$ rpki-client -vvf rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft File: 2RBlAbU10PfK1XyOenR8oGnQTVk.mft (raw, json) Hash identifier: I3UK0NyENNYLQtkbYSWjbzuOBS0GConKfjfPYrSsZWI= Subject key identifier: F4:9E:EF:BA:EE:3C:19:4C:A4:BF:7B:DA:87:ED:4D:87:7B:AB:F4:8C Authority key identifier: D9:10:65:01:B5:35:D0:F7:CA:D5:7C:8E:7A:74:7C:A0:69:D0:4D:59 Certificate issuer: /CN=A916FACB/serialNumber=D9106501B535D0F7CAD57C8E7A747CA069D04D59 Certificate serial: 02F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2RBlAbU10PfK1XyOenR8oGnQTVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft Manifest number: 02F2 Signing time: Sun 19 May 2024 03:15:54 +0000 Manifest this update: Sun 19 May 2024 03:15:53 +0000 Manifest next update: Sun 26 May 2024 03:15:53 +0000 Files and hashes: 1: 2RBlAbU10PfK1XyOenR8oGnQTVk.crl (hash: TN/KRo6EKnX60dPvZM38Widb5m11ALunzSybIYMVJH8=) 2: 97D35382924311EC927C972FC4F9AE02.roa (hash: T7ZKyg9ZQs7UBfFtzhidJlbPJJuQY3xnnVMdulYDZMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.crl rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2RBlAbU10PfK1XyOenR8oGnQTVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 757 (0x2f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916FACB/serialNumber=D9106501B535D0F7CAD57C8E7A747CA069D04D59 Validity Not Before: May 19 03:15:53 2024 GMT Not After : May 26 03:15:53 2024 GMT Subject: CN=66496ee9-7aa0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:bf:eb:d3:9a:15:1a:25:bb:82:8c:7a:96:a3: 97:5f:09:75:ce:c7:54:6a:9c:9b:1c:43:a0:50:8f: bf:a4:33:c4:7f:0e:01:5d:07:83:79:5f:47:ee:a8: 76:5f:9f:ee:69:4a:d0:aa:0d:24:f3:70:b9:30:95: d7:32:78:b4:d1:a7:ba:5f:1a:38:35:a0:64:24:cd: 84:91:84:41:2c:cd:f9:e5:cf:ba:1e:59:9d:77:07: f2:93:f6:13:3d:0a:d3:e8:d2:18:f3:36:69:1e:e0: 78:07:18:95:6d:30:fc:a9:53:ef:79:20:4b:ed:68: 48:48:62:72:06:6a:11:78:66:9f:aa:22:34:1b:9c: 34:c6:6e:1e:c2:e0:8d:82:5d:87:db:55:bb:3c:33: ff:d6:11:bc:dc:51:da:c7:ab:e7:7c:5a:b7:0d:bc: 3d:28:f4:2b:98:54:f0:d8:0e:c3:0b:d7:6c:fd:18: b9:d3:4c:d5:34:86:9f:39:37:21:43:a8:95:2e:b6: c9:23:11:2a:26:df:bf:1d:04:52:36:58:31:3a:58: f3:71:e8:02:ab:5f:2f:62:ee:21:ee:9d:c1:b8:96: 57:c2:e3:42:93:1e:23:df:cd:85:70:dc:98:8b:42: a2:bc:85:db:32:fd:44:81:44:6e:08:84:3d:e7:31: 8c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:9E:EF:BA:EE:3C:19:4C:A4:BF:7B:DA:87:ED:4D:87:7B:AB:F4:8C X509v3 Authority Key Identifier: keyid:D9:10:65:01:B5:35:D0:F7:CA:D5:7C:8E:7A:74:7C:A0:69:D0:4D:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2RBlAbU10PfK1XyOenR8oGnQTVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:60:d3:14:73:f4:b2:0f:29:04:17:4e:a7:48:13:10:bd:41: 85:08:46:1d:7a:74:a3:e2:65:0a:15:a4:a8:a2:fa:bd:0e:ac: e2:6e:bd:e0:6f:f9:38:99:fc:42:3a:45:bd:36:09:98:8a:35: 0b:f0:61:e9:35:ee:f7:e4:87:f4:ae:93:0b:be:21:70:4d:d3: d9:fe:6c:91:a6:ec:d4:d4:c2:5d:e6:b7:09:95:95:2f:30:16: 20:4e:f8:23:1f:cb:6d:e9:61:2c:27:b3:1d:42:01:90:59:83: 89:8c:d6:9f:85:1d:0b:b8:32:41:9c:78:f6:b5:be:c8:cb:1b: 5a:d9:15:b0:1c:bc:a5:54:37:a8:ce:62:e9:31:91:26:8b:5e: 0a:7f:bc:0b:bc:27:1b:0e:34:bb:dc:b5:4c:01:9f:e6:47:05: 9e:f2:91:45:d8:16:3f:ad:2f:6f:36:6b:dc:a2:fa:de:7d:85: ca:d3:0a:90:3a:01:3a:89:94:a5:db:0b:3a:42:df:28:c7:49: 61:bc:4e:53:3d:66:d1:c7:66:43:20:55:68:6e:27:01:60:ce: 26:15:f8:a7:c2:6f:c4:18:1b:2c:0c:de:4d:f6:52:05:91:27: bd:04:2f:00:5c:36:87:ab:a1:52:0f:ae:51:d1:52:8d:bb:0b: 1c:72:19:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkZBQ0IxMTAvBgNVBAUTKEQ5MTA2NTAxQjUzNUQwRjdDQUQ1N0M4RTdBNzQ3Q0Ew NjlEMDRENTkwHhcNMjQwNTE5MDMxNTUzWhcNMjQwNTI2MDMxNTUzWjAYMRYwFAYD VQQDEw02NjQ5NmVlOS03YWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA57/r05oVGiW7gox6lqOXXwl1zsdUapybHEOgUI+/pDPEfw4BXQeDeV9H7qh2 X5/uaUrQqg0k83C5MJXXMni00ae6Xxo4NaBkJM2EkYRBLM355c+6Hlmddwfyk/YT PQrT6NIY8zZpHuB4BxiVbTD8qVPveSBL7WhISGJyBmoReGafqiI0G5w0xm4ewuCN gl2H21W7PDP/1hG83FHax6vnfFq3Dbw9KPQrmFTw2A7DC9ds/Ri500zVNIafOTch Q6iVLrbJIxEqJt+/HQRSNlgxOljzcegCq18vYu4h7p3BuJZXwuNCkx4j382FcNyY i0KivIXbMv1EgURuCIQ95zGMuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPSe77ru PBlMpL972oftTYd7q/SMMB8GA1UdIwQYMBaAFNkQZQG1NdD3ytV8jnp0fKBp0E1Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RkFDQi9GNTU5OEQwODky NDAxMUVDQkVENERBMkNDNEY5QUUwMi8yUkJsQWJVMTBQZksxWHlPZW5SOG9HblFU VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJSQmxBYlUxMFBmSzFYeU9lblI4b0duUVRWay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RkFDQi9GNTU5OEQwODkyNDAxMUVDQkVENERBMkNDNEY5QUUwMi8yUkJsQWJVMTBQ ZksxWHlPZW5SOG9HblFUVmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaYNMUc/SyDykEF06nSBMQvUGFCEYdenSj4mUKFaSoovq9Dqzibr3g b/k4mfxCOkW9NgmYijUL8GHpNe735If0rpMLviFwTdPZ/myRpuzU1MJd5rcJlZUv MBYgTvgjH8tt6WEsJ7MdQgGQWYOJjNafhR0LuDJBnHj2tb7Iyxta2RWwHLylVDeo zmLpMZEmi14Kf7wLvCcbDjS73LVMAZ/mRwWe8pFF2BY/rS9vNmvcovrefYXK0wqQ OgE6iZSl2ws6Qt8ox0lhvE5TPWbRx2ZDIFVobicBYM4mFfinwm/EGBssDN5N9lIF kSe9BC8AXDaHq6FSD65R0VKNuwscchma -----END CERTIFICATE-----Generated at Sun May 19 03:48:51 2024 by rpki-client on console-fra.rpki-client.org