$ rpki-client -vvf rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.mft File: cL0aXZUSv23gumklPbvwEQPlOkM.mft (raw, json) Hash identifier: FC4iDaefN//pCBaQ93ITRMvT7QbvQQRZaolP69W41j0= Subject key identifier: D6:09:A2:C9:C1:AE:65:FB:9B:54:8F:A0:A8:2A:F9:01:4A:94:BA:1A Authority key identifier: 70:BD:1A:5D:95:12:BF:6D:E0:BA:69:25:3D:BB:F0:11:03:E5:3A:43 Certificate issuer: /CN=A9129797/serialNumber=70BD1A5D9512BF6DE0BA69253DBBF01103E53A43 Certificate serial: 104B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.mft Manifest number: 1032 Signing time: Wed 08 May 2024 18:05:08 +0000 Manifest this update: Wed 08 May 2024 18:05:08 +0000 Manifest next update: Wed 15 May 2024 18:05:08 +0000 Files and hashes: 1: cL0aXZUSv23gumklPbvwEQPlOkM.crl (hash: SJhg/NLG8eTSmNntE9pqHV08TBia3KwaHB+8z8sb8Ho=) 2: 8818EDF88F2C11EDA558DE4DC4F9AE02.roa (hash: 9ZtezB8hQdfPgJFvBydKPUcodj0XdME7TcutDEv2H/Q=) 3: E0A2D2B040C811EE90859140C4F9AE02.roa (hash: SzaVt51qpMlgOXonKR5CNB88VlUM6jEUlR77/PeLcks=) 4: 6B5A80B80B8211EAAD5B6B4AC4F9AE02.roa (hash: BOLLpMA7NYzKLHZD9vK+VKPPwmbIWcIzW4dBb6y7qoE=) 5: 595310E440C911EE9F1D5F41C4F9AE02.roa (hash: vdUbGylqLVvIWJTYxiqOcph0PmLaT2dn3YuEzpz+jf4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.crl rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4171 (0x104b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129797/serialNumber=70BD1A5D9512BF6DE0BA69253DBBF01103E53A43 Validity Not Before: May 8 18:05:08 2024 GMT Not After : May 15 18:05:08 2024 GMT Subject: CN=663bbed4-4da3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:8b:69:af:1e:a0:21:4c:35:ea:3e:5b:e9:30: a4:51:36:65:bc:a5:e2:fa:a8:66:78:86:0b:44:8d: b2:78:ce:22:81:24:87:48:2f:ee:75:c5:6e:f2:c4: 68:b5:3c:9a:1c:28:2f:f2:95:49:b4:a2:58:32:ee: ad:21:e1:dc:e2:37:55:2b:45:25:ba:14:5b:6c:1f: 2b:6f:90:4a:c8:71:09:48:63:6c:12:f6:31:7b:71: c0:0f:82:b9:9e:b6:7a:7e:15:b4:ea:a2:01:f0:00: b1:a9:24:ed:fc:3d:90:48:ee:41:ff:1a:51:49:80: a9:49:48:26:77:a8:1a:da:c5:2b:29:d4:18:11:94: 59:fe:a3:f9:d4:ed:69:0d:39:3a:88:38:b0:e9:57: 71:e0:23:2a:44:49:88:49:58:4e:62:b7:da:b2:10: 9e:be:b6:a2:6c:8b:c7:e3:50:5b:2d:54:af:cd:20: 60:5f:ed:30:2a:3e:79:ff:b2:f9:29:b0:3a:db:f1: 52:e1:10:19:8f:f9:a5:3f:5f:04:3d:31:34:ee:af: ec:26:bf:14:d8:89:a4:7f:20:ec:6e:aa:6f:3a:49: 6b:7b:e1:7c:66:9f:cd:d0:ae:f7:4c:45:7c:c8:e8: 33:5e:c3:d9:9a:5d:6c:e9:53:8a:31:8c:6b:96:c5: 3e:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:09:A2:C9:C1:AE:65:FB:9B:54:8F:A0:A8:2A:F9:01:4A:94:BA:1A X509v3 Authority Key Identifier: keyid:70:BD:1A:5D:95:12:BF:6D:E0:BA:69:25:3D:BB:F0:11:03:E5:3A:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:61:72:b8:91:0e:e6:d1:16:32:e0:8e:d8:e8:30:01:29:7a: f5:77:07:60:22:3a:da:9b:63:bc:96:9d:9e:1d:66:b8:e6:10: 90:58:a9:13:82:14:d6:3b:4c:37:53:6e:1c:c2:fc:4e:87:fc: 61:cd:d8:4a:25:cb:71:85:31:c0:ef:94:5d:7e:b3:b8:2c:6b: bf:c4:d9:f8:72:d5:5b:91:e0:9b:17:76:00:ca:cf:ac:6c:4b: 16:7a:00:be:db:94:a3:a9:39:24:80:b2:87:ff:93:db:ba:58: 53:e2:2e:97:ea:5f:54:66:fd:37:95:c0:58:e8:a7:d9:2c:2a: 03:5f:d1:a0:af:b8:fd:ad:5b:25:ac:79:2b:d7:c9:a3:0f:67: fe:ed:ff:5b:5b:e4:5f:6a:0d:83:c5:16:6f:30:b2:ae:c3:35: 9a:8b:75:4a:db:47:80:3e:7c:9f:73:07:20:9a:6d:1b:73:f8: 69:43:b4:6c:a3:58:9c:09:a9:d4:40:45:37:e1:7a:ca:aa:a0: 91:44:65:7c:61:fa:5e:95:91:8b:d3:c6:5a:0d:c1:b7:0a:fc: a4:21:a6:2b:6b:c1:55:3a:d8:62:9d:c1:02:e3:a6:c7:66:4a: 91:a5:b6:11:88:17:be:84:30:08:09:1b:7b:99:27:48:22:62: 68:55:89:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk3OTcxMTAvBgNVBAUTKDcwQkQxQTVEOTUxMkJGNkRFMEJBNjkyNTNEQkJGMDEx MDNFNTNBNDMwHhcNMjQwNTA4MTgwNTA4WhcNMjQwNTE1MTgwNTA4WjAYMRYwFAYD VQQDEw02NjNiYmVkNC00ZGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwotprx6gIUw16j5b6TCkUTZlvKXi+qhmeIYLRI2yeM4igSSHSC/udcVu8sRo tTyaHCgv8pVJtKJYMu6tIeHc4jdVK0UluhRbbB8rb5BKyHEJSGNsEvYxe3HAD4K5 nrZ6fhW06qIB8ACxqSTt/D2QSO5B/xpRSYCpSUgmd6ga2sUrKdQYEZRZ/qP51O1p DTk6iDiw6Vdx4CMqREmISVhOYrfashCevraibIvH41BbLVSvzSBgX+0wKj55/7L5 KbA62/FS4RAZj/mlP18EPTE07q/sJr8U2ImkfyDsbqpvOklre+F8Zp/N0K73TEV8 yOgzXsPZml1s6VOKMYxrlsU+CwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNYJosnB rmX7m1SPoKgq+QFKlLoaMB8GA1UdIwQYMBaAFHC9Gl2VEr9t4LppJT278BED5TpD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTc5Ny8wOUYyRDk5NDFB MjIxMUU5QkMwNkQzMEFDNEY5QUUwMi9jTDBhWFpVU3YyM2d1bWtsUGJ2d0VRUGxP a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NMMGFYWlVTdjIzZ3Vta2xQYnZ3RVFQbE9rTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTc5Ny8wOUYyRDk5NDFBMjIxMUU5QkMwNkQzMEFDNEY5QUUwMi9jTDBhWFpVU3Yy M2d1bWtsUGJ2d0VRUGxPa00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApYXK4kQ7m0RYy4I7Y6DABKXr1dwdgIjram2O8lp2eHWa45hCQWKkT ghTWO0w3U24cwvxOh/xhzdhKJctxhTHA75RdfrO4LGu/xNn4ctVbkeCbF3YAys+s bEsWegC+25SjqTkkgLKH/5PbulhT4i6X6l9UZv03lcBY6KfZLCoDX9Ggr7j9rVsl rHkr18mjD2f+7f9bW+Rfag2DxRZvMLKuwzWai3VK20eAPnyfcwcgmm0bc/hpQ7Rs o1icCanUQEU34XrKqqCRRGV8YfpelZGL08ZaDcG3CvykIaYra8FVOthincEC46bH ZkqRpbYRiBe+hDAICRt7mSdIImJoVYlL -----END CERTIFICATE-----Generated at Wed May 8 21:03:54 2024 by rpki-client on console-fra.rpki-client.org