$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft File: I9szI90s15w3OFgdQvSrD0mINMI.mft (raw, json) Hash identifier: teKPJ+a8ivLAURncSe1U1YHNZCv59CleqOXU0EVc9lk= Subject key identifier: 0D:42:F5:4A:F5:7A:2D:C3:17:06:7B:C5:65:BF:00:BE:98:E3:03:8E Authority key identifier: 23:DB:33:23:DD:2C:D7:9C:37:38:58:1D:42:F4:AB:0F:49:88:34:C2 Certificate issuer: /CN=A911C28A/serialNumber=23DB3323DD2CD79C3738581D42F4AB0F498834C2 Certificate serial: 04FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft Manifest number: 04F9 Signing time: Fri 03 May 2024 01:21:08 +0000 Manifest this update: Fri 03 May 2024 01:21:07 +0000 Manifest next update: Fri 10 May 2024 01:21:07 +0000 Files and hashes: 1: I9szI90s15w3OFgdQvSrD0mINMI.crl (hash: Yx/mDflTPB4H8zoEZmQ3GOM5dkwUsZ5N5REl79aXX3U=) 2: 2D5E84AAC2A911EBB2025B36C4F9AE02.roa (hash: 8kKco8epgYOitfiYNATdiTXXIm0F9+sBQeBWkQlCEXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.crl rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 01:21:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1277 (0x4fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28A/serialNumber=23DB3323DD2CD79C3738581D42F4AB0F498834C2 Validity Not Before: May 3 01:21:07 2024 GMT Not After : May 10 01:21:07 2024 GMT Subject: CN=66343c03-b699 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:03:a9:8a:af:29:32:6e:25:ad:72:90:3c:d8: 9d:11:57:f0:b8:fa:77:04:6d:8d:fd:d4:26:6c:25: 99:02:b7:73:03:70:04:96:53:62:0c:79:8c:90:07: 5c:5b:b2:56:e4:6c:90:9c:47:1d:0d:4f:30:c0:aa: 6f:e5:06:65:19:1e:35:8b:7f:6e:8c:88:08:1a:9f: 22:6b:75:73:aa:6e:0a:df:17:a8:e6:e8:0a:b5:e5: 55:f4:42:39:20:e0:1f:b1:48:fb:03:25:aa:e3:34: e9:d5:ee:c7:1b:37:1d:59:69:3c:64:fe:14:02:53: 1c:d3:bf:f7:1d:d4:c7:25:21:86:8c:f9:f3:22:ee: 6e:d2:f9:73:3b:6c:69:d2:62:9f:d0:2d:78:0a:9b: de:2d:6f:0d:6c:2f:b6:21:9a:aa:e8:23:a6:45:cd: fa:cf:0f:61:09:b0:23:79:4f:b5:80:73:a2:bc:3f: 15:29:79:40:18:82:a4:41:9b:22:82:16:b4:ae:3a: e0:b5:e8:e7:35:72:3e:d2:55:db:ff:ef:81:78:66: a5:5f:eb:8d:f8:b1:2e:93:b1:84:a7:d8:de:26:15: d2:6b:58:46:cb:aa:04:6b:ef:18:b7:91:87:6e:0a: 9a:c8:48:f0:c2:cd:a0:4f:09:5a:3a:4f:cc:98:d2: a3:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:42:F5:4A:F5:7A:2D:C3:17:06:7B:C5:65:BF:00:BE:98:E3:03:8E X509v3 Authority Key Identifier: keyid:23:DB:33:23:DD:2C:D7:9C:37:38:58:1D:42:F4:AB:0F:49:88:34:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:63:a6:02:95:69:1b:f6:04:6d:58:a3:1c:dc:9c:94:06:b6: 70:dd:fb:a9:38:d0:f0:c3:55:b9:f3:dc:74:f3:60:1a:3c:81: 0b:ff:db:70:82:cb:61:d1:32:da:c6:28:c9:d0:f8:bc:6f:58: 1b:3e:5a:fa:44:4e:40:3a:6a:76:e2:3b:0f:2c:7c:6d:34:d5: ab:41:16:80:df:ad:b9:9e:4b:23:76:5c:2d:e6:5e:9e:45:ce: 70:70:32:d8:ff:a6:22:c7:23:2f:94:23:c4:3d:e5:dd:fc:0c: 67:48:df:81:cf:ce:23:ae:fd:dc:8d:17:43:13:6a:8d:6d:37: e8:34:5d:b4:b1:cd:f8:c6:e0:78:cb:5c:44:9e:32:46:9d:df: 8b:e4:22:bd:98:e9:15:32:d1:f4:05:a9:0a:13:8d:78:d0:46: 5b:68:1b:ac:9c:98:39:cf:60:8f:e5:6a:e4:ce:34:7d:25:ea: 43:f0:4b:24:a4:96:ac:86:d7:0f:55:8c:55:4d:1c:cd:fa:53: 09:56:67:36:f2:3b:a3:b9:ce:b0:b7:d3:a0:cf:91:73:c4:48: b9:ed:16:25:d2:51:e1:8f:fd:68:2c:22:29:2a:03:b3:a9:ab: fd:16:aa:1c:8f:0b:9f:73:1f:00:08:40:23:95:0d:ee:8d:1d: 98:7a:f2:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEExMTAvBgNVBAUTKDIzREIzMzIzREQyQ0Q3OUMzNzM4NTgxRDQyRjRBQjBG NDk4ODM0QzIwHhcNMjQwNTAzMDEyMTA3WhcNMjQwNTEwMDEyMTA3WjAYMRYwFAYD VQQDEw02NjM0M2MwMy1iNjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxAOpiq8pMm4lrXKQPNidEVfwuPp3BG2N/dQmbCWZArdzA3AEllNiDHmMkAdc W7JW5GyQnEcdDU8wwKpv5QZlGR41i39ujIgIGp8ia3Vzqm4K3xeo5ugKteVV9EI5 IOAfsUj7AyWq4zTp1e7HGzcdWWk8ZP4UAlMc07/3HdTHJSGGjPnzIu5u0vlzO2xp 0mKf0C14CpveLW8NbC+2IZqq6COmRc36zw9hCbAjeU+1gHOivD8VKXlAGIKkQZsi gha0rjrgtejnNXI+0lXb/++BeGalX+uN+LEuk7GEp9jeJhXSa1hGy6oEa+8Yt5GH bgqayEjwws2gTwlaOk/MmNKjPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA1C9Ur1 ei3DFwZ7xWW/AL6Y4wOOMB8GA1UdIwQYMBaAFCPbMyPdLNecNzhYHUL0qw9JiDTC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4QS8yQTM1NjZBOEMy QTUxMUVCQjREMzRFMzVDNEY5QUUwMi9JOXN6STkwczE1dzNPRmdkUXZTckQwbUlO TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k5c3pJOTBzMTV3M09GZ2RRdlNyRDBtSU5NSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzI4QS8yQTM1NjZBOEMyQTUxMUVCQjREMzRFMzVDNEY5QUUwMi9JOXN6STkwczE1 dzNPRmdkUXZTckQwbUlOTUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQY6YClWkb9gRtWKMc3JyUBrZw3fupONDww1W589x082AaPIEL/9tw gsth0TLaxijJ0Pi8b1gbPlr6RE5AOmp24jsPLHxtNNWrQRaA3625nksjdlwt5l6e Rc5wcDLY/6YixyMvlCPEPeXd/AxnSN+Bz84jrv3cjRdDE2qNbTfoNF20sc34xuB4 y1xEnjJGnd+L5CK9mOkVMtH0BakKE4140EZbaBusnJg5z2CP5WrkzjR9JepD8Esk pJashtcPVYxVTRzN+lMJVmc28jujuc6wt9Ogz5FzxEi57RYl0lHhj/1oLCIpKgOz qav9Fqocjwufcx8ACEAjlQ3ujR2YevKV -----END CERTIFICATE-----Generated at Fri May 3 04:45:08 2024 by rpki-client on console-fra.rpki-client.org