$ rpki-client -vvf rpki.apnic.net/member_repository/A919EAAD/87C3168809D511EAB76C7317C4F9AE02/9TmDt6uDhsaZWHhP-vDmlyYkV6c.mft File: 9TmDt6uDhsaZWHhP-vDmlyYkV6c.mft (raw, json) Hash identifier: UpN3mvZ0+a0zE1LIxxutfqpEwva/b1lrkH6o5/9lipU= Subject key identifier: E5:86:1E:6D:4E:24:A9:79:0A:F8:6E:21:14:9F:03:5D:99:9E:1F:FE Authority key identifier: F5:39:83:B7:AB:83:86:C6:99:58:78:4F:FA:F0:E6:97:26:24:57:A7 Certificate issuer: /CN=A919EAAD/serialNumber=F53983B7AB8386C69958784FFAF0E697262457A7 Certificate serial: 0B87 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9TmDt6uDhsaZWHhP-vDmlyYkV6c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EAAD/87C3168809D511EAB76C7317C4F9AE02/9TmDt6uDhsaZWHhP-vDmlyYkV6c.mft Manifest number: 0B7B Signing time: Sun 02 Jun 2024 19:47:33 +0000 Manifest this update: Sun 02 Jun 2024 19:47:32 +0000 Manifest next update: Sun 09 Jun 2024 19:47:32 +0000 Files and hashes: 1: 9TmDt6uDhsaZWHhP-vDmlyYkV6c.crl (hash: Thp+BKh/ED4KeZqHRqb5JUy2o8vI10gYGayMsBYfc8I=) 2: 97DC58040B5B11EAB69DC64FC4F9AE02.roa (hash: Va4decWdeWxreZuiKTEPDvc8po9KZonZg6UYKOuHMpE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EAAD/87C3168809D511EAB76C7317C4F9AE02/9TmDt6uDhsaZWHhP-vDmlyYkV6c.crl rsync://rpki.apnic.net/member_repository/A919EAAD/87C3168809D511EAB76C7317C4F9AE02/9TmDt6uDhsaZWHhP-vDmlyYkV6c.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9TmDt6uDhsaZWHhP-vDmlyYkV6c.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 14:50:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2951 (0xb87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EAAD/serialNumber=F53983B7AB8386C69958784FFAF0E697262457A7 Validity Not Before: Jun 2 19:47:32 2024 GMT Not After : Jun 9 19:47:32 2024 GMT Subject: CN=665ccc54-7d16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:4d:31:e1:6b:b4:be:1b:4a:5d:65:f2:3a:d1: df:f5:6c:3d:31:9b:f3:e9:fa:ba:5e:c6:d4:19:5a: ec:78:46:e3:6c:0d:d2:68:b5:27:48:a7:0b:55:1f: 08:64:b1:4b:ca:a7:75:56:1d:8f:10:ad:5e:c8:9a: 26:56:84:b9:6c:8d:4f:e3:2c:fa:db:72:5b:10:d2: d3:e3:5d:18:0f:02:67:a1:cf:6c:32:53:77:79:49: 8e:77:8f:88:eb:69:5b:4b:10:d3:07:69:37:96:d5: 17:df:2f:8d:2d:93:e1:fc:5f:a7:ea:0c:af:8f:30: 41:1f:bf:29:35:02:71:b5:d4:8b:ad:8a:e3:41:99: c8:91:f4:0e:d2:73:b2:8e:f2:8d:cf:06:8e:48:3d: c0:7e:7c:59:b4:ef:17:fa:49:14:88:c4:c0:43:56: 83:3f:e3:de:e6:76:94:9d:ab:2a:a1:60:a7:6e:af: 26:5a:33:f4:b4:85:17:21:d6:87:7a:84:d4:67:86: fd:75:cb:e1:03:2b:ec:56:ec:3d:5f:22:69:cd:f8: 11:e1:6d:a5:18:96:9b:30:d6:28:ba:d2:fa:e9:59: 54:b6:36:50:9a:95:80:f1:8a:14:29:0e:ff:a8:ec: 11:0e:84:68:61:ce:61:a4:23:a0:2b:64:1d:9a:f7: 6e:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:86:1E:6D:4E:24:A9:79:0A:F8:6E:21:14:9F:03:5D:99:9E:1F:FE X509v3 Authority Key Identifier: keyid:F5:39:83:B7:AB:83:86:C6:99:58:78:4F:FA:F0:E6:97:26:24:57:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EAAD/87C3168809D511EAB76C7317C4F9AE02/9TmDt6uDhsaZWHhP-vDmlyYkV6c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9TmDt6uDhsaZWHhP-vDmlyYkV6c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EAAD/87C3168809D511EAB76C7317C4F9AE02/9TmDt6uDhsaZWHhP-vDmlyYkV6c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:2a:ae:1c:35:f7:8b:c7:1f:e9:c5:3d:e9:03:a9:6a:d8:29: d5:68:b1:08:4e:c5:61:9c:3e:f4:36:60:6d:c2:a9:5a:c0:58: 42:d2:6a:a1:47:af:16:f3:74:38:d1:0e:dc:42:ac:07:e8:0a: 3c:1e:4d:9d:3b:ce:59:d1:76:29:7e:44:39:2a:f0:b3:68:ef: bb:cd:a5:e9:8a:1b:f4:2d:ce:72:17:6c:c8:31:24:d3:13:8d: 2a:b4:d9:d3:19:38:c1:ee:7a:d4:96:1d:d1:35:f6:c9:e9:3c: 0e:9f:21:a3:11:15:8c:e5:8d:31:ee:3a:ea:13:14:3c:d2:99: 17:1f:e5:93:b1:bb:49:88:ea:ae:fa:2b:1a:5a:8f:46:7f:68: 30:89:69:4f:23:a1:c7:3c:89:db:b0:8e:05:ab:ae:0a:db:86: 4c:f0:bc:49:8b:76:e1:c3:ea:9a:29:38:6a:f7:30:03:2d:aa: f2:57:ed:c3:93:45:50:9a:e8:c0:9b:a4:f4:c7:91:35:0d:a8: 26:aa:12:bb:bb:4b:7f:58:e4:2f:dc:0b:7b:c2:79:dd:6e:8e: 12:3f:19:99:2d:b4:66:39:db:2b:5a:c0:1f:4c:02:f1:51:48: 36:92:57:fc:c4:28:d5:2b:ed:55:e4:13:15:30:b6:80:4a:29: 83:f9:2a:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVBQUQxMTAvBgNVBAUTKEY1Mzk4M0I3QUI4Mzg2QzY5OTU4Nzg0RkZBRjBFNjk3 MjYyNDU3QTcwHhcNMjQwNjAyMTk0NzMyWhcNMjQwNjA5MTk0NzMyWjAYMRYwFAYD VQQDEw02NjVjY2M1NC03ZDE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA300x4Wu0vhtKXWXyOtHf9Ww9MZvz6fq6XsbUGVrseEbjbA3SaLUnSKcLVR8I ZLFLyqd1Vh2PEK1eyJomVoS5bI1P4yz623JbENLT410YDwJnoc9sMlN3eUmOd4+I 62lbSxDTB2k3ltUX3y+NLZPh/F+n6gyvjzBBH78pNQJxtdSLrYrjQZnIkfQO0nOy jvKNzwaOSD3AfnxZtO8X+kkUiMTAQ1aDP+Pe5naUnasqoWCnbq8mWjP0tIUXIdaH eoTUZ4b9dcvhAyvsVuw9XyJpzfgR4W2lGJabMNYoutL66VlUtjZQmpWA8YoUKQ7/ qOwRDoRoYc5hpCOgK2QdmvdufwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOWGHm1O JKl5CvhuIRSfA12Znh/+MB8GA1UdIwQYMBaAFPU5g7erg4bGmVh4T/rw5pcmJFen MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUFBRC84N0MzMTY4ODA5 RDUxMUVBQjc2QzczMTdDNEY5QUUwMi85VG1EdDZ1RGhzYVpXSGhQLXZEbWx5WWtW NmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzlUbUR0NnVEaHNhWldIaFAtdkRtbHlZa1Y2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUFBRC84N0MzMTY4ODA5RDUxMUVBQjc2QzczMTdDNEY5QUUwMi85VG1EdDZ1RGhz YVpXSGhQLXZEbWx5WWtWNmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoKq4cNfeLxx/pxT3pA6lq2CnVaLEITsVhnD70NmBtwqlawFhC0mqh R68W83Q40Q7cQqwH6Ao8Hk2dO85Z0XYpfkQ5KvCzaO+7zaXpihv0Lc5yF2zIMSTT E40qtNnTGTjB7nrUlh3RNfbJ6TwOnyGjERWM5Y0x7jrqExQ80pkXH+WTsbtJiOqu +isaWo9Gf2gwiWlPI6HHPInbsI4Fq64K24ZM8LxJi3bhw+qaKThq9zADLaryV+3D k0VQmujAm6T0x5E1DagmqhK7u0t/WOQv3At7wnndbo4SPxmZLbRmOdsrWsAfTALx UUg2klf8xCjVK+1V5BMVMLaASimD+Sqz -----END CERTIFICATE-----Generated at Sun Jun 2 20:59:18 2024 by rpki-client on console-fra.rpki-client.org