$ rpki-client -vvf rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft File: EK5_oM-c-qh-uthEzYxCasHDpec.mft (raw, json) Hash identifier: c6Wk//lDmW1KqhcD5REnuVzUqf/LTSMG/tGCoH+frUg= Subject key identifier: C8:DD:7C:27:0B:28:22:CF:65:D6:C0:EE:05:4B:1E:AD:72:73:49:B3 Authority key identifier: 10:AE:7F:A0:CF:9C:FA:A8:7E:BA:D8:44:CD:8C:42:6A:C1:C3:A5:E7 Certificate issuer: /CN=A9123BFF/serialNumber=10AE7FA0CF9CFAA87EBAD844CD8C426AC1C3A5E7 Certificate serial: 1FA6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft Manifest number: 1FA0 Signing time: Tue 30 Apr 2024 16:26:17 +0000 Manifest this update: Tue 30 Apr 2024 16:26:17 +0000 Manifest next update: Tue 07 May 2024 16:26:17 +0000 Files and hashes: 1: EK5_oM-c-qh-uthEzYxCasHDpec.crl (hash: zD99yPq90cyZDDZz4osjCt6cALhwxq8qoZNJ4UJZoEc=) 2: 449C08948D1211EBB9548186C4F9AE02.roa (hash: Tx1iyPKxVVzneB6y596Tpz986DLshgdMdH2hVwIv26Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.crl rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 16:26:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8102 (0x1fa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123BFF/serialNumber=10AE7FA0CF9CFAA87EBAD844CD8C426AC1C3A5E7 Validity Not Before: Apr 30 16:26:17 2024 GMT Not After : May 7 16:26:17 2024 GMT Subject: CN=66311ba9-666b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:9c:c0:a2:b8:ae:ef:ac:eb:a2:0e:46:a9:06: e4:23:84:9f:be:f4:0f:e2:79:47:84:44:6b:81:ff: 03:15:39:16:db:5f:a5:58:8b:60:cc:33:f4:d5:ba: 62:cb:84:6c:87:c2:c2:f1:13:fc:ce:3e:e3:ac:b9: da:34:9c:0e:35:e8:c9:37:39:2a:5f:50:78:44:50: bf:f9:3d:99:4e:fa:40:46:61:f2:b7:f9:7f:f8:d2: a7:2c:05:81:a5:ec:ae:9a:a5:d6:b0:a5:9a:66:b6: 37:9b:c4:4f:59:97:4d:b6:69:5c:96:f1:93:fc:30: c2:d0:31:3b:e0:5e:44:aa:88:50:52:b6:b7:ea:00: 8a:31:0a:87:f1:bf:9c:40:bf:ee:6f:12:10:37:61: 4c:92:b8:67:30:99:d1:71:c1:84:37:49:d9:dc:78: ca:58:91:d6:34:fd:c4:2c:95:c8:0b:c3:4a:f0:6f: fe:4d:38:64:ec:05:67:1d:f7:e6:4d:da:6f:1b:ec: 7f:eb:60:46:e4:48:ce:8c:09:1f:ef:e3:5c:1c:1c: 1e:cf:92:b7:60:6c:4a:32:e4:01:d3:aa:43:1d:1e: 7b:47:a2:10:7b:ba:9c:42:96:26:64:bd:01:14:38: 04:77:8a:c9:a7:ad:fc:79:31:f1:22:d6:2e:21:98: 58:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:DD:7C:27:0B:28:22:CF:65:D6:C0:EE:05:4B:1E:AD:72:73:49:B3 X509v3 Authority Key Identifier: keyid:10:AE:7F:A0:CF:9C:FA:A8:7E:BA:D8:44:CD:8C:42:6A:C1:C3:A5:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:b8:43:88:72:5d:5c:cc:2d:ad:50:4c:11:b9:aa:fc:2b:63: a8:19:e4:47:d8:97:4d:d8:1c:7d:ee:a0:e1:26:2b:d0:e8:f1: 72:8e:8c:61:77:19:8b:60:42:ed:a4:5a:f9:9a:e8:f6:c4:bb: 7a:b9:b6:c4:c6:c8:e5:4a:67:b7:f3:b6:5e:e4:ee:da:13:ca: c0:ee:5a:69:35:9d:d2:18:8b:91:48:e1:88:8c:8a:f7:38:ba: c2:d6:71:cd:f0:b3:f6:66:e3:be:d4:0a:a8:69:03:c9:b2:44: 26:07:b0:d4:4b:38:41:1d:02:5f:31:e6:a8:2f:43:38:bf:6c: 6e:4c:5a:5b:76:b3:08:5c:42:49:b6:76:5a:58:0f:1d:88:c4: a2:b2:ff:c3:ee:f5:43:1b:8c:b4:3c:1a:85:62:cd:cc:de:22: d2:38:0b:a8:4c:68:87:9f:e9:59:3c:29:ee:c3:2a:71:9d:5c: f9:ac:86:50:8b:fa:97:02:8a:5b:7a:95:70:13:06:2c:d1:3f: fc:7f:29:9b:9d:0a:3a:81:c7:18:8c:d6:50:6a:76:c0:04:5f: 53:83:35:23:f9:7e:a7:d7:21:ed:18:93:45:64:c1:cc:9e:31: 50:61:76:b9:bc:29:2d:99:bc:6b:cb:fb:6a:45:bf:4c:c8:61: 52:9d:6a:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICH6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNCRkYxMTAvBgNVBAUTKDEwQUU3RkEwQ0Y5Q0ZBQTg3RUJBRDg0NENEOEM0MjZB QzFDM0E1RTcwHhcNMjQwNDMwMTYyNjE3WhcNMjQwNTA3MTYyNjE3WjAYMRYwFAYD VQQDEw02NjMxMWJhOS02NjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ZzAoriu76zrog5GqQbkI4SfvvQP4nlHhERrgf8DFTkW21+lWItgzDP01bpi y4Rsh8LC8RP8zj7jrLnaNJwONejJNzkqX1B4RFC/+T2ZTvpARmHyt/l/+NKnLAWB peyumqXWsKWaZrY3m8RPWZdNtmlclvGT/DDC0DE74F5EqohQUra36gCKMQqH8b+c QL/ubxIQN2FMkrhnMJnRccGEN0nZ3HjKWJHWNP3ELJXIC8NK8G/+TThk7AVnHffm TdpvG+x/62BG5EjOjAkf7+NcHBwez5K3YGxKMuQB06pDHR57R6IQe7qcQpYmZL0B FDgEd4rJp638eTHxItYuIZhYZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMjdfCcL KCLPZdbA7gVLHq1yc0mzMB8GA1UdIwQYMBaAFBCuf6DPnPqofrrYRM2MQmrBw6Xn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0JGRi9GMjkwODI5QTEw REExMUU2ODVDNEJCM0RDNEY5QUUwMi9FSzVfb00tYy1xaC11dGhFell4Q2FzSERw ZWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VLNV9vTS1jLXFoLXV0aEV6WXhDYXNIRHBlYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0JGRi9GMjkwODI5QTEwREExMUU2ODVDNEJCM0RDNEY5QUUwMi9FSzVfb00tYy1x aC11dGhFell4Q2FzSERwZWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMuEOIcl1czC2tUEwRuar8K2OoGeRH2JdN2Bx97qDhJivQ6PFyjoxh dxmLYELtpFr5muj2xLt6ubbExsjlSme387Ze5O7aE8rA7lppNZ3SGIuRSOGIjIr3 OLrC1nHN8LP2ZuO+1AqoaQPJskQmB7DUSzhBHQJfMeaoL0M4v2xuTFpbdrMIXEJJ tnZaWA8diMSisv/D7vVDG4y0PBqFYs3M3iLSOAuoTGiHn+lZPCnuwypxnVz5rIZQ i/qXAopbepVwEwYs0T/8fymbnQo6gccYjNZQanbABF9TgzUj+X6n1yHtGJNFZMHM njFQYXa5vCktmbxry/tqRb9MyGFSnWqw -----END CERTIFICATE-----Generated at Tue Apr 30 18:56:56 2024 by rpki-client on console-fra.rpki-client.org