$ rpki-client -vvf rpki.apnic.net/member_repository/A9169E9B/7A53A61825A311EAA47F0527C4F9AE02/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.mft File: l0lYFtbbSd_t6sTBdCkSb-Pfl_s.mft (raw, json) Hash identifier: 6LzrmoG0Ug/HgdFNMJbhhtq539LASkVNF6bVq83KlP8= Subject key identifier: AD:45:A4:EF:71:00:CE:D8:F9:E3:39:FF:FE:D5:E3:00:AA:8B:72:85 Authority key identifier: 97:49:58:16:D6:DB:49:DF:ED:EA:C4:C1:74:29:12:6F:E3:DF:97:FB Certificate issuer: /CN=A9169E9B/serialNumber=97495816D6DB49DFEDEAC4C17429126FE3DF97FB Certificate serial: 0AF2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169E9B/7A53A61825A311EAA47F0527C4F9AE02/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.mft Manifest number: 0AE3 Signing time: Thu 30 May 2024 20:27:41 +0000 Manifest this update: Thu 30 May 2024 20:27:40 +0000 Manifest next update: Thu 06 Jun 2024 20:27:40 +0000 Files and hashes: 1: l0lYFtbbSd_t6sTBdCkSb-Pfl_s.crl (hash: fxUa/dJE2FWrXDuXTOj8LJ4avIBF5C8cZcc8ziBzMEE=) 2: A807146437E411EC9BA3E20AC4F9AE02.roa (hash: PGLf8L8QiEjV7hVDA42GOFBiY+0vSEuMTlxgwCxlk10=) 3: A6EF086637E411EC9BA3E20AC4F9AE02.roa (hash: ECR/I9Pj4D6jqPe0lD9cDYMTbbDQP9g2mUIbLZmkUfk=) 4: A64A2A9437E411EC9BA3E20AC4F9AE02.roa (hash: iScwIGnCk3Nr+9NgBEDkU3UMHy6opWhBkp7ncUEo7Og=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169E9B/7A53A61825A311EAA47F0527C4F9AE02/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.crl rsync://rpki.apnic.net/member_repository/A9169E9B/7A53A61825A311EAA47F0527C4F9AE02/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 20:27:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2802 (0xaf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169E9B/serialNumber=97495816D6DB49DFEDEAC4C17429126FE3DF97FB Validity Not Before: May 30 20:27:40 2024 GMT Not After : Jun 6 20:27:40 2024 GMT Subject: CN=6658e13d-49d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0f:c2:81:52:92:6f:5e:26:40:d4:db:9c:85: 45:13:7f:26:27:44:3d:25:d7:60:ab:e2:91:e4:0f: 51:cd:65:b1:36:31:6a:bf:9d:c9:27:cc:6a:72:28: 07:12:92:90:b1:4b:33:f9:26:aa:5d:eb:15:d6:f9: 35:19:ce:d5:6e:8b:3d:2b:43:be:fe:63:df:42:9e: 91:78:1a:0c:8c:a6:43:ce:4a:b4:7a:4e:90:ea:bd: 61:d3:67:12:79:0a:06:8f:98:0b:1c:24:7e:a8:3c: 1d:ed:24:25:c0:63:16:d2:f6:6f:49:a4:d5:c3:e9: 84:d1:de:00:77:20:40:ae:da:0e:5c:2d:50:bf:61: 64:24:3e:2a:b9:a0:99:a5:82:c0:f9:2a:8d:a9:c1: 7e:b0:a6:de:04:e1:82:ae:f4:cb:36:8e:d5:41:a7: e8:87:43:10:c2:d6:dd:c6:4e:5a:17:e4:2e:4d:eb: 33:3c:04:59:0f:a8:b2:9d:a8:47:e3:10:62:c0:b4: 27:c1:48:60:a9:75:c5:02:02:8a:47:2e:c6:af:52: 49:5e:77:68:db:2f:56:db:95:11:6e:24:c1:9f:07: c6:12:88:c6:9e:93:29:8c:84:d8:a2:83:5f:1f:8d: 81:ac:6e:f9:6f:13:f3:5f:0e:6d:51:6a:30:66:0f: b6:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:45:A4:EF:71:00:CE:D8:F9:E3:39:FF:FE:D5:E3:00:AA:8B:72:85 X509v3 Authority Key Identifier: keyid:97:49:58:16:D6:DB:49:DF:ED:EA:C4:C1:74:29:12:6F:E3:DF:97:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169E9B/7A53A61825A311EAA47F0527C4F9AE02/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169E9B/7A53A61825A311EAA47F0527C4F9AE02/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:ee:30:0e:d8:69:ea:fa:1c:95:77:bc:e8:a0:93:88:99:43: b2:fb:e4:4d:cd:06:26:6a:88:0f:15:2a:b9:8d:43:15:78:1d: e0:ee:c6:aa:a4:36:19:3b:1b:7d:8c:66:e1:80:a8:62:03:39: 40:06:b8:26:a6:8d:16:ee:d5:a6:fa:9f:4f:7f:25:9c:3e:a5: 0a:1e:4b:23:40:f1:3c:39:eb:ff:f7:25:87:d6:3b:c0:25:11: 3c:a2:74:dd:7a:bd:89:a2:08:08:77:59:a4:9d:bb:e6:ea:fd: 7a:7a:9c:48:d1:f7:f1:23:1f:7c:8a:86:ad:1d:1a:b1:69:6d: 47:12:6a:60:ba:6f:cf:a5:5d:9c:dc:56:02:79:d4:cc:c4:ad: 3a:91:2c:13:b3:4a:e9:23:b5:6b:cc:9e:cf:ee:c6:88:ce:07: ea:12:45:d3:ef:56:c3:d5:80:ad:7d:71:03:96:9c:65:95:c2: a3:6e:5f:db:a1:06:8d:55:fb:cb:df:23:e8:ec:9b:1c:f2:84: a0:d7:e2:4d:21:ff:1d:9b:9f:ff:18:cb:a5:20:fc:e6:df:7e: 17:41:9f:7e:a6:9e:07:9e:f9:27:89:d6:d1:06:2d:9b:5e:19: 6a:51:5b:73:b1:ec:89:a5:eb:8c:f5:ad:d5:eb:bd:61:98:e2: 7b:9a:43:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlFOUIxMTAvBgNVBAUTKDk3NDk1ODE2RDZEQjQ5REZFREVBQzRDMTc0MjkxMjZG RTNERjk3RkIwHhcNMjQwNTMwMjAyNzQwWhcNMjQwNjA2MjAyNzQwWjAYMRYwFAYD VQQDEw02NjU4ZTEzZC00OWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwQ/CgVKSb14mQNTbnIVFE38mJ0Q9Jddgq+KR5A9RzWWxNjFqv53JJ8xqcigH EpKQsUsz+SaqXesV1vk1Gc7Vbos9K0O+/mPfQp6ReBoMjKZDzkq0ek6Q6r1h02cS eQoGj5gLHCR+qDwd7SQlwGMW0vZvSaTVw+mE0d4AdyBArtoOXC1Qv2FkJD4quaCZ pYLA+SqNqcF+sKbeBOGCrvTLNo7VQafoh0MQwtbdxk5aF+QuTeszPARZD6iynahH 4xBiwLQnwUhgqXXFAgKKRy7Gr1JJXndo2y9W25URbiTBnwfGEojGnpMpjITYooNf H42BrG75bxPzXw5tUWowZg+23wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK1FpO9x AM7Y+eM5//7V4wCqi3KFMB8GA1UdIwQYMBaAFJdJWBbW20nf7erEwXQpEm/j35f7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUU5Qi83QTUzQTYxODI1 QTMxMUVBQTQ3RjA1MjdDNEY5QUUwMi9sMGxZRnRiYlNkX3Q2c1RCZENrU2ItUGZs X3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2wwbFlGdGJiU2RfdDZzVEJkQ2tTYi1QZmxfcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUU5Qi83QTUzQTYxODI1QTMxMUVBQTQ3RjA1MjdDNEY5QUUwMi9sMGxZRnRiYlNk X3Q2c1RCZENrU2ItUGZsX3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCP7jAO2Gnq+hyVd7zooJOImUOy++RNzQYmaogPFSq5jUMVeB3g7saq pDYZOxt9jGbhgKhiAzlABrgmpo0W7tWm+p9PfyWcPqUKHksjQPE8Oev/9yWH1jvA JRE8onTder2JoggId1mknbvm6v16epxI0ffxIx98ioatHRqxaW1HEmpgum/PpV2c 3FYCedTMxK06kSwTs0rpI7VrzJ7P7saIzgfqEkXT71bD1YCtfXEDlpxllcKjbl/b oQaNVfvL3yPo7Jsc8oSg1+JNIf8dm5//GMulIPzm334XQZ9+pp4HnvknidbRBi2b XhlqUVtzseyJpeuM9a3V671hmOJ7mkOv -----END CERTIFICATE-----Generated at Thu May 30 21:37:29 2024 by rpki-client on console-fra.rpki-client.org