$ rpki-client -vvf rpki.apnic.net/member_repository/A9172E1E/278817C05C1311EEA907183DC4F9AE02/MBTdOHsX8ziHOip6N_gkTZNwLqg.mft File: MBTdOHsX8ziHOip6N_gkTZNwLqg.mft (raw, json) Hash identifier: 8p//YmAfkDJ23S3Z6WAFjjiYDwmQO7Lz+TDrAMNtbn8= Subject key identifier: 9D:F2:90:4F:23:0B:D0:18:97:4C:0C:D8:AA:AC:45:EA:91:AD:8B:77 Authority key identifier: 30:14:DD:38:7B:17:F3:38:87:3A:2A:7A:37:F8:24:4D:93:70:2E:A8 Certificate issuer: /CN=A9172E1E/serialNumber=3014DD387B17F338873A2A7A37F8244D93702EA8 Certificate serial: 7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MBTdOHsX8ziHOip6N_gkTZNwLqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172E1E/278817C05C1311EEA907183DC4F9AE02/MBTdOHsX8ziHOip6N_gkTZNwLqg.mft Manifest number: 7C Signing time: Sun 19 May 2024 07:18:19 +0000 Manifest this update: Sun 19 May 2024 07:18:18 +0000 Manifest next update: Sun 26 May 2024 07:18:18 +0000 Files and hashes: 1: MBTdOHsX8ziHOip6N_gkTZNwLqg.crl (hash: a/GFSAv9W0jPwKFRfAAbJPTYoqM9iaJ45cw3PrNJtyI=) 2: B9645EC65C2511EEAF0A215DC4F9AE02.roa (hash: 7H/o9WVNvbIAlbhkr+4Ry+kOFXKkHNIKo5p7Mvq+8NE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172E1E/278817C05C1311EEA907183DC4F9AE02/MBTdOHsX8ziHOip6N_gkTZNwLqg.crl rsync://rpki.apnic.net/member_repository/A9172E1E/278817C05C1311EEA907183DC4F9AE02/MBTdOHsX8ziHOip6N_gkTZNwLqg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MBTdOHsX8ziHOip6N_gkTZNwLqg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172E1E/serialNumber=3014DD387B17F338873A2A7A37F8244D93702EA8 Validity Not Before: May 19 07:18:18 2024 GMT Not After : May 26 07:18:18 2024 GMT Subject: CN=6649a7bb-5521 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:42:a6:30:24:0f:c6:87:ff:9a:37:24:27:db: 6e:06:43:5a:f7:88:d6:56:fe:e5:02:1a:3f:48:ec: 65:d1:d0:64:3a:10:18:6f:eb:b7:01:72:6b:0e:cd: 5d:a5:f9:e9:c3:62:43:65:98:93:e9:27:0e:3f:ba: 72:30:49:2e:37:42:41:a2:67:db:22:a0:51:0b:ac: 39:f0:99:1c:42:ad:2b:26:e5:cc:a4:e1:43:af:b2: f5:88:4b:b0:bb:f7:fd:13:8b:d3:1f:2a:43:64:83: ea:90:1a:a0:d0:b2:e1:01:ba:0d:14:30:8c:08:e0: f7:8c:84:9b:ea:0a:96:d3:65:6f:f1:75:dc:63:b9: 1f:c5:f4:be:5b:00:fa:b6:ba:a5:ba:60:3f:db:d9: 24:e6:5f:b9:21:fd:d3:7e:f3:a2:6d:b4:3b:f8:ed: be:05:49:95:5a:cd:af:b7:9d:b3:3a:02:fb:44:34: 62:bb:1f:52:32:33:3c:ff:3a:1f:64:6d:47:26:e8: 97:a5:3e:08:4b:f8:78:45:2c:30:d8:e2:80:b2:22: 90:5e:10:03:7f:c9:b6:d4:ac:55:70:c2:9d:3a:63: 29:46:30:b3:4c:68:ef:9d:99:4f:9b:27:74:33:b7: 86:0c:63:90:0f:3d:cf:b7:2b:8d:6f:84:0b:fd:97: e1:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:F2:90:4F:23:0B:D0:18:97:4C:0C:D8:AA:AC:45:EA:91:AD:8B:77 X509v3 Authority Key Identifier: keyid:30:14:DD:38:7B:17:F3:38:87:3A:2A:7A:37:F8:24:4D:93:70:2E:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172E1E/278817C05C1311EEA907183DC4F9AE02/MBTdOHsX8ziHOip6N_gkTZNwLqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MBTdOHsX8ziHOip6N_gkTZNwLqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172E1E/278817C05C1311EEA907183DC4F9AE02/MBTdOHsX8ziHOip6N_gkTZNwLqg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:2c:82:ec:64:c8:c6:c3:99:b8:70:9a:42:49:ef:09:5f:8e: 79:4d:04:0e:0f:9d:28:d0:a1:c6:26:b5:3e:83:80:cb:47:84: 60:16:6d:9a:66:73:a8:65:2d:62:e6:0f:69:e6:9a:11:61:46: 89:fd:ff:e5:b5:9e:52:1c:6f:cd:18:1f:dd:94:6b:b5:5c:24: 9a:92:e9:80:5b:1e:d6:28:27:3a:64:d2:a5:e6:2e:fa:6e:19: b7:50:55:38:63:a9:46:7c:2f:75:f4:b6:24:e9:15:c1:93:40: 9a:56:d7:eb:42:f3:c5:e0:17:19:01:4d:35:2e:6d:fd:dd:1c: b9:8d:3b:5a:52:32:a6:75:3f:e8:03:45:14:48:78:63:ab:36: ed:50:00:07:51:a9:e8:cc:98:b0:f3:2d:76:11:c7:13:51:cb: 93:99:0b:ed:e9:46:91:7b:6d:1e:e5:32:a3:a1:ff:34:e9:3d: af:30:67:89:f7:4f:a4:36:18:bb:44:32:37:35:80:e7:dd:c1: 19:64:08:f3:36:06:4e:31:b2:88:80:3b:82:78:4e:13:9b:54: 36:32:b6:e3:62:ec:af:59:1a:9a:2a:c5:0f:21:46:be:3a:c4: 9d:05:82:5d:fa:68:fa:88:3b:d6:15:3c:66:37:b8:42:98:87: 19:3e:c2:98 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MkUxRTExMC8GA1UEBRMoMzAxNEREMzg3QjE3RjMzODg3M0EyQTdBMzdGODI0NEQ5 MzcwMkVBODAeFw0yNDA1MTkwNzE4MThaFw0yNDA1MjYwNzE4MThaMBgxFjAUBgNV BAMTDTY2NDlhN2JiLTU1MjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDaQqYwJA/Gh/+aNyQn224GQ1r3iNZW/uUCGj9I7GXR0GQ6EBhv67cBcmsOzV2l +enDYkNlmJPpJw4/unIwSS43QkGiZ9sioFELrDnwmRxCrSsm5cyk4UOvsvWIS7C7 9/0Ti9MfKkNkg+qQGqDQsuEBug0UMIwI4PeMhJvqCpbTZW/xddxjuR/F9L5bAPq2 uqW6YD/b2STmX7kh/dN+86JttDv47b4FSZVaza+3nbM6AvtENGK7H1IyMzz/Oh9k bUcm6JelPghL+HhFLDDY4oCyIpBeEAN/ybbUrFVwwp06YylGMLNMaO+dmU+bJ3Qz t4YMY5APPc+3K41vhAv9l+GzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnfKQTyML 0BiXTAzYqqxF6pGti3cwHwYDVR0jBBgwFoAUMBTdOHsX8ziHOip6N/gkTZNwLqgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcyRTFFLzI3ODgxN0MwNUMx MzExRUVBOTA3MTgzREM0RjlBRTAyL01CVGRPSHNYOHppSE9pcDZOX2drVFpOd0xx Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTUJUZE9Ic1g4emlIT2lwNk5fZ2tUWk53THFnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcy RTFFLzI3ODgxN0MwNUMxMzExRUVBOTA3MTgzREM0RjlBRTAyL01CVGRPSHNYOHpp SE9pcDZOX2drVFpOd0xxZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACAsguxkyMbDmbhwmkJJ7wlfjnlNBA4PnSjQocYmtT6DgMtHhGAWbZpm c6hlLWLmD2nmmhFhRon9/+W1nlIcb80YH92Ua7VcJJqS6YBbHtYoJzpk0qXmLvpu GbdQVThjqUZ8L3X0tiTpFcGTQJpW1+tC88XgFxkBTTUubf3dHLmNO1pSMqZ1P+gD RRRIeGOrNu1QAAdRqejMmLDzLXYRxxNRy5OZC+3pRpF7bR7lMqOh/zTpPa8wZ4n3 T6Q2GLtEMjc1gOfdwRlkCPM2Bk4xsoiAO4J4ThObVDYytuNi7K9ZGpoqxQ8hRr46 xJ0Fgl36aPqIO9YVPGY3uEKYhxk+wpg= -----END CERTIFICATE-----Generated at Sun May 19 08:26:43 2024 by rpki-client on console-fra.rpki-client.org