$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft File: 5D3SMzFr8OKboG0g3sJdtMwRbgg.mft (raw, json) Hash identifier: qI+p/vLJFEOTxYZ4hri4m0FY2EXOJNgu86oYv3ewX04= Subject key identifier: D3:EB:E2:1B:39:4A:C2:2E:8D:20:48:55:7D:17:0F:49:44:E7:61:51 Authority key identifier: E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 Certificate issuer: /CN=A9120AC1/serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Certificate serial: 03F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft Manifest number: 03EA Signing time: Tue 07 May 2024 02:14:40 +0000 Manifest this update: Tue 07 May 2024 02:14:40 +0000 Manifest next update: Tue 14 May 2024 02:14:40 +0000 Files and hashes: 1: 5D3SMzFr8OKboG0g3sJdtMwRbgg.crl (hash: nSb4VglX9bd45mq2mw3lEQm38sK4L//KjIwjUXXyEH8=) 2: 3A2A80AE3C8311ECA86D031EC4F9AE02.roa (hash: ajpvJcJk2hIGJtK47b/oFETGJ6AH8R2N0nzWfcugHow=) 3: ECC109EA3C8811EC889B9D78C4F9AE02.roa (hash: XrzDpLQm0V+9lneCAa/NLIKLtQrYT59YvNC+sD19lgk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 20:40:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1011 (0x3f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1/serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Validity Not Before: May 7 02:14:40 2024 GMT Not After : May 14 02:14:40 2024 GMT Subject: CN=66398e90-febf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:03:59:97:8e:c4:8a:ed:b1:3f:61:fb:d0:b9: 3d:fe:44:1c:96:7f:40:c7:b7:8c:59:de:da:1d:3a: 32:54:93:df:1d:0a:6c:38:fa:e8:4f:53:61:b0:25: 4c:52:43:69:74:98:2f:9b:5d:23:07:6b:59:5e:d8: 37:2d:96:13:32:e3:b3:9b:cf:48:89:2a:f1:4a:2f: 06:f8:44:f5:10:91:68:cd:62:e9:97:fd:61:ef:55: 60:cd:3d:be:bc:f7:7a:f7:ea:3f:44:65:f2:39:a0: cb:0e:bc:3c:31:bb:2e:36:33:09:c1:ba:85:9a:67: 0e:7f:f1:ab:75:46:1f:0e:62:83:80:8a:08:18:22: 61:33:d3:1b:7e:b0:23:6e:fc:44:0e:49:e2:5c:81: ae:86:13:af:48:9c:19:2f:95:03:e8:e2:8c:50:89: 0d:a9:98:a0:2c:bd:8b:68:db:e4:12:1b:57:2a:65: f6:58:a4:ac:56:0f:42:12:ce:e0:8b:d8:63:80:10: 78:dd:45:ac:e1:21:4f:b8:04:8e:fe:c3:4a:44:ed: 48:7c:91:95:8a:fa:b5:7d:fd:d0:4f:e5:7e:1f:bc: 31:e0:fa:16:ba:e3:23:10:63:58:63:14:e8:44:72: a7:60:45:02:46:26:e7:33:6c:bc:97:d3:4c:a4:32: 85:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:EB:E2:1B:39:4A:C2:2E:8D:20:48:55:7D:17:0F:49:44:E7:61:51 X509v3 Authority Key Identifier: keyid:E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:11:a4:54:6d:00:16:3f:31:98:c5:33:90:08:4e:a4:cd:67: 9c:e6:1a:8f:ba:c4:34:04:4e:81:be:55:f2:94:ee:3a:02:46: b1:9c:af:20:36:dd:14:1c:14:b0:22:c4:aa:96:02:e1:dd:47: 95:38:6f:a6:e1:13:1b:ca:18:ba:ed:0a:b0:e0:57:31:75:6e: dc:37:9d:6b:c8:3d:25:1c:f8:87:22:32:27:51:84:54:c5:9b: 7c:b2:43:4b:e6:1a:29:4b:f2:c3:e6:8a:00:71:82:3c:0c:a7: 68:7e:d6:c3:06:7f:dd:75:3e:7e:bd:de:e8:c9:d7:68:92:ac: c8:3e:03:54:c0:c3:9f:cc:16:0c:b7:37:d8:e0:e4:dd:a5:6f: 4e:6b:a7:9a:65:ba:31:9b:d1:e7:2f:f4:e4:9a:8f:8a:02:73: ff:79:c2:83:53:0e:5a:44:0f:c5:91:3a:af:34:df:5b:2d:8a: 3d:2c:ad:ff:8d:68:a2:27:ee:12:f5:b2:65:11:9e:4b:96:50: 19:a7:85:ba:f1:9c:3f:7d:99:7d:75:01:a1:26:5e:58:57:6c: 60:56:6e:31:25:a1:34:0d:61:55:ae:11:ae:b4:ec:c1:ab:28: 17:85:a1:6d:17:4a:bd:a5:e6:39:06:6a:1c:54:02:d9:98:24: 2d:5d:0e:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKEU0M0REMjMzMzE2QkYwRTI5QkEwNkQyMERFQzI1REI0 Q0MxMTZFMDgwHhcNMjQwNTA3MDIxNDQwWhcNMjQwNTE0MDIxNDQwWjAYMRYwFAYD VQQDEw02NjM5OGU5MC1mZWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtANZl47Eiu2xP2H70Lk9/kQcln9Ax7eMWd7aHToyVJPfHQpsOProT1NhsCVM UkNpdJgvm10jB2tZXtg3LZYTMuOzm89IiSrxSi8G+ET1EJFozWLpl/1h71VgzT2+ vPd69+o/RGXyOaDLDrw8MbsuNjMJwbqFmmcOf/GrdUYfDmKDgIoIGCJhM9MbfrAj bvxEDkniXIGuhhOvSJwZL5UD6OKMUIkNqZigLL2LaNvkEhtXKmX2WKSsVg9CEs7g i9hjgBB43UWs4SFPuASO/sNKRO1IfJGVivq1ff3QT+V+H7wx4PoWuuMjEGNYYxTo RHKnYEUCRibnM2y8l9NMpDKFHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNPr4hs5 SsIujSBIVX0XD0lE52FRMB8GA1UdIwQYMBaAFOQ90jMxa/Dim6BtIN7CXbTMEW4I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zRTlBNEFFMDMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhPS2JvRzBnM3NKZHRNd1Ji Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVEM1NNekZyOE9LYm9HMGczc0pkdE13UmJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zRTlBNEFFMDMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhP S2JvRzBnM3NKZHRNd1JiZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuEaRUbQAWPzGYxTOQCE6kzWec5hqPusQ0BE6BvlXylO46AkaxnK8g Nt0UHBSwIsSqlgLh3UeVOG+m4RMbyhi67Qqw4FcxdW7cN51ryD0lHPiHIjInUYRU xZt8skNL5hopS/LD5ooAcYI8DKdoftbDBn/ddT5+vd7oyddokqzIPgNUwMOfzBYM tzfY4OTdpW9Oa6eaZboxm9HnL/Tkmo+KAnP/ecKDUw5aRA/FkTqvNN9bLYo9LK3/ jWiiJ+4S9bJlEZ5LllAZp4W68Zw/fZl9dQGhJl5YV2xgVm4xJaE0DWFVrhGutOzB qygXhaFtF0q9peY5BmocVALZmCQtXQ6m -----END CERTIFICATE-----Generated at Tue May 7 03:12:17 2024 by rpki-client on console-fra.rpki-client.org