$ rpki-client -vvf rpki.apnic.net/member_repository/A911C356/671B7DA6401D11EB8E0CCB5EC4F9AE02/at4O10LYxa-hMzuQNYwGs_6HaIM.mft File: at4O10LYxa-hMzuQNYwGs_6HaIM.mft (raw, json) Hash identifier: oZELDBZ3apo7etkbadPzky5tVCIC3YKf/zWo+qpTA+M= Subject key identifier: E9:E6:08:2D:BB:FD:50:32:A7:E3:91:8B:AE:51:3F:1D:65:7E:1B:B6 Authority key identifier: 6A:DE:0E:D7:42:D8:C5:AF:A1:33:3B:90:35:8C:06:B3:FE:87:68:83 Certificate issuer: /CN=A911C356/serialNumber=6ADE0ED742D8C5AFA1333B90358C06B3FE876883 Certificate serial: 064E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/at4O10LYxa-hMzuQNYwGs_6HaIM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C356/671B7DA6401D11EB8E0CCB5EC4F9AE02/at4O10LYxa-hMzuQNYwGs_6HaIM.mft Manifest number: 0643 Signing time: Thu 02 May 2024 23:50:10 +0000 Manifest this update: Thu 02 May 2024 23:50:09 +0000 Manifest next update: Thu 09 May 2024 23:50:09 +0000 Files and hashes: 1: at4O10LYxa-hMzuQNYwGs_6HaIM.crl (hash: HGpUIv7NElzW4obHLlNb77ycxbmHRyU4GxYqkxppiDQ=) 2: 68894B22402811EB91B49250C4F9AE02.roa (hash: 6IG/vOtJOcSDzoutMB/zf9ko5LbvUlfffG7Cgbr6Gy4=) 3: 86BED34677F011EB9E69B472C4F9AE02.roa (hash: zdi/+1WQskL/04zl/FoLC5faHUhvFiIOPMzm/x+eO30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C356/671B7DA6401D11EB8E0CCB5EC4F9AE02/at4O10LYxa-hMzuQNYwGs_6HaIM.crl rsync://rpki.apnic.net/member_repository/A911C356/671B7DA6401D11EB8E0CCB5EC4F9AE02/at4O10LYxa-hMzuQNYwGs_6HaIM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/at4O10LYxa-hMzuQNYwGs_6HaIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 23:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1614 (0x64e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C356/serialNumber=6ADE0ED742D8C5AFA1333B90358C06B3FE876883 Validity Not Before: May 2 23:50:09 2024 GMT Not After : May 9 23:50:09 2024 GMT Subject: CN=663426b2-bdf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:32:1c:34:84:a4:d2:8b:4f:bc:6c:db:3b:cf: 6a:2f:71:42:f7:59:bd:94:16:d8:d4:dd:7b:ce:fe: 0e:2f:25:66:ec:7d:d1:7c:f1:6c:47:e6:f8:47:57: 13:f1:62:3b:e8:b2:f0:86:4c:e1:5e:fc:77:c6:b8: fc:86:25:d3:d1:be:b8:02:20:0c:05:92:4f:04:eb: 80:dd:5c:a3:6e:2c:63:6f:e6:88:45:18:31:2d:eb: 20:a7:9a:9c:61:49:f0:a6:94:16:1d:d4:a8:64:85: 92:23:7b:d4:64:99:3c:cf:f5:61:2e:7b:1d:38:e2: 88:c5:48:69:48:92:ef:4f:c4:6e:3e:d1:06:ba:cf: 06:d9:0c:f5:38:21:22:8f:55:25:0d:8d:5e:c8:14: 45:e6:72:3e:96:90:5a:0d:04:e5:92:bb:46:c9:31: 6a:e3:27:46:79:1d:47:24:2f:cd:44:fb:a8:a9:df: bd:71:67:0a:7c:67:63:15:2a:3f:e9:b9:65:87:ea: e3:fa:f1:d4:3e:17:f6:76:db:39:65:70:41:4a:71: 0a:cd:c0:b7:78:4b:18:e1:2e:a5:47:7f:5f:04:64: ee:b7:49:cd:86:5b:fc:d4:a6:a1:92:1e:32:a6:2b: 11:28:a3:96:a6:75:d2:7e:7d:a1:c6:8b:d9:3a:76: dc:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:E6:08:2D:BB:FD:50:32:A7:E3:91:8B:AE:51:3F:1D:65:7E:1B:B6 X509v3 Authority Key Identifier: keyid:6A:DE:0E:D7:42:D8:C5:AF:A1:33:3B:90:35:8C:06:B3:FE:87:68:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C356/671B7DA6401D11EB8E0CCB5EC4F9AE02/at4O10LYxa-hMzuQNYwGs_6HaIM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/at4O10LYxa-hMzuQNYwGs_6HaIM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C356/671B7DA6401D11EB8E0CCB5EC4F9AE02/at4O10LYxa-hMzuQNYwGs_6HaIM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e2:43:21:bc:a0:29:a9:14:81:74:43:e1:c2:6a:a7:01:cd:61: ac:dd:62:d6:ac:49:52:ac:55:88:c0:e0:8a:2e:e1:bc:34:7f: fc:9f:fc:9b:c5:36:59:04:db:d8:ab:12:b5:7d:40:d4:15:03: f1:83:dd:b3:9b:88:05:bf:06:7f:6e:6e:6f:88:7a:47:2c:18: f8:65:e0:42:cd:a6:74:69:7e:83:b5:85:94:6b:53:69:4a:2c: 6b:ba:30:20:86:64:9b:8d:c3:4d:8f:ad:70:5f:2e:7b:b7:86: 07:06:aa:47:65:db:1a:b7:84:1d:7b:bd:aa:bc:6b:32:c5:59: 5a:d5:d3:40:93:3d:ef:2d:69:6c:86:87:93:cc:5e:8c:1a:3c: 30:2c:ad:43:c4:8d:11:d2:a0:d5:73:93:a6:ba:c4:b7:22:f9: 45:61:ab:1f:6a:0d:44:59:5c:17:f7:36:ab:79:4c:7d:14:35: 89:25:ad:c7:85:34:92:08:77:11:a2:cf:83:02:96:9d:65:75: 77:95:11:76:ad:76:c8:8a:28:dc:d1:f1:87:f2:bd:17:a7:69: 77:25:8b:88:cd:60:05:93:8c:89:38:2c:a0:bc:88:65:1f:d9: 08:0c:b5:11:3e:04:76:1c:ef:3b:1e:f1:86:6d:f6:e5:cb:8b: 03:f2:b2:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBk4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMzNTYxMTAvBgNVBAUTKDZBREUwRUQ3NDJEOEM1QUZBMTMzM0I5MDM1OEMwNkIz RkU4NzY4ODMwHhcNMjQwNTAyMjM1MDA5WhcNMjQwNTA5MjM1MDA5WjAYMRYwFAYD VQQDEw02NjM0MjZiMi1iZGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjIcNISk0otPvGzbO89qL3FC91m9lBbY1N17zv4OLyVm7H3RfPFsR+b4R1cT 8WI76LLwhkzhXvx3xrj8hiXT0b64AiAMBZJPBOuA3Vyjbixjb+aIRRgxLesgp5qc YUnwppQWHdSoZIWSI3vUZJk8z/VhLnsdOOKIxUhpSJLvT8RuPtEGus8G2Qz1OCEi j1UlDY1eyBRF5nI+lpBaDQTlkrtGyTFq4ydGeR1HJC/NRPuoqd+9cWcKfGdjFSo/ 6bllh+rj+vHUPhf2dts5ZXBBSnEKzcC3eEsY4S6lR39fBGTut0nNhlv81Kahkh4y pisRKKOWpnXSfn2hxovZOnbcuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOnmCC27 /VAyp+ORi65RPx1lfhu2MB8GA1UdIwQYMBaAFGreDtdC2MWvoTM7kDWMBrP+h2iD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzM1Ni82NzFCN0RBNjQw MUQxMUVCOEUwQ0NCNUVDNEY5QUUwMi9hdDRPMTBMWXhhLWhNenVRTll3R3NfNkhh SU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2F0NE8xMExZeGEtaE16dVFOWXdHc182SGFJTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzM1Ni82NzFCN0RBNjQwMUQxMUVCOEUwQ0NCNUVDNEY5QUUwMi9hdDRPMTBMWXhh LWhNenVRTll3R3NfNkhhSU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDiQyG8oCmpFIF0Q+HCaqcBzWGs3WLWrElSrFWIwOCKLuG8NH/8n/yb xTZZBNvYqxK1fUDUFQPxg92zm4gFvwZ/bm5viHpHLBj4ZeBCzaZ0aX6DtYWUa1Np SixrujAghmSbjcNNj61wXy57t4YHBqpHZdsat4Qde72qvGsyxVla1dNAkz3vLWls hoeTzF6MGjwwLK1DxI0R0qDVc5OmusS3IvlFYasfag1EWVwX9zareUx9FDWJJa3H hTSSCHcRos+DApadZXV3lRF2rXbIiijc0fGH8r0Xp2l3JYuIzWAFk4yJOCygvIhl H9kIDLURPgR2HO87HvGGbfbly4sD8rIX -----END CERTIFICATE-----Generated at Fri May 3 00:28:36 2024 by rpki-client on console-fra.rpki-client.org