$ rpki-client -vvf rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft File: 4AJb-TLnFuGh-K-QECEcQRCE_J0.mft (raw, json) Hash identifier: AvQVf8kEZOSIfBelTB6NeVNkWkDW3EkCL8gWQh3lrBM= Subject key identifier: C5:85:09:23:BC:E3:46:8C:E0:F6:D3:28:36:34:A9:19:52:D8:E3:34 Authority key identifier: E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D Certificate issuer: /CN=A9197FDB/serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Certificate serial: 04CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft Manifest number: 04C5 Signing time: Fri 17 May 2024 01:35:52 +0000 Manifest this update: Fri 17 May 2024 01:35:51 +0000 Manifest next update: Fri 24 May 2024 01:35:51 +0000 Files and hashes: 1: 4AJb-TLnFuGh-K-QECEcQRCE_J0.crl (hash: KBL3qn0fksLrs3NH3+7oR6+tvmv0+Befy9o4stJQkko=) 2: 0A1FAC405BB211EEAD06B243C4F9AE02.roa (hash: tgnIyxqnM5e1e77M6KmIsMUhPNhnEFkzQfcV1nAwP9g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1227 (0x4cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197FDB/serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Validity Not Before: May 17 01:35:51 2024 GMT Not After : May 24 01:35:51 2024 GMT Subject: CN=6646b478-7223 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:98:24:c1:c3:6a:67:43:c8:57:1d:e3:1e:1a: 80:85:fb:6a:c5:cb:ed:6d:a1:57:5d:f3:23:9b:3b: 1b:02:7b:ef:21:25:ae:fb:f5:27:e7:03:fc:37:fc: f5:c6:59:0d:cf:23:bb:67:70:b9:e0:2b:dd:35:ad: be:87:b2:a4:15:23:3f:66:0b:54:27:56:f0:49:71: b4:01:d6:28:c4:3e:f7:7e:54:7a:e5:16:95:2c:5f: 73:b8:8b:01:73:d2:01:20:40:b1:6e:90:01:e3:ee: d0:64:38:b1:e1:35:1b:46:35:cd:99:35:7c:57:d6: e1:e7:46:1c:31:0e:1a:aa:40:52:f7:8e:a3:3e:fa: ea:9e:b4:d7:a6:c5:d6:c6:57:25:60:0c:29:8f:60: c9:69:33:3e:50:3d:92:f1:e3:26:dd:89:e9:c4:a3: bf:a1:22:02:7f:ed:50:18:22:5f:dc:ed:d8:4d:9a: ed:9b:55:fb:aa:6a:f9:c8:74:bd:14:aa:22:e2:1d: 69:3a:60:72:42:6a:50:c5:6f:88:f5:05:9c:c7:d6: b2:b7:47:69:58:a6:b9:02:97:42:bc:7d:e0:4e:63: 6a:01:06:c6:77:7a:96:c7:80:01:cc:71:71:6e:8b: a2:cd:7d:4c:f0:df:7a:ed:8e:44:99:db:d5:46:78: 95:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:85:09:23:BC:E3:46:8C:E0:F6:D3:28:36:34:A9:19:52:D8:E3:34 X509v3 Authority Key Identifier: keyid:E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:c1:c1:50:97:6b:b5:af:31:df:66:98:de:14:0b:0c:5f:f6: 2d:38:3f:8d:bc:a1:e9:b2:a0:b1:b6:5a:c1:5d:e3:e0:76:fb: f7:2e:8b:68:e1:8d:3f:48:2b:07:3d:e8:65:ac:07:c0:da:f6: 02:16:d1:d0:36:e9:b2:d4:db:9c:f8:d5:ee:9a:06:e4:fc:4d: e9:6e:54:2d:f9:a9:1d:85:6e:fe:eb:b0:9e:d8:00:20:78:78: 9b:8e:09:21:6f:ca:7d:88:2c:da:31:4f:3a:92:27:ad:b1:c7: fa:e0:f3:56:b9:28:18:ec:af:cc:ce:97:ca:fc:00:40:da:71: 1c:eb:e3:ec:87:34:fe:49:7f:1d:74:04:e5:14:93:63:31:f2: 19:a5:f2:0c:eb:38:3d:e7:36:1c:7a:d7:52:59:71:fc:30:25: bc:cb:09:9e:b9:5c:f5:ea:2a:94:84:f4:bb:7c:3a:81:80:ec: 1e:bc:29:6f:44:6a:a8:db:26:d4:20:ae:40:c6:6d:a1:0e:65: 4b:76:e5:fd:e3:85:da:e2:3a:39:4b:f5:0a:6f:23:04:fd:b9: 08:fa:98:29:73:9e:fc:45:15:bb:e0:7e:52:48:39:7f:dd:a8: 82:17:37:2e:f6:ac:cb:71:8d:63:5a:2c:d8:fa:37:9a:a8:75: 02:a2:8d:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdGREIxMTAvBgNVBAUTKEUwMDI1QkY5MzJFNzE2RTFBMUY4QUY5MDEwMjExQzQx MTA4NEZDOUQwHhcNMjQwNTE3MDEzNTUxWhcNMjQwNTI0MDEzNTUxWjAYMRYwFAYD VQQDEw02NjQ2YjQ3OC03MjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3JgkwcNqZ0PIVx3jHhqAhftqxcvtbaFXXfMjmzsbAnvvISWu+/Un5wP8N/z1 xlkNzyO7Z3C54CvdNa2+h7KkFSM/ZgtUJ1bwSXG0AdYoxD73flR65RaVLF9zuIsB c9IBIECxbpAB4+7QZDix4TUbRjXNmTV8V9bh50YcMQ4aqkBS946jPvrqnrTXpsXW xlclYAwpj2DJaTM+UD2S8eMm3YnpxKO/oSICf+1QGCJf3O3YTZrtm1X7qmr5yHS9 FKoi4h1pOmByQmpQxW+I9QWcx9ayt0dpWKa5ApdCvH3gTmNqAQbGd3qWx4ABzHFx bouizX1M8N967Y5EmdvVRniVnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMWFCSO8 40aM4PbTKDY0qRlS2OM0MB8GA1UdIwQYMBaAFOACW/ky5xbhofivkBAhHEEQhPyd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0ZEQi82NTdFNDA3NERB MzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1R2gtSy1RRUNFY1FSQ0Vf SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRBSmItVExuRnVHaC1LLVFFQ0VjUVJDRV9KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0ZEQi82NTdFNDA3NERBMzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1 R2gtSy1RRUNFY1FSQ0VfSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnwcFQl2u1rzHfZpjeFAsMX/YtOD+NvKHpsqCxtlrBXePgdvv3Loto 4Y0/SCsHPehlrAfA2vYCFtHQNumy1Nuc+NXumgbk/E3pblQt+akdhW7+67Ce2AAg eHibjgkhb8p9iCzaMU86kietscf64PNWuSgY7K/MzpfK/ABA2nEc6+PshzT+SX8d dATlFJNjMfIZpfIM6zg95zYcetdSWXH8MCW8ywmeuVz16iqUhPS7fDqBgOwevClv RGqo2ybUIK5Axm2hDmVLduX944Xa4jo5S/UKbyME/bkI+pgpc578RRW74H5SSDl/ 3aiCFzcu9qzLcY1jWizY+jeaqHUCoo1+ -----END CERTIFICATE-----Generated at Fri May 17 02:38:40 2024 by rpki-client on console-fra.rpki-client.org