$ rpki-client -vvf rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4QiBh_ZAlCY92mdJqV9zqmwasGM.mft File: 4QiBh_ZAlCY92mdJqV9zqmwasGM.mft (raw, json) Hash identifier: Or/BDO7FHr0NafzY0vm4EV14zQ7ZMDld6wDBH611eA0= Subject key identifier: 79:47:AA:7E:46:46:6F:FB:67:8B:40:28:04:CC:6D:BF:1D:6F:7A:0F Authority key identifier: E1:08:81:87:F6:40:94:26:3D:DA:67:49:A9:5F:73:AA:6C:1A:B0:63 Certificate issuer: /CN=A917BAC5/serialNumber=E1088187F64094263DDA6749A95F73AA6C1AB063 Certificate serial: 01E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QiBh_ZAlCY92mdJqV9zqmwasGM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4QiBh_ZAlCY92mdJqV9zqmwasGM.mft Manifest number: 01C4 Signing time: Sun 19 May 2024 04:37:09 +0000 Manifest this update: Sun 19 May 2024 04:37:08 +0000 Manifest next update: Sun 26 May 2024 04:37:08 +0000 Files and hashes: 1: 4QiBh_ZAlCY92mdJqV9zqmwasGM.crl (hash: m1XFB6EL3/oEhcvmWt0Ry2NUxqJdodGaA87LZp93CNM=) 2: 3632957E441311EE8A03A472C4F9AE02.roa (hash: EbtnDh4DWIA3j8RXQsbBr4w4FEuv/RXRXjqDIP+V60Y=) 3: 780136B63D1211EEBB0A0C5AC4F9AE02.roa (hash: BGb8lJ19bEOILVehNZrqKyQ4n7ftxy+be2z8g5jTs8w=) 4: 4C7C3EA8E8F511EDBC11CF6BC4F9AE02.roa (hash: u7Nax8JUdoNdQF5TCxaJQc8Fm67+wVNKpWjrseXurZE=) 5: 78BC7D28A87E11ED9AE70779C4F9AE02.roa (hash: fvPKPNXn1CsMRrBIV1RkOZ7K/5mN5Zr2O+s0gCx1fpQ=) 6: 9DC49A2449A011EEB3DFDD0DC4F9AE02.roa (hash: xOVuVnDiFE1JCQz3GBc+icRwwU9NeM/p6yNTteTzOAA=) 7: 3D34A750A88111ED80831318C4F9AE02.roa (hash: GXf50bZcG1n6p3Us5c1/OEfGfKM9bn6FVedygnnny50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4QiBh_ZAlCY92mdJqV9zqmwasGM.crl rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4QiBh_ZAlCY92mdJqV9zqmwasGM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QiBh_ZAlCY92mdJqV9zqmwasGM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 483 (0x1e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BAC5/serialNumber=E1088187F64094263DDA6749A95F73AA6C1AB063 Validity Not Before: May 19 04:37:08 2024 GMT Not After : May 26 04:37:08 2024 GMT Subject: CN=664981f5-4f6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:2e:e6:77:9e:3c:1c:e8:df:db:58:4f:6c:bd: 2f:44:b6:af:28:4c:93:24:68:45:67:10:22:f9:ae: cf:31:0e:94:93:6a:85:4c:08:da:48:df:7a:da:49: d5:8a:d6:f1:6c:97:dc:06:ca:b2:c8:c2:c1:69:9e: e5:12:12:db:db:99:8c:ac:db:6e:8e:a5:a5:d1:f3: ac:63:68:a0:17:3d:1d:c2:c9:7b:c3:c8:c5:d0:23: 1d:c3:a6:13:d8:3a:a6:d3:ee:58:97:27:6f:cc:53: 80:55:be:c4:b4:b0:29:74:e5:09:42:39:66:0a:df: f8:b0:2a:c5:14:fd:f6:ea:33:f1:3c:d5:4a:11:f7: 23:e0:ee:05:a4:a0:0b:e2:1e:3b:82:55:08:f4:0c: c3:fd:db:f9:9f:3d:99:12:2d:97:07:23:52:ff:98: 54:49:88:1c:5a:1c:48:37:d7:75:a2:e8:5c:f2:37: c2:1a:90:10:0d:a2:1f:1b:f8:69:46:18:ab:af:36: 05:aa:f2:e8:39:88:e6:9b:6f:b0:74:5e:01:d5:25: 46:f7:66:05:1f:d2:16:68:91:a1:1e:82:ce:bd:9c: 53:b5:c1:03:29:87:97:81:63:e6:4f:17:74:2c:c7: 67:66:ee:c8:ea:06:19:45:d3:a3:28:85:ff:b8:27: 6d:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:47:AA:7E:46:46:6F:FB:67:8B:40:28:04:CC:6D:BF:1D:6F:7A:0F X509v3 Authority Key Identifier: keyid:E1:08:81:87:F6:40:94:26:3D:DA:67:49:A9:5F:73:AA:6C:1A:B0:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4QiBh_ZAlCY92mdJqV9zqmwasGM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QiBh_ZAlCY92mdJqV9zqmwasGM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4QiBh_ZAlCY92mdJqV9zqmwasGM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:99:c7:b4:04:b9:fe:68:34:34:3f:dc:40:3c:6b:1d:41:37: 5c:ff:93:8e:4a:ee:16:80:a5:91:ad:6a:98:e0:81:a0:3f:85: 08:9e:99:5b:79:31:58:02:d0:e9:af:58:ac:06:5e:d3:55:0c: 17:40:c6:a8:d3:f4:2b:31:49:0e:fb:df:5f:ab:52:14:a5:f4: 6c:8a:f3:d5:e5:3e:44:6d:bf:09:4b:04:58:bc:69:2b:3e:b7: a8:b5:02:61:99:f1:a4:78:03:04:d2:ee:30:4c:5f:b4:01:5d: f7:20:35:dd:e7:7e:a5:a6:8e:26:8c:12:42:97:a6:99:50:8d: 56:15:d8:44:db:bf:7f:b2:ef:45:8f:bc:0a:91:ea:05:bd:cf: 75:05:aa:e5:9f:c6:c2:75:75:e7:58:dc:92:3b:0a:d5:3d:4d: 0e:d8:43:49:7c:04:35:66:70:8b:71:72:dd:dd:10:bf:58:ab: 8e:a8:26:01:70:11:12:7e:4d:7c:b0:ea:ac:62:6f:9b:98:52: 1a:2d:85:74:ce:b4:0b:27:b1:6e:49:2e:ad:25:81:32:58:fa: b1:cb:a9:91:22:75:b7:af:60:a5:43:0a:3d:8e:d3:dd:87:c8: 81:da:40:8a:88:8b:4f:38:c9:55:d1:ae:73:d6:fb:03:a1:c8: 59:cf:28:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JBQzUxMTAvBgNVBAUTKEUxMDg4MTg3RjY0MDk0MjYzRERBNjc0OUE5NUY3M0FB NkMxQUIwNjMwHhcNMjQwNTE5MDQzNzA4WhcNMjQwNTI2MDQzNzA4WjAYMRYwFAYD VQQDEw02NjQ5ODFmNS00ZjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAty7md548HOjf21hPbL0vRLavKEyTJGhFZxAi+a7PMQ6Uk2qFTAjaSN962knV itbxbJfcBsqyyMLBaZ7lEhLb25mMrNtujqWl0fOsY2igFz0dwsl7w8jF0CMdw6YT 2Dqm0+5YlydvzFOAVb7EtLApdOUJQjlmCt/4sCrFFP326jPxPNVKEfcj4O4FpKAL 4h47glUI9AzD/dv5nz2ZEi2XByNS/5hUSYgcWhxIN9d1ouhc8jfCGpAQDaIfG/hp RhirrzYFqvLoOYjmm2+wdF4B1SVG92YFH9IWaJGhHoLOvZxTtcEDKYeXgWPmTxd0 LMdnZu7I6gYZRdOjKIX/uCdtFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHlHqn5G Rm/7Z4tAKATMbb8db3oPMB8GA1UdIwQYMBaAFOEIgYf2QJQmPdpnSalfc6psGrBj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkFDNS80NzBBNjIwNDE1 MzAxMUVEQkFBM0QwMjdDNEY5QUUwMi80UWlCaF9aQWxDWTkybWRKcVY5enFtd2Fz R00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRRaUJoX1pBbENZOTJtZEpxVjl6cW13YXNHTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkFDNS80NzBBNjIwNDE1MzAxMUVEQkFBM0QwMjdDNEY5QUUwMi80UWlCaF9aQWxD WTkybWRKcVY5enFtd2FzR00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDDmce0BLn+aDQ0P9xAPGsdQTdc/5OOSu4WgKWRrWqY4IGgP4UInplb eTFYAtDpr1isBl7TVQwXQMao0/QrMUkO+99fq1IUpfRsivPV5T5Ebb8JSwRYvGkr PreotQJhmfGkeAME0u4wTF+0AV33IDXd536lpo4mjBJCl6aZUI1WFdhE279/su9F j7wKkeoFvc91Barln8bCdXXnWNySOwrVPU0O2ENJfAQ1ZnCLcXLd3RC/WKuOqCYB cBESfk18sOqsYm+bmFIaLYV0zrQLJ7FuSS6tJYEyWPqxy6mRInW3r2ClQwo9jtPd h8iB2kCKiItPOMlV0a5z1vsDochZzyi9 -----END CERTIFICATE-----Generated at Sun May 19 05:48:51 2024 by rpki-client on console-fra.rpki-client.org