$ rpki-client -vvf rpki.apnic.net/member_repository/A9168EB9/F3BC02A654B011EB96C9775AC4F9AE02/w98lVuh_X0ILAY-cGusQkxofA8s.mft File: w98lVuh_X0ILAY-cGusQkxofA8s.mft (raw, json) Hash identifier: 4i+2FaOFa0NEb2tbPmoG5kmABkjv68tCICB0T6Yj+Pc= Subject key identifier: 7D:90:DA:6C:81:E1:05:3C:DE:D5:4D:0A:BC:C6:A3:83:6A:0D:82:C2 Authority key identifier: C3:DF:25:56:E8:7F:5F:42:0B:01:8F:9C:1A:EB:10:93:1A:1F:03:CB Certificate issuer: /CN=A9168EB9/serialNumber=C3DF2556E87F5F420B018F9C1AEB10931A1F03CB Certificate serial: 0619 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w98lVuh_X0ILAY-cGusQkxofA8s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168EB9/F3BC02A654B011EB96C9775AC4F9AE02/w98lVuh_X0ILAY-cGusQkxofA8s.mft Manifest number: 0614 Signing time: Sat 18 May 2024 23:48:46 +0000 Manifest this update: Sat 18 May 2024 23:48:45 +0000 Manifest next update: Sat 25 May 2024 23:48:45 +0000 Files and hashes: 1: w98lVuh_X0ILAY-cGusQkxofA8s.crl (hash: cd8duAicC7GY/y5RKGfFwL16baGKW5T31A5JU+XhkO0=) 2: B9D3CFC254B211EB9C4D4D5CC4F9AE02.roa (hash: sxs0n/m2HHgaEhbkzBCMRoX2MbbU87JuGmwyN2hoOa8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168EB9/F3BC02A654B011EB96C9775AC4F9AE02/w98lVuh_X0ILAY-cGusQkxofA8s.crl rsync://rpki.apnic.net/member_repository/A9168EB9/F3BC02A654B011EB96C9775AC4F9AE02/w98lVuh_X0ILAY-cGusQkxofA8s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w98lVuh_X0ILAY-cGusQkxofA8s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1561 (0x619) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168EB9/serialNumber=C3DF2556E87F5F420B018F9C1AEB10931A1F03CB Validity Not Before: May 18 23:48:45 2024 GMT Not After : May 25 23:48:45 2024 GMT Subject: CN=66493e5d-319d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d9:77:a4:33:25:f8:8d:d4:24:59:da:8d:62: 5c:3f:ba:ea:f0:88:0e:1f:55:67:e7:c8:75:34:e1: fb:71:55:0f:90:7c:4a:78:85:7c:4b:dc:bd:00:8c: c1:c4:8d:bd:8d:88:83:8f:46:96:2b:91:a1:1d:08: 78:1c:e5:0d:c3:6a:22:81:63:68:05:cd:28:29:61: 2a:1c:cb:8c:15:23:f2:cd:de:3a:7b:07:05:0b:db: ad:76:4e:01:dd:60:1d:6f:de:e8:c1:dc:eb:ff:d5: a8:a9:33:03:43:43:72:6b:40:a5:1b:6c:8f:85:57: 00:32:61:70:37:56:a6:b6:55:01:80:9a:df:3f:cc: 89:b7:23:8a:e9:96:1a:3b:ac:25:0b:42:90:99:9a: cb:15:07:1c:bc:3d:70:f2:dd:3a:4a:34:6a:ba:69: 12:35:4e:c4:6e:60:e6:5a:08:7a:a6:2d:0a:dd:52: 8f:1e:ce:f7:e3:df:65:11:bf:97:8c:6c:28:a8:c3: 9c:56:60:8f:15:47:5b:7b:94:eb:d6:b1:1a:bf:a3: e7:5f:8b:cb:66:39:78:3c:40:c3:b2:96:3d:b3:01: 17:8a:86:fd:f2:a9:24:28:d9:e3:ec:43:c1:5f:b5: 40:42:f1:0b:e2:b2:e0:f5:96:18:c1:c3:15:98:37: e5:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:90:DA:6C:81:E1:05:3C:DE:D5:4D:0A:BC:C6:A3:83:6A:0D:82:C2 X509v3 Authority Key Identifier: keyid:C3:DF:25:56:E8:7F:5F:42:0B:01:8F:9C:1A:EB:10:93:1A:1F:03:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168EB9/F3BC02A654B011EB96C9775AC4F9AE02/w98lVuh_X0ILAY-cGusQkxofA8s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w98lVuh_X0ILAY-cGusQkxofA8s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168EB9/F3BC02A654B011EB96C9775AC4F9AE02/w98lVuh_X0ILAY-cGusQkxofA8s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ea:a6:bc:5b:0c:fe:eb:3f:c2:b5:88:eb:4b:56:b9:b8:ee:39: 54:52:b7:68:55:a0:bd:d0:ab:0b:14:84:cc:67:55:9d:ff:6d: 74:23:7e:e0:b0:49:22:b7:45:6a:55:b6:aa:b5:5f:74:15:2d: 32:14:e2:96:35:a7:ee:02:1b:c9:d6:b2:71:aa:72:c1:e5:be: 4b:5c:55:f0:af:0e:3a:47:1b:bd:91:54:f7:12:72:66:5c:99: 66:08:a8:5e:1c:0c:3d:fb:e7:da:58:2e:ec:a9:ba:39:10:fb: ab:26:31:49:cc:db:17:d7:ff:e5:a2:b6:e4:30:6b:a7:70:85: 50:fd:70:4f:2e:54:28:4c:ba:2b:c4:e2:45:23:8a:f6:eb:41: 4b:0b:9b:02:b7:5d:1d:42:22:4c:ed:35:62:b0:46:66:63:bc: fd:3e:a3:80:79:e9:0e:62:9a:c5:5f:f4:3d:97:ca:47:d6:e2: d9:d9:a1:b7:88:77:69:19:ab:85:ba:f6:28:b3:82:c5:d0:70: bb:cd:f8:68:de:cb:a5:35:bf:99:46:d3:76:c6:0c:c2:a2:45: 7c:e7:08:9b:c3:d7:82:7c:e1:f9:1b:0a:c9:e3:98:e1:d2:5c: 76:7a:50:02:bf:13:de:49:0d:64:aa:ab:39:ad:98:39:d3:e6: a2:6d:26:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhFQjkxMTAvBgNVBAUTKEMzREYyNTU2RTg3RjVGNDIwQjAxOEY5QzFBRUIxMDkz MUExRjAzQ0IwHhcNMjQwNTE4MjM0ODQ1WhcNMjQwNTI1MjM0ODQ1WjAYMRYwFAYD VQQDEw02NjQ5M2U1ZC0zMTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvtl3pDMl+I3UJFnajWJcP7rq8IgOH1Vn58h1NOH7cVUPkHxKeIV8S9y9AIzB xI29jYiDj0aWK5GhHQh4HOUNw2oigWNoBc0oKWEqHMuMFSPyzd46ewcFC9utdk4B 3WAdb97owdzr/9WoqTMDQ0Nya0ClG2yPhVcAMmFwN1amtlUBgJrfP8yJtyOK6ZYa O6wlC0KQmZrLFQccvD1w8t06SjRqumkSNU7EbmDmWgh6pi0K3VKPHs73499lEb+X jGwoqMOcVmCPFUdbe5Tr1rEav6PnX4vLZjl4PEDDspY9swEXiob98qkkKNnj7EPB X7VAQvEL4rLg9ZYYwcMVmDflCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH2Q2myB 4QU83tVNCrzGo4NqDYLCMB8GA1UdIwQYMBaAFMPfJVbof19CCwGPnBrrEJMaHwPL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEVCOS9GM0JDMDJBNjU0 QjAxMUVCOTZDOTc3NUFDNEY5QUUwMi93OThsVnVoX1gwSUxBWS1jR3VzUWt4b2ZB OHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3c5OGxWdWhfWDBJTEFZLWNHdXNRa3hvZkE4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEVCOS9GM0JDMDJBNjU0QjAxMUVCOTZDOTc3NUFDNEY5QUUwMi93OThsVnVoX1gw SUxBWS1jR3VzUWt4b2ZBOHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDqprxbDP7rP8K1iOtLVrm47jlUUrdoVaC90KsLFITMZ1Wd/210I37g sEkit0VqVbaqtV90FS0yFOKWNafuAhvJ1rJxqnLB5b5LXFXwrw46Rxu9kVT3EnJm XJlmCKheHAw9++faWC7sqbo5EPurJjFJzNsX1//lorbkMGuncIVQ/XBPLlQoTLor xOJFI4r260FLC5sCt10dQiJM7TVisEZmY7z9PqOAeekOYprFX/Q9l8pH1uLZ2aG3 iHdpGauFuvYos4LF0HC7zfho3sulNb+ZRtN2xgzCokV85wibw9eCfOH5GwrJ45jh 0lx2elACvxPeSQ1kqqs5rZg50+aibSbt -----END CERTIFICATE-----Generated at Sun May 19 00:59:41 2024 by rpki-client on console-fra.rpki-client.org