$ rpki-client -vvf rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft File: i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft (raw, json) Hash identifier: Md7zryfxL0KsTll2GJ/dCVFIazq5qPSZhM7+ClPM98k= Subject key identifier: BD:D7:3A:75:A2:28:7E:1B:85:96:E8:30:27:30:63:04:B8:7F:CB:85 Authority key identifier: 8B:A9:4E:24:4C:87:03:E2:E2:12:45:6B:98:71:B3:C8:2D:50:70:9C Certificate issuer: /CN=A9116E68/serialNumber=8BA94E244C8703E2E212456B9871B3C82D50709C Certificate serial: 47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6lOJEyHA-LiEkVrmHGzyC1QcJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft Manifest number: 45 Signing time: Wed 15 May 2024 08:10:55 +0000 Manifest this update: Wed 15 May 2024 08:10:54 +0000 Manifest next update: Wed 22 May 2024 08:10:54 +0000 Files and hashes: 1: i6lOJEyHA-LiEkVrmHGzyC1QcJw.crl (hash: msQgJyul9NP8m4ahPTkL8s97lCeM72LsULcHjqKgcDA=) 2: 2601A296AE1011EE92B7161BC4F9AE02.roa (hash: Q9BAL6epupu20AGfMtifky/Z08LCKLMPntK7hc+eQCs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.crl rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6lOJEyHA-LiEkVrmHGzyC1QcJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:10:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116E68/serialNumber=8BA94E244C8703E2E212456B9871B3C82D50709C Validity Not Before: May 15 08:10:54 2024 GMT Not After : May 22 08:10:54 2024 GMT Subject: CN=66446e0e-5746 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:28:f9:f8:51:88:ef:7b:7e:3e:ab:ac:e9:2e: ed:c4:14:a7:53:fd:e9:aa:36:b0:54:70:e5:c9:3d: 40:0b:b4:69:5f:25:b2:a6:e4:ed:24:fb:8a:04:b5: 11:98:ef:53:bd:3a:d6:8f:e4:9d:9e:17:de:03:e9: 69:50:56:4c:b3:85:a9:30:33:93:67:9a:98:fc:57: 29:8e:c9:bb:8f:ff:e3:b3:78:a3:b7:5d:29:1e:90: 49:5c:c5:67:78:10:3a:ac:45:5e:58:37:36:65:e6: dc:29:30:e0:da:21:b0:cd:97:0f:24:07:0b:ae:89: 60:3e:d4:29:f3:ea:f7:2d:22:37:27:47:b7:30:7e: 60:a1:78:75:c9:51:7d:ed:7f:d5:92:ad:03:2f:48: 18:02:59:79:02:b8:8d:24:f3:15:1c:e0:1e:74:96: 3b:ac:72:31:ae:f8:98:86:db:bc:65:5c:c8:ca:97: 1f:b5:14:c8:a4:8e:18:c2:dd:99:f9:eb:5f:ce:ee: 14:60:d7:a6:28:2c:9d:a3:ef:9b:3e:29:5e:01:37: 03:33:4a:34:50:a7:f9:87:15:18:a6:d4:f7:c1:e6: 41:11:8a:82:77:a5:94:15:39:8d:05:57:99:d4:9e: 9c:16:4b:30:29:1e:8a:f1:12:7b:6f:5b:16:f3:65: cb:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:D7:3A:75:A2:28:7E:1B:85:96:E8:30:27:30:63:04:B8:7F:CB:85 X509v3 Authority Key Identifier: keyid:8B:A9:4E:24:4C:87:03:E2:E2:12:45:6B:98:71:B3:C8:2D:50:70:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6lOJEyHA-LiEkVrmHGzyC1QcJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:09:7e:c7:30:bc:76:b9:09:20:ff:8d:5a:de:15:6f:7a:b8: 04:02:02:62:02:71:d1:0e:2d:e2:e2:3d:b4:8c:1d:b8:39:95: e1:41:cd:9f:a1:e4:70:75:79:a8:b2:87:37:f8:2b:2a:09:1c: 99:1b:56:e6:06:1a:4a:d5:5a:a7:be:e9:69:b7:7b:47:9b:dd: 0c:63:67:f3:6d:e5:bf:b2:55:a9:55:88:78:5e:a3:69:95:15: ab:ee:6f:d0:12:68:23:80:af:3f:b8:bf:81:16:96:85:1f:d5: 9e:f2:09:fe:f4:21:7f:a2:55:ee:f1:6c:b2:14:9b:6d:03:80: b7:9b:d8:2e:e4:8a:ae:cc:6b:40:61:dd:ef:6b:a2:1e:b8:c0: c1:f9:92:d3:af:3e:7f:21:28:1c:65:4f:b4:bd:b2:7b:96:fb: 4c:ad:74:f5:eb:8c:5b:f6:4b:9e:9d:3a:86:d6:88:80:a2:a6: 10:6c:fb:50:4a:4d:d8:5b:a3:3f:bf:86:6d:6a:71:58:33:ed: 5e:7f:98:71:2f:b1:3c:29:12:2f:73:7c:cd:eb:df:08:34:d6: 23:98:ad:fc:81:30:91:85:2a:34:9d:e6:71:f4:39:b6:d0:be: 7b:c6:7e:69:19:a1:7c:6b:6d:79:1a:9b:f6:14:d5:27:24:1b: 79:49:88:9a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NkU2ODExMC8GA1UEBRMoOEJBOTRFMjQ0Qzg3MDNFMkUyMTI0NTZCOTg3MUIzQzgy RDUwNzA5QzAeFw0yNDA1MTUwODEwNTRaFw0yNDA1MjIwODEwNTRaMBgxFjAUBgNV BAMTDTY2NDQ2ZTBlLTU3NDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9KPn4UYjve34+q6zpLu3EFKdT/emqNrBUcOXJPUALtGlfJbKm5O0k+4oEtRGY 71O9OtaP5J2eF94D6WlQVkyzhakwM5Nnmpj8VymOybuP/+OzeKO3XSkekElcxWd4 EDqsRV5YNzZl5twpMODaIbDNlw8kBwuuiWA+1Cnz6vctIjcnR7cwfmCheHXJUX3t f9WSrQMvSBgCWXkCuI0k8xUc4B50ljuscjGu+JiG27xlXMjKlx+1FMikjhjC3Zn5 61/O7hRg16YoLJ2j75s+KV4BNwMzSjRQp/mHFRim1PfB5kERioJ3pZQVOY0FV5nU npwWSzApHorxEntvWxbzZcspAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvdc6daIo fhuFlugwJzBjBLh/y4UwHwYDVR0jBBgwFoAUi6lOJEyHA+LiEkVrmHGzyC1QcJww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE2RTY4L0QyQkFBQzRBQUUw RjExRUVBN0FDOTQxQUM0RjlBRTAyL2k2bE9KRXlIQS1MaUVrVnJtSEd6eUMxUWNK dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaTZsT0pFeUhBLUxpRWtWcm1IR3p5QzFRY0p3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE2 RTY4L0QyQkFBQzRBQUUwRjExRUVBN0FDOTQxQUM0RjlBRTAyL2k2bE9KRXlIQS1M aUVrVnJtSEd6eUMxUWNKdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGEJfscwvHa5CSD/jVreFW96uAQCAmICcdEOLeLiPbSMHbg5leFBzZ+h 5HB1eaiyhzf4KyoJHJkbVuYGGkrVWqe+6Wm3e0eb3QxjZ/Nt5b+yValViHheo2mV Favub9ASaCOArz+4v4EWloUf1Z7yCf70IX+iVe7xbLIUm20DgLeb2C7kiq7Ma0Bh 3e9roh64wMH5ktOvPn8hKBxlT7S9snuW+0ytdPXrjFv2S56dOobWiICiphBs+1BK Tdhboz+/hm1qcVgz7V5/mHEvsTwpEi9zfM3r3wg01iOYrfyBMJGFKjSd5nH0ObbQ vnvGfmkZoXxrbXkam/YU1SckG3lJiJo= -----END CERTIFICATE-----Generated at Wed May 15 09:27:27 2024 by rpki-client on console-fra.rpki-client.org