$ rpki-client -vvf rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft File: 9y59Xhu0VCq3_3dzZYg8FgEDTek.mft (raw, json) Hash identifier: 9HHPAZfJNeDqBoVFLd7qZE+2KIv9oZVfeDj0Rj/vVJI= Subject key identifier: 22:E5:70:4C:23:13:4D:84:91:C9:F8:31:46:76:B6:29:6F:22:EB:0A Authority key identifier: F7:2E:7D:5E:1B:B4:54:2A:B7:FF:77:73:65:88:3C:16:01:03:4D:E9 Certificate issuer: /CN=A919631C/serialNumber=F72E7D5E1BB4542AB7FF777365883C1601034DE9 Certificate serial: 0DF4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft Manifest number: 0DE9 Signing time: Sat 18 May 2024 18:27:55 +0000 Manifest this update: Sat 18 May 2024 18:27:54 +0000 Manifest next update: Sat 25 May 2024 18:27:54 +0000 Files and hashes: 1: 9y59Xhu0VCq3_3dzZYg8FgEDTek.crl (hash: QxtY0dSZ4RcBiMQ2gKv4BaiVfCyfzy3muW+RTdSmpUg=) 2: DFBF502035C111ED8FD8923EC4F9AE02.roa (hash: augMxpUY8ubD0crgJhz8bbs3yVWk1zA6WP2kZq3tWEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.crl rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3572 (0xdf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919631C/serialNumber=F72E7D5E1BB4542AB7FF777365883C1601034DE9 Validity Not Before: May 18 18:27:54 2024 GMT Not After : May 25 18:27:54 2024 GMT Subject: CN=6648f32a-1215 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b2:42:ae:1b:fb:5f:14:77:8f:c5:ac:e3:52: f0:46:91:19:03:33:ab:e2:c1:bc:14:b2:7a:b2:11: 36:d5:bd:9d:8e:42:de:bf:ca:df:0c:a7:d5:d8:02: 33:e6:1e:c8:78:16:cc:3a:53:58:9c:d1:09:72:e6: 5d:3d:16:a1:25:4c:ec:94:7b:5e:e8:1f:61:3d:63: b5:85:bd:80:cd:79:f9:e6:fb:8c:1b:3f:e7:ce:48: d7:76:a1:6f:f8:d4:86:ed:f7:83:9f:31:17:1a:3b: e5:aa:5b:0b:24:2a:33:7c:52:d4:37:36:0f:76:cd: ac:23:64:68:14:8b:16:78:65:ed:23:36:02:bd:a9: 72:d4:14:f3:2a:85:46:d6:77:36:16:f6:bd:72:0a: 5b:a0:d8:8a:6a:76:c4:73:fc:3f:38:ec:6f:27:61: 3b:a0:4b:75:22:61:18:f5:79:67:77:9a:88:c1:35: 8a:49:0d:c7:0c:b7:7f:6b:51:af:56:8e:11:29:e1: c9:b7:fb:07:95:af:45:76:18:41:cc:4b:39:7a:d9: dd:c0:76:ba:29:4b:a8:8e:00:63:14:5a:bf:0a:96: fc:b5:73:b5:64:76:05:2e:6f:88:5a:b7:04:db:c0: ba:b4:f1:1f:8f:90:16:65:69:50:ea:7b:88:2e:7a: b4:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:E5:70:4C:23:13:4D:84:91:C9:F8:31:46:76:B6:29:6F:22:EB:0A X509v3 Authority Key Identifier: keyid:F7:2E:7D:5E:1B:B4:54:2A:B7:FF:77:73:65:88:3C:16:01:03:4D:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:a6:65:3d:be:6f:e0:22:22:9d:61:e2:48:2e:e9:83:dd:74: 74:99:60:ba:2f:a7:d3:79:9f:29:25:3a:ca:4e:73:5d:81:e0: b2:fd:82:e4:ce:2f:24:1e:74:9d:c0:4a:74:25:b7:c2:9b:21: 43:3b:d2:bf:21:6f:ab:e0:26:f5:6d:09:0d:47:13:b9:ad:2b: a7:9f:5a:4b:a7:85:45:2c:98:83:21:a9:e7:13:cc:0d:0a:83: 27:8a:bd:a7:a6:5f:a6:9e:d0:28:8e:c8:2e:d7:f9:b7:e2:e1: 46:5c:f1:8a:5c:59:5f:2c:9b:87:c4:fc:8a:5a:7a:cf:fc:82: a7:b3:1a:58:d6:38:9b:20:b9:ac:5f:01:2e:cc:88:7e:7e:a7: 72:a6:1a:4c:13:b0:c9:98:d0:f3:56:5e:1e:a6:05:16:24:f5: 2f:68:d4:ec:f5:a1:39:76:f3:6a:33:cb:27:16:1f:a4:b2:60: d3:50:85:de:5c:ba:3a:ed:d2:e6:60:a5:60:41:d3:e6:ae:d9: 1d:ee:0a:20:e3:bb:6a:4e:fb:57:b2:76:f2:3e:85:97:e4:0c: 92:59:c4:1e:68:a0:49:ed:00:25:62:b6:9d:dc:bc:ce:8b:77: 64:93:66:4f:ab:2b:ec:f8:fd:51:bb:42:c0:28:d2:3c:15:fd: 75:ed:0f:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYzMUMxMTAvBgNVBAUTKEY3MkU3RDVFMUJCNDU0MkFCN0ZGNzc3MzY1ODgzQzE2 MDEwMzRERTkwHhcNMjQwNTE4MTgyNzU0WhcNMjQwNTI1MTgyNzU0WjAYMRYwFAYD VQQDEw02NjQ4ZjMyYS0xMjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsrJCrhv7XxR3j8Ws41LwRpEZAzOr4sG8FLJ6shE21b2djkLev8rfDKfV2AIz 5h7IeBbMOlNYnNEJcuZdPRahJUzslHte6B9hPWO1hb2AzXn55vuMGz/nzkjXdqFv +NSG7feDnzEXGjvlqlsLJCozfFLUNzYPds2sI2RoFIsWeGXtIzYCvaly1BTzKoVG 1nc2Fva9cgpboNiKanbEc/w/OOxvJ2E7oEt1ImEY9Xlnd5qIwTWKSQ3HDLd/a1Gv Vo4RKeHJt/sHla9FdhhBzEs5etndwHa6KUuojgBjFFq/Cpb8tXO1ZHYFLm+IWrcE 28C6tPEfj5AWZWlQ6nuILnq0dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCLlcEwj E02Ekcn4MUZ2tilvIusKMB8GA1UdIwQYMBaAFPcufV4btFQqt/93c2WIPBYBA03p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjMxQy9BOUMzMTcwNDhD MjMxMUU5OUY4NDVENzJDNEY5QUUwMi85eTU5WGh1MFZDcTNfM2R6WllnOEZnRURU ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzl5NTlYaHUwVkNxM18zZHpaWWc4RmdFRFRlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjMxQy9BOUMzMTcwNDhDMjMxMUU5OUY4NDVENzJDNEY5QUUwMi85eTU5WGh1MFZD cTNfM2R6WllnOEZnRURUZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLpmU9vm/gIiKdYeJILumD3XR0mWC6L6fTeZ8pJTrKTnNdgeCy/YLk zi8kHnSdwEp0JbfCmyFDO9K/IW+r4Cb1bQkNRxO5rSunn1pLp4VFLJiDIannE8wN CoMnir2npl+mntAojsgu1/m34uFGXPGKXFlfLJuHxPyKWnrP/IKnsxpY1jibILms XwEuzIh+fqdyphpME7DJmNDzVl4epgUWJPUvaNTs9aE5dvNqM8snFh+ksmDTUIXe XLo67dLmYKVgQdPmrtkd7gog47tqTvtXsnbyPoWX5AySWcQeaKBJ7QAlYrad3LzO i3dkk2ZPqyvs+P1Ru0LAKNI8Ff117Q9w -----END CERTIFICATE-----Generated at Sat May 18 19:21:04 2024 by rpki-client on console-fra.rpki-client.org