$ rpki-client -vvf rpki.apnic.net/member_repository/A919D396/95D0DF7AEF9C11ED9BF63B86C4F9AE02/SdD0BpcqgFseep_CD7OpzLdmKs4.mft File: SdD0BpcqgFseep_CD7OpzLdmKs4.mft (raw, json) Hash identifier: IQeS/vYGIQ31WbXZ+z1GX+w84wfA23EzsweRVzVIAtY= Subject key identifier: D6:B2:58:6E:77:2F:F5:EB:3E:D4:21:93:85:57:9B:58:B2:B6:46:81 Authority key identifier: 49:D0:F4:06:97:2A:80:5B:1E:7A:9F:C2:0F:B3:A9:CC:B7:66:2A:CE Certificate issuer: /CN=A919D396/serialNumber=49D0F406972A805B1E7A9FC20FB3A9CCB7662ACE Certificate serial: C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SdD0BpcqgFseep_CD7OpzLdmKs4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D396/95D0DF7AEF9C11ED9BF63B86C4F9AE02/SdD0BpcqgFseep_CD7OpzLdmKs4.mft Manifest number: BF Signing time: Sun 19 May 2024 06:20:18 +0000 Manifest this update: Sun 19 May 2024 06:20:18 +0000 Manifest next update: Sun 26 May 2024 06:20:18 +0000 Files and hashes: 1: SdD0BpcqgFseep_CD7OpzLdmKs4.crl (hash: Hw6cBUJTdCHYvnvyykMwXgHzXU8SqEvRR8bnG3MdiBk=) 2: 110CB61EEFA211ED87AD1F0BC4F9AE02.roa (hash: UeveUVSDva9upTSXKBhN39qv6P5ruOyYyA0iKp0Rsto=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D396/95D0DF7AEF9C11ED9BF63B86C4F9AE02/SdD0BpcqgFseep_CD7OpzLdmKs4.crl rsync://rpki.apnic.net/member_repository/A919D396/95D0DF7AEF9C11ED9BF63B86C4F9AE02/SdD0BpcqgFseep_CD7OpzLdmKs4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SdD0BpcqgFseep_CD7OpzLdmKs4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D396/serialNumber=49D0F406972A805B1E7A9FC20FB3A9CCB7662ACE Validity Not Before: May 19 06:20:18 2024 GMT Not After : May 26 06:20:18 2024 GMT Subject: CN=66499a22-6c46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:4a:fb:ae:c3:4c:0d:fe:08:a6:61:df:c2:65: 00:83:7c:31:0f:c5:50:46:1a:a8:bc:45:9d:33:07: 9f:5f:52:26:60:9b:fc:e4:63:b0:31:f2:94:a4:18: fa:3e:e3:8b:a4:a1:11:4e:9c:25:d1:77:07:0a:b4: 15:87:ab:9a:a1:b9:e2:0f:e5:e3:fc:b2:0f:8a:5b: 3e:10:4e:23:01:83:5e:32:61:df:ae:28:41:f8:b4: 2c:76:34:62:90:16:26:08:53:5e:1e:98:e5:31:66: cd:53:a4:45:48:96:2f:6c:da:9f:7c:19:a8:8a:c2: 32:65:95:52:de:d9:08:ac:55:20:ed:78:1c:74:af: d0:b8:cc:8b:06:70:a3:a8:1f:6c:4f:bf:5c:95:b5: 39:5b:c7:87:b5:7c:a1:e5:e8:bc:73:83:16:f3:28: f3:30:6e:2e:4c:eb:a9:c3:35:18:d7:0c:b7:40:09: 30:62:49:09:37:5b:50:19:b9:bd:f7:cb:50:cb:19: f0:6d:58:ef:b7:d7:72:09:2e:f2:4e:cd:7f:93:64: 97:75:5f:55:3a:03:a9:a5:a1:98:b8:8a:79:05:e6: 29:c8:f4:55:1a:39:a7:34:ca:00:ef:6c:05:96:36: e7:e6:b8:90:03:2a:ba:ed:15:8f:f8:c0:03:f5:8c: df:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:B2:58:6E:77:2F:F5:EB:3E:D4:21:93:85:57:9B:58:B2:B6:46:81 X509v3 Authority Key Identifier: keyid:49:D0:F4:06:97:2A:80:5B:1E:7A:9F:C2:0F:B3:A9:CC:B7:66:2A:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D396/95D0DF7AEF9C11ED9BF63B86C4F9AE02/SdD0BpcqgFseep_CD7OpzLdmKs4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SdD0BpcqgFseep_CD7OpzLdmKs4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D396/95D0DF7AEF9C11ED9BF63B86C4F9AE02/SdD0BpcqgFseep_CD7OpzLdmKs4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:95:39:96:8d:be:5b:80:d0:13:7b:4d:6d:50:6d:fd:e0:61: 7d:46:a8:03:06:43:66:39:2f:ba:35:ee:1e:aa:d5:7c:52:d4: 56:b0:8c:8a:1d:8a:de:5a:d1:66:05:09:2d:d2:97:93:78:c5: 6f:fe:ee:63:1d:ea:c5:ed:41:ac:e2:b4:a4:21:51:a0:83:a1: 01:a0:26:a4:dc:35:45:c4:f3:56:2c:6e:f7:14:0e:32:4e:a7: 17:c5:a6:85:22:96:ea:17:59:24:e6:12:b3:4d:3b:b0:43:43: 3d:3a:cb:59:25:9a:97:4a:8f:12:85:17:aa:6d:5c:6e:9a:2f: 87:94:00:dd:8a:60:eb:77:b8:2f:44:bc:30:71:36:fc:33:b4: 49:36:77:9a:5a:12:b6:84:28:6d:87:8b:24:87:b2:80:17:c2: 7b:d0:1b:80:3c:a4:4b:8e:54:6b:bf:eb:98:26:2c:39:4e:4e: 72:b4:8b:8f:b6:42:b4:34:a7:d1:b8:b1:94:31:80:f6:d0:eb: 1d:e6:64:26:56:0c:bd:9f:47:32:32:6a:cf:b5:1a:b3:a8:a0: 02:be:4e:8a:09:99:55:bc:fb:55:30:08:89:29:4f:09:33:df: da:c6:04:6d:cc:4a:0a:93:9c:54:b0:bb:d3:f4:1e:d7:59:fe: 0a:5b:84:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQzOTYxMTAvBgNVBAUTKDQ5RDBGNDA2OTcyQTgwNUIxRTdBOUZDMjBGQjNBOUND Qjc2NjJBQ0UwHhcNMjQwNTE5MDYyMDE4WhcNMjQwNTI2MDYyMDE4WjAYMRYwFAYD VQQDEw02NjQ5OWEyMi02YzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArUr7rsNMDf4IpmHfwmUAg3wxD8VQRhqovEWdMwefX1ImYJv85GOwMfKUpBj6 PuOLpKERTpwl0XcHCrQVh6uaobniD+Xj/LIPils+EE4jAYNeMmHfrihB+LQsdjRi kBYmCFNeHpjlMWbNU6RFSJYvbNqffBmoisIyZZVS3tkIrFUg7XgcdK/QuMyLBnCj qB9sT79clbU5W8eHtXyh5ei8c4MW8yjzMG4uTOupwzUY1wy3QAkwYkkJN1tQGbm9 98tQyxnwbVjvt9dyCS7yTs1/k2SXdV9VOgOppaGYuIp5BeYpyPRVGjmnNMoA72wF ljbn5riQAyq67RWP+MAD9YzfXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNayWG53 L/XrPtQhk4VXm1iytkaBMB8GA1UdIwQYMBaAFEnQ9AaXKoBbHnqfwg+zqcy3ZirO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDM5Ni85NUQwREY3QUVG OUMxMUVEOUJGNjNCODZDNEY5QUUwMi9TZEQwQnBjcWdGc2VlcF9DRDdPcHpMZG1L czQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NkRDBCcGNxZ0ZzZWVwX0NEN09wekxkbUtzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDM5Ni85NUQwREY3QUVGOUMxMUVEOUJGNjNCODZDNEY5QUUwMi9TZEQwQnBjcWdG c2VlcF9DRDdPcHpMZG1LczQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7lTmWjb5bgNATe01tUG394GF9RqgDBkNmOS+6Ne4eqtV8UtRWsIyK HYreWtFmBQkt0peTeMVv/u5jHerF7UGs4rSkIVGgg6EBoCak3DVFxPNWLG73FA4y TqcXxaaFIpbqF1kk5hKzTTuwQ0M9OstZJZqXSo8ShReqbVxumi+HlADdimDrd7gv RLwwcTb8M7RJNneaWhK2hChth4skh7KAF8J70BuAPKRLjlRrv+uYJiw5Tk5ytIuP tkK0NKfRuLGUMYD20Osd5mQmVgy9n0cyMmrPtRqzqKACvk6KCZlVvPtVMAiJKU8J M9/axgRtzEoKk5xUsLvT9B7XWf4KW4T4 -----END CERTIFICATE-----Generated at Sun May 19 07:40:42 2024 by rpki-client on console-fra.rpki-client.org