$ rpki-client -vvf rpki.apnic.net/member_repository/A9114CE7/5B2B131C60CD11ED84F75F4CC4F9AE02/8o1tEcPFVG5CQYGKc7Rw7sptcoM.mft File: 8o1tEcPFVG5CQYGKc7Rw7sptcoM.mft (raw, json) Hash identifier: HP8YfETC0h+TuAaTXxzR3DPdDs6c7TysbPTCkl6hHfI= Subject key identifier: E7:A1:2D:B4:56:2F:0A:26:75:69:AC:A1:4D:AF:FA:44:BE:1A:1C:57 Authority key identifier: F2:8D:6D:11:C3:C5:54:6E:42:41:81:8A:73:B4:70:EE:CA:6D:72:83 Certificate issuer: /CN=A9114CE7/serialNumber=F28D6D11C3C5546E4241818A73B470EECA6D7283 Certificate serial: 011A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8o1tEcPFVG5CQYGKc7Rw7sptcoM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9114CE7/5B2B131C60CD11ED84F75F4CC4F9AE02/8o1tEcPFVG5CQYGKc7Rw7sptcoM.mft Manifest number: 0117 Signing time: Sun 05 May 2024 05:20:33 +0000 Manifest this update: Sun 05 May 2024 05:20:32 +0000 Manifest next update: Sun 12 May 2024 05:20:32 +0000 Files and hashes: 1: 8o1tEcPFVG5CQYGKc7Rw7sptcoM.crl (hash: JguWqu1N+zDOoqOcFYn78YXORc5lTL31vsw3NPmrbss=) 2: 34F0D27CAE8911ED98BE3276C4F9AE02.roa (hash: k95GkiJ2XdxbgDj3SX1TLVKRKHbXA9jZshfxEjAaKyI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9114CE7/5B2B131C60CD11ED84F75F4CC4F9AE02/8o1tEcPFVG5CQYGKc7Rw7sptcoM.crl rsync://rpki.apnic.net/member_repository/A9114CE7/5B2B131C60CD11ED84F75F4CC4F9AE02/8o1tEcPFVG5CQYGKc7Rw7sptcoM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8o1tEcPFVG5CQYGKc7Rw7sptcoM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114CE7/serialNumber=F28D6D11C3C5546E4241818A73B470EECA6D7283 Validity Not Before: May 5 05:20:32 2024 GMT Not After : May 12 05:20:32 2024 GMT Subject: CN=66371721-bb0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f9:6b:ce:4d:bd:07:d5:53:73:a2:55:43:12: f8:87:b4:d5:18:2c:90:ce:fa:ed:16:84:d1:29:20: 72:7e:40:68:f3:23:09:08:47:b7:a0:aa:22:12:24: cf:4a:0c:63:de:d3:72:2b:c3:a0:a3:6c:e6:f7:d4: 71:33:ed:d9:82:dc:e5:b0:57:5c:f2:f0:c6:8c:de: fc:c1:15:1f:79:62:2e:cf:7d:81:df:6e:51:e7:ca: 1a:67:44:d1:86:fa:87:cb:d9:f7:54:3a:a2:42:10: c5:c7:fc:41:d9:b5:4c:1d:b4:29:ef:37:94:37:4a: 60:2a:7c:67:5a:22:f6:1e:ed:c5:e7:3f:34:8b:d7: f7:b7:29:09:5a:78:ea:02:de:ba:2f:7f:4f:67:a2: a6:91:e8:3c:50:83:ab:44:b1:dc:9a:c7:cf:3f:0b: bb:a8:44:60:a6:2e:de:59:79:4a:4f:28:7a:ac:ae: 7b:2c:1d:31:89:a4:79:9d:94:63:b7:d6:5a:9e:63: 17:63:c1:89:3f:0c:ae:88:5f:41:a2:42:b5:91:f7: 9d:96:59:2c:bf:aa:ab:5a:93:1e:a3:0f:2d:00:3b: 60:61:f8:9a:97:a7:9b:0c:f7:f6:20:93:a3:28:85: b5:de:7b:ce:ac:89:eb:71:13:6e:ba:ed:87:fd:e2: 1e:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:A1:2D:B4:56:2F:0A:26:75:69:AC:A1:4D:AF:FA:44:BE:1A:1C:57 X509v3 Authority Key Identifier: keyid:F2:8D:6D:11:C3:C5:54:6E:42:41:81:8A:73:B4:70:EE:CA:6D:72:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9114CE7/5B2B131C60CD11ED84F75F4CC4F9AE02/8o1tEcPFVG5CQYGKc7Rw7sptcoM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8o1tEcPFVG5CQYGKc7Rw7sptcoM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114CE7/5B2B131C60CD11ED84F75F4CC4F9AE02/8o1tEcPFVG5CQYGKc7Rw7sptcoM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:3c:5d:fc:d6:c0:12:61:5e:ef:78:13:35:f0:84:8a:25:fb: 78:d8:d7:f9:43:20:b6:4d:8e:51:3a:24:f2:35:07:5b:22:c7: e5:69:83:28:13:bf:88:49:2f:0b:5c:ad:16:a6:25:1c:7a:4b: 5b:20:2a:07:98:0e:b3:bb:5a:47:85:b6:90:19:52:d5:f5:e8: 11:48:b8:2e:c7:fe:32:1e:ed:b0:9d:85:4c:6b:d3:32:8a:96: a8:83:28:d8:51:d1:70:0a:07:31:f8:0e:0a:a2:b1:90:b9:2e: 7c:30:b4:db:91:c0:eb:1d:45:5a:df:d9:91:2d:07:e3:c8:4e: 73:2e:5d:13:7e:15:e8:b6:e7:88:ce:8d:68:dd:18:15:1f:f7: 76:22:21:a3:0e:48:61:e1:0c:06:77:d8:0a:39:ce:e9:22:96: 07:dd:7e:b5:50:78:bb:5a:10:29:fd:c9:64:15:8c:3d:67:58: 99:45:1c:c8:b9:72:2e:dc:82:22:42:1a:24:e4:03:5f:a8:b4: 23:70:9b:a9:ad:24:3a:92:28:4d:77:b8:0d:7e:19:5c:20:1f: cf:08:e8:50:9e:cc:ff:5a:0e:a6:98:20:2d:05:58:6c:43:a8: 0f:73:38:92:42:d7:90:97:0c:3a:17:7a:44:ac:bd:fb:d4:16: 7d:cb:b0:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTRDRTcxMTAvBgNVBAUTKEYyOEQ2RDExQzNDNTU0NkU0MjQxODE4QTczQjQ3MEVF Q0E2RDcyODMwHhcNMjQwNTA1MDUyMDMyWhcNMjQwNTEyMDUyMDMyWjAYMRYwFAYD VQQDEw02NjM3MTcyMS1iYjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Plrzk29B9VTc6JVQxL4h7TVGCyQzvrtFoTRKSByfkBo8yMJCEe3oKoiEiTP Sgxj3tNyK8Ogo2zm99RxM+3ZgtzlsFdc8vDGjN78wRUfeWIuz32B325R58oaZ0TR hvqHy9n3VDqiQhDFx/xB2bVMHbQp7zeUN0pgKnxnWiL2Hu3F5z80i9f3tykJWnjq At66L39PZ6Kmkeg8UIOrRLHcmsfPPwu7qERgpi7eWXlKTyh6rK57LB0xiaR5nZRj t9ZanmMXY8GJPwyuiF9BokK1kfedllksv6qrWpMeow8tADtgYfial6ebDPf2IJOj KIW13nvOrInrcRNuuu2H/eIefwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOehLbRW LwomdWmsoU2v+kS+GhxXMB8GA1UdIwQYMBaAFPKNbRHDxVRuQkGBinO0cO7KbXKD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNENFNy81QjJCMTMxQzYw Q0QxMUVEODRGNzVGNENDNEY5QUUwMi84bzF0RWNQRlZHNUNRWUdLYzdSdzdzcHRj b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhvMXRFY1BGVkc1Q1FZR0tjN1J3N3NwdGNvTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NENFNy81QjJCMTMxQzYwQ0QxMUVEODRGNzVGNENDNEY5QUUwMi84bzF0RWNQRlZH NUNRWUdLYzdSdzdzcHRjb00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpPF381sASYV7veBM18ISKJft42Nf5QyC2TY5ROiTyNQdbIsflaYMo E7+ISS8LXK0WpiUcektbICoHmA6zu1pHhbaQGVLV9egRSLgux/4yHu2wnYVMa9My ipaogyjYUdFwCgcx+A4KorGQuS58MLTbkcDrHUVa39mRLQfjyE5zLl0TfhXotueI zo1o3RgVH/d2IiGjDkhh4QwGd9gKOc7pIpYH3X61UHi7WhAp/clkFYw9Z1iZRRzI uXIu3IIiQhok5ANfqLQjcJuprSQ6kihNd7gNfhlcIB/PCOhQnsz/Wg6mmCAtBVhs Q6gPcziSQteQlww6F3pErL371BZ9y7AD -----END CERTIFICATE-----Generated at Sun May 5 06:01:17 2024 by rpki-client on console-fra.rpki-client.org