$ rpki-client -vvf rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft File: R1MAyW65ok4zHQs5AHDEWinJXmk.mft (raw, json) Hash identifier: 9qz2rUCw1dyvztu/ZfAQhcp8LSjttOerKeyRphDbui0= Subject key identifier: AB:96:F1:A2:E0:C1:82:E5:1A:6A:6C:62:A7:A9:15:FC:B2:B6:8C:55 Authority key identifier: 47:53:00:C9:6E:B9:A2:4E:33:1D:0B:39:00:70:C4:5A:29:C9:5E:69 Certificate issuer: /CN=A917C36A/serialNumber=475300C96EB9A24E331D0B390070C45A29C95E69 Certificate serial: E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1MAyW65ok4zHQs5AHDEWinJXmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft Manifest number: DF Signing time: Sun 19 May 2024 06:01:55 +0000 Manifest this update: Sun 19 May 2024 06:01:55 +0000 Manifest next update: Sun 26 May 2024 06:01:55 +0000 Files and hashes: 1: R1MAyW65ok4zHQs5AHDEWinJXmk.crl (hash: Cc0UfKA0gJo0pAk6pnLSgbXpPiZU4HstNgpzqH3yEzs=) 2: 9CB879ECC7B511ED9411183FC4F9AE02.roa (hash: B47HaxZT8CMuHPnaXIAdwi6s9WLyAiHS1vAPpXV/KlA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.crl rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1MAyW65ok4zHQs5AHDEWinJXmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 226 (0xe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C36A/serialNumber=475300C96EB9A24E331D0B390070C45A29C95E69 Validity Not Before: May 19 06:01:55 2024 GMT Not After : May 26 06:01:55 2024 GMT Subject: CN=664995d3-60d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:6f:b6:83:b4:d4:94:9a:53:00:53:ad:39:dd: 3f:01:c1:7a:c0:f7:c7:3a:73:36:f7:0a:bb:88:ce: a2:07:9a:4d:4b:06:a0:93:89:b9:07:e5:e8:0d:86: b7:ac:cc:29:05:1c:b3:a4:66:f3:e2:85:2c:2f:e2: 89:96:af:c5:70:26:11:06:d8:17:5d:b8:47:e3:82: 85:9c:92:b3:6e:fb:84:10:93:61:59:a6:e2:77:1b: 89:9d:9f:28:b0:98:a8:2b:10:e8:9d:92:31:3c:e7: 98:34:8a:90:7f:f3:69:46:d4:6e:aa:9c:96:c9:a0: be:e0:5d:73:8a:9a:91:f0:27:72:d7:ca:88:15:75: 67:a8:57:2a:35:4d:96:3a:d5:eb:90:64:d9:53:8d: e7:aa:a3:bc:90:5e:d0:00:87:70:71:b8:6f:90:50: ab:80:37:4f:68:2e:5c:b3:52:eb:41:88:dc:fb:d2: df:5d:77:a8:82:cb:00:54:a4:27:76:78:59:59:fa: 47:1b:8b:98:38:49:7d:c6:c8:c0:fe:0a:79:6d:dc: cf:96:4c:b5:b3:d6:34:08:72:6c:1a:18:f5:40:92: a5:ef:f4:23:c9:ca:95:82:fe:6e:a2:cc:93:6e:97: dc:04:dc:b0:8e:e7:38:d2:c5:05:e5:f3:75:0d:8f: 42:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:96:F1:A2:E0:C1:82:E5:1A:6A:6C:62:A7:A9:15:FC:B2:B6:8C:55 X509v3 Authority Key Identifier: keyid:47:53:00:C9:6E:B9:A2:4E:33:1D:0B:39:00:70:C4:5A:29:C9:5E:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1MAyW65ok4zHQs5AHDEWinJXmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:dd:1c:c1:38:c1:e6:61:24:78:40:bd:32:5a:40:c9:ca:ea: 1c:ee:92:fa:f0:16:65:b8:94:d2:35:88:fb:bb:b6:90:56:a3: 46:59:3e:46:83:f7:44:58:00:c9:67:1f:35:e7:f0:f5:6a:e8: ec:34:1c:a0:ca:ab:15:42:3e:4c:86:c0:74:21:75:c7:5e:02: a2:3d:67:ab:4f:73:e2:1f:ef:40:76:32:fd:39:5d:0a:34:84: fb:f9:55:a7:e4:6a:a6:b8:54:63:f2:2e:8b:c0:67:ad:57:4f: c4:1e:46:b4:f6:ed:28:2b:23:52:eb:70:c6:30:0a:6b:43:51: 7b:a7:22:a3:6f:94:c1:11:cf:55:63:93:a9:72:eb:ec:5e:37: f1:10:70:95:36:aa:de:6d:38:15:a4:28:19:ae:18:c3:f6:cc: b3:09:7a:dc:ac:8f:8b:51:b9:73:ed:1d:d0:cf:c2:02:b0:64: 52:a3:76:fd:da:98:46:4f:e1:bd:fe:6b:c9:04:53:4b:31:6e: 66:39:91:82:89:00:ba:bc:1d:d1:e7:98:79:08:ef:75:8e:b0: de:14:50:e6:dd:2c:bb:a4:95:b0:31:e3:2b:1c:b0:9f:a0:50: 57:bf:e5:3b:55:f6:4e:40:9d:80:83:3f:47:88:11:fd:db:97: 07:d7:65:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MzNkExMTAvBgNVBAUTKDQ3NTMwMEM5NkVCOUEyNEUzMzFEMEIzOTAwNzBDNDVB MjlDOTVFNjkwHhcNMjQwNTE5MDYwMTU1WhcNMjQwNTI2MDYwMTU1WjAYMRYwFAYD VQQDEw02NjQ5OTVkMy02MGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyW+2g7TUlJpTAFOtOd0/AcF6wPfHOnM29wq7iM6iB5pNSwagk4m5B+XoDYa3 rMwpBRyzpGbz4oUsL+KJlq/FcCYRBtgXXbhH44KFnJKzbvuEEJNhWabidxuJnZ8o sJioKxDonZIxPOeYNIqQf/NpRtRuqpyWyaC+4F1zipqR8Cdy18qIFXVnqFcqNU2W OtXrkGTZU43nqqO8kF7QAIdwcbhvkFCrgDdPaC5cs1LrQYjc+9LfXXeogssAVKQn dnhZWfpHG4uYOEl9xsjA/gp5bdzPlky1s9Y0CHJsGhj1QJKl7/QjycqVgv5uosyT bpfcBNywjuc40sUF5fN1DY9CMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKuW8aLg wYLlGmpsYqepFfyytoxVMB8GA1UdIwQYMBaAFEdTAMluuaJOMx0LOQBwxFopyV5p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzM2QS80MDkzNDI4MEM3 QjIxMUVEOTM1N0EyM0NDNEY5QUUwMi9SMU1BeVc2NW9rNHpIUXM1QUhERVdpbkpY bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IxTUF5VzY1b2s0ekhRczVBSERFV2luSlhtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzM2QS80MDkzNDI4MEM3QjIxMUVEOTM1N0EyM0NDNEY5QUUwMi9SMU1BeVc2NW9r NHpIUXM1QUhERVdpbkpYbWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB03RzBOMHmYSR4QL0yWkDJyuoc7pL68BZluJTSNYj7u7aQVqNGWT5G g/dEWADJZx815/D1aujsNBygyqsVQj5MhsB0IXXHXgKiPWerT3PiH+9AdjL9OV0K NIT7+VWn5GqmuFRj8i6LwGetV0/EHka09u0oKyNS63DGMAprQ1F7pyKjb5TBEc9V Y5OpcuvsXjfxEHCVNqrebTgVpCgZrhjD9syzCXrcrI+LUblz7R3Qz8ICsGRSo3b9 2phGT+G9/mvJBFNLMW5mOZGCiQC6vB3R55h5CO91jrDeFFDm3Sy7pJWwMeMrHLCf oFBXv+U7VfZOQJ2Agz9HiBH925cH12WQ -----END CERTIFICATE-----Generated at Sun May 19 07:40:40 2024 by rpki-client on console-fra.rpki-client.org