$ rpki-client -vvf rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft File: 4YL5k2lSxCadZw2ldS3syGgjTxs.mft (raw, json) Hash identifier: Npk07zuSEr2rvHCTmQGlWa32/rOXYKyQLgLMWoU9pYM= Subject key identifier: 09:A1:60:BB:CE:67:63:45:C0:E3:26:A2:08:4F:46:CB:4F:ED:81:0D Authority key identifier: E1:82:F9:93:69:52:C4:26:9D:67:0D:A5:75:2D:EC:C8:68:23:4F:1B Certificate issuer: /CN=A9126F2B/serialNumber=E182F9936952C4269D670DA5752DECC868234F1B Certificate serial: 2100 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft Manifest number: 20E1 Signing time: Tue 30 Apr 2024 16:20:59 +0000 Manifest this update: Tue 30 Apr 2024 16:20:58 +0000 Manifest next update: Tue 07 May 2024 16:20:58 +0000 Files and hashes: 1: 4YL5k2lSxCadZw2ldS3syGgjTxs.crl (hash: EaHMNW+IGDpgctaavY8tB6FMpRf7fPFR4uo2nj5v2II=) 2: B72206B4554B11E791BA5861C4F9AE02.roa (hash: XD+rHi9pnwHv8fBlfHeLTMU0mL7clm3BjJgqv+KaLy8=) 3: A8E9DE704B8511E7BF406610C4F9AE02.roa (hash: 8CIY/gFR5kFD/nBvCMuT75QcV3nOcarL1vc/JnhoNpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.crl rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 16:20:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8448 (0x2100) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126F2B/serialNumber=E182F9936952C4269D670DA5752DECC868234F1B Validity Not Before: Apr 30 16:20:58 2024 GMT Not After : May 7 16:20:58 2024 GMT Subject: CN=66311a6a-3f2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:4b:c6:0c:41:64:5f:14:41:90:04:52:2f:dc: d5:a9:95:58:17:84:46:11:9f:f6:76:cd:59:aa:38: 22:4e:d5:d7:b5:e0:c8:ce:ba:47:89:eb:ff:71:d8: d5:a3:48:65:e6:04:b1:ee:b6:74:bf:83:26:7a:95: f0:ab:df:08:f7:79:36:06:67:c8:c2:ec:4f:fb:b5: 85:67:95:c4:e0:d7:49:43:5a:46:bd:a1:c3:bf:d5: 76:df:a4:c4:4b:76:cb:e6:c1:30:4c:2d:e0:b0:c6: 5d:f5:70:ca:07:98:13:68:e3:54:ff:8b:eb:9f:10: 3d:2c:98:3b:42:ff:eb:f0:33:4c:eb:4f:0d:3c:21: 3e:bd:a5:59:7f:6a:c2:9b:15:4c:98:85:1b:cd:69: 76:9e:35:f2:85:26:11:d9:51:66:c8:32:f6:dd:84: 31:f6:ca:5f:8c:e7:9f:02:16:fb:e7:4b:ff:85:04: c1:56:fe:8f:65:5c:87:96:16:87:af:94:16:8d:09: d9:c4:72:63:61:e6:7b:49:e3:a8:3d:6a:09:54:e1: 14:76:70:fc:ba:ea:57:59:f8:1a:24:f8:04:6f:dd: 21:63:4a:d5:b0:1e:75:45:12:f8:d3:07:ed:75:94: 99:84:76:80:15:78:20:6c:5b:8d:c6:79:c2:c0:10: 84:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:A1:60:BB:CE:67:63:45:C0:E3:26:A2:08:4F:46:CB:4F:ED:81:0D X509v3 Authority Key Identifier: keyid:E1:82:F9:93:69:52:C4:26:9D:67:0D:A5:75:2D:EC:C8:68:23:4F:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:ee:9d:88:c4:0c:e4:bd:a2:1b:3d:2b:44:e1:ba:dd:5f:4f: 87:12:6a:8e:60:46:8e:de:5c:6a:ad:35:3b:86:a3:8c:d3:fa: 45:73:f4:e4:0d:67:b7:02:41:73:7b:d4:1a:73:df:ed:f2:99: 3d:1e:bc:39:11:38:f4:c8:f8:97:10:97:d2:16:7a:a9:1a:0e: 07:c1:f5:f4:cd:e2:8a:0a:1f:31:1e:eb:b7:5b:1b:c4:62:2d: 53:b2:e3:d0:7f:d7:df:9b:4c:ff:37:cd:89:99:2c:34:bd:c2: 86:ae:92:a2:a7:0a:b5:4f:9a:2f:f1:fc:c6:87:e1:aa:98:a5: bf:39:2f:65:81:ed:59:55:48:91:8e:d3:83:ba:00:db:92:cf: 9a:27:78:81:d5:68:86:b7:e3:3f:23:4c:53:90:2e:77:72:10: 34:63:eb:46:46:8b:b5:b8:bd:f0:1c:c2:40:94:30:cd:a7:4c: db:1d:27:44:f9:d6:bf:e0:df:68:72:53:d7:5e:78:89:38:d0: 60:94:ec:f5:13:c9:ea:41:88:e1:e3:d9:ea:0b:f8:f1:5a:09: da:c0:32:54:a9:02:06:1b:27:ef:e4:b9:48:a3:05:b0:5c:48: 3d:62:2c:d8:c8:c9:69:45:26:e8:cf:cf:46:92:8f:69:38:95: 28:03:25:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZGMkIxMTAvBgNVBAUTKEUxODJGOTkzNjk1MkM0MjY5RDY3MERBNTc1MkRFQ0M4 NjgyMzRGMUIwHhcNMjQwNDMwMTYyMDU4WhcNMjQwNTA3MTYyMDU4WjAYMRYwFAYD VQQDEw02NjMxMWE2YS0zZjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUvGDEFkXxRBkARSL9zVqZVYF4RGEZ/2ds1ZqjgiTtXXteDIzrpHiev/cdjV o0hl5gSx7rZ0v4MmepXwq98I93k2BmfIwuxP+7WFZ5XE4NdJQ1pGvaHDv9V236TE S3bL5sEwTC3gsMZd9XDKB5gTaONU/4vrnxA9LJg7Qv/r8DNM608NPCE+vaVZf2rC mxVMmIUbzWl2njXyhSYR2VFmyDL23YQx9spfjOefAhb750v/hQTBVv6PZVyHlhaH r5QWjQnZxHJjYeZ7SeOoPWoJVOEUdnD8uupXWfgaJPgEb90hY0rVsB51RRL40wft dZSZhHaAFXggbFuNxnnCwBCE6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAmhYLvO Z2NFwOMmoghPRstP7YENMB8GA1UdIwQYMBaAFOGC+ZNpUsQmnWcNpXUt7MhoI08b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkYyQi85MEZBREVFQ0Q1 Q0QxMUU1QUE0MjZFNDBDNEY5QUUwMi80WUw1azJsU3hDYWRadzJsZFMzc3lHZ2pU eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZTDVrMmxTeENhZFp3MmxkUzNzeUdnalR4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NkYyQi85MEZBREVFQ0Q1Q0QxMUU1QUE0MjZFNDBDNEY5QUUwMi80WUw1azJsU3hD YWRadzJsZFMzc3lHZ2pUeHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA27p2IxAzkvaIbPStE4brdX0+HEmqOYEaO3lxqrTU7hqOM0/pFc/Tk DWe3AkFze9Qac9/t8pk9Hrw5ETj0yPiXEJfSFnqpGg4HwfX0zeKKCh8xHuu3WxvE Yi1TsuPQf9ffm0z/N82JmSw0vcKGrpKipwq1T5ov8fzGh+GqmKW/OS9lge1ZVUiR jtODugDbks+aJ3iB1WiGt+M/I0xTkC53chA0Y+tGRou1uL3wHMJAlDDNp0zbHSdE +da/4N9oclPXXniJONBglOz1E8nqQYjh49nqC/jxWgnawDJUqQIGGyfv5LlIowWw XEg9YizYyMlpRSboz89Gko9pOJUoAyX6 -----END CERTIFICATE-----Generated at Tue Apr 30 18:56:56 2024 by rpki-client on console-fra.rpki-client.org