$ rpki-client -vvf rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft File: kI54kDTxhBXYdZwmo0brgQ71pBU.mft (raw, json) Hash identifier: 2BMVciQoVRGqcoqFEk8fe1s6ycBJ66xyygailhSLAuw= Subject key identifier: AA:96:E3:0D:70:8C:64:B7:58:C6:46:0B:A5:15:06:0C:EA:E8:E1:50 Authority key identifier: 90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 Certificate issuer: /CN=A911B4ED/serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Certificate serial: A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft Manifest number: A8 Signing time: Wed 15 May 2024 06:44:16 +0000 Manifest this update: Wed 15 May 2024 06:44:15 +0000 Manifest next update: Wed 22 May 2024 06:44:15 +0000 Files and hashes: 1: kI54kDTxhBXYdZwmo0brgQ71pBU.crl (hash: GVzhekfnMUK2xxi+IRd3/l5xyReR9xhXsJnws7biErc=) 2: 86A2CEB60F3E11EEA4C55465C4F9AE02.roa (hash: 2hsGSCNVZ1Q8oyfK9bt/7mvezeBVzyWoegIp7VxX4yI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 06:44:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B4ED/serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Validity Not Before: May 15 06:44:15 2024 GMT Not After : May 22 06:44:15 2024 GMT Subject: CN=664459bf-0ab1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:dd:a2:f1:df:ab:8c:5f:38:b8:4b:59:9f:5c: 8f:3b:11:be:bc:d6:47:43:01:89:df:5b:c7:fe:6b: e9:9e:59:1d:ea:a8:07:4e:c9:27:6c:a8:27:44:43: 0c:0e:94:fa:ac:80:d7:a3:00:a4:28:31:c8:07:94: d7:15:45:66:3d:70:20:f8:a2:ab:fe:4f:85:ba:61: 47:82:cc:cc:94:02:ff:fc:df:ad:82:cd:28:3c:77: 36:11:79:c5:5f:fc:72:23:35:f3:e7:62:e3:15:74: 36:d9:a7:bb:64:6c:d8:ef:04:06:d1:c7:15:8f:b2: 19:fa:64:14:1d:a1:e5:bd:33:a1:90:02:b7:44:a8: 11:b2:b1:f9:17:39:db:e9:73:7e:bb:f9:14:06:c2: 5c:5f:f8:19:0a:58:4c:22:96:49:13:fa:74:89:8c: 99:97:6f:62:b9:52:ad:4d:dd:a3:dc:d1:f9:df:be: 7e:27:eb:45:2f:9f:ac:a9:1a:07:a6:9a:4f:fa:72: 09:bb:64:85:1b:d8:db:b3:d4:ad:09:07:42:c0:d2: dc:96:59:81:a6:5c:5e:5c:4b:33:62:7f:8f:8e:1e: ae:c4:de:d0:b7:be:1e:6c:f3:2e:68:a0:25:a3:e0: 23:70:df:b8:fc:28:08:30:c9:5d:83:e3:64:c3:6e: af:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:96:E3:0D:70:8C:64:B7:58:C6:46:0B:A5:15:06:0C:EA:E8:E1:50 X509v3 Authority Key Identifier: keyid:90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:80:d5:eb:ee:ea:68:72:9f:e6:6a:cc:00:4a:2c:e6:e1:2d: 5e:94:38:ad:c2:fd:49:3b:e9:da:b5:36:21:3d:98:75:fd:60: 99:fe:88:7f:70:74:bb:7f:44:5a:02:66:f7:87:29:8e:12:77: 66:b7:f2:8b:d0:59:f6:df:3f:ae:b4:84:03:3e:af:69:95:b3: 9d:b7:21:b5:13:2a:5f:06:df:95:74:fc:00:d0:02:69:99:9e: 2b:21:3c:33:71:3f:21:98:54:e9:2d:a0:f4:ad:22:70:48:99: 4a:ed:8a:b0:a1:92:7c:dc:45:9f:23:95:bc:52:29:9c:41:a4: fc:d8:12:67:e9:23:40:a6:c2:28:2e:d9:66:6c:63:a6:6b:9b: 11:29:95:54:9a:c3:be:68:10:b7:1f:6f:ee:b2:d1:9a:76:15: a4:b1:4d:ef:74:57:18:72:be:45:09:25:5d:cc:23:7d:0b:5a: c8:40:6d:87:f2:02:c6:ef:8b:fa:7b:9b:97:6d:05:f0:6e:d4: 63:a1:53:07:c5:d0:d8:e3:fc:25:64:3e:6d:55:13:eb:31:35: 50:96:76:f5:50:9f:69:c8:2c:f2:fc:4d:d6:0d:f2:f5:5f:29: ed:ec:12:9d:48:48:57:72:da:a8:26:c1:c2:25:f5:34:6f:d7: 08:fa:0a:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0RUQxMTAvBgNVBAUTKDkwOEU3ODkwMzRGMTg0MTVEODc1OUMyNkEzNDZFQjgx MEVGNUE0MTUwHhcNMjQwNTE1MDY0NDE1WhcNMjQwNTIyMDY0NDE1WjAYMRYwFAYD VQQDEw02NjQ0NTliZi0wYWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4d2i8d+rjF84uEtZn1yPOxG+vNZHQwGJ31vH/mvpnlkd6qgHTsknbKgnREMM DpT6rIDXowCkKDHIB5TXFUVmPXAg+KKr/k+FumFHgszMlAL//N+tgs0oPHc2EXnF X/xyIzXz52LjFXQ22ae7ZGzY7wQG0ccVj7IZ+mQUHaHlvTOhkAK3RKgRsrH5Fznb 6XN+u/kUBsJcX/gZClhMIpZJE/p0iYyZl29iuVKtTd2j3NH5375+J+tFL5+sqRoH pppP+nIJu2SFG9jbs9StCQdCwNLcllmBplxeXEszYn+Pjh6uxN7Qt74ebPMuaKAl o+AjcN+4/CgIMMldg+Nkw26v9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKqW4w1w jGS3WMZGC6UVBgzq6OFQMB8GA1UdIwQYMBaAFJCOeJA08YQV2HWcJqNG64EO9aQV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjRFRC9GQTRCMEFDNDBG MzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhCWFlkWndtbzBicmdRNzFw QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJNTRrRFR4aEJYWWRad21vMGJyZ1E3MXBCVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjRFRC9GQTRCMEFDNDBGMzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhC WFlkWndtbzBicmdRNzFwQlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBgNXr7upocp/maswASizm4S1elDitwv1JO+natTYhPZh1/WCZ/oh/ cHS7f0RaAmb3hymOEndmt/KL0Fn23z+utIQDPq9plbOdtyG1EypfBt+VdPwA0AJp mZ4rITwzcT8hmFTpLaD0rSJwSJlK7YqwoZJ83EWfI5W8UimcQaT82BJn6SNApsIo LtlmbGOma5sRKZVUmsO+aBC3H2/ustGadhWksU3vdFcYcr5FCSVdzCN9C1rIQG2H 8gLG74v6e5uXbQXwbtRjoVMHxdDY4/wlZD5tVRPrMTVQlnb1UJ9pyCzy/E3WDfL1 Xynt7BKdSEhXctqoJsHCJfU0b9cI+gpK -----END CERTIFICATE-----Generated at Wed May 15 09:27:27 2024 by rpki-client on console-fra.rpki-client.org