$ rpki-client -vvf rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.mft File: jPQjmA_Tp_Z-xfSlQ6IDpT485nY.mft (raw, json) Hash identifier: 4Bj6Y7RvT7yjYLGuS4KMmsgK+KzhGFqag7M+AH0ssMk= Subject key identifier: 2D:B1:BB:A5:81:BB:D5:10:8B:0F:67:42:4B:36:80:28:BE:90:DB:6D Authority key identifier: 8C:F4:23:98:0F:D3:A7:F6:7E:C5:F4:A5:43:A2:03:A5:3E:3C:E6:76 Certificate issuer: /CN=A919DD2D/serialNumber=8CF423980FD3A7F67EC5F4A543A203A53E3CE676 Certificate serial: 1133 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.mft Manifest number: 112D Signing time: Sat 18 May 2024 17:49:41 +0000 Manifest this update: Sat 18 May 2024 17:49:40 +0000 Manifest next update: Sat 25 May 2024 17:49:40 +0000 Files and hashes: 1: jPQjmA_Tp_Z-xfSlQ6IDpT485nY.crl (hash: wztoMnUJHgByfkXng7hcUMGu3dacDh6J3GfNciJPyHg=) 2: A295F860E71011E8899C3917C4F9AE02.roa (hash: u/IYCOtHZEv0BJCOwv8wDmLpOf4iqAeSbenmkSkZoe8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.crl rsync://rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4403 (0x1133) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DD2D/serialNumber=8CF423980FD3A7F67EC5F4A543A203A53E3CE676 Validity Not Before: May 18 17:49:40 2024 GMT Not After : May 25 17:49:40 2024 GMT Subject: CN=6648ea34-dc5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ad:05:a2:1f:74:d5:1a:6c:aa:96:ad:1f:c3: fd:35:d2:bc:17:d1:cc:3c:83:ed:7b:ae:3c:a9:7a: 4d:9c:e5:d8:3c:35:af:1d:49:52:1d:89:5b:b3:5d: e6:ce:19:04:54:f4:81:0a:92:82:87:ad:9b:19:02: 7f:c1:fa:c0:c3:e0:3e:ca:e5:1e:8a:f7:8e:31:14: e5:72:52:7a:b5:85:93:ba:d9:5b:25:d8:dd:66:20: 56:f6:56:26:05:4c:68:56:00:08:2c:70:57:c9:60: bc:47:61:2c:e2:74:05:e0:82:95:99:7e:75:27:83: 1d:33:f9:83:b3:e0:9b:81:b9:e6:06:4b:5e:41:cb: 44:74:01:dd:bd:67:cd:fb:00:83:f6:ba:f1:c1:04: 43:e2:f8:6b:97:c9:cc:bb:cd:12:c8:a0:0e:42:39: e5:c9:bc:aa:38:e8:c6:5b:04:43:5b:5c:63:f6:05: e7:3d:da:6c:15:32:4e:23:ce:b5:bc:1f:a5:52:88: cf:ab:4b:82:84:3a:7e:07:af:2a:f0:57:95:ec:3e: b8:b9:a3:99:82:fe:76:1f:0d:b1:c8:63:3d:96:47: b5:9f:3a:0a:a3:f6:7d:41:11:17:50:69:3d:78:68: 5d:27:e9:4f:9c:10:cc:0a:dd:53:47:38:6a:1e:40: 4c:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:B1:BB:A5:81:BB:D5:10:8B:0F:67:42:4B:36:80:28:BE:90:DB:6D X509v3 Authority Key Identifier: keyid:8C:F4:23:98:0F:D3:A7:F6:7E:C5:F4:A5:43:A2:03:A5:3E:3C:E6:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:6c:c4:c0:26:4b:1d:e7:bc:77:81:2b:69:53:17:f0:ee:63: c8:24:94:91:01:c6:17:90:9e:1d:a3:15:59:85:c4:19:51:6b: 4a:69:06:50:dc:1e:8b:a4:4d:04:60:b2:be:e8:cf:46:64:fc: b2:01:0b:01:91:46:2c:55:46:3f:aa:41:ca:d9:fb:e3:10:ae: fe:d6:69:35:69:59:7d:99:5d:f0:72:52:fc:f7:b2:e1:53:2a: 74:d8:c5:4f:be:41:22:e5:52:79:e5:06:52:25:b0:7a:84:e2: e7:8b:60:d5:66:58:16:5c:d0:c7:e5:57:c6:6d:7f:ec:e1:87: 9f:51:d3:53:9e:2a:ad:13:0b:5a:55:5e:58:cc:2a:5d:03:21: 76:4d:69:eb:84:5f:cf:7a:75:8d:a7:95:61:ec:d0:46:84:c6: 77:d4:34:65:71:d2:dc:e1:1a:3d:1f:e4:05:44:28:e8:97:e5: a3:21:44:09:2d:62:cb:d8:87:d6:c8:f8:8b:f8:64:50:8f:fa: 0b:f0:8b:ec:9a:cc:d1:4d:77:32:65:3d:bd:de:97:9f:1c:b1: 38:ac:58:f6:6d:f5:9c:f3:af:36:45:a3:72:10:ea:53:3b:50: f3:aa:0a:90:1f:bb:4b:ca:a4:47:07:39:3f:d9:fb:a3:b8:35: 95:ad:0f:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICETMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUREMkQxMTAvBgNVBAUTKDhDRjQyMzk4MEZEM0E3RjY3RUM1RjRBNTQzQTIwM0E1 M0UzQ0U2NzYwHhcNMjQwNTE4MTc0OTQwWhcNMjQwNTI1MTc0OTQwWjAYMRYwFAYD VQQDEw02NjQ4ZWEzNC1kYzVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArq0Foh901RpsqpatH8P9NdK8F9HMPIPte648qXpNnOXYPDWvHUlSHYlbs13m zhkEVPSBCpKCh62bGQJ/wfrAw+A+yuUeiveOMRTlclJ6tYWTutlbJdjdZiBW9lYm BUxoVgAILHBXyWC8R2Es4nQF4IKVmX51J4MdM/mDs+CbgbnmBkteQctEdAHdvWfN +wCD9rrxwQRD4vhrl8nMu80SyKAOQjnlybyqOOjGWwRDW1xj9gXnPdpsFTJOI861 vB+lUojPq0uChDp+B68q8FeV7D64uaOZgv52Hw2xyGM9lke1nzoKo/Z9QREXUGk9 eGhdJ+lPnBDMCt1TRzhqHkBMGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC2xu6WB u9UQiw9nQks2gCi+kNttMB8GA1UdIwQYMBaAFIz0I5gP06f2fsX0pUOiA6U+POZ2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5REQyRC85RDEyNjk1Q0U3 MEUxMUU4OUE5NjNEMTFDNEY5QUUwMi9qUFFqbUFfVHBfWi14ZlNsUTZJRHBUNDg1 blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pQUWptQV9UcF9aLXhmU2xRNklEcFQ0ODVuWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 REQyRC85RDEyNjk1Q0U3MEUxMUU4OUE5NjNEMTFDNEY5QUUwMi9qUFFqbUFfVHBf Wi14ZlNsUTZJRHBUNDg1blkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBebMTAJksd57x3gStpUxfw7mPIJJSRAcYXkJ4doxVZhcQZUWtKaQZQ 3B6LpE0EYLK+6M9GZPyyAQsBkUYsVUY/qkHK2fvjEK7+1mk1aVl9mV3wclL897Lh Uyp02MVPvkEi5VJ55QZSJbB6hOLni2DVZlgWXNDH5VfGbX/s4YefUdNTniqtEwta VV5YzCpdAyF2TWnrhF/PenWNp5Vh7NBGhMZ31DRlcdLc4Ro9H+QFRCjol+WjIUQJ LWLL2IfWyPiL+GRQj/oL8IvsmszRTXcyZT293pefHLE4rFj2bfWc8682RaNyEOpT O1DzqgqQH7tLyqRHBzk/2fujuDWVrQ/H -----END CERTIFICATE-----Generated at Sat May 18 18:46:46 2024 by rpki-client on console-fra.rpki-client.org