$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft File: Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft (raw, json) Hash identifier: P1kuN68kfPoHucYVLezXviczvNZsEDqR1JqhRQJrN2o= Subject key identifier: 89:53:8B:E3:7F:2B:D1:32:3D:64:7D:FA:B6:29:31:AB:E5:93:5F:E9 Authority key identifier: 33:3E:C5:03:01:4D:06:74:AF:16:74:19:94:10:F9:B0:91:B8:FB:94 Certificate issuer: /CN=A9171A59/serialNumber=333EC503014D0674AF1674199410F9B091B8FB94 Certificate serial: 03EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft Manifest number: 03EB Signing time: Sun 19 May 2024 02:17:10 +0000 Manifest this update: Sun 19 May 2024 02:17:09 +0000 Manifest next update: Sun 26 May 2024 02:17:09 +0000 Files and hashes: 1: Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl (hash: PmEWEGuQAxm5SExzFpCUJGfLuh0M6yG30JBop0KQjyw=) 2: ABD9CB4630C711ECA2491515C4F9AE02.roa (hash: e5DQN0gUt317ERWZVtRRumZ22rqenKdlnkwt5HATBok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:17:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1007 (0x3ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A59/serialNumber=333EC503014D0674AF1674199410F9B091B8FB94 Validity Not Before: May 19 02:17:09 2024 GMT Not After : May 26 02:17:09 2024 GMT Subject: CN=66496126-aeb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:41:df:c7:27:b2:0f:a5:7f:b4:63:26:5c:52: 51:9e:9a:c3:11:26:f3:36:26:cc:26:88:f2:4c:24: 77:60:2a:62:be:a8:ee:e3:96:dc:41:d1:cc:65:23: ae:25:00:15:68:80:e1:0b:dd:32:0c:13:ba:e5:a4: f6:d4:02:0a:e8:b2:77:2c:7b:fc:14:15:83:5c:a1: 9b:db:d1:d3:e2:88:6e:a6:0c:62:f0:ef:0e:32:aa: 2d:b6:14:ba:3f:96:6a:f5:6c:34:8f:42:cd:10:66: 1a:c5:e0:40:db:d8:4e:7f:ee:5b:d0:6c:11:e2:33: 28:f6:7d:81:7a:4b:ff:e8:3f:2d:65:47:10:05:1b: 92:04:64:e4:66:27:f7:ed:12:41:d2:67:46:58:d5: 01:4b:fa:3c:00:9e:eb:57:95:4f:48:9f:52:4a:8b: 57:b5:f2:b5:15:78:c2:e8:36:00:dd:72:5f:a7:6b: 25:67:36:8f:64:85:9b:11:c4:a6:93:0c:ac:e6:84: 1b:74:1d:16:20:b4:a5:bd:e9:ee:84:6f:e0:53:75: 2b:c9:75:39:71:7a:b8:e7:04:90:57:04:c9:28:2d: 2a:21:6e:3c:2a:c3:15:15:af:69:b2:25:a3:62:2d: f6:c6:e6:fd:75:ef:b0:ab:17:89:a1:ff:80:b5:b7: 22:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:53:8B:E3:7F:2B:D1:32:3D:64:7D:FA:B6:29:31:AB:E5:93:5F:E9 X509v3 Authority Key Identifier: keyid:33:3E:C5:03:01:4D:06:74:AF:16:74:19:94:10:F9:B0:91:B8:FB:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:15:72:89:97:3b:cc:3d:8a:82:cc:dd:08:00:76:b8:c3:dc: dd:1a:3a:ac:2f:84:61:b6:1a:de:d7:c0:75:19:46:21:d2:2d: 48:dd:60:26:10:42:8c:43:15:7f:d7:b4:e4:39:39:b7:6a:a1: fc:d6:f2:f5:5a:7d:2a:af:f6:e6:1d:5a:1d:00:3d:63:0c:79: 59:bd:f7:d1:b7:97:fc:ef:1b:18:b9:1a:d5:3b:08:a6:39:f3: 11:43:cb:6e:fc:9d:7a:0d:3e:92:ae:6c:8b:b1:06:2a:f4:0c: d9:8e:c9:12:f8:ea:89:b9:73:d7:71:29:7f:ab:00:ad:85:8c: 6d:0d:1b:bd:55:59:0d:ea:72:24:6e:31:74:f5:32:14:13:ff: d6:37:e8:28:52:9b:8a:db:7f:61:43:9d:2b:62:98:86:89:43: 81:30:e5:69:fd:cc:f9:5e:d2:cf:90:fc:5a:e7:1f:03:43:d4: de:86:42:61:2a:77:89:b4:a8:74:09:78:d6:01:0d:5a:ff:31: 7d:25:33:af:62:74:9a:20:fc:68:0c:74:69:18:af:16:87:a2: 3e:02:15:2e:82:fd:bd:1e:35:c1:05:57:ba:90:d7:49:3a:15: a9:1e:5e:e8:65:85:94:1a:c6:20:91:e4:a2:26:0f:77:14:0d: 72:82:12:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBNTkxMTAvBgNVBAUTKDMzM0VDNTAzMDE0RDA2NzRBRjE2NzQxOTk0MTBGOUIw OTFCOEZCOTQwHhcNMjQwNTE5MDIxNzA5WhcNMjQwNTI2MDIxNzA5WjAYMRYwFAYD VQQDEw02NjQ5NjEyNi1hZWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2EHfxyeyD6V/tGMmXFJRnprDESbzNibMJojyTCR3YCpivqju45bcQdHMZSOu JQAVaIDhC90yDBO65aT21AIK6LJ3LHv8FBWDXKGb29HT4ohupgxi8O8OMqotthS6 P5Zq9Ww0j0LNEGYaxeBA29hOf+5b0GwR4jMo9n2Bekv/6D8tZUcQBRuSBGTkZif3 7RJB0mdGWNUBS/o8AJ7rV5VPSJ9SSotXtfK1FXjC6DYA3XJfp2slZzaPZIWbEcSm kwys5oQbdB0WILSlvenuhG/gU3UryXU5cXq45wSQVwTJKC0qIW48KsMVFa9psiWj Yi32xub9de+wqxeJof+AtbcipwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIlTi+N/ K9EyPWR9+rYpMavlk1/pMB8GA1UdIwQYMBaAFDM+xQMBTQZ0rxZ0GZQQ+bCRuPuU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUE1OS84QUI5MzNFQTMw QzUxMUVDOEE2N0FBN0NDNEY5QUUwMi9NejdGQXdGTkJuU3ZGblFabEJENXNKRzQt NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL016N0ZBd0ZOQm5TdkZuUVpsQkQ1c0pHNC01US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUE1OS84QUI5MzNFQTMwQzUxMUVDOEE2N0FBN0NDNEY5QUUwMi9NejdGQXdGTkJu U3ZGblFabEJENXNKRzQtNVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9FXKJlzvMPYqCzN0IAHa4w9zdGjqsL4Rhthre18B1GUYh0i1I3WAm EEKMQxV/17TkOTm3aqH81vL1Wn0qr/bmHVodAD1jDHlZvffRt5f87xsYuRrVOwim OfMRQ8tu/J16DT6SrmyLsQYq9AzZjskS+OqJuXPXcSl/qwCthYxtDRu9VVkN6nIk bjF09TIUE//WN+goUpuK239hQ50rYpiGiUOBMOVp/cz5XtLPkPxa5x8DQ9TehkJh KneJtKh0CXjWAQ1a/zF9JTOvYnSaIPxoDHRpGK8Wh6I+AhUugv29HjXBBVe6kNdJ OhWpHl7oZYWUGsYgkeSiJg93FA1yghLP -----END CERTIFICATE-----Generated at Sun May 19 03:14:49 2024 by rpki-client on console-fra.rpki-client.org