$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft File: xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft (raw, json) Hash identifier: CU6I0L/zRLOWYvN8QlFYxTu4k6bYCKJ9Y38zkiOByIQ= Subject key identifier: D3:94:16:35:37:FC:0A:B6:42:E5:9C:5F:61:5F:A0:EF:47:53:AE:B1 Authority key identifier: C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E Certificate issuer: /CN=A9125C22/serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E Certificate serial: 05A5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft Manifest number: 05A2 Signing time: Tue 07 May 2024 00:21:39 +0000 Manifest this update: Tue 07 May 2024 00:21:39 +0000 Manifest next update: Tue 14 May 2024 00:21:39 +0000 Files and hashes: 1: xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl (hash: FEHJ4zr91f9xALAVwU3D74Bl5PKBeixxuoh4+eTsMLU=) 2: 485D694A454911EEB8718378C4F9AE02.roa (hash: HR3nRfisYSDKZvt9Zn5nDd8WaOUGmkOPBRh02Z+ySnk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 20:40:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1445 (0x5a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C22/serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E Validity Not Before: May 7 00:21:39 2024 GMT Not After : May 14 00:21:39 2024 GMT Subject: CN=66397413-085a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a9:b7:78:8b:76:eb:d8:d8:e1:e9:d9:67:ce: e8:4b:61:89:cb:1e:b4:c2:09:27:7f:b1:c8:ed:7c: b7:e8:66:35:94:15:0a:00:be:19:f1:7b:34:d3:46: 2c:2d:80:5e:21:2b:9f:d3:c7:04:3f:5a:56:97:2d: 1d:fa:80:f9:50:f9:0d:51:44:60:cc:ea:92:a1:1d: 14:67:a4:b3:2c:9f:76:20:b2:6c:7a:56:9d:2a:5f: 99:4e:cf:5d:99:d9:72:71:bb:a8:e5:78:79:a2:b6: 43:22:6f:79:f1:76:0c:95:0e:19:3c:66:52:d8:87: 36:65:c6:30:19:e9:be:b7:57:77:4b:47:a9:e0:c7: 46:cb:14:ce:2c:13:14:85:57:e3:04:94:cc:ef:82: b7:8a:1f:89:4e:72:a3:3a:68:f1:cb:d9:38:f5:7e: 26:a2:da:5b:81:f0:92:33:f9:93:b1:ab:a9:07:3e: 5b:b0:4d:cc:48:32:76:87:e7:9c:c4:d9:8b:81:8b: 9c:72:81:4e:12:dc:52:47:87:7a:7e:f3:ee:12:c0: 8e:e2:36:4d:58:c0:c0:b7:63:55:f9:63:38:39:4e: 45:30:d4:84:f8:9e:80:b4:10:19:74:16:3b:1f:21: 7c:31:19:a1:72:b4:7f:07:1d:ef:be:89:f2:4a:93: 22:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:94:16:35:37:FC:0A:B6:42:E5:9C:5F:61:5F:A0:EF:47:53:AE:B1 X509v3 Authority Key Identifier: keyid:C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:4a:bc:12:8c:08:9a:13:f7:57:ce:47:b3:8d:63:52:a6:1e: b5:a7:cb:e6:0d:36:76:e6:09:fd:a1:08:a2:f8:9b:72:49:14: b7:d4:f3:c3:88:51:09:94:6e:fc:3f:15:00:33:87:31:cb:25: 27:42:0c:38:1b:1d:58:68:65:74:26:82:38:5f:14:f6:ee:3b: fe:b0:68:4b:31:e9:69:78:28:8e:38:2c:81:01:3f:44:91:18: 8f:ba:23:09:83:fe:0a:ba:32:86:4a:7a:f6:38:58:19:a9:52: c6:49:59:cd:4f:0f:1a:db:b6:4a:81:28:47:a5:96:09:47:24: 13:c5:f1:01:0c:bc:a0:4b:83:66:c3:b6:88:f9:c0:b3:ab:8f: 6e:50:f0:a6:26:22:5d:0a:40:1a:bb:2a:f2:7b:57:7f:e6:86: f7:a9:2c:65:4d:58:01:45:a2:a9:7d:6b:47:23:4f:21:70:a6: 71:ad:32:c1:7f:ac:19:d1:e3:c4:81:33:c7:25:1a:58:47:e3: e3:52:5c:0a:ca:ac:40:a5:7e:ee:97:c1:61:09:c8:d8:45:5d: 17:74:d5:e1:c6:66:de:5f:61:c3:b2:7a:0d:b4:1c:a0:8f:b9: 91:30:80:f1:59:97:10:2e:9a:c8:01:a4:35:35:3f:8a:ff:5f: d9:64:aa:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMjIxMTAvBgNVBAUTKEM3MEI0RTA0N0NBQTczNzcyNEI4OUQ1ODREQjVDMEMx QTg1OEQyOEUwHhcNMjQwNTA3MDAyMTM5WhcNMjQwNTE0MDAyMTM5WjAYMRYwFAYD VQQDEw02NjM5NzQxMy0wODVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqm3eIt269jY4enZZ87oS2GJyx60wgknf7HI7Xy36GY1lBUKAL4Z8Xs000Ys LYBeISuf08cEP1pWly0d+oD5UPkNUURgzOqSoR0UZ6SzLJ92ILJseladKl+ZTs9d mdlycbuo5Xh5orZDIm958XYMlQ4ZPGZS2Ic2ZcYwGem+t1d3S0ep4MdGyxTOLBMU hVfjBJTM74K3ih+JTnKjOmjxy9k49X4motpbgfCSM/mTsaupBz5bsE3MSDJ2h+ec xNmLgYuccoFOEtxSR4d6fvPuEsCO4jZNWMDAt2NV+WM4OU5FMNSE+J6AtBAZdBY7 HyF8MRmhcrR/Bx3vvonySpMiKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNOUFjU3 /Aq2QuWcX2FfoO9HU66xMB8GA1UdIwQYMBaAFMcLTgR8qnN3JLidWE21wMGoWNKO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMyMi9GQUNDQkM1QzdG QUQxMUVCOTc3QjUzMzVDNEY5QUUwMi94d3RPQkh5cWMzY2t1SjFZVGJYQXdhaFkw bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3h3dE9CSHlxYzNja3VKMVlUYlhBd2FoWTBvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMyMi9GQUNDQkM1QzdGQUQxMUVCOTc3QjUzMzVDNEY5QUUwMi94d3RPQkh5cWMz Y2t1SjFZVGJYQXdhaFkwbzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWSrwSjAiaE/dXzkezjWNSph61p8vmDTZ25gn9oQii+JtySRS31PPD iFEJlG78PxUAM4cxyyUnQgw4Gx1YaGV0JoI4XxT27jv+sGhLMelpeCiOOCyBAT9E kRiPuiMJg/4KujKGSnr2OFgZqVLGSVnNTw8a27ZKgShHpZYJRyQTxfEBDLygS4Nm w7aI+cCzq49uUPCmJiJdCkAauyrye1d/5ob3qSxlTVgBRaKpfWtHI08hcKZxrTLB f6wZ0ePEgTPHJRpYR+PjUlwKyqxApX7ul8FhCcjYRV0XdNXhxmbeX2HDsnoNtByg j7mRMIDxWZcQLprIAaQ1NT+K/1/ZZKpI -----END CERTIFICATE-----Generated at Tue May 7 01:58:14 2024 by rpki-client on console-fra.rpki-client.org