$ rpki-client -vvf rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.mft File: l9pBnzurP2V6paXATgV8StlhvFs.mft (raw, json) Hash identifier: c+z9y42dGOcslOKU6SLEKTODku74d64o10LpCqmZQUU= Subject key identifier: 8A:BE:61:BA:EF:02:C3:42:B4:17:21:EA:81:3B:EC:DC:72:5D:CA:5A Authority key identifier: 97:DA:41:9F:3B:AB:3F:65:7A:A5:A5:C0:4E:05:7C:4A:D9:61:BC:5B Certificate issuer: /CN=A911251C/serialNumber=97DA419F3BAB3F657AA5A5C04E057C4AD961BC5B Certificate serial: 0113 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9pBnzurP2V6paXATgV8StlhvFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.mft Manifest number: 0110 Signing time: Wed 01 May 2024 05:40:00 +0000 Manifest this update: Wed 01 May 2024 05:40:00 +0000 Manifest next update: Wed 08 May 2024 05:40:00 +0000 Files and hashes: 1: l9pBnzurP2V6paXATgV8StlhvFs.crl (hash: HhT8scfP53F+Vaiv12SW5X2Nha3lmXjcyFjqH3356hE=) 2: B2F017A26BE311ED8B83B484C4F9AE02.roa (hash: ++HbJPkCOwI7YEDmwMoGF4+5fvdyuTeBvdjkZ/did0w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.crl rsync://rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9pBnzurP2V6paXATgV8StlhvFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 05:39:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 275 (0x113) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911251C/serialNumber=97DA419F3BAB3F657AA5A5C04E057C4AD961BC5B Validity Not Before: May 1 05:40:00 2024 GMT Not After : May 8 05:40:00 2024 GMT Subject: CN=6631d5b0-cf21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:94:9b:a2:4c:9d:75:c7:cb:13:29:0e:65:f0: 8b:90:d6:10:65:e6:4b:70:b5:a6:1f:44:ce:33:52: 69:74:82:b9:ad:bb:8c:cb:ed:a9:4b:bc:de:c4:a8: 55:d2:95:29:45:f5:e0:1a:1a:e2:42:fe:62:fc:db: 51:9c:98:45:bd:9f:47:14:d1:62:15:87:bb:18:eb: c5:7b:00:fb:29:cd:2f:9e:99:30:14:df:fd:39:fb: 8a:86:89:d4:b2:47:a4:dc:38:84:38:3e:54:dc:b0: f3:c0:c3:26:98:1f:1e:ee:d2:a6:7b:de:4e:45:a2: 53:c3:9f:84:23:c4:5a:fc:91:c6:63:4c:3f:1f:d2: ab:52:6b:5b:cd:5d:52:f4:b8:ea:64:3a:06:95:69: d2:a2:63:35:73:84:f0:b4:50:7a:13:b1:f4:eb:02: a1:8c:0a:32:0e:d4:30:e2:9c:3f:fb:3f:a5:79:3c: 90:0e:2b:53:9d:1d:56:07:81:84:e0:75:5b:20:2e: 9f:c8:7c:65:50:5a:37:e1:cb:e3:4d:fc:71:62:3b: ee:fe:b6:76:d0:e2:92:92:fc:b3:89:3c:3b:09:b4: 00:de:90:74:94:9a:dd:7f:0a:80:1e:75:05:f2:0b: 71:e2:67:2e:01:66:57:05:84:52:d9:ee:96:67:c6: 5a:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:BE:61:BA:EF:02:C3:42:B4:17:21:EA:81:3B:EC:DC:72:5D:CA:5A X509v3 Authority Key Identifier: keyid:97:DA:41:9F:3B:AB:3F:65:7A:A5:A5:C0:4E:05:7C:4A:D9:61:BC:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9pBnzurP2V6paXATgV8StlhvFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:cb:2c:f8:c7:9e:7d:58:86:5a:a8:1e:a0:86:17:d8:cc:fc: cf:5c:07:0d:c9:d2:de:c8:3c:4c:b3:87:62:6e:f7:b2:72:84: f0:a6:7f:54:82:76:8c:80:50:06:f2:37:b7:93:bf:b1:b4:2f: 73:ee:93:82:da:3f:7f:91:c4:f6:af:99:f4:8f:bc:9d:cc:7b: b5:c8:32:09:fe:0e:70:03:bc:01:e8:36:2a:d6:86:62:38:ea: bb:3f:8a:cf:4a:dd:6f:af:f9:44:11:2b:aa:b6:39:07:ce:49: ce:51:a6:ef:ee:3b:55:17:51:bb:06:91:00:3f:34:f4:ee:d6: 29:e4:6b:2d:fc:10:97:0a:d2:fe:2f:72:f7:81:5a:7b:0f:d5: dc:0d:1c:92:23:7d:9f:0b:f3:71:9a:93:e4:e6:ff:67:51:d5: f1:b9:c4:6c:6d:d2:1b:dd:95:bf:c5:77:5b:4a:84:67:83:24: 88:72:34:92:0e:6c:04:43:94:eb:dd:06:2d:6a:44:ba:61:22: 35:53:a8:8c:67:6f:dc:84:46:cc:b8:be:10:8f:1b:c6:a6:f7: fd:fc:b3:0e:78:b5:66:fc:93:ed:c3:d1:3c:67:af:c8:5f:a9: 4d:24:57:42:e4:a5:f1:fd:88:be:22:d4:6b:26:4e:7d:2d:97: 2b:d7:49:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI1MUMxMTAvBgNVBAUTKDk3REE0MTlGM0JBQjNGNjU3QUE1QTVDMDRFMDU3QzRB RDk2MUJDNUIwHhcNMjQwNTAxMDU0MDAwWhcNMjQwNTA4MDU0MDAwWjAYMRYwFAYD VQQDEw02NjMxZDViMC1jZjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArpSbokyddcfLEykOZfCLkNYQZeZLcLWmH0TOM1JpdIK5rbuMy+2pS7zexKhV 0pUpRfXgGhriQv5i/NtRnJhFvZ9HFNFiFYe7GOvFewD7Kc0vnpkwFN/9OfuKhonU skek3DiEOD5U3LDzwMMmmB8e7tKme95ORaJTw5+EI8Ra/JHGY0w/H9KrUmtbzV1S 9LjqZDoGlWnSomM1c4TwtFB6E7H06wKhjAoyDtQw4pw/+z+leTyQDitTnR1WB4GE 4HVbIC6fyHxlUFo34cvjTfxxYjvu/rZ20OKSkvyziTw7CbQA3pB0lJrdfwqAHnUF 8gtx4mcuAWZXBYRS2e6WZ8ZabQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIq+Ybrv AsNCtBch6oE77NxyXcpaMB8GA1UdIwQYMBaAFJfaQZ87qz9leqWlwE4FfErZYbxb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjUxQy9GOEY3RTI1MDZC RTAxMUVEOTkxOTZGNjJDNEY5QUUwMi9sOXBCbnp1clAyVjZwYVhBVGdWOFN0bGh2 RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w5cEJuenVyUDJWNnBhWEFUZ1Y4U3RsaHZGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjUxQy9GOEY3RTI1MDZCRTAxMUVEOTkxOTZGNjJDNEY5QUUwMi9sOXBCbnp1clAy VjZwYVhBVGdWOFN0bGh2RnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsyyz4x559WIZaqB6ghhfYzPzPXAcNydLeyDxMs4dibveycoTwpn9U gnaMgFAG8je3k7+xtC9z7pOC2j9/kcT2r5n0j7ydzHu1yDIJ/g5wA7wB6DYq1oZi OOq7P4rPSt1vr/lEESuqtjkHzknOUabv7jtVF1G7BpEAPzT07tYp5Gst/BCXCtL+ L3L3gVp7D9XcDRySI32fC/NxmpPk5v9nUdXxucRsbdIb3ZW/xXdbSoRngySIcjSS DmwEQ5Tr3QYtakS6YSI1U6iMZ2/chEbMuL4QjxvGpvf9/LMOeLVm/JPtw9E8Z6/I X6lNJFdC5KXx/Yi+ItRrJk59LZcr10lw -----END CERTIFICATE-----Generated at Wed May 1 07:06:26 2024 by rpki-client on console-fra.rpki-client.org