$ rpki-client -vvf rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.mft File: wK72Ja-dUEroR_aSPaiRBpyQA_Q.mft (raw, json) Hash identifier: iSwmtWuiDKK+qTP0X+2KVQaq9mcrQ/0LHVtaxdJNH9w= Subject key identifier: DA:B1:7F:E2:27:21:59:83:AE:CE:77:03:40:86:E1:82:B3:2F:B1:FC Authority key identifier: C0:AE:F6:25:AF:9D:50:4A:E8:47:F6:92:3D:A8:91:06:9C:90:03:F4 Certificate issuer: /CN=A9111D36/serialNumber=C0AEF625AF9D504AE847F6923DA891069C9003F4 Certificate serial: FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK72Ja-dUEroR_aSPaiRBpyQA_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.mft Manifest number: FB Signing time: Sun 05 May 2024 05:47:53 +0000 Manifest this update: Sun 05 May 2024 05:47:53 +0000 Manifest next update: Sun 12 May 2024 05:47:53 +0000 Files and hashes: 1: wK72Ja-dUEroR_aSPaiRBpyQA_Q.crl (hash: xCHS6L0V2uxUuypXGMrM9I8drQWiGz3k9nqG2YLh+qg=) 2: 949A543291B011EDA9CB747CC4F9AE02.roa (hash: IIMoYfs0K2LP8PknicnuLwo634xq7BuixM17QupODh8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.crl rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK72Ja-dUEroR_aSPaiRBpyQA_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 05:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 255 (0xff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111D36/serialNumber=C0AEF625AF9D504AE847F6923DA891069C9003F4 Validity Not Before: May 5 05:47:53 2024 GMT Not After : May 12 05:47:53 2024 GMT Subject: CN=66371d89-4fa0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:8b:c5:1f:26:e2:79:69:9b:c3:62:d2:8a:2c: f8:bf:98:68:37:97:a3:8c:de:32:e8:07:8d:ee:09: 59:6e:fc:ca:b5:b5:4e:90:56:7a:22:c8:48:f9:07: 9d:d4:21:8d:37:47:d8:91:35:c4:3f:8f:c5:8d:1d: 29:14:69:0b:d4:be:f8:bf:01:05:15:1f:3a:0b:10: 21:58:4e:8f:31:57:af:d6:44:3c:53:80:5b:f9:03: b6:aa:26:20:1a:bb:df:50:65:67:e6:b2:17:b7:e1: 1e:e7:20:e8:67:66:14:77:ec:b9:e1:d4:aa:70:c2: ca:e1:c1:1c:44:13:d2:24:f2:5b:79:66:2a:e4:05: 5d:fa:ff:f1:ba:51:43:10:04:e4:2f:13:af:36:66: 1e:17:10:75:21:f9:b1:b7:fb:eb:b7:ce:f6:57:76: 34:78:a6:0a:45:95:25:20:65:b4:ce:79:02:27:49: 8f:06:fc:af:e4:a5:59:d9:4d:29:e6:2f:b3:fd:d4: 69:09:16:aa:56:21:ca:fa:0f:ce:ec:5d:49:48:b5: 73:ff:d8:0d:ca:a5:13:ae:b4:73:74:a4:48:50:62: c3:52:61:e0:a7:73:49:d7:9b:85:19:c2:23:54:9e: 13:22:b3:c9:d2:c4:46:98:2e:cb:0f:5e:f6:08:2f: ca:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:B1:7F:E2:27:21:59:83:AE:CE:77:03:40:86:E1:82:B3:2F:B1:FC X509v3 Authority Key Identifier: keyid:C0:AE:F6:25:AF:9D:50:4A:E8:47:F6:92:3D:A8:91:06:9C:90:03:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK72Ja-dUEroR_aSPaiRBpyQA_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:d4:e3:e4:38:be:fd:c0:02:82:a7:eb:3e:87:6e:a2:43:2d: ad:d9:39:0b:ab:f8:af:bb:e4:46:af:23:9e:92:61:5c:d0:f9: 1c:de:a9:67:1a:96:dd:c5:1a:87:5f:20:f5:14:65:d0:4a:79: 24:52:d6:54:86:a0:ff:35:48:fc:4b:fc:ca:a0:69:4d:3f:c6: 93:e4:66:95:ba:77:9a:69:5a:99:52:b6:aa:7f:8a:b4:17:cf: 3d:ec:0b:d0:eb:a8:d1:83:2e:dd:26:1c:68:84:da:aa:24:a8: cd:85:db:06:4c:ce:50:b3:0e:9b:a3:a1:13:6e:9b:71:2b:af: 88:ed:00:d0:2a:59:91:4e:db:3c:1b:7f:04:e2:96:b8:d4:c5: 85:e0:99:75:ac:7e:e2:a1:42:88:57:0e:15:92:95:41:71:6c: 7e:43:d6:41:50:27:00:22:31:0d:4e:2c:94:e7:f0:34:5a:89: f3:5c:60:bb:3f:e1:64:5c:5d:9f:09:7a:19:c9:bb:40:98:91: 3e:e9:86:0f:e0:a9:ad:7a:62:0d:40:df:76:bd:5f:61:eb:97: 16:dc:f2:6b:14:f9:c3:b7:1d:2a:fb:28:ab:fd:14:4a:dd:48: c3:77:47:fd:54:59:5b:c0:6d:5d:16:4a:c6:91:1e:f7:c6:86: 6d:a9:15:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFEMzYxMTAvBgNVBAUTKEMwQUVGNjI1QUY5RDUwNEFFODQ3RjY5MjNEQTg5MTA2 OUM5MDAzRjQwHhcNMjQwNTA1MDU0NzUzWhcNMjQwNTEyMDU0NzUzWjAYMRYwFAYD VQQDEw02NjM3MWQ4OS00ZmEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxovFHybieWmbw2LSiiz4v5hoN5ejjN4y6AeN7glZbvzKtbVOkFZ6IshI+Qed 1CGNN0fYkTXEP4/FjR0pFGkL1L74vwEFFR86CxAhWE6PMVev1kQ8U4Bb+QO2qiYg GrvfUGVn5rIXt+Ee5yDoZ2YUd+y54dSqcMLK4cEcRBPSJPJbeWYq5AVd+v/xulFD EATkLxOvNmYeFxB1Ifmxt/vrt872V3Y0eKYKRZUlIGW0znkCJ0mPBvyv5KVZ2U0p 5i+z/dRpCRaqViHK+g/O7F1JSLVz/9gNyqUTrrRzdKRIUGLDUmHgp3NJ15uFGcIj VJ4TIrPJ0sRGmC7LD172CC/KQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNqxf+In IVmDrs53A0CG4YKzL7H8MB8GA1UdIwQYMBaAFMCu9iWvnVBK6Ef2kj2okQackAP0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUQzNi9GQzEzQTNFNDkx QUExMUVEODBDMTdBNUVDNEY5QUUwMi93SzcySmEtZFVFcm9SX2FTUGFpUkJweVFB X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dLNzJKYS1kVUVyb1JfYVNQYWlSQnB5UUFfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUQzNi9GQzEzQTNFNDkxQUExMUVEODBDMTdBNUVDNEY5QUUwMi93SzcySmEtZFVF cm9SX2FTUGFpUkJweVFBX1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAt1OPkOL79wAKCp+s+h26iQy2t2TkLq/ivu+RGryOekmFc0Pkc3qln GpbdxRqHXyD1FGXQSnkkUtZUhqD/NUj8S/zKoGlNP8aT5GaVuneaaVqZUraqf4q0 F8897AvQ66jRgy7dJhxohNqqJKjNhdsGTM5Qsw6bo6ETbptxK6+I7QDQKlmRTts8 G38E4pa41MWF4Jl1rH7ioUKIVw4VkpVBcWx+Q9ZBUCcAIjENTiyU5/A0WonzXGC7 P+FkXF2fCXoZybtAmJE+6YYP4KmtemINQN92vV9h65cW3PJrFPnDtx0q+yir/RRK 3UjDd0f9VFlbwG1dFkrGkR73xoZtqRWz -----END CERTIFICATE-----Generated at Sun May 5 08:38:57 2024 by rpki-client on console-fra.rpki-client.org