$ rpki-client -vvf rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft File: ID0eLahSvltkOpm-9WTXdL3cx_Q.mft (raw, json) Hash identifier: R82vRhwDN5a4HCdrScrRbmq9oZDHmQQlhbXFDnXoeLE= Subject key identifier: 9E:56:FD:50:8D:86:74:99:CA:A6:29:FF:69:C4:0B:22:63:4E:B1:0B Authority key identifier: 20:3D:1E:2D:A8:52:BE:5B:64:3A:99:BE:F5:64:D7:74:BD:DC:C7:F4 Certificate issuer: /CN=A917E832/serialNumber=203D1E2DA852BE5B643A99BEF564D774BDDCC7F4 Certificate serial: 0A03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft Manifest number: 09FE Signing time: Sat 18 May 2024 20:38:38 +0000 Manifest this update: Sat 18 May 2024 20:38:37 +0000 Manifest next update: Sat 25 May 2024 20:38:37 +0000 Files and hashes: 1: ID0eLahSvltkOpm-9WTXdL3cx_Q.crl (hash: VySTPIfR1St3Ck5ayKS3cw895QLsj4GarbAktNsLJZM=) 2: E869880C500511EA98307A59C4F9AE02.roa (hash: cz+t6coOoiEJVHT3LwW2YEjV8uO65kXVoERqHDBBoK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.crl rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2563 (0xa03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E832/serialNumber=203D1E2DA852BE5B643A99BEF564D774BDDCC7F4 Validity Not Before: May 18 20:38:37 2024 GMT Not After : May 25 20:38:37 2024 GMT Subject: CN=664911ce-ad7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:6a:41:3e:49:cf:fc:87:54:97:98:06:5f:b9: 4a:46:bb:e5:9d:c2:f6:ea:54:3e:65:d4:76:59:c1: fa:cd:04:f5:02:bb:16:15:6a:2c:b9:4c:e3:af:d0: 8f:1b:ef:7a:92:87:13:bf:7d:c9:a5:48:cb:cb:3d: d5:07:fc:cf:ae:02:88:2e:d5:56:d7:ec:d4:bc:ca: 23:8a:8f:5d:bc:61:db:7e:b5:2b:98:74:6b:c3:ad: 39:b5:44:14:e3:ec:72:c8:aa:f9:70:1a:e5:b9:81: 3c:53:98:2c:13:c6:e1:33:30:a1:e7:fd:59:fb:3c: e7:1e:cd:94:6b:f4:04:51:12:12:0e:f5:91:f3:0c: f8:d7:ce:77:8a:df:0a:8c:42:4b:36:b0:3f:cf:85: 81:f5:a1:bf:2c:5a:39:23:35:c1:f8:7e:cf:df:48: eb:0a:d2:51:41:30:7a:8e:5a:c8:99:11:2e:39:29: 0c:5c:e6:9c:46:0e:66:bd:d5:cd:56:1b:8e:8a:e4: ff:ba:5c:ac:9e:cf:1e:1d:d1:eb:5c:3e:ad:0a:20: eb:8d:38:25:a2:88:fb:2b:f8:42:9e:50:d1:13:da: 5b:1e:44:c9:1b:8e:8c:82:d3:5d:df:ea:5c:66:52: 42:10:29:83:b6:a4:35:0c:bb:86:d9:21:65:92:23: 53:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:56:FD:50:8D:86:74:99:CA:A6:29:FF:69:C4:0B:22:63:4E:B1:0B X509v3 Authority Key Identifier: keyid:20:3D:1E:2D:A8:52:BE:5B:64:3A:99:BE:F5:64:D7:74:BD:DC:C7:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:7b:25:e7:bd:71:7a:a4:1a:4e:f3:ea:97:ba:8d:c2:a3:88: 79:6d:fb:47:08:a4:75:77:10:08:47:06:b4:aa:6a:13:4a:64: 31:81:a7:8f:ac:ce:38:af:49:61:1a:b4:51:fe:7e:76:95:e8: d6:bf:b3:51:d4:42:85:b5:7d:7b:7c:f7:d6:68:ab:8d:b9:1a: 18:29:15:2c:66:69:7b:d0:33:41:7c:5a:9d:1d:f2:c2:9e:20: 1b:60:25:09:9e:9f:e0:92:ff:ba:b7:d7:6b:e4:49:c8:81:be: 40:12:73:30:95:42:ef:55:b6:b2:28:f4:aa:52:6f:93:15:b3: 26:e2:bd:14:b0:70:85:7c:fa:72:4e:fa:c8:3e:1c:3a:dc:90: 7d:8a:48:aa:8b:5a:a9:d7:ca:44:94:46:82:9c:4d:7d:07:f6: 7b:2e:5b:f7:40:26:7a:9d:aa:69:a7:a9:fe:ef:97:98:34:cc: 43:66:5d:30:07:52:b6:13:27:5b:e7:e4:8f:8f:64:8d:25:2e: 77:f5:92:7a:63:9c:53:aa:d4:50:64:ef:ee:e1:0b:a4:cd:6a: 3a:2b:49:36:f9:1a:d7:d9:14:0d:90:83:76:b3:93:87:4e:98: ff:32:ef:4e:c6:ca:03:6d:c8:6e:20:1a:c7:19:78:56:df:df: f9:5b:ce:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U4MzIxMTAvBgNVBAUTKDIwM0QxRTJEQTg1MkJFNUI2NDNBOTlCRUY1NjRENzc0 QkREQ0M3RjQwHhcNMjQwNTE4MjAzODM3WhcNMjQwNTI1MjAzODM3WjAYMRYwFAYD VQQDEw02NjQ5MTFjZS1hZDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGpBPknP/IdUl5gGX7lKRrvlncL26lQ+ZdR2WcH6zQT1ArsWFWosuUzjr9CP G+96kocTv33JpUjLyz3VB/zPrgKILtVW1+zUvMojio9dvGHbfrUrmHRrw605tUQU 4+xyyKr5cBrluYE8U5gsE8bhMzCh5/1Z+zznHs2Ua/QEURISDvWR8wz41853it8K jEJLNrA/z4WB9aG/LFo5IzXB+H7P30jrCtJRQTB6jlrImREuOSkMXOacRg5mvdXN VhuOiuT/ulysns8eHdHrXD6tCiDrjTglooj7K/hCnlDRE9pbHkTJG46MgtNd3+pc ZlJCECmDtqQ1DLuG2SFlkiNTxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ5W/VCN hnSZyqYp/2nECyJjTrELMB8GA1UdIwQYMBaAFCA9Hi2oUr5bZDqZvvVk13S93Mf0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTgzMi8zQjQ3MTA4QzUw MDQxMUVBQTZEOTMwNTRDNEY5QUUwMi9JRDBlTGFoU3ZsdGtPcG0tOVdUWGRMM2N4 X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lEMGVMYWhTdmx0a09wbS05V1RYZEwzY3hfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTgzMi8zQjQ3MTA4QzUwMDQxMUVBQTZEOTMwNTRDNEY5QUUwMi9JRDBlTGFoU3Zs dGtPcG0tOVdUWGRMM2N4X1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCceyXnvXF6pBpO8+qXuo3Co4h5bftHCKR1dxAIRwa0qmoTSmQxgaeP rM44r0lhGrRR/n52lejWv7NR1EKFtX17fPfWaKuNuRoYKRUsZml70DNBfFqdHfLC niAbYCUJnp/gkv+6t9dr5EnIgb5AEnMwlULvVbayKPSqUm+TFbMm4r0UsHCFfPpy TvrIPhw63JB9ikiqi1qp18pElEaCnE19B/Z7Llv3QCZ6nappp6n+75eYNMxDZl0w B1K2Eydb5+SPj2SNJS539ZJ6Y5xTqtRQZO/u4QukzWo6K0k2+RrX2RQNkIN2s5OH Tpj/Mu9OxsoDbchuIBrHGXhW39/5W84y -----END CERTIFICATE-----Generated at Sat May 18 21:24:22 2024 by rpki-client on console-fra.rpki-client.org