$ rpki-client -vvf rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft File: xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft (raw, json) Hash identifier: kbvHr+HOSBeK0WIJwlSHtbJ6pKaRvcUBAmaF9t4YEyM= Subject key identifier: 6E:CE:84:E0:08:8B:34:D0:AE:09:B2:B3:26:BD:85:65:93:57:61:6C Authority key identifier: C4:8D:44:F1:11:D9:F4:DC:8E:3E:64:AD:7F:96:48:64:61:CB:9F:BD Certificate issuer: /CN=A9181CA2/serialNumber=C48D44F111D9F4DC8E3E64AD7F96486461CB9FBD Certificate serial: 0305 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xI1E8RHZ9NyOPmStf5ZIZGHLn70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft Manifest number: 0301 Signing time: Fri 31 May 2024 03:49:06 +0000 Manifest this update: Fri 31 May 2024 03:49:06 +0000 Manifest next update: Fri 07 Jun 2024 03:49:06 +0000 Files and hashes: 1: xI1E8RHZ9NyOPmStf5ZIZGHLn70.crl (hash: b/jhU5OU6aRk9FmYmADeFj+wxRuCohR94kWMUe2P2R4=) 2: 76391AA6995311EC8EAA8C59C4F9AE02.roa (hash: nlvzWGcCzQ3g4WB0QEnebQiCK2io0J1tCDKfBVlK9FY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.crl rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xI1E8RHZ9NyOPmStf5ZIZGHLn70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 03:45:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 773 (0x305) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181CA2/serialNumber=C48D44F111D9F4DC8E3E64AD7F96486461CB9FBD Validity Not Before: May 31 03:49:06 2024 GMT Not After : Jun 7 03:49:06 2024 GMT Subject: CN=665948b2-ed95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:9d:33:24:3a:37:08:cd:e6:4b:7a:0a:d7:e3: f1:4c:22:0d:2b:d6:bc:00:48:7d:4c:be:f4:81:67: 56:a5:b5:72:3a:36:29:7b:ff:90:3a:d5:c9:f3:3a: 05:7f:7a:a7:6e:d7:ba:2d:bc:85:1b:e0:ed:8e:14: a8:eb:bc:7a:d4:e9:c8:dd:c7:06:1e:f7:39:c8:91: 5e:9b:a2:bb:db:51:f8:01:0c:84:e4:8f:7a:af:d6: 03:ee:aa:94:7f:8c:c8:32:a3:c3:b0:ac:25:53:31: bf:08:b8:ed:ec:b3:59:e8:a6:8c:57:9b:e4:64:5b: df:c2:b5:0f:75:64:e2:84:2b:39:af:be:5f:31:06: e1:74:dd:ad:ba:de:94:60:eb:94:62:63:4a:dc:50: 45:dc:c6:8c:ea:0e:96:f3:33:b9:81:2a:d4:6e:bb: 56:fa:e7:f9:c1:d4:c4:63:3d:0a:3a:d0:c3:32:dd: a2:9a:26:da:64:7e:65:78:96:9b:9f:63:41:6c:53: cc:c5:f4:d0:0e:83:84:40:2c:a5:36:ed:74:41:75: de:40:32:f8:8c:7f:40:04:63:83:a4:e3:61:38:c7: ee:8a:b9:2e:ad:9a:79:f5:d8:da:03:6b:3b:d3:e7: fa:94:bd:2c:75:46:41:8d:a8:a2:ec:b1:89:dc:27: ba:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:CE:84:E0:08:8B:34:D0:AE:09:B2:B3:26:BD:85:65:93:57:61:6C X509v3 Authority Key Identifier: keyid:C4:8D:44:F1:11:D9:F4:DC:8E:3E:64:AD:7F:96:48:64:61:CB:9F:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xI1E8RHZ9NyOPmStf5ZIZGHLn70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:92:e6:90:63:7d:9e:b9:54:64:8f:a4:26:f1:54:9f:e1:2c: 27:dc:43:a2:e6:78:f7:7e:e0:9e:5b:ac:cd:81:e0:64:31:d5: f2:d3:7e:d8:48:90:ae:b9:ad:dc:46:ec:bf:ac:b7:58:fc:b0: a9:97:2f:b8:77:a8:8a:51:a2:d0:56:b9:b8:0e:49:32:bb:08: 82:22:0b:fb:9e:de:c8:8c:30:8a:55:86:8d:7d:3c:0d:1d:60: 8f:e8:f0:3c:42:5f:6d:3d:a3:ff:1d:0c:1d:97:63:c7:bc:f7: 56:0d:1d:f6:d0:d6:cd:86:f0:af:cb:8f:86:8f:43:cd:16:e5: e2:2a:b1:b2:55:5c:1c:94:4b:d6:3c:e8:d0:8a:ee:57:bf:df: a0:3b:27:03:bf:e4:ae:4e:30:47:ac:5e:ea:f5:42:b7:bd:ac: 4a:40:35:c9:90:f6:91:cf:07:78:4a:90:d2:0f:52:d5:e9:80: 6f:02:f9:78:b4:63:58:be:53:09:15:ad:bf:84:92:e4:53:f0: c2:45:d0:fd:74:88:79:5b:40:6e:7a:9b:f2:4a:63:6e:28:57: 2e:de:c4:ef:21:73:5c:ee:fe:51:38:d2:c9:43:83:36:12:0a: 20:6c:69:5f:01:88:ea:ca:a3:67:f6:ac:4d:13:b9:8c:80:66: 5f:87:5e:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODFDQTIxMTAvBgNVBAUTKEM0OEQ0NEYxMTFEOUY0REM4RTNFNjRBRDdGOTY0ODY0 NjFDQjlGQkQwHhcNMjQwNTMxMDM0OTA2WhcNMjQwNjA3MDM0OTA2WjAYMRYwFAYD VQQDEw02NjU5NDhiMi1lZDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+p0zJDo3CM3mS3oK1+PxTCINK9a8AEh9TL70gWdWpbVyOjYpe/+QOtXJ8zoF f3qnbte6LbyFG+DtjhSo67x61OnI3ccGHvc5yJFem6K721H4AQyE5I96r9YD7qqU f4zIMqPDsKwlUzG/CLjt7LNZ6KaMV5vkZFvfwrUPdWTihCs5r75fMQbhdN2tut6U YOuUYmNK3FBF3MaM6g6W8zO5gSrUbrtW+uf5wdTEYz0KOtDDMt2imibaZH5leJab n2NBbFPMxfTQDoOEQCylNu10QXXeQDL4jH9ABGODpONhOMfuirkurZp59djaA2s7 0+f6lL0sdUZBjaii7LGJ3Ce6GwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG7OhOAI izTQrgmysya9hWWTV2FsMB8GA1UdIwQYMBaAFMSNRPER2fTcjj5krX+WSGRhy5+9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MUNBMi83OTM2NUI4RThG MDcxMUVDOUVCMjMxNzBDNEY5QUUwMi94STFFOFJIWjlOeU9QbVN0ZjVaSVpHSExu NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hJMUU4UkhaOU55T1BtU3RmNVpJWkdITG43MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MUNBMi83OTM2NUI4RThGMDcxMUVDOUVCMjMxNzBDNEY5QUUwMi94STFFOFJIWjlO eU9QbVN0ZjVaSVpHSExuNzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAckuaQY32euVRkj6Qm8VSf4Swn3EOi5nj3fuCeW6zNgeBkMdXy037Y SJCuua3cRuy/rLdY/LCply+4d6iKUaLQVrm4DkkyuwiCIgv7nt7IjDCKVYaNfTwN HWCP6PA8Ql9tPaP/HQwdl2PHvPdWDR320NbNhvCvy4+Gj0PNFuXiKrGyVVwclEvW POjQiu5Xv9+gOycDv+SuTjBHrF7q9UK3vaxKQDXJkPaRzwd4SpDSD1LV6YBvAvl4 tGNYvlMJFa2/hJLkU/DCRdD9dIh5W0BuepvySmNuKFcu3sTvIXNc7v5RONLJQ4M2 EgogbGlfAYjqyqNn9qxNE7mMgGZfh16+ -----END CERTIFICATE-----Generated at Fri May 31 04:53:59 2024 by rpki-client on console-fra.rpki-client.org