$ rpki-client -vvf rpki.apnic.net/member_repository/A9179CA8/05660926D44711EDAA41BF7EC4F9AE02/1pYa2ozVd8wz1xqaLcgbDBklrJg.mft File: 1pYa2ozVd8wz1xqaLcgbDBklrJg.mft (raw, json) Hash identifier: WrRLZStwpE/1vvStXUxpGNAism3cUzxNgVuXTQ87dJg= Subject key identifier: FF:8A:8A:BE:36:6B:D7:CC:F0:78:61:A3:2C:C3:96:DD:E2:E5:07:73 Authority key identifier: D6:96:1A:DA:8C:D5:77:CC:33:D7:1A:9A:2D:C8:1B:0C:19:25:AC:98 Certificate issuer: /CN=A9179CA8/serialNumber=D6961ADA8CD577CC33D71A9A2DC81B0C1925AC98 Certificate serial: D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1pYa2ozVd8wz1xqaLcgbDBklrJg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179CA8/05660926D44711EDAA41BF7EC4F9AE02/1pYa2ozVd8wz1xqaLcgbDBklrJg.mft Manifest number: D3 Signing time: Sun 19 May 2024 06:10:20 +0000 Manifest this update: Sun 19 May 2024 06:10:19 +0000 Manifest next update: Sun 26 May 2024 06:10:19 +0000 Files and hashes: 1: 1pYa2ozVd8wz1xqaLcgbDBklrJg.crl (hash: mT64d6FqNNDA1O944oCVTRE+892p66u89gXjQboOOgU=) 2: B94E87EAD44911ED88A2367FC4F9AE02.roa (hash: PPDLVXPQl6XurgAduiHqWzb+gvCQg2TVIT5HxoU2C6Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179CA8/05660926D44711EDAA41BF7EC4F9AE02/1pYa2ozVd8wz1xqaLcgbDBklrJg.crl rsync://rpki.apnic.net/member_repository/A9179CA8/05660926D44711EDAA41BF7EC4F9AE02/1pYa2ozVd8wz1xqaLcgbDBklrJg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1pYa2ozVd8wz1xqaLcgbDBklrJg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179CA8/serialNumber=D6961ADA8CD577CC33D71A9A2DC81B0C1925AC98 Validity Not Before: May 19 06:10:19 2024 GMT Not After : May 26 06:10:19 2024 GMT Subject: CN=664997cc-9c34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:3c:17:81:96:f4:2f:b8:3f:6b:5a:4e:f0:d9: 76:3c:ac:35:0b:a4:b5:d8:b9:96:5a:9f:eb:69:4e: 81:06:f2:5b:5b:3c:a6:00:ca:d5:a4:34:6f:3d:1c: 62:15:64:be:c0:41:4e:a4:9f:73:e4:4a:cb:32:5c: 3d:7f:2a:25:a0:bb:de:2d:5a:1e:f4:2f:4a:bd:b4: d9:78:37:81:94:9b:69:5e:eb:68:4d:21:b1:03:98: 59:6f:1c:1e:4a:dd:d8:1e:a1:d5:b6:1b:62:21:26: b1:2a:b0:c8:a2:ca:e4:cf:5c:c4:98:91:cc:55:ef: 78:17:69:08:d0:5e:3d:ce:16:53:fa:cb:bb:3c:ef: 58:eb:3c:37:a4:79:a1:e3:24:39:96:cd:8c:6d:0f: 9a:64:eb:03:71:c1:b0:12:2d:dd:ad:74:8e:55:5b: 5d:d5:54:72:f6:1d:3d:e2:3d:4d:61:c8:9a:74:0b: 00:23:ac:a6:6d:c7:fd:cc:39:f9:96:73:cc:5c:86: 4f:9b:f2:ee:2f:33:56:88:88:58:9b:81:32:12:10: b0:da:57:2a:d5:2d:7f:78:f4:fc:5d:14:da:f3:df: c5:4a:6c:83:c0:5b:06:3f:d1:97:23:93:f4:51:f8: 13:7e:0d:4b:47:16:9d:eb:ff:70:62:fe:07:32:09: 39:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:8A:8A:BE:36:6B:D7:CC:F0:78:61:A3:2C:C3:96:DD:E2:E5:07:73 X509v3 Authority Key Identifier: keyid:D6:96:1A:DA:8C:D5:77:CC:33:D7:1A:9A:2D:C8:1B:0C:19:25:AC:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179CA8/05660926D44711EDAA41BF7EC4F9AE02/1pYa2ozVd8wz1xqaLcgbDBklrJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1pYa2ozVd8wz1xqaLcgbDBklrJg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179CA8/05660926D44711EDAA41BF7EC4F9AE02/1pYa2ozVd8wz1xqaLcgbDBklrJg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:51:5d:65:5c:0a:d5:31:33:1b:53:39:13:4a:5d:bf:ed:70: 82:c1:44:59:c6:1d:08:16:36:bc:39:75:2a:19:e6:33:2a:f7: b6:ce:8a:80:33:fc:29:c8:5a:88:d1:8e:dc:53:ee:86:53:d3: 98:9f:a3:4b:46:4c:98:63:93:5f:01:25:5c:b8:e7:06:57:5a: 6d:56:76:c9:58:be:b1:18:cf:28:eb:b9:23:3f:6e:e1:6d:2b: d0:c3:9f:74:1b:aa:72:6f:6a:2c:aa:b8:ef:98:a6:44:e3:b3: 94:d8:81:ba:f3:89:d0:41:d8:e0:a9:dd:5e:fa:3d:b8:02:d1: 29:2a:85:6d:31:22:62:fb:0e:b3:20:e2:c1:ef:1e:02:b0:de: c6:38:74:9d:64:57:ac:57:99:b3:b2:4a:37:db:15:7c:72:ce: 3b:b9:01:a3:bd:a1:1b:b2:9f:45:0c:20:f5:76:30:85:50:25: 8e:c9:80:8c:6c:0e:d0:76:b9:b2:2e:20:4b:2b:a0:31:79:b6: 09:09:bd:3e:38:a6:07:12:75:82:0c:87:65:11:09:ce:36:f8: ab:f1:aa:11:57:22:54:9e:21:d6:a5:82:b8:35:09:a0:e7:bd: 89:d8:b8:5b:39:a8:03:d2:3c:72:ef:96:88:bd:a9:b1:49:e9: 5b:75:e5:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlDQTgxMTAvBgNVBAUTKEQ2OTYxQURBOENENTc3Q0MzM0Q3MUE5QTJEQzgxQjBD MTkyNUFDOTgwHhcNMjQwNTE5MDYxMDE5WhcNMjQwNTI2MDYxMDE5WjAYMRYwFAYD VQQDEw02NjQ5OTdjYy05YzM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArTwXgZb0L7g/a1pO8Nl2PKw1C6S12LmWWp/raU6BBvJbWzymAMrVpDRvPRxi FWS+wEFOpJ9z5ErLMlw9fyoloLveLVoe9C9KvbTZeDeBlJtpXutoTSGxA5hZbxwe St3YHqHVthtiISaxKrDIosrkz1zEmJHMVe94F2kI0F49zhZT+su7PO9Y6zw3pHmh 4yQ5ls2MbQ+aZOsDccGwEi3drXSOVVtd1VRy9h094j1NYciadAsAI6ymbcf9zDn5 lnPMXIZPm/LuLzNWiIhYm4EyEhCw2lcq1S1/ePT8XRTa89/FSmyDwFsGP9GXI5P0 UfgTfg1LRxad6/9wYv4HMgk5jQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP+Kir42 a9fM8HhhoyzDlt3i5QdzMB8GA1UdIwQYMBaAFNaWGtqM1XfMM9cami3IGwwZJayY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUNBOC8wNTY2MDkyNkQ0 NDcxMUVEQUE0MUJGN0VDNEY5QUUwMi8xcFlhMm96VmQ4d3oxeHFhTGNnYkRCa2xy SmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFwWWEyb3pWZDh3ejF4cWFMY2diREJrbHJKZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUNBOC8wNTY2MDkyNkQ0NDcxMUVEQUE0MUJGN0VDNEY5QUUwMi8xcFlhMm96VmQ4 d3oxeHFhTGNnYkRCa2xySmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQUV1lXArVMTMbUzkTSl2/7XCCwURZxh0IFja8OXUqGeYzKve2zoqA M/wpyFqI0Y7cU+6GU9OYn6NLRkyYY5NfASVcuOcGV1ptVnbJWL6xGM8o67kjP27h bSvQw590G6pyb2osqrjvmKZE47OU2IG684nQQdjgqd1e+j24AtEpKoVtMSJi+w6z IOLB7x4CsN7GOHSdZFesV5mzsko32xV8cs47uQGjvaEbsp9FDCD1djCFUCWOyYCM bA7QdrmyLiBLK6AxebYJCb0+OKYHEnWCDIdlEQnONvir8aoRVyJUniHWpYK4NQmg 572J2LhbOagD0jxy75aIvamxSelbdeU8 -----END CERTIFICATE-----Generated at Sun May 19 07:40:40 2024 by rpki-client on console-fra.rpki-client.org