$ rpki-client -vvf rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft File: 2WQZRdW0z31j_JExr89yeuNtkCA.mft (raw, json) Hash identifier: t92zCa3tx0gvEJcRyj4x+qaPyJvE3LFnu4A6UiW0MrY= Subject key identifier: DD:51:C8:FE:F9:64:1D:63:61:E5:2E:2C:B1:F7:AF:6B:74:B7:1E:80 Authority key identifier: D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 Certificate issuer: /CN=A911F316/serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Certificate serial: 0111 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft Manifest number: 010A Signing time: Wed 01 May 2024 05:47:27 +0000 Manifest this update: Wed 01 May 2024 05:47:26 +0000 Manifest next update: Wed 08 May 2024 05:47:26 +0000 Files and hashes: 1: 2WQZRdW0z31j_JExr89yeuNtkCA.crl (hash: PgyPu90Nh3ogEJEm09UA4gopEWSjcKF01Fpw2WSxoYs=) 2: 15714ED2776A11ED98AF7341C4F9AE02.roa (hash: SP43dDj0TP2AuH+ERwKOivn1jA5dt4mXL5sQptk/Mvw=) 3: 77490C9A792F11EEBF849942C4F9AE02.roa (hash: SW94V8FK+wh3g2owH4FSTBAuPQXa1Wqrh4t/o9T94fQ=) 4: 590A6A9A792E11EEA5AAB840C4F9AE02.roa (hash: J+eUq7xSVl/ftHVow0zUjtY1Um3ErdEi7ydMTSgX11Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 05:47:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F316/serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Validity Not Before: May 1 05:47:26 2024 GMT Not After : May 8 05:47:26 2024 GMT Subject: CN=6631d76e-915c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:65:1f:21:b1:57:42:72:c0:ca:bb:9f:66:01: 37:60:2c:09:97:2e:82:ba:c4:1a:7d:9a:cb:f6:66: 2e:4d:97:fe:bd:67:1e:d2:b9:ea:d7:a2:0f:ec:b5: 11:43:98:6b:89:f0:fd:8e:9b:d2:87:79:2b:b8:cb: 02:98:81:46:92:4d:2b:ac:63:de:2f:d1:32:38:92: ca:ea:82:7e:e6:e5:2b:87:ce:af:d7:85:df:51:4c: a1:7c:0d:0c:a2:90:6a:06:c2:3c:d8:3e:13:d4:25: 0f:99:57:34:41:e3:08:ef:67:cb:35:71:c6:f9:fc: 94:01:b8:2e:91:c9:ae:dd:55:6f:fd:7e:e4:a5:3f: 49:e2:31:25:78:74:89:b4:f8:bf:b2:28:66:97:79: 7d:f8:59:50:12:4a:e4:33:42:57:11:aa:ae:6c:3b: 14:a8:b3:ef:b3:36:91:f4:b9:01:6b:f7:39:15:35: a0:5d:28:42:40:4c:5c:5b:cd:d3:6b:5a:32:ae:73: fb:54:2f:fe:c5:ea:6f:e9:44:77:c4:bf:c9:c6:e6: 66:20:96:35:7c:fd:a7:b6:d7:af:24:39:17:62:0b: fb:88:66:31:a4:c8:91:23:0d:6e:8d:38:ba:3f:98: f1:a2:8d:b3:29:66:f0:6b:80:6e:cd:2c:30:bf:68: 10:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:51:C8:FE:F9:64:1D:63:61:E5:2E:2C:B1:F7:AF:6B:74:B7:1E:80 X509v3 Authority Key Identifier: keyid:D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:59:cb:6e:99:c5:e7:fd:5f:3a:3b:3d:ff:45:75:8f:19:42: e4:15:5f:1a:bd:f6:82:10:11:7b:25:d3:35:c8:a1:a7:4e:82: 3b:ab:dd:c6:0f:71:29:df:f8:a7:a5:87:45:6c:7f:99:b8:4c: 13:e9:5f:30:75:4f:dc:9a:1c:34:39:12:99:61:96:81:d4:1f: d2:79:6a:7e:67:18:70:b1:7d:e6:66:70:f4:f1:aa:5f:5a:90: e6:a9:6c:f2:43:62:c0:18:35:c0:94:59:76:6f:66:0c:aa:59: 08:f0:3f:3f:94:e5:7b:c1:22:b1:4a:8f:4a:7f:4e:9c:c6:48: 69:4d:3c:db:39:ff:6f:83:97:da:d0:0e:b3:15:6b:0d:ea:80: 96:ba:d2:68:6b:f7:e2:42:13:3a:20:27:c0:36:39:b2:3b:83: 52:0e:e9:54:d2:26:c8:ad:d4:a8:a1:15:0a:3c:95:a7:fc:ea: 3f:e5:52:6a:75:bb:e3:a3:e8:bb:de:da:5b:64:e2:78:d6:a3: 7a:15:3d:57:f5:97:7e:d3:dd:51:01:57:1c:0a:dc:70:8c:ae: cf:5e:47:b5:bb:77:ae:6c:56:d4:22:15:59:ec:c0:ea:ba:3c: cf:84:53:3d:a0:b1:d3:d8:db:aa:59:6a:20:58:5f:3e:df:35: e2:2a:8a:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYzMTYxMTAvBgNVBAUTKEQ5NjQxOTQ1RDVCNENGN0Q2M0ZDOTEzMUFGQ0Y3MjdB RTM2RDkwMjAwHhcNMjQwNTAxMDU0NzI2WhcNMjQwNTA4MDU0NzI2WjAYMRYwFAYD VQQDEw02NjMxZDc2ZS05MTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApWUfIbFXQnLAyrufZgE3YCwJly6CusQafZrL9mYuTZf+vWce0rnq16IP7LUR Q5hrifD9jpvSh3kruMsCmIFGkk0rrGPeL9EyOJLK6oJ+5uUrh86v14XfUUyhfA0M opBqBsI82D4T1CUPmVc0QeMI72fLNXHG+fyUAbgukcmu3VVv/X7kpT9J4jEleHSJ tPi/sihml3l9+FlQEkrkM0JXEaqubDsUqLPvszaR9LkBa/c5FTWgXShCQExcW83T a1oyrnP7VC/+xepv6UR3xL/JxuZmIJY1fP2nttevJDkXYgv7iGYxpMiRIw1ujTi6 P5jxoo2zKWbwa4BuzSwwv2gQQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN1RyP75 ZB1jYeUuLLH3r2t0tx6AMB8GA1UdIwQYMBaAFNlkGUXVtM99Y/yRMa/PcnrjbZAg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjMxNi9BMURGMTUyMDc3 NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHozMWpfSkV4cjg5eWV1TnRr Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJXUVpSZFcwejMxal9KRXhyODl5ZXVOdGtDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjMxNi9BMURGMTUyMDc3NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHoz MWpfSkV4cjg5eWV1TnRrQ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCWctumcXn/V86Oz3/RXWPGULkFV8avfaCEBF7JdM1yKGnToI7q93G D3Ep3/inpYdFbH+ZuEwT6V8wdU/cmhw0ORKZYZaB1B/SeWp+ZxhwsX3mZnD08apf WpDmqWzyQ2LAGDXAlFl2b2YMqlkI8D8/lOV7wSKxSo9Kf06cxkhpTTzbOf9vg5fa 0A6zFWsN6oCWutJoa/fiQhM6ICfANjmyO4NSDulU0ibIrdSooRUKPJWn/Oo/5VJq dbvjo+i73tpbZOJ41qN6FT1X9Zd+091RAVccCtxwjK7PXke1u3eubFbUIhVZ7MDq ujzPhFM9oLHT2NuqWWogWF8+3zXiKooW -----END CERTIFICATE-----Generated at Wed May 1 07:06:27 2024 by rpki-client on console-fra.rpki-client.org