$ rpki-client -vvf rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft File: tWQnMiZdQL91ypSp7IEZIRwbmzI.mft (raw, json) Hash identifier: gxtLId8rOmIiSMFxzqzK8HiwrtJEsQvlw+fRjNKy6iU= Subject key identifier: 12:10:4E:34:9F:63:72:90:1B:F8:37:A5:2C:46:C3:1D:77:40:51:3A Authority key identifier: B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 Certificate issuer: /CN=A916C128/serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Certificate serial: 2B63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft Manifest number: 2AC2 Signing time: Sat 18 May 2024 15:49:53 +0000 Manifest this update: Sat 18 May 2024 15:49:52 +0000 Manifest next update: Sat 25 May 2024 15:49:52 +0000 Files and hashes: 1: tWQnMiZdQL91ypSp7IEZIRwbmzI.crl (hash: nZBWEZkReVmHpDycMBc1Cde1gnubV5MvXekt/+/g+B8=) 2: 13461F60ABDC11EDAE837666C4F9AE02.roa (hash: BlJ6MBas8GtvRENVuogwOQ3RBJs5yI6I/lDD4V0uMFo=) 3: E0CC928CABDE11ED954F5C84C4F9AE02.roa (hash: SyIbeO9y9xR6BjugtKwGkk/34Vk5rkNEUUeu9KzYFao=) 4: DF821D20ABDE11ED954F5C84C4F9AE02.roa (hash: JmQqndItC47KG/mSkNraiFP1lMlaX4e/4bdLjfvjswU=) 5: 4462F034F0EC11EB9D0B176AC4F9AE02.roa (hash: 47AwHzw//iGDXHwog/th17sS/E96PYYL+7g0P1sERHc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11107 (0x2b63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C128/serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Validity Not Before: May 18 15:49:52 2024 GMT Not After : May 25 15:49:52 2024 GMT Subject: CN=6648ce20-ce30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:fa:6b:36:04:0f:7a:25:cd:bf:fc:d3:cc:5e: f0:fd:6e:df:86:93:de:ec:27:6b:3b:14:a4:66:7f: 11:ff:7b:c9:c0:e3:54:6f:a5:d5:bf:bd:d0:87:c8: 12:4f:1b:e9:0f:3f:82:ad:dd:bc:28:88:e8:99:c1: 46:4a:4e:b7:0d:78:cf:3c:e1:a9:b9:ee:4f:d2:e4: 22:62:7a:f6:c3:f8:84:b0:70:b5:12:aa:28:8f:1a: aa:08:5a:82:c9:7e:8a:ba:f2:6c:ac:b0:6a:62:2e: 69:00:9b:db:93:56:4c:c9:b3:2e:61:cb:bc:88:b5: 48:e1:d1:88:e7:66:d2:3a:52:4f:65:b0:09:9b:6c: c9:5e:e0:64:e8:40:fc:76:ee:0e:b2:44:cb:78:27: 20:54:23:ef:d7:f0:e3:e1:37:24:5b:3b:a2:35:9d: 55:9a:50:40:5d:9d:20:5c:3f:1b:98:8a:db:42:de: 4f:1a:71:72:ee:f8:d2:e6:31:18:e7:8d:7c:a4:eb: e7:84:11:80:99:0d:19:8c:56:16:66:eb:b8:39:ec: a3:5b:5c:60:87:80:a1:7b:67:07:54:40:89:8e:ac: 0f:52:4f:ad:19:8c:e2:09:ce:a8:c9:6d:d6:4c:a9: 5e:d1:9b:4b:9c:25:87:62:f7:ad:32:e0:75:d2:5d: 5d:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:10:4E:34:9F:63:72:90:1B:F8:37:A5:2C:46:C3:1D:77:40:51:3A X509v3 Authority Key Identifier: keyid:B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:39:45:a9:d0:4e:1f:73:75:40:91:da:60:dc:df:ee:48:27: 4c:dd:59:21:6a:7a:2d:1f:cd:f0:86:5e:09:29:71:6e:cd:d6: 57:08:a0:a7:32:6e:9b:69:c3:bb:e0:21:a9:37:c4:ae:19:1a: ad:fe:b8:7a:2e:da:eb:9d:4d:b1:35:bd:03:f1:21:40:05:cf: 3c:7f:f9:fd:87:e4:a0:3c:05:3f:28:22:c3:09:e7:dd:51:10: e5:96:f9:ce:e8:fd:2d:02:ce:c8:c4:0a:81:25:e6:40:aa:df: 54:78:5b:da:68:71:7e:ef:ba:cd:19:98:74:02:6e:ce:27:24: ac:20:0b:c7:5c:9f:c1:a9:9e:ea:ec:de:03:cd:ec:b3:de:12: c7:09:4b:2f:7e:76:cf:ab:ae:ae:8c:77:9b:95:a6:6b:41:1c: 89:47:d8:c6:07:f8:3d:f5:39:c4:30:03:69:12:7a:12:36:a4: 0b:93:49:20:35:ab:6e:2a:55:49:63:7c:08:fc:10:55:ca:15: 79:cf:55:0c:cd:f1:05:0b:86:03:84:4b:74:86:e4:e2:f9:c0: 87:12:2b:a7:27:ce:f0:80:0a:c9:20:22:02:7c:da:57:62:8d: 3c:4d:55:4b:05:33:ad:40:94:78:cd:32:57:d4:a1:7f:49:58: 7e:a5:4d:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICK2MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMxMjgxMTAvBgNVBAUTKEI1NjQyNzMyMjY1RDQwQkY3NUNBOTRBOUVDODExOTIx MUMxQjlCMzIwHhcNMjQwNTE4MTU0OTUyWhcNMjQwNTI1MTU0OTUyWjAYMRYwFAYD VQQDEw02NjQ4Y2UyMC1jZTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtPprNgQPeiXNv/zTzF7w/W7fhpPe7CdrOxSkZn8R/3vJwONUb6XVv73Qh8gS TxvpDz+Crd28KIjomcFGSk63DXjPPOGpue5P0uQiYnr2w/iEsHC1EqoojxqqCFqC yX6KuvJsrLBqYi5pAJvbk1ZMybMuYcu8iLVI4dGI52bSOlJPZbAJm2zJXuBk6ED8 du4OskTLeCcgVCPv1/Dj4TckWzuiNZ1VmlBAXZ0gXD8bmIrbQt5PGnFy7vjS5jEY 5418pOvnhBGAmQ0ZjFYWZuu4OeyjW1xgh4Che2cHVECJjqwPUk+tGYziCc6oyW3W TKle0ZtLnCWHYvetMuB10l1dvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBIQTjSf Y3KQG/g3pSxGwx13QFE6MB8GA1UdIwQYMBaAFLVkJzImXUC/dcqUqeyBGSEcG5sy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzEyOC82NjRBOUJDQUZB NkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFMOTF5cFNwN0lFWklSd2Jt ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RXUW5NaVpkUUw5MXlwU3A3SUVaSVJ3Ym16SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzEyOC82NjRBOUJDQUZBNkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFM OTF5cFNwN0lFWklSd2JtekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4OUWp0E4fc3VAkdpg3N/uSCdM3VkhanotH83whl4JKXFuzdZXCKCn Mm6bacO74CGpN8SuGRqt/rh6LtrrnU2xNb0D8SFABc88f/n9h+SgPAU/KCLDCefd URDllvnO6P0tAs7IxAqBJeZAqt9UeFvaaHF+77rNGZh0Am7OJySsIAvHXJ/BqZ7q 7N4Dzeyz3hLHCUsvfnbPq66ujHeblaZrQRyJR9jGB/g99TnEMANpEnoSNqQLk0kg NatuKlVJY3wI/BBVyhV5z1UMzfEFC4YDhEt0huTi+cCHEiunJ87wgArJICICfNpX Yo08TVVLBTOtQJR4zTJX1KF/SVh+pU2y -----END CERTIFICATE-----Generated at Sat May 18 16:19:53 2024 by rpki-client on console-fra.rpki-client.org