$ rpki-client -vvf rpki.apnic.net/member_repository/A919821D/B2A074EE89B111EE986CA65CC4F9AE02/iMFUTX5nvNkdSN9dEfzRAh-FOZM.mft File: iMFUTX5nvNkdSN9dEfzRAh-FOZM.mft (raw, json) Hash identifier: 9pqlBKU8noW4Pdv4AseGZRKqIV2la1VgiYAgUsNLu9g= Subject key identifier: A1:2A:9D:36:50:3B:72:63:B7:69:D7:E1:3C:B6:3F:57:A3:75:43:84 Authority key identifier: 88:C1:54:4D:7E:67:BC:D9:1D:48:DF:5D:11:FC:D1:02:1F:85:39:93 Certificate issuer: /CN=A919821D/serialNumber=88C1544D7E67BCD91D48DF5D11FCD1021F853993 Certificate serial: 5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iMFUTX5nvNkdSN9dEfzRAh-FOZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919821D/B2A074EE89B111EE986CA65CC4F9AE02/iMFUTX5nvNkdSN9dEfzRAh-FOZM.mft Manifest number: 5D Signing time: Sun 19 May 2024 07:44:35 +0000 Manifest this update: Sun 19 May 2024 07:44:34 +0000 Manifest next update: Sun 26 May 2024 07:44:34 +0000 Files and hashes: 1: iMFUTX5nvNkdSN9dEfzRAh-FOZM.crl (hash: MSmj4sQZQGDcUO7lsXDhFDkTZ/lI3Izj5EtGpL4ch+Q=) 2: 51D4585A89B211EE9ADA615EC4F9AE02.roa (hash: jzFXArRMwn4nTWMlZ/sRFauoJ4H0465twxMcQQPfjHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919821D/B2A074EE89B111EE986CA65CC4F9AE02/iMFUTX5nvNkdSN9dEfzRAh-FOZM.crl rsync://rpki.apnic.net/member_repository/A919821D/B2A074EE89B111EE986CA65CC4F9AE02/iMFUTX5nvNkdSN9dEfzRAh-FOZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iMFUTX5nvNkdSN9dEfzRAh-FOZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919821D/serialNumber=88C1544D7E67BCD91D48DF5D11FCD1021F853993 Validity Not Before: May 19 07:44:34 2024 GMT Not After : May 26 07:44:34 2024 GMT Subject: CN=6649ade3-f15e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f3:69:d5:7b:50:c9:25:a0:04:62:35:5e:fb: eb:fd:4e:5d:9a:09:db:b8:14:8e:ae:b0:1a:77:a3: 77:1d:73:98:ae:04:e4:f3:65:ef:fa:dc:5b:a9:4f: cd:f1:98:77:21:be:79:50:35:ad:90:4c:15:6e:44: 86:88:87:3e:0e:bc:b4:00:da:bf:6c:0a:1b:fb:bd: 15:5e:04:a3:10:0f:dd:e4:e6:24:a4:cf:64:9c:19: 61:29:1b:fd:70:d2:cf:67:27:72:a5:15:ad:fb:bc: 20:ac:27:31:71:b9:6f:67:78:d4:13:86:c3:db:c2: 5b:3a:e9:0d:45:30:06:3f:19:da:a1:23:d7:10:bd: 02:ca:da:6e:5c:26:ac:bc:a2:98:ac:46:a3:ee:80: 1a:1d:4f:f1:72:ac:01:3f:93:10:b0:0e:a4:19:77: e6:f7:f6:f9:1d:0c:13:10:f3:d5:c2:9d:19:6f:7f: cf:53:4b:fc:e5:fd:f3:63:b1:33:00:10:1d:2b:12: 3b:49:ff:1d:dd:f7:b0:37:9e:e2:f8:5c:89:2c:60: 2a:1b:9c:a7:00:28:91:c3:27:02:54:90:fa:75:87: dc:db:55:5d:a0:52:38:cf:57:d7:33:76:89:39:36: a1:55:78:cd:4f:c8:37:1b:a3:4f:a1:fd:34:ff:0a: 3e:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:2A:9D:36:50:3B:72:63:B7:69:D7:E1:3C:B6:3F:57:A3:75:43:84 X509v3 Authority Key Identifier: keyid:88:C1:54:4D:7E:67:BC:D9:1D:48:DF:5D:11:FC:D1:02:1F:85:39:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919821D/B2A074EE89B111EE986CA65CC4F9AE02/iMFUTX5nvNkdSN9dEfzRAh-FOZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iMFUTX5nvNkdSN9dEfzRAh-FOZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919821D/B2A074EE89B111EE986CA65CC4F9AE02/iMFUTX5nvNkdSN9dEfzRAh-FOZM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:a9:8c:df:4a:e7:f8:2a:03:c7:2a:62:da:68:8f:47:1d:c8: 3d:90:d7:1b:f3:2f:16:4a:a4:91:91:6d:2e:72:7d:32:c5:00: 0b:11:2e:8c:13:73:cc:94:8d:e7:41:c4:d9:bc:63:ef:55:56: 45:54:6d:87:ac:24:65:e5:4a:36:e6:fe:fa:ce:9f:6d:4f:7d: 56:aa:4c:a0:50:6d:19:63:c2:79:e0:bb:29:8f:85:93:58:54: ed:22:1c:6b:df:9f:df:b6:b3:e0:39:68:90:80:81:97:fe:95: 79:38:0e:65:3d:0b:a5:9d:c9:f2:8b:ed:c3:26:e1:8d:59:05: 37:1c:24:76:9d:d1:5a:e3:36:ab:26:89:8b:97:ab:9c:67:c7: 37:41:c2:c7:02:fb:2a:66:19:cd:8c:76:b4:e5:84:b0:89:c9: 53:5a:0b:71:23:33:58:a7:ee:cd:48:e4:60:fd:7b:be:96:b6: 23:e4:37:38:3b:40:a9:40:e9:05:3b:c8:59:7f:7f:c8:c2:48: a9:ee:2b:5f:74:f9:c5:e2:67:f8:53:70:c1:82:4c:0d:55:23: 5d:5d:74:77:e3:0e:95:cd:56:7b:44:f5:93:5a:21:00:7f:aa: 64:b8:5b:0e:20:38:e0:78:0f:d3:75:1a:1e:84:a8:b6:31:84: ce:b0:17:0e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 ODIxRDExMC8GA1UEBRMoODhDMTU0NEQ3RTY3QkNEOTFENDhERjVEMTFGQ0QxMDIx Rjg1Mzk5MzAeFw0yNDA1MTkwNzQ0MzRaFw0yNDA1MjYwNzQ0MzRaMBgxFjAUBgNV BAMTDTY2NDlhZGUzLWYxNWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCz82nVe1DJJaAEYjVe++v9Tl2aCdu4FI6usBp3o3cdc5iuBOTzZe/63FupT83x mHchvnlQNa2QTBVuRIaIhz4OvLQA2r9sChv7vRVeBKMQD93k5iSkz2ScGWEpG/1w 0s9nJ3KlFa37vCCsJzFxuW9neNQThsPbwls66Q1FMAY/GdqhI9cQvQLK2m5cJqy8 opisRqPugBodT/FyrAE/kxCwDqQZd+b39vkdDBMQ89XCnRlvf89TS/zl/fNjsTMA EB0rEjtJ/x3d97A3nuL4XIksYCobnKcAKJHDJwJUkPp1h9zbVV2gUjjPV9czdok5 NqFVeM1PyDcbo0+h/TT/Cj79AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUoSqdNlA7 cmO3adfhPLY/V6N1Q4QwHwYDVR0jBBgwFoAUiMFUTX5nvNkdSN9dEfzRAh+FOZMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4MjFEL0IyQTA3NEVFODlC MTExRUU5ODZDQTY1Q0M0RjlBRTAyL2lNRlVUWDVudk5rZFNOOWRFZnpSQWgtRk9a TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaU1GVVRYNW52TmtkU045ZEVmelJBaC1GT1pNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4 MjFEL0IyQTA3NEVFODlCMTExRUU5ODZDQTY1Q0M0RjlBRTAyL2lNRlVUWDVudk5r ZFNOOWRFZnpSQWgtRk9aTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJWpjN9K5/gqA8cqYtpoj0cdyD2Q1xvzLxZKpJGRbS5yfTLFAAsRLowT c8yUjedBxNm8Y+9VVkVUbYesJGXlSjbm/vrOn21PfVaqTKBQbRljwnnguymPhZNY VO0iHGvfn9+2s+A5aJCAgZf+lXk4DmU9C6WdyfKL7cMm4Y1ZBTccJHad0VrjNqsm iYuXq5xnxzdBwscC+ypmGc2MdrTlhLCJyVNaC3EjM1in7s1I5GD9e76WtiPkNzg7 QKlA6QU7yFl/f8jCSKnuK190+cXiZ/hTcMGCTA1VI11ddHfjDpXNVntE9ZNaIQB/ qmS4Ww4gOOB4D9N1Gh6EqLYxhM6wFw4= -----END CERTIFICATE-----Generated at Sun May 19 08:26:44 2024 by rpki-client on console-fra.rpki-client.org