$ rpki-client -vvf rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft File: ioDqhWIqoHAhvfSshBiw2aU5rOE.mft (raw, json) Hash identifier: KXi6UXCILKEZxc9nPqacuMqe6qi4H4XJYUJbWhkg4ms= Subject key identifier: A1:3F:9A:B5:5C:6F:F9:10:4C:EC:57:57:A7:58:E0:3E:B0:60:00:BA Authority key identifier: 8A:80:EA:85:62:2A:A0:70:21:BD:F4:AC:84:18:B0:D9:A5:39:AC:E1 Certificate issuer: /CN=A912D9BE/serialNumber=8A80EA85622AA07021BDF4AC8418B0D9A539ACE1 Certificate serial: 0434 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft Manifest number: 0431 Signing time: Tue 07 May 2024 01:57:57 +0000 Manifest this update: Tue 07 May 2024 01:57:56 +0000 Manifest next update: Tue 14 May 2024 01:57:56 +0000 Files and hashes: 1: ioDqhWIqoHAhvfSshBiw2aU5rOE.crl (hash: u/cyBfmCs7kFhjtXNQ3I4d15etXb09q9TUHID9cH/ok=) 2: 8E806136117D11ECB7B68E43C4F9AE02.roa (hash: b6uj6dwxXCsv8J7j8qp5OXl/r0h0l4b73MZ/xHXhJf0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.crl rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 01:57:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1076 (0x434) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D9BE/serialNumber=8A80EA85622AA07021BDF4AC8418B0D9A539ACE1 Validity Not Before: May 7 01:57:56 2024 GMT Not After : May 14 01:57:56 2024 GMT Subject: CN=66398aa5-2fb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:72:45:48:86:d6:2e:01:b2:b8:d7:ac:d0:d6: 7f:46:0e:4f:99:b8:8c:81:50:78:bd:89:58:ed:b1: 37:46:4a:73:41:b7:b8:22:1d:aa:9d:53:8f:90:47: 45:3b:82:6c:25:0f:c6:b5:7f:89:b1:e1:9c:2e:e1: d4:01:d4:45:b0:91:42:c2:99:f8:8b:d0:ef:53:78: 52:1d:66:3a:ca:e3:a4:ee:98:e4:ce:48:34:1a:e7: dc:79:97:f5:7c:7e:74:01:56:76:bb:b1:1f:30:f2: 65:3d:fb:46:7b:d3:8e:56:70:88:23:94:7e:01:a1: b4:1d:72:7a:a0:b3:6e:b5:09:40:10:a3:68:de:b8: 2b:39:00:ff:f6:39:c0:c3:4e:ef:e6:22:3f:04:78: 9a:36:1a:44:f7:01:dd:51:88:ba:e7:5a:74:81:df: 6a:09:92:49:e3:d6:a0:cc:dc:83:d4:2d:fb:69:71: 51:b8:af:d5:82:bb:45:78:80:9c:c7:be:8c:22:90: 2e:e9:18:fc:fc:ae:bf:29:00:16:4c:b7:18:55:54: c9:9c:33:66:fb:62:c1:f7:62:bf:db:e0:be:31:d6: 5b:b3:a9:73:84:2e:5a:39:79:af:8a:5c:d4:4f:a6: 76:8a:81:d9:24:b1:be:92:4c:71:e4:7f:11:9b:70: a8:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:3F:9A:B5:5C:6F:F9:10:4C:EC:57:57:A7:58:E0:3E:B0:60:00:BA X509v3 Authority Key Identifier: keyid:8A:80:EA:85:62:2A:A0:70:21:BD:F4:AC:84:18:B0:D9:A5:39:AC:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:c1:86:d7:0a:49:d2:6c:75:fa:97:03:55:43:44:d5:e5:08: 13:12:fd:12:fc:e5:03:88:ff:15:75:0e:1d:d2:ec:05:b2:6a: b7:c2:7f:a9:5a:e3:57:84:27:cb:a8:0b:b7:b7:c0:78:e5:2d: fb:01:4c:63:e7:0f:f8:f7:b8:93:bc:c3:bb:c4:62:c0:35:db: 37:02:5b:1c:da:6c:2f:8b:4c:cf:e9:6d:f2:0c:f8:0c:2b:55: 46:e9:33:5c:7d:3f:98:f2:10:2a:14:ae:5f:d0:34:35:55:a7: 3a:23:26:00:18:55:61:75:03:ac:6d:d8:07:8d:ec:9e:1f:2f: 0a:4b:8a:3b:ff:5f:f5:d0:ae:5f:30:68:f2:01:f3:5b:97:97: 63:54:cb:eb:00:7c:6c:9d:f5:d8:1d:0a:5d:6b:21:6f:45:f3: 27:87:54:45:97:8f:29:1c:0a:85:f0:20:3f:99:ee:22:ce:ec: 46:6d:6f:0b:ba:2c:82:5c:72:3d:e0:3b:0a:ba:63:e1:e0:6e: 6d:11:4c:eb:d0:69:93:7c:9f:58:e2:0f:a3:fb:4d:6a:2a:94: bd:f0:e5:db:c5:8e:26:98:ae:ae:57:e2:10:46:4d:11:df:79: 66:a3:45:28:d6:da:e2:4b:c1:22:cf:c6:81:ee:9e:66:99:9e: 50:9c:f4:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ5QkUxMTAvBgNVBAUTKDhBODBFQTg1NjIyQUEwNzAyMUJERjRBQzg0MThCMEQ5 QTUzOUFDRTEwHhcNMjQwNTA3MDE1NzU2WhcNMjQwNTE0MDE1NzU2WjAYMRYwFAYD VQQDEw02NjM5OGFhNS0yZmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0XJFSIbWLgGyuNes0NZ/Rg5PmbiMgVB4vYlY7bE3RkpzQbe4Ih2qnVOPkEdF O4JsJQ/GtX+JseGcLuHUAdRFsJFCwpn4i9DvU3hSHWY6yuOk7pjkzkg0GufceZf1 fH50AVZ2u7EfMPJlPftGe9OOVnCII5R+AaG0HXJ6oLNutQlAEKNo3rgrOQD/9jnA w07v5iI/BHiaNhpE9wHdUYi651p0gd9qCZJJ49agzNyD1C37aXFRuK/VgrtFeICc x76MIpAu6Rj8/K6/KQAWTLcYVVTJnDNm+2LB92K/2+C+MdZbs6lzhC5aOXmvilzU T6Z2ioHZJLG+kkxx5H8Rm3CoxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKE/mrVc b/kQTOxXV6dY4D6wYAC6MB8GA1UdIwQYMBaAFIqA6oViKqBwIb30rIQYsNmlOazh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDlCRS9CMDlDM0NFMjEx N0IxMUVDODBFNDIxNDNDNEY5QUUwMi9pb0RxaFdJcW9IQWh2ZlNzaEJpdzJhVTVy T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lvRHFoV0lxb0hBaHZmU3NoQml3MmFVNXJPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDlCRS9CMDlDM0NFMjExN0IxMUVDODBFNDIxNDNDNEY5QUUwMi9pb0RxaFdJcW9I QWh2ZlNzaEJpdzJhVTVyT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbwYbXCknSbHX6lwNVQ0TV5QgTEv0S/OUDiP8VdQ4d0uwFsmq3wn+p WuNXhCfLqAu3t8B45S37AUxj5w/497iTvMO7xGLANds3Alsc2mwvi0zP6W3yDPgM K1VG6TNcfT+Y8hAqFK5f0DQ1Vac6IyYAGFVhdQOsbdgHjeyeHy8KS4o7/1/10K5f MGjyAfNbl5djVMvrAHxsnfXYHQpdayFvRfMnh1RFl48pHAqF8CA/me4izuxGbW8L uiyCXHI94DsKumPh4G5tEUzr0GmTfJ9Y4g+j+01qKpS98OXbxY4mmK6uV+IQRk0R 33lmo0Uo1triS8Eiz8aB7p5mmZ5QnPSR -----END CERTIFICATE-----Generated at Tue May 7 03:12:17 2024 by rpki-client on console-fra.rpki-client.org