$ rpki-client -vvf rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft File: G395gdniwsMPbyw0hxophthfiQ4.mft (raw, json) Hash identifier: /Er3ox2YfAcoUi3/cHNebTEMcu75dybOulr12EoKRx0= Subject key identifier: 1D:D9:71:E8:DC:76:11:26:FA:96:FE:91:8F:0D:18:78:E3:D3:CC:D9 Authority key identifier: 1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E Certificate issuer: /CN=A9170AE9/serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Certificate serial: 0441 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft Manifest number: 043E Signing time: Sat 01 Jun 2024 02:58:02 +0000 Manifest this update: Sat 01 Jun 2024 02:58:01 +0000 Manifest next update: Sat 08 Jun 2024 02:58:01 +0000 Files and hashes: 1: G395gdniwsMPbyw0hxophthfiQ4.crl (hash: /EVcfFzDi3O1+LWpUo16e4RngcW2tQ123CcXHGcI0xU=) 2: 5D7779A6108A11EC9E1F3D49C4F9AE02.roa (hash: UFGeygu0SH/omcLzwA18/Jl3yhfPlJu6Xbm6fMztNp0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:58:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1089 (0x441) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170AE9/serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Validity Not Before: Jun 1 02:58:01 2024 GMT Not After : Jun 8 02:58:01 2024 GMT Subject: CN=665a8e39-4033 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:02:55:06:fb:36:8b:7a:6c:b0:15:b5:03:20: e7:e9:5a:5f:4d:25:eb:f3:5c:bc:0c:d6:21:2d:cb: 5a:b9:2e:67:4a:4e:86:05:e8:bf:e3:e5:c8:11:ce: c3:7d:6e:cd:4d:0c:8e:f7:08:f0:75:d0:34:9d:ce: f2:60:1f:06:15:f1:2f:3d:00:10:d6:27:f0:e9:8b: 02:a1:81:1e:52:c1:37:62:ca:7c:49:7e:c3:32:59: 45:c5:92:0d:5b:7e:87:74:17:6d:28:b4:ca:2d:02: a6:33:93:09:96:69:60:7b:c0:11:85:f4:96:4a:b1: ac:de:31:c8:26:73:fe:7b:fe:c8:a8:5b:ee:31:ad: 3d:c8:3a:5a:f5:c9:a9:45:99:55:5a:7b:35:38:ae: 7a:59:2c:33:5f:e8:31:e8:f1:4f:bb:c5:04:ca:ad: 78:2d:15:1c:de:24:86:5a:2a:8e:83:2b:cc:40:73: e7:73:05:03:60:b6:31:2d:a9:3a:5b:2b:05:57:62: 29:77:4c:87:f7:d3:ba:2c:67:a5:85:3b:f7:36:1e: 15:c7:0d:c1:2c:f8:87:33:37:43:4a:f7:69:77:d0: 89:8c:18:4f:b4:0c:c8:43:f1:56:46:9f:28:62:79: 61:55:ea:8f:88:11:bd:b6:63:1d:31:81:15:27:45: f6:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:D9:71:E8:DC:76:11:26:FA:96:FE:91:8F:0D:18:78:E3:D3:CC:D9 X509v3 Authority Key Identifier: keyid:1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:88:33:c3:cc:31:ba:a6:02:b7:fd:6d:80:92:56:71:b4:b0: 8b:0c:9e:7f:b5:79:69:ac:45:c8:0e:1d:b4:6d:d9:06:d5:10: ba:bb:ce:1b:31:33:1f:c0:0e:0e:83:9b:3f:40:e0:22:2b:17: b5:e3:9d:7e:00:c8:ca:82:fe:54:6a:5a:52:f6:e1:0e:ff:2e: 80:1d:07:07:da:46:3c:be:e0:11:90:16:35:cb:70:5a:52:43: c4:a9:88:4d:1e:67:da:e6:43:5d:55:b5:93:0e:ff:3d:e0:7e: 0a:20:dc:2a:12:f7:2e:81:49:17:19:10:ec:9e:89:de:d1:85: 9a:54:52:65:8a:f8:5b:6b:84:f1:11:93:6d:aa:4f:ce:a4:8b: 05:72:7f:06:39:6a:b6:a8:f5:7e:b2:2d:8f:6b:de:27:f7:5b: 6b:3e:61:8e:23:60:ae:0b:66:b9:ad:3a:a4:4c:0b:94:92:3f: 0e:e2:16:ea:a0:19:0e:1c:8b:8d:05:5c:4d:f3:20:de:01:4e: 95:fa:2a:06:d8:d8:f1:38:ae:a8:18:7a:56:df:7d:08:81:23: e1:42:63:f9:ba:5f:fb:1e:bf:6d:dc:28:f9:b9:1d:9c:7f:ad: ca:ec:55:f1:df:23:b9:12:06:1f:a4:95:ae:e8:bc:c3:4d:21: 06:6e:56:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBBRTkxMTAvBgNVBAUTKDFCN0Y3OTgxRDlFMkMyQzMwRjZGMkMzNDg3MUEyOTg2 RDg1Rjg5MEUwHhcNMjQwNjAxMDI1ODAxWhcNMjQwNjA4MDI1ODAxWjAYMRYwFAYD VQQDEw02NjVhOGUzOS00MDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtgJVBvs2i3pssBW1AyDn6VpfTSXr81y8DNYhLctauS5nSk6GBei/4+XIEc7D fW7NTQyO9wjwddA0nc7yYB8GFfEvPQAQ1ifw6YsCoYEeUsE3Ysp8SX7DMllFxZIN W36HdBdtKLTKLQKmM5MJlmlge8ARhfSWSrGs3jHIJnP+e/7IqFvuMa09yDpa9cmp RZlVWns1OK56WSwzX+gx6PFPu8UEyq14LRUc3iSGWiqOgyvMQHPncwUDYLYxLak6 WysFV2Ipd0yH99O6LGelhTv3Nh4Vxw3BLPiHMzdDSvdpd9CJjBhPtAzIQ/FWRp8o YnlhVeqPiBG9tmMdMYEVJ0X2WQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB3Zcejc dhEm+pb+kY8NGHjj08zZMB8GA1UdIwQYMBaAFBt/eYHZ4sLDD28sNIcaKYbYX4kO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEFFOS8wOTEyMDM4MDEw ODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdzTVBieXcwaHhvcGh0aGZp UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0czOTVnZG5pd3NNUGJ5dzBoeG9waHRoZmlRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEFFOS8wOTEyMDM4MDEwODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdz TVBieXcwaHhvcGh0aGZpUTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkiDPDzDG6pgK3/W2AklZxtLCLDJ5/tXlprEXIDh20bdkG1RC6u84b MTMfwA4Og5s/QOAiKxe1451+AMjKgv5UalpS9uEO/y6AHQcH2kY8vuARkBY1y3Ba UkPEqYhNHmfa5kNdVbWTDv894H4KINwqEvcugUkXGRDsnone0YWaVFJlivhba4Tx EZNtqk/OpIsFcn8GOWq2qPV+si2Pa94n91trPmGOI2CuC2a5rTqkTAuUkj8O4hbq oBkOHIuNBVxN8yDeAU6V+ioG2NjxOK6oGHpW330IgSPhQmP5ul/7Hr9t3Cj5uR2c f63K7FXx3yO5EgYfpJWu6LzDTSEGblYQ -----END CERTIFICATE-----Generated at Sat Jun 1 04:59:02 2024 by rpki-client on console-fra.rpki-client.org