$ rpki-client -vvf rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft File: CkIqY5fY62yzV3UpfOtVpeGP4eI.mft (raw, json) Hash identifier: 6TWAr2UJBi0VvqmE4Pp7rFMRV9Rij0J4h9UNLPcg+78= Subject key identifier: E3:21:D0:4B:BB:70:36:19:AC:62:94:F4:87:F5:2E:E0:15:DD:67:5D Authority key identifier: 0A:42:2A:63:97:D8:EB:6C:B3:57:75:29:7C:EB:55:A5:E1:8F:E1:E2 Certificate issuer: /CN=A9176AFD/serialNumber=0A422A6397D8EB6CB35775297CEB55A5E18FE1E2 Certificate serial: 1815 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft Manifest number: 1805 Signing time: Fri 31 May 2024 17:10:44 +0000 Manifest this update: Fri 31 May 2024 17:10:43 +0000 Manifest next update: Fri 07 Jun 2024 17:10:43 +0000 Files and hashes: 1: CkIqY5fY62yzV3UpfOtVpeGP4eI.crl (hash: OoDZts0+qOAkeL2gty4r7/NTVxCV4DtuV36STA2kyHY=) 2: D6D99A3EBE3711EDA6617C5DC4F9AE02.roa (hash: UAutIMg85W5GqQphKPOoPkUt8OpUCGxcTAZkg1Z0XYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.crl rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 17:10:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6165 (0x1815) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176AFD/serialNumber=0A422A6397D8EB6CB35775297CEB55A5E18FE1E2 Validity Not Before: May 31 17:10:43 2024 GMT Not After : Jun 7 17:10:43 2024 GMT Subject: CN=665a0493-83bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:4f:f5:af:4e:dc:77:bb:fe:97:a4:9a:45:7c: 17:6d:f4:49:cc:f6:09:42:c5:20:4d:49:cb:24:fb: 08:ce:f3:51:6c:20:c0:93:06:1e:35:5c:c9:87:d8: 73:25:89:50:e9:b6:50:2c:36:83:8e:af:a8:f4:33: b6:8e:cf:83:33:22:12:56:9c:56:b7:ba:05:74:82: 95:ef:62:3f:22:b1:12:ab:40:6d:f4:46:b7:1e:65: 65:1b:8c:ed:9f:6c:63:2d:a9:a0:ef:dd:5e:61:e5: 75:41:0e:c4:4c:90:d9:93:6f:0c:fb:dc:09:0b:81: 03:2d:a6:10:e5:b0:1e:5f:5d:fe:b9:58:19:ca:b3: 3b:20:24:94:45:62:1f:bb:67:d1:03:59:fb:64:33: 1b:fc:ca:92:eb:b0:07:c9:e1:fa:46:f2:79:1d:57: 11:df:b9:aa:78:97:53:b2:fc:55:f1:fa:88:49:9a: 54:58:10:04:5e:3a:44:9d:1a:c1:35:de:84:7f:f4: 21:f6:3a:c6:3e:59:8b:7a:a4:67:45:26:7f:d0:14: ac:e8:94:ce:49:9e:e9:45:0d:4d:22:b8:7f:15:dc: aa:d0:78:85:6c:e2:17:69:e5:33:09:af:8c:cc:32: 67:65:31:15:ed:d6:01:de:e5:56:3e:1c:3e:dc:b6: 39:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:21:D0:4B:BB:70:36:19:AC:62:94:F4:87:F5:2E:E0:15:DD:67:5D X509v3 Authority Key Identifier: keyid:0A:42:2A:63:97:D8:EB:6C:B3:57:75:29:7C:EB:55:A5:E1:8F:E1:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:16:2c:d0:01:7d:8e:19:3f:8c:0b:4a:5d:6a:33:97:7b:c5: 3c:ab:0c:04:17:4d:33:64:d7:d9:66:53:da:52:ba:27:51:c2: 86:28:58:f7:45:b2:d6:69:8f:62:25:7a:01:3f:f1:03:66:29: 26:ba:be:96:64:10:bd:05:a8:ca:58:0d:fc:2c:41:81:75:19: 8f:c8:5a:e5:01:d9:dd:23:dc:fc:2d:ac:01:e8:5e:3a:2c:35: 7a:ea:e2:47:fd:50:a4:0b:82:55:e1:cf:ea:0d:9f:2b:70:ce: e9:34:32:71:b8:30:d9:b2:26:27:6a:ee:c7:a2:e6:3f:16:73: 44:7f:03:00:a8:f2:d2:91:fb:5c:04:89:97:a1:12:0c:d2:2a: c8:6e:85:53:51:a6:56:9a:65:ce:e0:88:f8:ba:08:98:03:63: 0a:f9:46:1e:7f:57:17:e1:d8:1e:72:b8:7a:5c:ad:c6:3f:c5: 03:19:fa:43:be:4e:5c:b3:6b:67:75:8a:0e:51:72:45:e9:24: 2a:4e:6a:cf:3c:f9:12:c0:65:6c:35:3d:37:64:02:87:08:f9: 15:a3:e2:2f:26:36:8f:16:93:bd:b5:13:0a:42:09:1c:af:fa: 5c:a3:f4:e4:84:5f:72:5a:b2:69:89:63:98:ab:6e:b8:d8:e0: e8:73:83:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGBUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZBRkQxMTAvBgNVBAUTKDBBNDIyQTYzOTdEOEVCNkNCMzU3NzUyOTdDRUI1NUE1 RTE4RkUxRTIwHhcNMjQwNTMxMTcxMDQzWhcNMjQwNjA3MTcxMDQzWjAYMRYwFAYD VQQDEw02NjVhMDQ5My04M2JmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu0/1r07cd7v+l6SaRXwXbfRJzPYJQsUgTUnLJPsIzvNRbCDAkwYeNVzJh9hz JYlQ6bZQLDaDjq+o9DO2js+DMyISVpxWt7oFdIKV72I/IrESq0Bt9Ea3HmVlG4zt n2xjLamg791eYeV1QQ7ETJDZk28M+9wJC4EDLaYQ5bAeX13+uVgZyrM7ICSURWIf u2fRA1n7ZDMb/MqS67AHyeH6RvJ5HVcR37mqeJdTsvxV8fqISZpUWBAEXjpEnRrB Nd6Ef/Qh9jrGPlmLeqRnRSZ/0BSs6JTOSZ7pRQ1NIrh/Fdyq0HiFbOIXaeUzCa+M zDJnZTEV7dYB3uVWPhw+3LY5gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOMh0Eu7 cDYZrGKU9If1LuAV3WddMB8GA1UdIwQYMBaAFApCKmOX2Otss1d1KXzrVaXhj+Hi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkFGRC81QkIyMjMwQTky RjgxMUU3ODRDQTBFNUNDNEY5QUUwMi9Da0lxWTVmWTYyeXpWM1VwZk90VnBlR1A0 ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NrSXFZNWZZNjJ5elYzVXBmT3RWcGVHUDRlSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkFGRC81QkIyMjMwQTkyRjgxMUU3ODRDQTBFNUNDNEY5QUUwMi9Da0lxWTVmWTYy eXpWM1VwZk90VnBlR1A0ZUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJFizQAX2OGT+MC0pdajOXe8U8qwwEF00zZNfZZlPaUronUcKGKFj3 RbLWaY9iJXoBP/EDZikmur6WZBC9BajKWA38LEGBdRmPyFrlAdndI9z8LawB6F46 LDV66uJH/VCkC4JV4c/qDZ8rcM7pNDJxuDDZsiYnau7HouY/FnNEfwMAqPLSkftc BImXoRIM0irIboVTUaZWmmXO4Ij4ugiYA2MK+UYef1cX4dgecrh6XK3GP8UDGfpD vk5cs2tndYoOUXJF6SQqTmrPPPkSwGVsNT03ZAKHCPkVo+IvJjaPFpO9tRMKQgkc r/pco/TkhF9yWrJpiWOYq2642ODoc4Mp -----END CERTIFICATE-----Generated at Fri May 31 19:47:50 2024 by rpki-client on console-fra.rpki-client.org