$ rpki-client -vvf rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft File: p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft (raw, json) Hash identifier: 8VONXbEaA4B3U2JHz1HKBf9CkiwAwucs259mHM/hwcY= Subject key identifier: 56:08:B9:BC:E2:D5:6F:5E:74:F8:57:B2:9A:2A:D3:59:22:1E:68:18 Authority key identifier: A7:F8:82:C0:AC:C8:F0:D8:F1:DB:36:1C:D4:0B:12:60:6B:0C:68:C6 Certificate issuer: /CN=A9165297/serialNumber=A7F882C0ACC8F0D8F1DB361CD40B12606B0C68C6 Certificate serial: 0D39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft Manifest number: 0D32 Signing time: Sat 18 May 2024 18:41:52 +0000 Manifest this update: Sat 18 May 2024 18:41:51 +0000 Manifest next update: Sat 25 May 2024 18:41:51 +0000 Files and hashes: 1: p_iCwKzI8Njx2zYc1AsSYGsMaMY.crl (hash: BXUm8mPLk03DnhSUPlYZiolTXjhPECPS15Gp5YVZydA=) 2: 457A00A8AF7A11E9AFF10782C4F9AE02.roa (hash: zAJ0Psdw+r5YaEkYegm0a/6WBpMfoZA5skXEJaS74So=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.crl rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3385 (0xd39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165297/serialNumber=A7F882C0ACC8F0D8F1DB361CD40B12606B0C68C6 Validity Not Before: May 18 18:41:51 2024 GMT Not After : May 25 18:41:51 2024 GMT Subject: CN=6648f66f-f722 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f1:d8:09:f8:a4:f8:c3:36:1d:51:9f:d2:5d: cf:00:b4:26:39:b7:ad:3d:4a:07:1f:4b:e2:87:1e: 09:bb:fc:a0:bc:f7:e7:c4:ab:e2:30:bc:06:9c:0f: d3:1c:11:b5:1f:c1:74:e4:cd:62:1e:a1:98:fd:cc: 50:3b:3c:d7:7a:92:3b:b6:7f:45:ca:ee:58:cc:17: 48:79:be:26:9a:ab:f8:8e:f6:31:94:56:0f:88:87: 73:00:ff:84:64:b6:69:70:db:79:18:7b:91:79:8a: 21:ab:8a:eb:05:84:0f:2c:1e:36:12:2f:41:f9:8e: 27:45:3f:c9:bc:40:b1:68:6a:a0:c0:01:0b:14:f3: c6:64:14:9a:6e:e7:1d:6b:aa:22:09:8b:3b:aa:84: 1c:70:37:c1:ac:b4:44:b0:c1:ce:47:81:18:09:17: 3d:ef:b8:d5:d5:59:1c:75:a0:4a:d0:d8:af:97:4f: 6e:ad:62:84:7c:3d:1f:93:5a:c5:51:15:3b:e4:8f: a2:17:7a:f9:ed:ad:21:3a:0a:8f:c7:32:f8:e4:bd: 99:86:7d:69:fb:8f:77:13:33:ec:8f:06:89:90:28: 0e:b9:f9:58:bc:68:a9:fb:c4:ef:6a:3f:c4:00:34: 65:6f:83:8f:b4:a9:b0:cc:61:7c:7e:b9:39:ae:f4: 16:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:08:B9:BC:E2:D5:6F:5E:74:F8:57:B2:9A:2A:D3:59:22:1E:68:18 X509v3 Authority Key Identifier: keyid:A7:F8:82:C0:AC:C8:F0:D8:F1:DB:36:1C:D4:0B:12:60:6B:0C:68:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption de:92:52:48:99:39:b5:46:d0:cb:73:60:2b:b3:66:63:46:5c: 3d:03:b5:42:4d:3c:67:40:12:55:af:6e:12:5a:18:8a:d2:42: 8b:b4:bc:ef:23:20:20:1b:13:04:33:73:1e:40:c0:48:d4:a4: 6f:c6:b9:1c:0e:d6:e1:84:a6:d6:a7:de:5b:02:54:0c:48:e3: 0c:09:ce:6e:96:db:18:85:43:07:9d:a5:9a:10:b5:f1:45:04: 15:93:8e:6b:c9:74:31:d7:28:12:5b:81:b5:a3:48:9b:0f:4b: a7:34:d2:01:c3:5f:70:9d:85:a8:92:d2:07:58:bf:db:7b:ed: 3a:21:a1:ab:07:da:7d:c0:9e:1e:51:37:5a:17:13:3f:bd:0d: 6f:b6:36:9b:33:94:0f:ef:47:5b:eb:40:8d:a7:46:c3:2b:17: 1e:46:cc:6f:93:bb:d6:fc:ee:b1:a7:b5:f9:61:9e:c2:34:58: fe:d1:9c:e0:8d:5a:14:15:0e:39:13:7c:14:f7:98:aa:14:90: 6c:93:a4:ef:9f:6d:9f:9c:ae:a1:9b:f3:6d:35:f5:93:1b:67: 93:cb:00:e2:54:86:64:e2:12:37:c6:9b:d7:8b:f9:56:88:b6: 98:52:d4:e3:b6:d4:06:0f:8b:3f:1c:03:43:11:6c:4c:10:7d: 46:ff:32:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDTkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUyOTcxMTAvBgNVBAUTKEE3Rjg4MkMwQUNDOEYwRDhGMURCMzYxQ0Q0MEIxMjYw NkIwQzY4QzYwHhcNMjQwNTE4MTg0MTUxWhcNMjQwNTI1MTg0MTUxWjAYMRYwFAYD VQQDEw02NjQ4ZjY2Zi1mNzIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnvHYCfik+MM2HVGf0l3PALQmObetPUoHH0vihx4Ju/ygvPfnxKviMLwGnA/T HBG1H8F05M1iHqGY/cxQOzzXepI7tn9Fyu5YzBdIeb4mmqv4jvYxlFYPiIdzAP+E ZLZpcNt5GHuReYohq4rrBYQPLB42Ei9B+Y4nRT/JvECxaGqgwAELFPPGZBSabucd a6oiCYs7qoQccDfBrLREsMHOR4EYCRc977jV1VkcdaBK0Nivl09urWKEfD0fk1rF URU75I+iF3r57a0hOgqPxzL45L2Zhn1p+493EzPsjwaJkCgOuflYvGip+8Tvaj/E ADRlb4OPtKmwzGF8frk5rvQWHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFYIubzi 1W9edPhXspoq01kiHmgYMB8GA1UdIwQYMBaAFKf4gsCsyPDY8ds2HNQLEmBrDGjG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTI5Ny80MzAxRkRCRUFG NkUxMUU5QTkyNTgwNjdDNEY5QUUwMi9wX2lDd0t6SThOangyelljMUFzU1lHc01h TVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BfaUN3S3pJOE5qeDJ6WWMxQXNTWUdzTWFNWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTI5Ny80MzAxRkRCRUFGNkUxMUU5QTkyNTgwNjdDNEY5QUUwMi9wX2lDd0t6SThO angyelljMUFzU1lHc01hTVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDeklJImTm1RtDLc2Ars2ZjRlw9A7VCTTxnQBJVr24SWhiK0kKLtLzv IyAgGxMEM3MeQMBI1KRvxrkcDtbhhKbWp95bAlQMSOMMCc5ultsYhUMHnaWaELXx RQQVk45ryXQx1ygSW4G1o0ibD0unNNIBw19wnYWoktIHWL/be+06IaGrB9p9wJ4e UTdaFxM/vQ1vtjabM5QP70db60CNp0bDKxceRsxvk7vW/O6xp7X5YZ7CNFj+0Zzg jVoUFQ45E3wU95iqFJBsk6Tvn22fnK6hm/NtNfWTG2eTywDiVIZk4hI3xpvXi/lW iLaYUtTjttQGD4s/HANDEWxMEH1G/zJT -----END CERTIFICATE-----Generated at Sat May 18 19:21:04 2024 by rpki-client on console-fra.rpki-client.org