$ rpki-client -vvf rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.mft File: d-xIaS0EJwKXjc0LaOlAuNdyPlI.mft (raw, json) Hash identifier: OR8ti7yaZal7IVT+F4WUnPsDVg0QkN/ZWBll+nDEV1U= Subject key identifier: 59:E2:5B:95:BE:FB:51:1D:9D:06:57:7A:DC:41:14:99:05:A3:86:15 Authority key identifier: 77:EC:48:69:2D:04:27:02:97:8D:CD:0B:68:E9:40:B8:D7:72:3E:52 Certificate issuer: /CN=A9112320/serialNumber=77EC48692D042702978DCD0B68E940B8D7723E52 Certificate serial: 4D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/d-xIaS0EJwKXjc0LaOlAuNdyPlI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.mft Manifest number: 4B Signing time: Thu 23 May 2024 01:41:03 +0000 Manifest this update: Thu 23 May 2024 01:41:02 +0000 Manifest next update: Thu 30 May 2024 01:41:02 +0000 Files and hashes: 1: d-xIaS0EJwKXjc0LaOlAuNdyPlI.crl (hash: xGbPP+0rc/iMieGz6ju8wwdE8A2GdexVpqseSpyr3jE=) 2: 7EE26732EB2411EEBDA7715FC4F9AE02.roa (hash: DjCqZN1tBdP+HULyLlJhGVCEJSR0OTVFw/qqfHdzKdU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.crl rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/d-xIaS0EJwKXjc0LaOlAuNdyPlI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 21:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112320/serialNumber=77EC48692D042702978DCD0B68E940B8D7723E52 Validity Not Before: May 23 01:41:02 2024 GMT Not After : May 30 01:41:02 2024 GMT Subject: CN=664e9eae-fefa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f0:6b:a5:db:4f:af:3d:d6:4e:ba:55:e5:a6: e0:c1:92:15:44:0d:bc:cd:d3:53:3e:7d:4f:03:e1: eb:21:84:41:10:be:88:45:eb:17:bf:b6:33:77:ad: 3b:42:ae:15:b5:92:cd:08:25:66:64:ee:17:75:10: 9d:af:07:c8:d6:8b:31:35:1f:48:aa:19:53:2d:a3: b4:5c:d5:2c:92:e6:b3:f1:de:f6:95:57:20:1e:bd: 75:89:7d:29:aa:e3:4d:13:5f:26:f7:ef:60:69:fc: bb:ef:e2:a1:9d:ee:0a:68:eb:aa:88:6c:a0:d6:5e: 0e:97:30:f9:85:ea:36:ea:e4:fd:d9:7d:3e:2b:40: c3:0e:62:cb:35:e3:f0:db:91:11:e2:96:44:86:57: 66:0f:f1:87:15:d4:38:a1:fb:75:89:34:3f:ae:6b: 24:09:32:9a:29:cd:d7:41:ba:63:4b:cc:f0:a7:89: 08:38:4f:36:a9:be:3e:a8:6f:e0:54:f8:53:c8:87: f7:a1:4b:0f:e9:4b:82:03:62:fd:71:a3:1d:66:72: b8:af:27:b4:e5:ac:28:92:26:02:24:de:52:a3:23: 82:8a:a4:26:05:c1:4d:02:ad:26:4a:12:a4:0d:79: ae:70:56:fa:81:30:7c:ee:17:8a:43:99:5f:10:a7: b8:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:E2:5B:95:BE:FB:51:1D:9D:06:57:7A:DC:41:14:99:05:A3:86:15 X509v3 Authority Key Identifier: keyid:77:EC:48:69:2D:04:27:02:97:8D:CD:0B:68:E9:40:B8:D7:72:3E:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/d-xIaS0EJwKXjc0LaOlAuNdyPlI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:08:30:fa:e0:7c:27:fb:c1:50:d4:cc:2f:44:05:2f:58:41: d4:f4:9e:da:83:30:98:7c:63:54:ff:bf:fe:20:23:e4:21:94: 15:01:89:1b:4d:a5:b9:ed:26:7f:fd:99:40:7b:1e:5f:8d:2c: 9c:66:d8:30:f2:45:74:cc:fd:7f:be:5c:79:43:20:53:c1:fd: 5b:7b:ce:91:63:ec:a0:7a:bb:7a:a6:75:47:72:f2:6b:10:97: 9b:d7:6a:d6:9f:46:af:70:95:2c:f1:04:b2:99:f9:ae:a4:44: c4:43:b5:b5:b6:75:1d:bc:83:03:c7:47:f6:b3:0b:2a:ce:88: 68:d3:c8:10:ce:d5:66:8a:42:2f:f8:75:14:b3:5a:96:24:8c: cf:13:1e:95:cd:f1:cf:16:b2:f7:7d:d4:a3:89:14:e3:29:f6: 1a:cd:80:7e:1f:d9:62:d2:1f:90:73:c0:4d:2b:6a:80:d5:6f: c9:c5:b9:71:70:ea:5f:32:c1:cd:ea:ce:25:ba:a8:93:1b:8b: 12:b0:72:93:e9:2a:90:f5:9b:b9:2e:a0:fb:e3:3c:5c:ee:78: e6:05:62:35:d3:1e:59:da:6d:30:94:67:a4:01:4c:f7:68:c5: 0a:44:fc:d6:40:0d:71:da:5b:4e:0f:33:34:51:d2:03:4d:00: 05:39:de:95 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MjMyMDExMC8GA1UEBRMoNzdFQzQ4NjkyRDA0MjcwMjk3OERDRDBCNjhFOTQwQjhE NzcyM0U1MjAeFw0yNDA1MjMwMTQxMDJaFw0yNDA1MzAwMTQxMDJaMBgxFjAUBgNV BAMTDTY2NGU5ZWFlLWZlZmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQ8Gul20+vPdZOulXlpuDBkhVEDbzN01M+fU8D4eshhEEQvohF6xe/tjN3rTtC rhW1ks0IJWZk7hd1EJ2vB8jWizE1H0iqGVMto7Rc1SyS5rPx3vaVVyAevXWJfSmq 400TXyb372Bp/Lvv4qGd7gpo66qIbKDWXg6XMPmF6jbq5P3ZfT4rQMMOYss14/Db kRHilkSGV2YP8YcV1Dih+3WJND+uayQJMpopzddBumNLzPCniQg4Tzapvj6ob+BU +FPIh/ehSw/pS4IDYv1xox1mcrivJ7TlrCiSJgIk3lKjI4KKpCYFwU0CrSZKEqQN ea5wVvqBMHzuF4pDmV8Qp7hLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWeJblb77 UR2dBld63EEUmQWjhhUwHwYDVR0jBBgwFoAUd+xIaS0EJwKXjc0LaOlAuNdyPlIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEyMzIwLzI4QzZDQ0U2QTlG MDExRUU5MzE1RUQ2Q0M0RjlBRTAyL2QteElhUzBFSndLWGpjMExhT2xBdU5keVBs SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZC14SWFTMEVKd0tYamMwTGFPbEF1TmR5UGxJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEy MzIwLzI4QzZDQ0U2QTlGMDExRUU5MzE1RUQ2Q0M0RjlBRTAyL2QteElhUzBFSndL WGpjMExhT2xBdU5keVBsSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACIIMPrgfCf7wVDUzC9EBS9YQdT0ntqDMJh8Y1T/v/4gI+QhlBUBiRtN pbntJn/9mUB7Hl+NLJxm2DDyRXTM/X++XHlDIFPB/Vt7zpFj7KB6u3qmdUdy8msQ l5vXatafRq9wlSzxBLKZ+a6kRMRDtbW2dR28gwPHR/azCyrOiGjTyBDO1WaKQi/4 dRSzWpYkjM8THpXN8c8Wsvd91KOJFOMp9hrNgH4f2WLSH5BzwE0raoDVb8nFuXFw 6l8ywc3qziW6qJMbixKwcpPpKpD1m7kuoPvjPFzueOYFYjXTHlnabTCUZ6QBTPdo xQpE/NZADXHaW04PMzRR0gNNAAU53pU= -----END CERTIFICATE-----Generated at Thu May 23 02:34:44 2024 by rpki-client on console-fra.rpki-client.org