$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft File: 1AwbOf4FNm7Ysj4IgLaet198kOI.mft (raw, json) Hash identifier: iPNtqaPsaIkew+lYmAhbECUehRmbNZqF6p5m+T3+Ui0= Subject key identifier: 46:1D:21:8B:5D:39:46:CB:81:A7:37:AE:42:E6:3A:78:89:6D:24:9B Authority key identifier: D4:0C:1B:39:FE:05:36:6E:D8:B2:3E:08:80:B6:9E:B7:5F:7C:90:E2 Certificate issuer: /CN=A9171A26/serialNumber=D40C1B39FE05366ED8B23E0880B69EB75F7C90E2 Certificate serial: 0A3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft Manifest number: 0A35 Signing time: Sat 18 May 2024 20:31:09 +0000 Manifest this update: Sat 18 May 2024 20:31:08 +0000 Manifest next update: Sat 25 May 2024 20:31:08 +0000 Files and hashes: 1: 1AwbOf4FNm7Ysj4IgLaet198kOI.crl (hash: Lay4JDVfH0/rGMP3toOrrQhHok6sQDRrBy5Cw5jWPmc=) 2: 5C9BC9D045C311EA9DE6F237C4F9AE02.roa (hash: RMsl/jF9gGhOhhV4ZawWEXv7oRY0xaA7To6obd9Av3A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.crl rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2619 (0xa3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A26/serialNumber=D40C1B39FE05366ED8B23E0880B69EB75F7C90E2 Validity Not Before: May 18 20:31:08 2024 GMT Not After : May 25 20:31:08 2024 GMT Subject: CN=6649100d-c359 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:2e:44:ff:5c:e3:0b:d1:52:bc:9f:7d:d5:9c: c8:60:6e:6c:fd:7f:3f:ee:33:63:aa:69:8f:de:96: 70:fb:c1:be:9f:a9:d7:76:d0:98:c0:63:12:18:9f: ab:8d:3a:85:d1:1d:d4:a4:62:1b:48:80:a6:8e:ef: 1d:0a:3e:10:9e:bb:7e:35:a4:51:2f:2e:d8:3e:46: 7b:c7:49:d5:49:3c:5d:a8:39:c9:a1:57:42:06:57: 42:fa:6b:a0:28:f9:20:0e:e4:88:06:bc:92:c1:5d: 21:f2:3f:5c:75:ba:47:2e:ff:c3:8f:38:aa:fe:4c: ce:7f:59:e8:67:76:53:b5:d8:1f:16:37:b5:60:7e: 04:98:87:e0:61:54:10:5e:e4:6a:6e:94:41:cf:c8: d2:12:18:5b:7b:3d:3c:3c:f5:be:e1:09:4a:d4:1d: b3:05:13:c0:ef:cf:27:5a:31:3c:75:5a:08:91:9b: 53:c9:4b:88:39:08:63:9e:e2:fa:dd:c3:29:dc:b0: 77:8f:a6:bb:1f:94:7b:16:08:1c:9b:65:d5:ce:9b: 67:9d:55:1b:42:4a:41:39:9a:55:1f:51:46:a7:ac: c0:e1:10:ae:bc:4f:28:ed:1f:04:14:1e:b8:05:64: cb:ee:31:91:94:7d:71:fc:80:93:d6:c9:90:5f:db: 83:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:1D:21:8B:5D:39:46:CB:81:A7:37:AE:42:E6:3A:78:89:6D:24:9B X509v3 Authority Key Identifier: keyid:D4:0C:1B:39:FE:05:36:6E:D8:B2:3E:08:80:B6:9E:B7:5F:7C:90:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:3a:6d:ec:c0:cf:32:82:f8:f8:62:01:e1:50:b0:ab:e7:10: e2:70:2b:88:8f:a3:82:b5:e6:af:64:7a:87:87:6b:98:07:3e: c0:a6:b0:e9:57:af:e6:f7:da:4b:ee:98:40:96:0c:33:84:b3: 67:4f:e6:8f:eb:83:07:1f:3c:01:b0:ba:b8:07:9f:ab:64:71: 8f:0e:f1:fa:73:79:4b:bf:5c:7e:8d:17:12:a8:bd:4c:a1:ba: c3:b6:28:76:a7:69:cb:00:a8:64:33:de:61:04:7b:3c:db:d8: a1:ea:36:f5:5f:15:96:96:98:7a:48:13:b0:0b:59:6f:ae:14: 78:51:d9:55:f4:aa:3b:ad:69:d1:c6:a2:c7:97:66:e8:2e:59: ce:fa:24:12:fb:65:b8:d5:e0:82:f2:4b:88:15:26:b5:15:68: b3:ae:8e:bd:7e:b5:d8:05:6c:28:29:d9:39:d5:f4:33:fc:36: a0:ea:12:3f:20:5c:74:08:5c:5f:1f:6f:cb:0f:ed:f8:30:d3: b1:ed:70:2d:f4:9a:ab:c0:c4:a5:c5:ff:49:5c:0e:aa:b6:aa: 57:41:86:88:28:34:71:64:f0:16:68:46:99:ab:95:e8:dd:87: 06:93:ee:99:eb:3b:39:2a:db:98:cf:d8:b4:c4:fd:b8:2a:78: a8:7b:a8:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBMjYxMTAvBgNVBAUTKEQ0MEMxQjM5RkUwNTM2NkVEOEIyM0UwODgwQjY5RUI3 NUY3QzkwRTIwHhcNMjQwNTE4MjAzMTA4WhcNMjQwNTI1MjAzMTA4WjAYMRYwFAYD VQQDEw02NjQ5MTAwZC1jMzU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoC5E/1zjC9FSvJ991ZzIYG5s/X8/7jNjqmmP3pZw+8G+n6nXdtCYwGMSGJ+r jTqF0R3UpGIbSICmju8dCj4Qnrt+NaRRLy7YPkZ7x0nVSTxdqDnJoVdCBldC+mug KPkgDuSIBrySwV0h8j9cdbpHLv/Djziq/kzOf1noZ3ZTtdgfFje1YH4EmIfgYVQQ XuRqbpRBz8jSEhhbez08PPW+4QlK1B2zBRPA788nWjE8dVoIkZtTyUuIOQhjnuL6 3cMp3LB3j6a7H5R7Fggcm2XVzptnnVUbQkpBOZpVH1FGp6zA4RCuvE8o7R8EFB64 BWTL7jGRlH1x/ICT1smQX9uDIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEYdIYtd OUbLgac3rkLmOniJbSSbMB8GA1UdIwQYMBaAFNQMGzn+BTZu2LI+CIC2nrdffJDi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUEyNi9CRTUzMTJBMjQ1 QzExMUVBOEQwQkREMzRDNEY5QUUwMi8xQXdiT2Y0Rk5tN1lzajRJZ0xhZXQxOThr T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBd2JPZjRGTm03WXNqNElnTGFldDE5OGtPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUEyNi9CRTUzMTJBMjQ1QzExMUVBOEQwQkREMzRDNEY5QUUwMi8xQXdiT2Y0Rk5t N1lzajRJZ0xhZXQxOThrT0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLOm3swM8ygvj4YgHhULCr5xDicCuIj6OCteavZHqHh2uYBz7AprDp V6/m99pL7phAlgwzhLNnT+aP64MHHzwBsLq4B5+rZHGPDvH6c3lLv1x+jRcSqL1M obrDtih2p2nLAKhkM95hBHs829ih6jb1XxWWlph6SBOwC1lvrhR4UdlV9Ko7rWnR xqLHl2boLlnO+iQS+2W41eCC8kuIFSa1FWizro69frXYBWwoKdk51fQz/Dag6hI/ IFx0CFxfH2/LD+34MNOx7XAt9JqrwMSlxf9JXA6qtqpXQYaIKDRxZPAWaEaZq5Xo 3YcGk+6Z6zs5KtuYz9i0xP24Knioe6hy -----END CERTIFICATE-----Generated at Sat May 18 21:24:21 2024 by rpki-client on console-fra.rpki-client.org