$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft File: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft (raw, json) Hash identifier: i/QX4kNxMWdJ0vBibpqmq92BrprO0v5mA3KyDxwD94M= Subject key identifier: A9:02:47:B6:81:BB:34:55:C9:D6:F7:8D:D1:E9:7D:55:A4:21:B8:B9 Authority key identifier: 77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 Certificate issuer: /CN=A9120AC1/serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Certificate serial: 03FA Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft Manifest number: 03F2 Signing time: Mon 27 May 2024 02:20:34 +0000 Manifest this update: Mon 27 May 2024 02:20:33 +0000 Manifest next update: Mon 03 Jun 2024 02:20:33 +0000 Files and hashes: 1: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl (hash: hftrOx5zIJEu6Lau3QDIYKIGKcdBTynI+wROn9p1mAU=) 2: B5AC177E3E0411ECABD9496CC4F9AE02.roa (hash: xSQuICqEftDO2jVAN6yCIdaEpdEAXBTf0APY5z9yvHA=) 3: EBF4C0063C8811EC889B9D78C4F9AE02.roa (hash: x9h06qfhNpw9HDsZ2fx+rNHJ0LpcCakerBbSGHozgRQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 21:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1018 (0x3fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1/serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Validity Not Before: May 27 02:20:33 2024 GMT Not After : Jun 3 02:20:33 2024 GMT Subject: CN=6653edf2-1ea4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:5d:b1:c7:56:fd:9c:2f:6b:62:c2:06:57:f1: d2:bd:bb:9a:b9:6c:92:3d:00:aa:f8:28:d1:fd:2b: d0:01:63:b1:fd:50:e9:93:6e:ae:81:c5:5a:77:b4: 62:f9:0a:c1:3f:61:af:7f:3f:de:e6:54:a6:b7:95: 0e:5a:0e:a1:29:e1:25:3c:c5:9f:b9:a9:3b:0e:75: 23:2f:69:3e:63:39:67:54:a3:10:e2:f4:42:e4:89: 14:d2:1e:b5:13:b8:1c:1f:ae:19:51:d0:61:84:73: 49:e4:ba:89:d2:ca:61:74:44:1a:a5:7c:b6:a6:9b: d6:fd:1f:a9:17:a0:22:eb:ba:ff:93:55:1c:16:d1: 14:b3:18:e8:83:57:cd:39:c9:e1:06:4d:a1:a2:b9: 7e:92:61:a8:7f:ef:06:7c:52:62:72:fc:d8:31:11: ba:b2:4e:2c:49:19:37:24:aa:47:71:67:0c:64:63: 5d:c5:c4:d6:69:99:b8:a7:ef:2e:39:1a:74:f0:0f: 2f:06:0e:e8:2b:d8:29:e1:96:19:62:e3:c4:22:33: 74:0a:41:39:2a:fb:e8:0f:30:eb:c9:2f:9a:ac:c1: 59:7a:dd:f4:30:05:21:44:92:35:a7:f3:78:e9:5f: 2b:e7:c2:3b:11:ea:df:f6:8f:3a:92:43:30:a7:73: ac:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:02:47:B6:81:BB:34:55:C9:D6:F7:8D:D1:E9:7D:55:A4:21:B8:B9 X509v3 Authority Key Identifier: keyid:77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:67:3c:48:2e:1d:4a:cc:ec:21:30:a9:c9:d1:bb:72:99:c6: eb:a1:5b:67:89:99:ba:19:3c:d8:fb:3f:31:ef:d1:62:f3:9a: 7e:89:c1:1e:71:d0:03:b7:49:4e:e2:97:89:97:e5:f6:cd:58: f6:a1:b4:48:70:f5:21:d4:a0:e9:ce:56:b5:41:b5:de:a8:61: da:29:82:61:51:09:5e:24:6c:4a:ef:ad:1e:9a:c3:2d:d4:c7: c3:08:62:e5:43:a8:81:b3:f6:4e:bb:c7:c9:e4:bd:47:37:ff: e0:c1:95:bd:cb:a7:43:55:54:9a:e4:18:c8:52:46:77:f7:e8: 40:e1:e9:ff:0c:ef:f4:65:d1:f0:a9:12:6d:07:a4:e3:44:e1: 79:49:b6:25:73:37:79:91:f9:87:0b:75:87:d8:76:bf:b9:5d: 20:55:5b:2e:ef:17:d8:59:a1:9f:69:41:5a:2f:f1:98:50:6b: 61:72:82:12:84:4a:c1:4b:56:2a:3f:c0:6c:15:7f:e7:6d:45: f7:56:00:79:c5:28:29:92:0b:b7:12:61:d7:60:60:26:ce:50: ec:c5:d3:4d:31:98:2c:0d:f2:eb:a5:51:ca:2c:a4:38:1c:7a: 0b:9d:a8:b7:cd:c9:d0:a8:a6:72:3f:fc:da:d7:44:0c:24:9d: 62:dd:78:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKDc3NDBDRTBFNkNEMDU0QzQzMkRFNDZENEMzRURBMTRG NjQyRkRBMTQwHhcNMjQwNTI3MDIyMDMzWhcNMjQwNjAzMDIyMDMzWjAYMRYwFAYD VQQDEw02NjUzZWRmMi0xZWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApl2xx1b9nC9rYsIGV/HSvbuauWySPQCq+CjR/SvQAWOx/VDpk26ugcVad7Ri +QrBP2Gvfz/e5lSmt5UOWg6hKeElPMWfuak7DnUjL2k+YzlnVKMQ4vRC5IkU0h61 E7gcH64ZUdBhhHNJ5LqJ0sphdEQapXy2ppvW/R+pF6Ai67r/k1UcFtEUsxjog1fN OcnhBk2horl+kmGof+8GfFJicvzYMRG6sk4sSRk3JKpHcWcMZGNdxcTWaZm4p+8u ORp08A8vBg7oK9gp4ZYZYuPEIjN0CkE5KvvoDzDryS+arMFZet30MAUhRJI1p/N4 6V8r58I7Eerf9o86kkMwp3OsawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKkCR7aB uzRVydb3jdHpfVWkIbi5MB8GA1UdIwQYMBaAFHdAzg5s0FTEMt5G1MPtoU9kL9oU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zNTkwNjVBNjMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZNUXkza2JVdy0yaFQyUXYy aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2QwRE9EbXpRVk1ReTNrYlV3LTJoVDJRdjJoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zNTkwNjVBNjMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZN UXkza2JVdy0yaFQyUXYyaFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBZzxILh1KzOwhMKnJ0btymcbroVtniZm6GTzY+z8x79Fi85p+icEe cdADt0lO4peJl+X2zVj2obRIcPUh1KDpzla1QbXeqGHaKYJhUQleJGxK760emsMt 1MfDCGLlQ6iBs/ZOu8fJ5L1HN//gwZW9y6dDVVSa5BjIUkZ39+hA4en/DO/0ZdHw qRJtB6TjROF5SbYlczd5kfmHC3WH2Ha/uV0gVVsu7xfYWaGfaUFaL/GYUGthcoIS hErBS1YqP8BsFX/nbUX3VgB5xSgpkgu3EmHXYGAmzlDsxdNNMZgsDfLrpVHKLKQ4 HHoLnai3zcnQqKZyP/za10QMJJ1i3XgJ -----END CERTIFICATE-----Generated at Mon May 27 02:57:01 2024 by rpki-client on console-fra.rpki-client.org