$ rpki-client -vvf rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft File: a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft (raw, json) Hash identifier: OGnTm7N2+oCa2+cHi16fNDhSa/LPIWtNcCB+5eaI5Os= Subject key identifier: 03:9A:F9:97:46:01:DC:FC:77:0E:FC:3C:F5:67:D4:70:CB:B2:52:C9 Authority key identifier: 6B:49:57:66:2A:D4:C2:1B:D4:22:A8:7D:B4:1B:8B:CF:C9:D6:DD:8E Certificate issuer: /CN=A9165BD7/serialNumber=6B4957662AD4C21BD422A87DB41B8BCFC9D6DD8E Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft Manifest number: DC Signing time: Sun 19 May 2024 06:03:22 +0000 Manifest this update: Sun 19 May 2024 06:03:21 +0000 Manifest next update: Sun 26 May 2024 06:03:21 +0000 Files and hashes: 1: a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl (hash: ulud+BcWO1obcoKEQ+CF3mY8FOZ7sA4TxGq0uNbCNww=) 2: A92EC53AC95B11ED9ABE6935C4F9AE02.roa (hash: NLCu2j7NyVCfAMNadoeiUtb8mS5PqTykxmEmvgk0+vQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165BD7/serialNumber=6B4957662AD4C21BD422A87DB41B8BCFC9D6DD8E Validity Not Before: May 19 06:03:21 2024 GMT Not After : May 26 06:03:21 2024 GMT Subject: CN=6649962a-ce97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a0:f1:f1:fc:42:0e:07:93:3e:d1:95:7a:a8: 41:07:a9:62:54:a1:a9:e2:3c:95:a5:a7:07:89:c8: 4b:5f:19:43:12:79:c9:a6:56:0a:31:51:04:02:8d: 3a:c4:1b:93:fe:4a:a4:53:19:b1:b3:83:6e:d3:31: 41:70:70:82:d1:bc:d0:a2:29:18:d0:60:13:0b:33: d0:67:23:b3:4b:86:be:65:8c:24:5d:c5:2c:92:15: 20:43:19:14:55:21:25:49:d5:51:04:e9:ac:8c:8a: 4e:aa:d7:ed:ee:71:e2:6e:67:aa:01:04:89:25:37: f3:74:17:ac:75:ce:cd:e0:bf:c9:1a:1f:1b:63:62: 75:a7:d6:8f:0c:76:da:68:89:f9:98:b6:cd:fb:ab: 78:3d:e7:96:35:73:a8:7a:a1:9b:f0:6e:55:f4:e3: b1:e7:ab:b6:4b:8f:cb:72:ef:ee:bd:4d:2b:28:bb: e8:e5:f1:e6:46:e3:70:ae:dc:db:cb:a5:4f:42:7f: 1e:85:59:2f:67:d7:f7:b8:3c:d7:83:35:06:27:51: 25:8e:57:ba:db:01:b2:e3:1c:46:2b:ad:b7:1b:0c: 0f:eb:f7:95:13:7c:f0:0a:d3:3b:03:f3:86:3c:92: a3:21:81:e0:0a:b4:55:a2:81:a3:85:58:23:52:3d: d3:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:9A:F9:97:46:01:DC:FC:77:0E:FC:3C:F5:67:D4:70:CB:B2:52:C9 X509v3 Authority Key Identifier: keyid:6B:49:57:66:2A:D4:C2:1B:D4:22:A8:7D:B4:1B:8B:CF:C9:D6:DD:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:86:3f:ed:ae:75:e5:b9:c5:d6:6d:e3:9a:db:61:39:11:62: 89:24:4c:9c:9d:45:1a:81:64:27:db:60:c9:d6:6c:48:cd:06: f1:d6:96:5e:e8:ae:01:58:d4:ff:8a:59:8a:42:df:3c:82:d6: b5:bd:ad:0c:5c:a6:01:8b:06:bf:f1:c3:67:90:39:0e:c4:b3: a0:60:1c:f6:47:16:5d:e6:b3:a3:35:b5:74:45:88:b1:49:42: f7:90:b5:5f:ec:ff:0e:29:30:9a:50:65:97:28:ec:fc:0d:ea: 69:75:1b:3f:9e:b5:21:19:e8:4f:3f:76:8f:04:24:dc:17:44: ae:84:14:8a:fd:46:b8:92:d5:aa:90:9e:6e:b8:46:16:79:37: 1a:7d:fa:f2:2b:1d:8f:fc:b6:ba:39:25:fb:c9:cc:14:ea:1d: 33:b8:ab:9b:d0:12:1c:c3:5f:40:39:ac:97:53:d8:21:d6:be: bb:dc:58:d3:80:17:b6:d8:7f:15:e1:66:2d:3f:7f:46:7b:0b: d3:45:b7:17:37:1b:13:4d:17:5b:2d:9c:0b:00:38:92:d5:f3: 7c:cc:91:09:bc:da:86:a2:52:15:2f:b4:52:b3:d7:26:4d:e7: a3:50:83:4f:56:4e:e0:7b:30:b6:32:18:07:7d:24:1c:6d:39: 14:44:ab:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVCRDcxMTAvBgNVBAUTKDZCNDk1NzY2MkFENEMyMUJENDIyQTg3REI0MUI4QkNG QzlENkREOEUwHhcNMjQwNTE5MDYwMzIxWhcNMjQwNTI2MDYwMzIxWjAYMRYwFAYD VQQDEw02NjQ5OTYyYS1jZTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6Dx8fxCDgeTPtGVeqhBB6liVKGp4jyVpacHichLXxlDEnnJplYKMVEEAo06 xBuT/kqkUxmxs4Nu0zFBcHCC0bzQoikY0GATCzPQZyOzS4a+ZYwkXcUskhUgQxkU VSElSdVRBOmsjIpOqtft7nHibmeqAQSJJTfzdBesdc7N4L/JGh8bY2J1p9aPDHba aIn5mLbN+6t4PeeWNXOoeqGb8G5V9OOx56u2S4/Lcu/uvU0rKLvo5fHmRuNwrtzb y6VPQn8ehVkvZ9f3uDzXgzUGJ1Eljle62wGy4xxGK623GwwP6/eVE3zwCtM7A/OG PJKjIYHgCrRVooGjhVgjUj3TPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAOa+ZdG Adz8dw78PPVn1HDLslLJMB8GA1UdIwQYMBaAFGtJV2Yq1MIb1CKofbQbi8/J1t2O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUJENy84QTYyQzgyQUM5 NTgxMUVEOTE4RThDMzRDNEY5QUUwMi9hMGxYWmlyVXdodlVJcWg5dEJ1THo4blcz WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EwbFhaaXJVd2h2VUlxaDl0QnVMejhuVzNZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUJENy84QTYyQzgyQUM5NTgxMUVEOTE4RThDMzRDNEY5QUUwMi9hMGxYWmlyVXdo dlVJcWg5dEJ1THo4blczWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfhj/trnXlucXWbeOa22E5EWKJJEycnUUagWQn22DJ1mxIzQbx1pZe 6K4BWNT/ilmKQt88gta1va0MXKYBiwa/8cNnkDkOxLOgYBz2RxZd5rOjNbV0RYix SUL3kLVf7P8OKTCaUGWXKOz8DeppdRs/nrUhGehPP3aPBCTcF0SuhBSK/Ua4ktWq kJ5uuEYWeTcaffryKx2P/La6OSX7ycwU6h0zuKub0BIcw19AOayXU9gh1r673FjT gBe22H8V4WYtP39GewvTRbcXNxsTTRdbLZwLADiS1fN8zJEJvNqGolIVL7RSs9cm TeejUINPVk7gezC2MhgHfSQcbTkURKvW -----END CERTIFICATE-----Generated at Sun May 19 07:40:39 2024 by rpki-client on console-fra.rpki-client.org