16:c8:24:30:2a:2f: 7d:5b:6c:4e:07:a3:15:ac:56:c8:98:97:d0:61:6e: d8:f4:b2:14:87:bd:23:d0:30:4a:b1:92:77:6b:1f: 48:b7:e1:79:4c:93:96:70:dd:38:d4:d1:a7:77:2a: a3:94:df:8b:4f:ff:ec:be:43:ea:ef:53:29:1d:b5: dd:19:e7:4b:e7:73:ed:e6:ea:d5:7a:e7:5d:71:d5: 0f:66:65:80:60:ae:bf:64:4c:f0:fa:9c:14:24:98: 62:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:20:09:4B:ED:8D:11:CF:CA:B2:0C:36:57:6E:C5:A7:CC:84:82:FF X509v3 Authority Key Identifier: keyid:AC:D2:6F:13:4F:CE:07:64:CC:67:FC:9F:26:5C:78:53:41:C1:B5:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9162661/32911D184FDB11E99AF34C5CC4F9AE02/rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9162661/32911D184FDB11E99AF34C5CC4F9AE02/rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:ca:c7:67:0a:30:6a:c8:89:2a:0e:e2:0a:b3:14:7e:64:75: 97:c5:bd:aa:7e:d1:61:92:4b:77:1a:e6:99:9b:a1:30:5f:c9: 2e:6a:6e:87:de:29:58:7b:5f:7b:29:8f:07:82:d0:3e:3e:a9: 9c:a6:d1:35:fa:6e:51:c4:80:c7:d1:40:34:48:2c:1e:d8:32: ab:c8:dc:df:f6:95:14:c4:88:d9:05:39:0e:db:60:87:25:f9: 48:08:e9:bb:0b:b6:37:1a:ce:62:45:a7:07:4b:ab:cc:06:57: 4d:6d:4f:63:fe:b5:cc:f9:88:b6:4a:0e:f0:de:7b:ce:56:9f: 75:f7:da:66:4f:d2:73:bd:7e:1c:be:2b:d0:61:c3:48:97:f5: 0e:20:c0:90:3a:30:7e:1e:e6:5d:2d:5e:70:3c:37:b6:7a:35: 72:57:8f:fa:ae:28:e7:62:8a:6d:9a:d3:07:97:ad:69:08:e3: 63:81:f0:36:63:bd:2e:19:1d:24:2d:08:75:ef:11:f9:53:ee: 0d:6f:9b:51:e9:4e:a8:12:5a:86:37:52:14:ce:71:72:5e:d9: 5c:1a:f3:72:4f:7e:a6:9f:38:cd:23:eb:e7:c6:fd:1a:e7:b4: 5f:27:d2:e6:cc:1f:8e:ac:d0:56:12:50:cb:1a:27:43:4f:f7: af:0f:73:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDycwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI2NjExMTAvBgNVBAUTKEFDRDI2RjEzNEZDRTA3NjRDQzY3RkM5RjI2NUM3ODUz NDFDMUI1RDQwHhcNMjQwNTE4MTgxMzA0WhcNMjQwNTI1MTgxMzA0WjAYMRYwFAYD VQQDEw02NjQ4ZWZiMS1iY2IyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0XRtUXTVdpuh/tQVwNTJ1X2Hh9eGmNQSDcw6T2VZhNnP1/todfBjALVdLHos Z7U72PjNn4qMpUWepTUqg9TP7+XTm9oBpNko/RQyWAXTQW0qlcud7oeCoa+2pr+J t8r4bCaCvc2vynu+uQzbSeIcA1mKYVSvf8B+FqfekLQVL7V8RlX53D11w1Yqk1ce RTOIajVvq8URQ5rjHJKDPawWyCQwKi99W2xOB6MVrFbImJfQYW7Y9LIUh70j0DBK sZJ3ax9It+F5TJOWcN041NGndyqjlN+LT//svkPq71MpHbXdGedL53Pt5urVeudd cdUPZmWAYK6/ZEzw+pwUJJhitwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLcgCUvt jRHPyrIMNlduxafMhIL/MB8GA1UdIwQYMBaAFKzSbxNPzgdkzGf8nyZceFNBwbXU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjY2MS8zMjkxMUQxODRG REIxMUU5OUFGMzRDNUNDNEY5QUUwMi9yTkp2RTBfT0IyVE1aX3lmSmx4NFUwSEJ0 ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JOSnZFMF9PQjJUTVpfeWZKbHg0VTBIQnRkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjY2MS8zMjkxMUQxODRGREIxMUU5OUFGMzRDNUNDNEY5QUUwMi9yTkp2RTBfT0Iy VE1aX3lmSmx4NFUwSEJ0ZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4ysdnCjBqyIkqDuIKsxR+ZHWXxb2qftFhkkt3GuaZm6EwX8kuam6H 3ilYe197KY8HgtA+PqmcptE1+m5RxIDH0UA0SCwe2DKryNzf9pUUxIjZBTkO22CH JflICOm7C7Y3Gs5iRacHS6vMBldNbU9j/rXM+Yi2Sg7w3nvOVp9199pmT9JzvX4c vivQYcNIl/UOIMCQOjB+HuZdLV5wPDe2ejVyV4/6rijnYoptmtMHl61pCONjgfA2 Y70uGR0kLQh17xH5U+4Nb5tR6U6oElqGN1IUznFyXtlcGvNyT36mnzjNI+vnxv0a 57RfJ9LmzB+OrNBWElDLGidDT/evD3PV -----END CERTIFICATE-----Generated at Sat May 18 18:46:45 2024 by rpki-client on console-fra.rpki-client.org