$ rpki-client -vvf rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft File: IcuqoETeGlZkRp9Bi80Id7ITlzo.mft (raw, json) Hash identifier: YwSjHIOOmyjSmYKDuKavt0kf+W50MkqaCYcz0XO1zVY= Subject key identifier: 5C:96:19:F3:FC:75:BB:7A:99:CB:98:6E:A6:22:8E:45:2B:71:17:05 Authority key identifier: 21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A Certificate issuer: /CN=A911393B/serialNumber=21CBAAA044DE1A5664469F418BCD0877B213973A Certificate serial: 74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft Manifest number: 73 Signing time: Wed 15 May 2024 07:28:40 +0000 Manifest this update: Wed 15 May 2024 07:28:40 +0000 Manifest next update: Wed 22 May 2024 07:28:39 +0000 Files and hashes: 1: IcuqoETeGlZkRp9Bi80Id7ITlzo.crl (hash: iQPIQjzR9XJY8UKSxVSH78ymtZaKp1GAxZAP6Mxyntk=) 2: 6538D178628E11EEBF375134C4F9AE02.roa (hash: Pw/x/vys3i7BCNdlrQIbToItEZqfAmbAqkABXFykZto=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:28:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 116 (0x74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911393B/serialNumber=21CBAAA044DE1A5664469F418BCD0877B213973A Validity Not Before: May 15 07:28:40 2024 GMT Not After : May 22 07:28:39 2024 GMT Subject: CN=66446428-3df8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c7:a5:35:6e:a3:27:70:62:b3:a1:cb:12:ec: ee:e2:48:5b:ef:30:ca:2d:ca:ec:37:8f:d9:c0:07: 35:9d:b5:d0:52:38:75:b9:f4:bc:61:06:14:84:7e: 54:0b:53:06:54:ee:06:8c:56:62:c6:68:cc:b6:12: 84:a7:8f:e7:c0:5a:26:08:09:e2:ff:4d:14:d3:04: 42:e7:c3:de:8a:c9:7c:41:51:5d:38:d4:f9:34:6b: 8e:2c:6c:28:dd:a8:01:1a:f0:99:b5:d2:d9:df:97: 4a:a9:c5:87:6f:84:78:32:41:dd:89:79:cb:44:fe: a2:96:a9:c9:e2:60:69:0e:cf:43:b2:1e:e2:91:5c: 41:eb:ac:c9:29:90:d0:23:e1:14:1d:57:1f:3c:ab: 46:f5:d8:64:70:07:22:c9:28:59:46:3a:55:34:b6: 56:e5:c9:51:ec:16:45:33:8a:e4:77:b9:b5:0a:41: 33:3c:ec:d3:9a:e1:a4:0a:5e:98:a7:96:1a:f3:66: a2:49:8b:6f:67:57:c3:69:a9:38:ca:e2:94:57:13: 5c:59:65:10:cf:51:bf:e3:8a:0c:03:95:5d:0b:e5: ed:6d:3e:02:d3:e9:07:4e:80:dc:9a:91:23:fd:76: 0b:b6:45:04:68:25:d5:46:48:a5:b5:54:a3:db:ef: 72:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:96:19:F3:FC:75:BB:7A:99:CB:98:6E:A6:22:8E:45:2B:71:17:05 X509v3 Authority Key Identifier: keyid:21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:83:be:b1:5e:a4:98:e3:31:dd:fe:3f:28:be:e8:fa:15:7e: 13:e7:0c:e3:23:b1:91:b8:be:92:0b:5f:49:dd:cc:7c:6e:28: 69:85:9f:20:79:82:36:5b:4a:3e:e5:3b:a7:06:5b:82:08:1e: 74:0e:13:cf:99:bc:1b:c6:c2:08:1e:cf:8d:0d:46:2e:4a:d2: 4c:c3:82:90:04:e4:20:b3:69:fa:e4:1c:e7:7d:ab:91:58:32: 95:4b:16:55:55:ec:6f:cd:fc:47:15:60:c5:24:b0:78:e2:44: 15:81:fc:21:ee:fb:e8:a6:15:02:95:4e:8c:06:8c:31:b5:12: 95:76:06:ab:ae:d5:c9:57:3c:90:b8:b8:68:2c:3f:37:f7:5a: 72:f7:74:ea:91:43:78:d9:e9:b5:09:ac:35:bd:1e:b0:b2:65: 19:6c:85:35:0e:a4:5c:1d:7e:07:35:2c:81:19:5d:b0:b1:d7: c5:83:23:90:64:2c:71:fa:20:e6:66:f3:25:80:b8:c0:f7:fa: 7b:d6:12:85:ee:25:7a:23:8f:a0:f1:7e:bb:84:ce:f5:8d:9b: 9e:af:42:1f:7d:4d:54:00:1c:58:08:1e:b8:98:b4:b0:ee:8f: 09:6c:44:66:e8:c6:91:a7:ff:51:54:31:8b:49:41:32:45:ce: fb:cb:4d:b0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MzkzQjExMC8GA1UEBRMoMjFDQkFBQTA0NERFMUE1NjY0NDY5RjQxOEJDRDA4NzdC MjEzOTczQTAeFw0yNDA1MTUwNzI4NDBaFw0yNDA1MjIwNzI4MzlaMBgxFjAUBgNV BAMTDTY2NDQ2NDI4LTNkZjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIx6U1bqMncGKzocsS7O7iSFvvMMotyuw3j9nABzWdtdBSOHW59LxhBhSEflQL UwZU7gaMVmLGaMy2EoSnj+fAWiYICeL/TRTTBELnw96KyXxBUV041Pk0a44sbCjd qAEa8Jm10tnfl0qpxYdvhHgyQd2JectE/qKWqcniYGkOz0OyHuKRXEHrrMkpkNAj 4RQdVx88q0b12GRwByLJKFlGOlU0tlblyVHsFkUziuR3ubUKQTM87NOa4aQKXpin lhrzZqJJi29nV8NpqTjK4pRXE1xZZRDPUb/jigwDlV0L5e1tPgLT6QdOgNyakSP9 dgu2RQRoJdVGSKW1VKPb73JFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXJYZ8/x1 u3qZy5hupiKORStxFwUwHwYDVR0jBBgwFoAUIcuqoETeGlZkRp9Bi80Id7ITlzow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEzOTNCLzY3RDA4QkE4NjI4 QzExRUU5NTY1QjU2OUM0RjlBRTAyL0ljdXFvRVRlR2xaa1JwOUJpODBJZDdJVGx6 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSWN1cW9FVGVHbFprUnA5Qmk4MElkN0lUbHpvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEz OTNCLzY3RDA4QkE4NjI4QzExRUU5NTY1QjU2OUM0RjlBRTAyL0ljdXFvRVRlR2xa a1JwOUJpODBJZDdJVGx6by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIeDvrFepJjjMd3+Pyi+6PoVfhPnDOMjsZG4vpILX0ndzHxuKGmFnyB5 gjZbSj7lO6cGW4IIHnQOE8+ZvBvGwggez40NRi5K0kzDgpAE5CCzafrkHOd9q5FY MpVLFlVV7G/N/EcVYMUksHjiRBWB/CHu++imFQKVTowGjDG1EpV2Bquu1clXPJC4 uGgsPzf3WnL3dOqRQ3jZ6bUJrDW9HrCyZRlshTUOpFwdfgc1LIEZXbCx18WDI5Bk LHH6IOZm8yWAuMD3+nvWEoXuJXojj6DxfruEzvWNm56vQh99TVQAHFgIHriYtLDu jwlsRGboxpGn/1FUMYtJQTJFzvvLTbA= -----END CERTIFICATE-----Generated at Wed May 15 09:27:27 2024 by rpki-client on console-fra.rpki-client.org