$ rpki-client -vvf rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft File: 2CKi28iCNPgPcORngrLU2c0_m9w.mft (raw, json) Hash identifier: SzsvrHLDr8ODIcSHGED9YUpIiqrZJRcPCVQELO+LScQ= Subject key identifier: 37:0D:90:87:8C:C4:B9:AD:A3:8B:D0:56:62:65:12:4F:2C:44:86:05 Authority key identifier: D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC Certificate issuer: /CN=A9176B32/serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Certificate serial: 0168 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft Manifest number: 0164 Signing time: Sun 19 May 2024 04:50:31 +0000 Manifest this update: Sun 19 May 2024 04:50:31 +0000 Manifest next update: Sun 26 May 2024 04:50:31 +0000 Files and hashes: 1: 2CKi28iCNPgPcORngrLU2c0_m9w.crl (hash: 9OdAbK4isy0+L7UwWJRgDSCyoaSF6CBEPK5OY1GREKg=) 2: 14C5F2A62F3C11ED84084082C4F9AE02.roa (hash: cAVCV/9lxvq8XlQTFfTG333mCLEGnHm+MmPxBaNaH3g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 360 (0x168) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176B32/serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Validity Not Before: May 19 04:50:31 2024 GMT Not After : May 26 04:50:31 2024 GMT Subject: CN=66498517-dd61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:9c:0b:ef:93:94:5e:f9:40:ac:19:48:a0:f5: a5:08:08:ef:6c:36:42:07:6f:99:26:14:8c:74:9e: 75:bf:1e:83:2e:25:7e:df:be:68:d4:ac:68:1d:22: 2a:fc:e6:b6:85:76:84:f8:3d:e1:2b:5b:97:ff:3d: c2:aa:69:59:a7:94:59:34:3d:5b:91:05:87:84:f2: f2:61:86:a0:a4:b0:2f:2f:d0:bc:5e:e2:0b:16:23: 72:69:11:19:5d:b9:cd:96:e7:ff:3f:ae:ae:92:5b: ff:23:c8:c3:24:54:bd:20:d9:35:3f:9c:2e:b9:cb: e2:28:a8:41:9c:a7:41:75:31:f0:fe:46:b8:b8:70: 68:ad:10:66:16:55:54:8a:e5:90:ae:4d:69:d1:f1: 0f:3f:d6:1f:3c:1c:28:ea:74:6a:04:20:3f:70:dc: 56:32:01:15:52:7f:05:06:d0:a9:9e:44:3e:10:3f: 23:4a:1d:e0:6a:2c:07:64:5d:00:06:05:68:ad:cd: e3:e6:eb:d9:fc:7e:a0:53:eb:54:10:38:0e:d6:eb: 99:3b:81:dd:49:1a:bf:11:11:1e:3d:fb:da:9d:47: 06:d5:d1:da:51:68:1c:e0:e8:ad:ff:f1:89:32:66: 39:08:f4:1e:36:3f:0b:1f:97:43:fa:7d:18:d8:41: 0e:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:0D:90:87:8C:C4:B9:AD:A3:8B:D0:56:62:65:12:4F:2C:44:86:05 X509v3 Authority Key Identifier: keyid:D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:f0:df:31:08:e5:4b:eb:b1:a8:25:24:49:74:ba:a3:30:46: 20:60:ac:b4:8a:c5:6a:cf:ad:80:df:e5:76:00:d4:9c:9c:18: 6c:4b:e9:79:49:50:8f:e3:0b:b7:35:2e:45:ec:66:a4:f0:7e: 0a:92:42:b1:bb:20:8b:de:55:86:81:4c:14:8e:e6:6c:6c:d8: 9e:df:29:83:34:49:83:d7:97:37:ff:19:12:fb:f2:91:70:bf: 4a:a0:7a:2d:7b:cc:ed:73:8a:38:2c:83:2a:e1:ec:85:90:f6: 43:0a:ec:0f:39:68:53:4d:66:63:f7:22:98:13:e9:ca:5b:7f: 78:68:b6:46:d4:64:03:cc:ea:de:ec:e6:1a:67:4f:82:59:86: c7:84:87:70:ad:46:99:ac:b1:22:f9:f9:dc:21:b9:b1:f8:00: df:bd:80:50:ff:de:11:b1:23:b9:7e:5c:dd:73:e7:90:87:22: e6:96:39:96:68:fe:61:fa:1c:d6:fd:41:20:f8:eb:6c:2f:d6: 18:8f:6f:c9:08:ca:6f:5d:d4:85:50:d4:46:ec:31:97:3a:7a: 5e:9e:aa:85:66:33:a3:62:08:91:67:79:68:be:2c:d0:90:1f: f9:c8:c8:d4:e2:94:54:80:e6:d7:c3:06:c8:51:fc:47:ae:ce: 1b:c7:2e:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCMzIxMTAvBgNVBAUTKEQ4MjJBMkRCQzg4MjM0RjgwRjcwRTQ2NzgyQjJENEQ5 Q0QzRjlCREMwHhcNMjQwNTE5MDQ1MDMxWhcNMjQwNTI2MDQ1MDMxWjAYMRYwFAYD VQQDEw02NjQ5ODUxNy1kZDYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnpwL75OUXvlArBlIoPWlCAjvbDZCB2+ZJhSMdJ51vx6DLiV+375o1KxoHSIq /Oa2hXaE+D3hK1uX/z3CqmlZp5RZND1bkQWHhPLyYYagpLAvL9C8XuILFiNyaREZ XbnNluf/P66uklv/I8jDJFS9INk1P5wuucviKKhBnKdBdTHw/ka4uHBorRBmFlVU iuWQrk1p0fEPP9YfPBwo6nRqBCA/cNxWMgEVUn8FBtCpnkQ+ED8jSh3gaiwHZF0A BgVorc3j5uvZ/H6gU+tUEDgO1uuZO4HdSRq/EREePfvanUcG1dHaUWgc4Oit//GJ MmY5CPQeNj8LH5dD+n0Y2EEObQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDcNkIeM xLmto4vQVmJlEk8sRIYFMB8GA1UdIwQYMBaAFNgiotvIgjT4D3DkZ4Ky1NnNP5vc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkIzMi83Mzg3OTYxODJG MzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05QZ1BjT1JuZ3JMVTJjMF9t OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJDS2kyOGlDTlBnUGNPUm5nckxVMmMwX205dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkIzMi83Mzg3OTYxODJGMzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05Q Z1BjT1JuZ3JMVTJjMF9tOXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC68N8xCOVL67GoJSRJdLqjMEYgYKy0isVqz62A3+V2ANScnBhsS+l5 SVCP4wu3NS5F7Gak8H4KkkKxuyCL3lWGgUwUjuZsbNie3ymDNEmD15c3/xkS+/KR cL9KoHote8ztc4o4LIMq4eyFkPZDCuwPOWhTTWZj9yKYE+nKW394aLZG1GQDzOre 7OYaZ0+CWYbHhIdwrUaZrLEi+fncIbmx+ADfvYBQ/94RsSO5flzdc+eQhyLmljmW aP5h+hzW/UEg+OtsL9YYj2/JCMpvXdSFUNRG7DGXOnpenqqFZjOjYgiRZ3lovizQ kB/5yMjU4pRUgObXwwbIUfxHrs4bxy7x -----END CERTIFICATE-----Generated at Sun May 19 05:48:50 2024 by rpki-client on console-fra.rpki-client.org