$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.mft File: cfQCGMGvR8Xpk6IaKykoTkwyyTQ.mft (raw, json) Hash identifier: x0IKbHaTRoLueGwUOQTVgRZkcTbXrO3GdBT8ZEWWFV0= Subject key identifier: B3:73:7F:D2:87:93:C1:92:FD:C0:A3:8B:8F:70:8D:DD:41:5B:F6:7F Authority key identifier: 71:F4:02:18:C1:AF:47:C5:E9:93:A2:1A:2B:29:28:4E:4C:32:C9:34 Certificate issuer: /CN=A919536C/serialNumber=71F40218C1AF47C5E993A21A2B29284E4C32C934 Certificate serial: BE Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.mft Manifest number: A9 Signing time: Sat 01 Jun 2024 08:15:21 +0000 Manifest this update: Sat 01 Jun 2024 08:15:20 +0000 Manifest next update: Sat 08 Jun 2024 08:15:20 +0000 Files and hashes: 1: cfQCGMGvR8Xpk6IaKykoTkwyyTQ.crl (hash: /FZXrzGr0H9zISzhAiI7hTY+iZJUmeHe+9z0/MsWBhA=) 2: 993E65A2366311EEB376DC3AC4F9AE02.roa (hash: ZUQvJch1+9PvdkPgm3kBouJISRLjzQw/rqvDQg45F1Q=) 3: 957D5E14366311EEB376DC3AC4F9AE02.roa (hash: uiHVl0sNi8hL/AdpbAq2BttOlid0JIt346wOqBTE4Ic=) 4: 9B616A50366311EEB376DC3AC4F9AE02.roa (hash: raCB88uan7GyzL5N9z9Gid1Sn1stTp+VOERfyeVGjrA=) 5: 9AADC284366311EEB376DC3AC4F9AE02.roa (hash: 9uYX3CjXEJqlYPj/6CiDNmBoJORhrNpMXVGB4tpOtL4=) 6: 9C62F7D4366311EEB376DC3AC4F9AE02.roa (hash: ZoMmpRY4g9G3GG9YFdq+XHn4uq91HXfA018ctJF/a88=) 7: 986FD2A0366311EEB376DC3AC4F9AE02.roa (hash: yM7FXdWuE2UZnTW+65FKFTdQqIxzSI3FpvRpWCAIcFk=) 8: 9767C3CC366311EEB376DC3AC4F9AE02.roa (hash: DtRh6oPmZohJvG9a52rK88idIKJiZ7rdxujP02iF2rA=) 9: 97F664EC366311EEB376DC3AC4F9AE02.roa (hash: stWnGqaqYbdAXWFnccM0Jl5xRwMIg1g93WPDr+HfaPY=) 10: 9663A3B0366311EEB376DC3AC4F9AE02.roa (hash: 47n11BUnYXFyOgdnag0cP1y39/QEOnkaJIpqDBKwDfU=) 11: 9BDF5D70366311EEB376DC3AC4F9AE02.roa (hash: SjWjQVS+EoRNlHr9bf3K2RwXAi3UrFve0b6hxDfJ+go=) 12: 99B68AAA366311EEB376DC3AC4F9AE02.roa (hash: GV1XN0BKMLWB+MldTetajMD4JzpNFN2l0QJLhkSXL1o=) 13: 96EE3F5C366311EEB376DC3AC4F9AE02.roa (hash: nKAYyKucul0PyVEQSP4KtKeozkeHS/TQ29ApmSMXdwE=) 14: 7584425EA2FF11EEAACCC277C4F9AE02.roa (hash: WFX3rJgdiL4agtAVlnDUWV3z1ZsATefSMxzR4hDZhfY=) 15: 9A3920B4366311EEB376DC3AC4F9AE02.roa (hash: mfxovs5RaqtMJrFFNnLHbwx01sFaovFquwuHcKcifGc=) 16: 95EA48DA366311EEB376DC3AC4F9AE02.roa (hash: 6CMQR3cG9JcRQR8RqiR5Zj2qiNnRvB6d0Qoa5aZiBnw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.crl rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:24:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919536C/serialNumber=71F40218C1AF47C5E993A21A2B29284E4C32C934 Validity Not Before: Jun 1 08:15:20 2024 GMT Not After : Jun 8 08:15:20 2024 GMT Subject: CN=665ad899-92cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9b:22:52:4f:82:d8:e2:33:48:fd:85:50:94: 20:d1:fb:0f:2b:b6:94:ce:80:09:d5:a9:30:24:50: 0d:7f:20:57:22:f2:0a:48:35:b2:99:7b:64:35:e3: 12:46:87:dc:30:41:b4:d5:a5:f4:3f:a9:51:d1:c2: 36:17:c6:5c:b3:2c:ec:af:1c:ab:de:51:d2:e5:82: d2:29:b3:30:10:67:1f:72:ca:ac:75:61:8b:db:b9: 79:2e:99:8c:c3:e4:fb:f8:07:72:47:3e:df:e8:61: d7:bd:3a:5b:b3:c8:df:a2:2c:19:24:8b:65:0c:b9: 26:fd:a0:10:e3:ac:f0:7e:9d:23:3d:1d:3e:42:88: dd:45:20:3e:38:5c:a7:55:ee:6d:06:dd:d9:42:2c: e6:51:51:75:6b:39:2f:36:a9:e4:54:15:0a:15:4c: ad:17:c2:3c:65:31:cf:1d:7f:53:a8:a3:4d:72:4d: 06:ef:ba:ba:bf:9c:fb:c3:bf:60:d2:05:69:92:da: df:6f:ef:d6:e3:cf:19:20:bb:75:27:fd:45:c6:96: 30:47:88:57:2a:22:5f:02:dd:54:2d:10:8a:f6:e4: bf:13:1e:cf:95:a4:16:46:36:11:bd:a0:72:02:b1: 36:34:7a:d5:eb:20:04:c1:c9:d6:cc:b3:7e:0b:44: bb:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:73:7F:D2:87:93:C1:92:FD:C0:A3:8B:8F:70:8D:DD:41:5B:F6:7F X509v3 Authority Key Identifier: keyid:71:F4:02:18:C1:AF:47:C5:E9:93:A2:1A:2B:29:28:4E:4C:32:C9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:c6:1d:df:26:d8:40:94:22:80:03:ae:98:de:89:67:f2:4d: ea:22:74:ae:41:da:48:ec:8e:07:dc:41:98:ed:c2:2d:e1:fb: f4:36:2a:d6:2c:c9:1f:87:25:60:9d:91:bc:e9:f3:e1:37:46: 20:d2:18:8c:e9:11:b4:0b:0c:5c:68:43:4d:a1:b4:58:03:f6: 5c:51:27:89:71:1b:22:57:9e:eb:f5:d3:21:6d:e8:46:09:d3: 02:14:ab:9e:53:95:f9:8a:45:56:03:4e:b2:de:7b:69:dc:3a: d0:8c:1d:7e:fe:a9:03:30:a4:b0:57:17:73:7c:40:57:39:d0: 78:3e:b9:1c:54:a6:35:54:dc:32:36:5c:b9:0b:1c:ff:53:8b: 7f:c4:4d:7f:f7:15:2c:54:5f:fc:9a:78:34:c2:c8:8a:27:50: ca:0b:5e:ce:17:bc:fd:ca:c6:c5:71:ae:49:55:ce:59:fd:17: c8:e3:f7:5d:fd:6d:cd:0c:ab:a7:45:ac:03:d5:88:db:f2:74: 7c:40:d9:fa:69:6d:1a:32:a5:25:49:52:bd:c0:66:0d:6b:8d: c1:8a:dd:0c:23:37:c4:37:f7:8e:96:ae:91:7a:0e:13:29:33: 53:eb:87:60:90:50:f8:45:0f:c7:2f:7b:13:b1:cf:01:63:91: ef:bc:a3:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTUzNkMxMTAvBgNVBAUTKDcxRjQwMjE4QzFBRjQ3QzVFOTkzQTIxQTJCMjkyODRF NEMzMkM5MzQwHhcNMjQwNjAxMDgxNTIwWhcNMjQwNjA4MDgxNTIwWjAYMRYwFAYD VQQDEw02NjVhZDg5OS05MmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJsiUk+C2OIzSP2FUJQg0fsPK7aUzoAJ1akwJFANfyBXIvIKSDWymXtkNeMS RofcMEG01aX0P6lR0cI2F8Zcsyzsrxyr3lHS5YLSKbMwEGcfcsqsdWGL27l5LpmM w+T7+AdyRz7f6GHXvTpbs8jfoiwZJItlDLkm/aAQ46zwfp0jPR0+QojdRSA+OFyn Ve5tBt3ZQizmUVF1azkvNqnkVBUKFUytF8I8ZTHPHX9TqKNNck0G77q6v5z7w79g 0gVpktrfb+/W488ZILt1J/1FxpYwR4hXKiJfAt1ULRCK9uS/Ex7PlaQWRjYRvaBy ArE2NHrV6yAEwcnWzLN+C0S7yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLNzf9KH k8GS/cCji49wjd1BW/Z/MB8GA1UdIwQYMBaAFHH0AhjBr0fF6ZOiGispKE5MMsk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTM2Qy82REUzQ0U3QzM2 NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9jZlFDR01HdlI4WHBrNklhS3lrb1Rrd3l5 VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2NmUUNHTUd2UjhYcGs2SWFLeWtvVGt3eXlUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTM2Qy82REUzQ0U3QzM2NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9jZlFDR01HdlI4 WHBrNklhS3lrb1Rrd3l5VFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZxh3fJthAlCKAA66Y3oln8k3qInSuQdpI7I4H3EGY7cIt4fv0NirW LMkfhyVgnZG86fPhN0Yg0hiM6RG0CwxcaENNobRYA/ZcUSeJcRsiV57r9dMhbehG CdMCFKueU5X5ikVWA06y3ntp3DrQjB1+/qkDMKSwVxdzfEBXOdB4PrkcVKY1VNwy Nly5Cxz/U4t/xE1/9xUsVF/8mng0wsiKJ1DKC17OF7z9ysbFca5JVc5Z/RfI4/dd /W3NDKunRawD1Yjb8nR8QNn6aW0aMqUlSVK9wGYNa43Bit0MIzfEN/eOlq6Reg4T KTNT64dgkFD4RQ/HL3sTsc8BY5HvvKMZ -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:21 2024 by rpki-client on console-ams.rpki-client.org