$ rpki-client -vvf rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft File: 4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft (raw, json) Hash identifier: vKUQ9BdseWUqPbyWCsGcvYTYhRA4lRbhqG1L9R7NYUk= Subject key identifier: 59:02:BB:BE:E9:E7:AE:7E:DB:3B:F4:08:EE:60:5B:CC:93:9D:F7:60 Authority key identifier: E0:C8:92:8F:94:51:52:0E:64:D1:DE:D5:8F:07:19:6B:58:61:B2:86 Certificate issuer: /CN=A917D4C4/serialNumber=E0C8928F9451520E64D1DED58F07196B5861B286 Certificate serial: 0595 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MiSj5RRUg5k0d7VjwcZa1hhsoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft Manifest number: 0592 Signing time: Sat 18 May 2024 14:54:33 +0000 Manifest this update: Sat 18 May 2024 14:54:33 +0000 Manifest next update: Sat 25 May 2024 14:54:33 +0000 Files and hashes: 1: 4MiSj5RRUg5k0d7VjwcZa1hhsoY.crl (hash: mgpSEnNC+4Y7qORI0Dq6AX9YT69jGbXtDiYv/kHT7NA=) 2: 6E325DBC0E2F11EDB4659653C4F9AE02.roa (hash: dO5nZq15UBNcy6JzPU4ZCXdX9MbHTyXCt1oRP1sN3wc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.crl rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MiSj5RRUg5k0d7VjwcZa1hhsoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1429 (0x595) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D4C4/serialNumber=E0C8928F9451520E64D1DED58F07196B5861B286 Validity Not Before: May 18 14:54:33 2024 GMT Not After : May 25 14:54:33 2024 GMT Subject: CN=6648c129-9143 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:01:64:ab:cb:c9:07:56:71:d9:66:61:f1:bd: 94:28:6c:5e:70:f0:a9:db:d4:dd:9f:63:ce:54:8a: 75:df:b7:4a:9d:95:66:b4:4a:0b:5b:24:8f:6c:b5: a4:26:e7:a1:b5:8e:54:7b:4e:5b:af:d4:c4:5a:20: db:b0:a2:4b:74:d9:3c:73:b7:ba:9f:68:bd:f5:62: 0b:0f:15:f7:1b:a1:05:b4:95:b7:86:18:a2:79:81: 79:b7:f3:98:8b:cc:a9:05:9b:fa:3d:f9:00:25:60: 79:74:6f:99:28:37:42:b3:6f:69:81:c2:ef:ea:29: c1:42:b9:4b:68:3f:80:7d:7d:48:d2:72:d1:cf:e0: 93:ac:f4:aa:15:9e:37:18:f0:50:69:e3:04:62:fa: eb:4d:a7:40:b7:f3:12:ff:87:9e:a6:c5:5b:ca:b6: 81:54:16:a2:e4:3f:08:eb:da:b9:82:b3:2c:72:a7: 21:26:38:1d:8b:55:70:05:98:8c:de:f6:9e:32:28: 91:dc:5c:bd:0b:b9:36:ac:bd:06:fb:e0:2c:83:24: a5:95:ae:a1:16:8f:b1:23:d2:10:cb:27:a8:41:78: a4:1e:11:73:28:4f:3f:16:d8:6b:a9:8c:75:0a:42: a8:23:db:d5:c1:a3:93:9a:b4:6e:6d:2f:e1:35:d8: 62:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:02:BB:BE:E9:E7:AE:7E:DB:3B:F4:08:EE:60:5B:CC:93:9D:F7:60 X509v3 Authority Key Identifier: keyid:E0:C8:92:8F:94:51:52:0E:64:D1:DE:D5:8F:07:19:6B:58:61:B2:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MiSj5RRUg5k0d7VjwcZa1hhsoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:b2:50:83:be:ae:d2:a7:5d:9e:9f:b7:8d:7d:78:3c:e9:41: c7:66:18:80:2f:49:0a:17:0b:36:f2:7b:f0:a3:7b:6b:82:d7: ed:73:dd:b5:e0:b0:d1:dc:df:e5:2c:7c:1e:6b:59:43:2b:30: ec:3c:3c:11:9e:cf:f0:6b:2c:f8:57:e2:64:f0:35:da:d6:9e: 1a:76:37:78:d6:1b:21:70:1f:2e:ba:be:b1:ad:5a:8f:5e:68: 6f:c2:32:c5:8e:e0:1a:f7:b5:4f:de:77:ce:f5:f1:71:19:05: c8:52:47:a1:e9:26:11:d2:ba:6d:af:19:e8:cc:29:3b:3e:24: b6:f8:9a:a0:43:69:b6:8f:d0:37:57:0a:51:bd:3c:56:85:da: 93:20:73:5c:4e:09:81:bd:e5:2d:32:e4:01:d1:84:3b:68:3a: ae:84:37:c4:27:d4:db:e9:54:83:c2:da:41:2d:92:2f:4b:e4: 19:dd:15:9b:d2:88:e2:40:dc:6d:d1:40:e6:a3:e1:21:a4:a9: e5:ea:2f:4f:59:29:5c:19:4c:0a:2f:a9:89:b9:e5:b0:ad:4b: 99:80:12:d1:83:4f:af:5d:b9:3e:2d:a5:f2:6b:a3:83:39:5c: 41:c8:c8:07:f3:d2:79:37:3b:c5:0c:be:57:43:69:7b:2a:5e: 94:85:72:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q0QzQxMTAvBgNVBAUTKEUwQzg5MjhGOTQ1MTUyMEU2NEQxREVENThGMDcxOTZC NTg2MUIyODYwHhcNMjQwNTE4MTQ1NDMzWhcNMjQwNTI1MTQ1NDMzWjAYMRYwFAYD VQQDEw02NjQ4YzEyOS05MTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0wFkq8vJB1Zx2WZh8b2UKGxecPCp29Tdn2POVIp137dKnZVmtEoLWySPbLWk JuehtY5Ue05br9TEWiDbsKJLdNk8c7e6n2i99WILDxX3G6EFtJW3hhiieYF5t/OY i8ypBZv6PfkAJWB5dG+ZKDdCs29pgcLv6inBQrlLaD+AfX1I0nLRz+CTrPSqFZ43 GPBQaeMEYvrrTadAt/MS/4eepsVbyraBVBai5D8I69q5grMscqchJjgdi1VwBZiM 3vaeMiiR3Fy9C7k2rL0G++AsgySlla6hFo+xI9IQyyeoQXikHhFzKE8/FthrqYx1 CkKoI9vVwaOTmrRubS/hNdhigQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFkCu77p 565+2zv0CO5gW8yTnfdgMB8GA1UdIwQYMBaAFODIko+UUVIOZNHe1Y8HGWtYYbKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDRDNC80MzlDRjg3QzhE N0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi80TWlTajVSUlVnNWswZDdWandjWmExaGhz b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRNaVNqNVJSVWc1azBkN1Zqd2NaYTFoaHNvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDRDNC80MzlDRjg3QzhEN0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi80TWlTajVSUlVn NWswZDdWandjWmExaGhzb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3slCDvq7Sp12en7eNfXg86UHHZhiAL0kKFws28nvwo3trgtftc921 4LDR3N/lLHwea1lDKzDsPDwRns/wayz4V+Jk8DXa1p4adjd41hshcB8uur6xrVqP XmhvwjLFjuAa97VP3nfO9fFxGQXIUkeh6SYR0rptrxnozCk7PiS2+JqgQ2m2j9A3 VwpRvTxWhdqTIHNcTgmBveUtMuQB0YQ7aDquhDfEJ9Tb6VSDwtpBLZIvS+QZ3RWb 0ojiQNxt0UDmo+EhpKnl6i9PWSlcGUwKL6mJueWwrUuZgBLRg0+vXbk+LaXya6OD OVxByMgH89J5NzvFDL5XQ2l7Kl6UhXJC -----END CERTIFICATE-----Generated at Sat May 18 15:26:05 2024 by rpki-client on console-fra.rpki-client.org