$ rpki-client -vvf rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.mft File: TiH1qoySjAtnV8A-VbClkjxOSKs.mft (raw, json) Hash identifier: nbSpdjTnL8k0Fo60LhWbcacx+vOto5EOzH+O1gyDU5s= Subject key identifier: 22:2C:74:8B:5F:90:B8:57:B7:CD:11:70:61:42:58:3B:FE:E1:89:FB Authority key identifier: 4E:21:F5:AA:8C:92:8C:0B:67:57:C0:3E:55:B0:A5:92:3C:4E:48:AB Certificate issuer: /CN=A9180D79/serialNumber=4E21F5AA8C928C0B6757C03E55B0A5923C4E48AB Certificate serial: 6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TiH1qoySjAtnV8A-VbClkjxOSKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.mft Manifest number: 6E Signing time: Sun 19 May 2024 07:28:19 +0000 Manifest this update: Sun 19 May 2024 07:28:19 +0000 Manifest next update: Sun 26 May 2024 07:28:19 +0000 Files and hashes: 1: TiH1qoySjAtnV8A-VbClkjxOSKs.crl (hash: kDsJgtVYxxFW6f6ie+Z8NQZHrEbvA9wN/eJfngOPBq0=) 2: 25FE32B86D9D11EEB269D31CC4F9AE02.roa (hash: mDG6KWQqIBky5hpF/nD1JeOvhohU5HXcZMUm9gFQtRw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.crl rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TiH1qoySjAtnV8A-VbClkjxOSKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180D79/serialNumber=4E21F5AA8C928C0B6757C03E55B0A5923C4E48AB Validity Not Before: May 19 07:28:19 2024 GMT Not After : May 26 07:28:19 2024 GMT Subject: CN=6649aa13-0876 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:cc:14:a4:6f:71:2c:9c:69:e3:c3:4b:1d:a7: 1e:17:e7:27:c8:a9:da:71:a7:3f:56:f5:0b:57:2d: e4:3b:39:ae:f1:d2:be:55:eb:4a:07:99:1b:86:08: 02:61:1b:d3:1d:a3:fa:b9:f1:dc:1c:74:23:5c:bc: bd:0c:c5:59:c7:3d:65:14:51:fc:dd:e5:e1:80:b1: 02:0e:33:b6:4e:21:ae:5d:e6:e5:ec:c0:27:ac:e5: c3:2f:1c:37:d6:36:15:4f:93:cd:e1:64:ff:03:4c: a4:dc:38:b2:16:91:08:ad:85:43:ca:f4:fd:e4:f5: c0:fe:1e:6b:80:40:d8:29:bb:04:82:4c:fd:20:cc: 99:42:a1:51:8e:c3:6e:94:c7:7f:71:9c:ed:d0:4b: bf:a0:b0:b5:77:25:f7:89:8b:b7:44:52:28:7b:23: 05:31:79:89:fb:7a:73:60:b2:09:30:ee:f5:aa:18: 4a:66:cd:4e:98:c2:27:e7:75:3c:e7:fa:4a:42:5a: b4:d3:d5:bb:ec:c6:d8:d0:15:a3:1c:68:66:93:c3: e8:3c:70:88:a5:a8:53:2c:cb:1a:19:ba:d0:e2:92: dd:cb:cb:2b:c0:c4:4d:55:28:1f:ac:82:d0:07:54: 04:d2:ae:86:04:d7:bf:59:81:13:0e:1e:7f:03:82: 28:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:2C:74:8B:5F:90:B8:57:B7:CD:11:70:61:42:58:3B:FE:E1:89:FB X509v3 Authority Key Identifier: keyid:4E:21:F5:AA:8C:92:8C:0B:67:57:C0:3E:55:B0:A5:92:3C:4E:48:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TiH1qoySjAtnV8A-VbClkjxOSKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:78:a1:d0:0f:15:e9:40:c4:98:c8:ea:d7:6b:fa:bf:7c:cb: af:40:e9:bb:5c:4d:9b:3c:47:36:12:c1:b4:c1:6d:9b:20:f3: e5:91:f8:38:13:2a:77:73:0f:e5:3e:20:83:8e:1d:0c:0d:3b: c2:4b:db:fd:d1:14:96:64:01:b5:0d:21:7d:07:65:d2:cd:23: b0:73:28:d9:18:51:0a:db:78:92:f4:26:8f:79:28:4a:2c:96: f8:93:89:bf:fc:76:16:96:53:22:c6:f0:f9:eb:af:f1:b3:d5: 52:79:f2:9e:6d:31:fc:b7:c6:f8:7d:19:54:21:1d:8a:67:07: e3:eb:bc:b7:b6:36:00:19:da:13:34:be:6f:9b:1e:3c:3f:1a: 25:d8:5f:7f:07:b0:7c:9f:1c:43:d3:6a:cd:5b:9c:93:ce:c1: 75:09:41:03:70:d6:61:8f:cd:98:bb:6e:47:09:e9:4d:14:33: 65:3c:ae:b1:b8:0f:3f:6b:34:8b:ce:ea:dd:e6:01:22:45:3b: c3:c9:b1:7a:36:96:51:c5:2f:ed:e2:be:56:8b:78:30:a4:52: ba:0f:94:03:1c:42:0e:0f:1b:85:24:51:6c:39:d1:0c:d3:54: 92:34:2b:c3:b2:24:16:3f:21:55:56:11:68:00:a4:b5:c9:f4: 10:e7:8e:69 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MEQ3OTExMC8GA1UEBRMoNEUyMUY1QUE4QzkyOEMwQjY3NTdDMDNFNTVCMEE1OTIz QzRFNDhBQjAeFw0yNDA1MTkwNzI4MTlaFw0yNDA1MjYwNzI4MTlaMBgxFjAUBgNV BAMTDTY2NDlhYTEzLTA4NzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbzBSkb3EsnGnjw0sdpx4X5yfIqdpxpz9W9QtXLeQ7Oa7x0r5V60oHmRuGCAJh G9Mdo/q58dwcdCNcvL0MxVnHPWUUUfzd5eGAsQIOM7ZOIa5d5uXswCes5cMvHDfW NhVPk83hZP8DTKTcOLIWkQithUPK9P3k9cD+HmuAQNgpuwSCTP0gzJlCoVGOw26U x39xnO3QS7+gsLV3JfeJi7dEUih7IwUxeYn7enNgsgkw7vWqGEpmzU6YwifndTzn +kpCWrTT1bvsxtjQFaMcaGaTw+g8cIilqFMsyxoZutDikt3LyyvAxE1VKB+sgtAH VATSroYE179ZgRMOHn8DgigZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUIix0i1+Q uFe3zRFwYUJYO/7hifswHwYDVR0jBBgwFoAUTiH1qoySjAtnV8A+VbClkjxOSKsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgwRDc5L0UxODIwOEJDNkQ5 QzExRUVBMDJCQkIwRUM0RjlBRTAyL1RpSDFxb3lTakF0blY4QS1WYkNsa2p4T1NL cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVGlIMXFveVNqQXRuVjhBLVZiQ2xranhPU0tzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgw RDc5L0UxODIwOEJDNkQ5QzExRUVBMDJCQkIwRUM0RjlBRTAyL1RpSDFxb3lTakF0 blY4QS1WYkNsa2p4T1NLcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK94odAPFelAxJjI6tdr+r98y69A6btcTZs8RzYSwbTBbZsg8+WR+DgT KndzD+U+IIOOHQwNO8JL2/3RFJZkAbUNIX0HZdLNI7BzKNkYUQrbeJL0Jo95KEos lviTib/8dhaWUyLG8Pnrr/Gz1VJ58p5tMfy3xvh9GVQhHYpnB+PrvLe2NgAZ2hM0 vm+bHjw/GiXYX38HsHyfHEPTas1bnJPOwXUJQQNw1mGPzZi7bkcJ6U0UM2U8rrG4 Dz9rNIvO6t3mASJFO8PJsXo2llHFL+3ivlaLeDCkUroPlAMcQg4PG4UkUWw50QzT VJI0K8OyJBY/IVVWEWgApLXJ9BDnjmk= -----END CERTIFICATE-----Generated at Sun May 19 08:26:43 2024 by rpki-client on console-fra.rpki-client.org