$ rpki-client -vvf rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.mft File: CF4MUA89R900skS9OSnO_a3ZbD0.mft (raw, json) Hash identifier: aKUTMk6E1WwUB2fnIpPLx9CAmxXk98IuzsumsJ7ndrg= Subject key identifier: 66:79:77:AD:35:EC:85:95:63:3E:B2:35:C1:1D:35:C5:5A:FC:0F:33 Authority key identifier: 08:5E:0C:50:0F:3D:47:DD:34:B2:44:BD:39:29:CE:FD:AD:D9:6C:3D Certificate issuer: /CN=A919D118/serialNumber=085E0C500F3D47DD34B244BD3929CEFDADD96C3D Certificate serial: 09BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CF4MUA89R900skS9OSnO_a3ZbD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.mft Manifest number: 09AE Signing time: Sat 18 May 2024 20:51:26 +0000 Manifest this update: Sat 18 May 2024 20:51:26 +0000 Manifest next update: Sat 25 May 2024 20:51:26 +0000 Files and hashes: 1: CF4MUA89R900skS9OSnO_a3ZbD0.crl (hash: jtD4IHvR0k/AAshkH+ZCirrWoyVF9dMfWwJDO+fCuLU=) 2: E56559AA7CAD11EEB3536044C4F9AE02.roa (hash: mQHhbjcZjesdw8CGvTaqC+ZwbELZTj2o4sPH/U1ueLA=) 3: 5FFA4BEC3C0B11ED89AD755FC4F9AE02.roa (hash: u7yXnD3bGqVmUVwiLw2YbUnZGmEt5M03j3uj8hclD10=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.crl rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CF4MUA89R900skS9OSnO_a3ZbD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2495 (0x9bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D118/serialNumber=085E0C500F3D47DD34B244BD3929CEFDADD96C3D Validity Not Before: May 18 20:51:26 2024 GMT Not After : May 25 20:51:26 2024 GMT Subject: CN=664914ce-eecd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:f3:27:36:d4:c4:74:e6:d4:c1:db:0d:9d:a9: a0:93:37:a7:96:b4:da:3c:9f:cf:a9:c0:2d:c0:61: 64:da:77:a2:92:61:45:40:8b:71:f4:74:5a:40:9c: 55:6f:58:f9:9e:91:49:3d:47:07:79:62:21:d3:55: 94:95:ec:6d:6d:1e:7f:ff:42:10:80:63:a9:c4:b6: 34:23:32:89:b8:88:76:8f:d5:31:b8:d0:70:e3:33: af:41:8d:ba:bd:ec:7f:ea:86:9a:60:de:e1:cc:89: a5:a8:e9:06:37:f5:74:49:55:fb:53:14:08:29:03: 60:e4:06:14:65:d0:32:47:68:33:ba:c9:87:bc:20: ea:60:29:1d:80:56:3e:8e:4d:08:4b:d8:c7:c5:67: 38:fa:f0:42:59:01:1b:67:0b:f0:e5:64:fa:17:ec: f1:ca:65:f3:b1:bc:08:1b:8a:4a:bc:d7:fd:45:93: 3c:6f:d5:ea:71:b6:2d:a4:c0:bd:f1:4f:ce:c5:9c: dc:d0:eb:55:1a:b1:23:b7:83:59:c6:00:26:4c:49: 7e:93:f8:ac:f5:e6:72:5d:ea:aa:80:9d:fa:bd:2c: 8f:6a:39:d4:fd:55:51:ed:1f:71:da:4a:82:6b:37: 9d:c5:88:c2:c5:5c:5f:2e:26:e3:ec:ea:d4:48:a0: b9:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:79:77:AD:35:EC:85:95:63:3E:B2:35:C1:1D:35:C5:5A:FC:0F:33 X509v3 Authority Key Identifier: keyid:08:5E:0C:50:0F:3D:47:DD:34:B2:44:BD:39:29:CE:FD:AD:D9:6C:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CF4MUA89R900skS9OSnO_a3ZbD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:dc:97:bb:dc:79:19:e7:6a:65:fc:fe:42:0f:96:b7:9a:47: 64:84:f7:a7:20:98:0e:87:25:93:e5:fb:a5:5d:29:ee:2d:95: c0:69:ac:b2:d5:86:45:6b:5b:c4:10:73:4b:ef:31:ff:3d:dd: aa:b9:1e:c4:47:42:a1:d4:1a:57:cc:77:99:7f:7b:94:4b:74: c2:aa:a2:07:47:1d:d1:f5:58:f3:6d:dd:a3:9e:54:8b:8f:7d: 42:01:d4:f4:03:00:41:9d:00:80:0f:bb:6e:b8:95:70:6a:cb: f8:36:0f:0b:46:d4:0e:f9:08:97:34:f8:24:6a:da:00:4b:07: d6:28:cd:ac:66:1d:48:d0:44:52:5a:d2:9b:9a:30:59:d2:e7: 76:fc:b9:27:a9:87:1c:a5:36:50:21:1f:8d:7a:57:c5:ec:40: e6:36:3d:52:79:b4:f1:68:84:24:78:06:95:42:46:63:d5:6c: 02:65:15:8a:7d:d3:7c:27:f3:90:df:fb:60:52:b5:a4:69:a9: 78:cc:99:3b:d4:de:3b:29:a5:39:71:ed:e0:40:8d:36:4a:04: 1a:08:f7:e2:34:e6:b3:eb:cc:c4:85:e0:8c:b8:1c:e5:5a:88: 64:49:ba:34:0c:db:62:70:07:dc:37:75:66:30:9a:14:7f:08: 69:38:6a:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQxMTgxMTAvBgNVBAUTKDA4NUUwQzUwMEYzRDQ3REQzNEIyNDRCRDM5MjlDRUZE QUREOTZDM0QwHhcNMjQwNTE4MjA1MTI2WhcNMjQwNTI1MjA1MTI2WjAYMRYwFAYD VQQDEw02NjQ5MTRjZS1lZWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1PMnNtTEdObUwdsNnamgkzenlrTaPJ/PqcAtwGFk2neikmFFQItx9HRaQJxV b1j5npFJPUcHeWIh01WUlextbR5//0IQgGOpxLY0IzKJuIh2j9UxuNBw4zOvQY26 vex/6oaaYN7hzImlqOkGN/V0SVX7UxQIKQNg5AYUZdAyR2gzusmHvCDqYCkdgFY+ jk0IS9jHxWc4+vBCWQEbZwvw5WT6F+zxymXzsbwIG4pKvNf9RZM8b9XqcbYtpMC9 8U/OxZzc0OtVGrEjt4NZxgAmTEl+k/is9eZyXeqqgJ36vSyPajnU/VVR7R9x2kqC azedxYjCxVxfLibj7OrUSKC5fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGZ5d601 7IWVYz6yNcEdNcVa/A8zMB8GA1UdIwQYMBaAFAheDFAPPUfdNLJEvTkpzv2t2Ww9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDExOC9CQjgxQTUxNDYy QkYxMUVBQUEzQTg5NDVDNEY5QUUwMi9DRjRNVUE4OVI5MDBza1M5T1NuT19hM1pi RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NGNE1VQTg5UjkwMHNrUzlPU25PX2EzWmJEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDExOC9CQjgxQTUxNDYyQkYxMUVBQUEzQTg5NDVDNEY5QUUwMi9DRjRNVUE4OVI5 MDBza1M5T1NuT19hM1piRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAV3Je73HkZ52pl/P5CD5a3mkdkhPenIJgOhyWT5fulXSnuLZXAaayy 1YZFa1vEEHNL7zH/Pd2quR7ER0Kh1BpXzHeZf3uUS3TCqqIHRx3R9Vjzbd2jnlSL j31CAdT0AwBBnQCAD7tuuJVwasv4Ng8LRtQO+QiXNPgkatoASwfWKM2sZh1I0ERS WtKbmjBZ0ud2/LknqYccpTZQIR+NelfF7EDmNj1SebTxaIQkeAaVQkZj1WwCZRWK fdN8J/OQ3/tgUrWkaal4zJk71N47KaU5ce3gQI02SgQaCPfiNOaz68zEheCMuBzl WohkSbo0DNticAfcN3VmMJoUfwhpOGpC -----END CERTIFICATE-----Generated at Sat May 18 21:24:22 2024 by rpki-client on console-fra.rpki-client.org