$ rpki-client -vvf rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft File: U78N14DbA47OFNQEWbq5xo9phTs.mft (raw, json) Hash identifier: VI6mDb6kJ2q36uYWV8RHE5Lni8gV2Y+fymb7qHVnGak= Subject key identifier: 49:5B:0C:E1:E6:9B:D2:A2:BA:24:39:61:BE:BF:D7:90:88:E3:4C:87 Authority key identifier: 53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B Certificate issuer: /CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Certificate serial: 211F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft Manifest number: 20FE Signing time: Thu 02 May 2024 16:18:10 +0000 Manifest this update: Thu 02 May 2024 16:18:10 +0000 Manifest next update: Thu 09 May 2024 16:18:10 +0000 Files and hashes: 1: U78N14DbA47OFNQEWbq5xo9phTs.crl (hash: szV9K000JOQ0Gcor2Svm4pm2byXfwV/JIrt7OYVoMpg=) 2: 61A8E078855911EEB7658825C4F9AE02.roa (hash: WHOXnSl7y2qrDf0aeGNkzJtVBTzY8crwoldasFxEMqo=) 3: D280BEF05FC611EE857BE480C4F9AE02.roa (hash: a1dv6aH/7Hg2gN7txusD3768mg8p/SmhFZY1v4Rc9uU=) 4: 02CF9FAC1B1311EE94AC0123C4F9AE02.roa (hash: F9IjzyqIAY2k2Q/OeclMRDclUU4Zwu2jZyKnHQ3RlZQ=) 5: FD2941A0BBC311EEBE58430EC4F9AE02.roa (hash: 9QQjdIzANogkD73MLLjkJxxdii9Tn1xVNrPM5/BTIw0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 16:18:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8479 (0x211f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Validity Not Before: May 2 16:18:10 2024 GMT Not After : May 9 16:18:10 2024 GMT Subject: CN=6633bcc2-52fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:36:ac:0f:85:d3:8e:d4:c9:8b:51:5a:63:b6: 45:47:f2:35:bd:d3:78:79:b1:57:30:52:1f:56:bb: 9c:96:e0:2d:1f:4b:8f:36:77:ca:b3:09:94:38:d1: c8:74:82:c5:17:7f:da:d2:5c:f6:a8:fc:b4:1f:43: a6:42:a0:f8:6b:18:63:a5:b2:18:30:b2:d7:ec:e5: 1e:ce:b7:88:c9:f3:1c:f8:5f:ca:40:d0:63:8e:8d: 76:af:7c:66:8c:7c:3b:2f:85:c3:bc:fc:71:c0:b5: e3:91:01:a0:5d:bb:2e:06:d9:dc:54:1d:60:07:1e: 5b:a1:03:43:83:0c:cd:b0:18:98:0e:cf:6a:a4:ac: a4:ef:b6:c3:87:a1:d4:c8:8c:0b:d9:2f:94:3f:40: db:b1:09:c5:08:20:ac:b1:e7:be:09:41:63:f2:c2: 19:e1:50:f2:24:eb:74:16:7d:77:20:65:e6:39:f0: ba:2a:b3:71:0b:cd:86:ca:81:41:da:44:13:3f:df: ce:25:3a:73:91:a2:4a:82:b9:e7:f8:ab:cd:86:cf: 5c:9e:3a:49:46:1a:2a:da:2e:81:51:94:00:29:a8: 36:ea:8b:43:09:9f:9e:b2:1d:ce:9a:bd:44:bd:1e: d5:7d:78:3b:a6:68:cb:9e:34:07:8a:57:51:f0:42: 80:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:5B:0C:E1:E6:9B:D2:A2:BA:24:39:61:BE:BF:D7:90:88:E3:4C:87 X509v3 Authority Key Identifier: keyid:53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:5b:7f:e2:33:30:c6:6e:21:00:02:8a:27:fd:c6:49:aa:7f: 86:ff:21:13:a9:6d:bb:be:45:61:a1:ce:ce:b8:a2:14:06:e6: 34:4b:c4:b5:9d:26:77:92:e1:ea:da:3d:db:da:4a:36:8b:11: 69:7c:1b:93:75:26:37:ff:b3:d0:f7:27:3c:d2:91:8e:19:5a: b4:4a:12:1e:cc:cc:50:62:d4:ec:77:5c:96:84:57:18:b6:1b: 21:b2:10:66:5d:ca:cf:59:18:d2:f5:3b:8f:90:3a:a1:47:f4: eb:44:3e:c9:63:d7:13:43:65:be:a5:73:75:8b:56:9c:05:35: 48:64:63:d6:fa:f2:2e:0f:33:7e:ad:fd:22:fd:70:89:96:4f: b8:4e:0c:2a:55:2b:88:27:b8:e1:2e:36:e9:02:57:6a:a5:28: c5:55:64:7d:78:7f:94:9e:b6:a5:19:09:64:4f:d5:eb:17:d4: 8b:33:41:94:ad:1b:46:61:bc:64:ee:24:d4:18:f9:da:d1:1f: 5f:28:89:75:90:0f:fe:ce:17:06:41:98:a4:72:90:2b:0f:23: 92:7c:d5:90:ac:62:41:42:f6:f4:d9:a7:d9:4a:7a:6e:ea:30: e0:94:4d:8a:bd:d9:f2:f8:13:83:a4:ab:fc:56:73:4f:89:c9: ad:5c:0c:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZDRDYxMTAvBgNVBAUTKDUzQkYwREQ3ODBEQjAzOEVDRTE0RDQwNDU5QkFCOUM2 OEY2OTg1M0IwHhcNMjQwNTAyMTYxODEwWhcNMjQwNTA5MTYxODEwWjAYMRYwFAYD VQQDEw02NjMzYmNjMi01MmZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxjasD4XTjtTJi1FaY7ZFR/I1vdN4ebFXMFIfVrucluAtH0uPNnfKswmUONHI dILFF3/a0lz2qPy0H0OmQqD4axhjpbIYMLLX7OUezreIyfMc+F/KQNBjjo12r3xm jHw7L4XDvPxxwLXjkQGgXbsuBtncVB1gBx5boQNDgwzNsBiYDs9qpKyk77bDh6HU yIwL2S+UP0DbsQnFCCCssee+CUFj8sIZ4VDyJOt0Fn13IGXmOfC6KrNxC82GyoFB 2kQTP9/OJTpzkaJKgrnn+KvNhs9cnjpJRhoq2i6BUZQAKag26otDCZ+esh3Omr1E vR7VfXg7pmjLnjQHildR8EKA/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFElbDOHm m9KiuiQ5Yb6/15CI40yHMB8GA1UdIwQYMBaAFFO/DdeA2wOOzhTUBFm6ucaPaYU7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkNENi8xRTlFMUFBQ0Qy RUExMUU1QUZCMUUyNENDNEY5QUUwMi9VNzhOMTREYkE0N09GTlFFV2JxNXhvOXBo VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U3OE4xNERiQTQ3T0ZOUUVXYnE1eG85cGhUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkNENi8xRTlFMUFBQ0QyRUExMUU1QUZCMUUyNENDNEY5QUUwMi9VNzhOMTREYkE0 N09GTlFFV2JxNXhvOXBoVHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1W3/iMzDGbiEAAoon/cZJqn+G/yETqW27vkVhoc7OuKIUBuY0S8S1 nSZ3kuHq2j3b2ko2ixFpfBuTdSY3/7PQ9yc80pGOGVq0ShIezMxQYtTsd1yWhFcY thshshBmXcrPWRjS9TuPkDqhR/TrRD7JY9cTQ2W+pXN1i1acBTVIZGPW+vIuDzN+ rf0i/XCJlk+4TgwqVSuIJ7jhLjbpAldqpSjFVWR9eH+UnralGQlkT9XrF9SLM0GU rRtGYbxk7iTUGPna0R9fKIl1kA/+zhcGQZikcpArDyOSfNWQrGJBQvb02afZSnpu 6jDglE2Kvdny+BODpKv8VnNPicmtXAwI -----END CERTIFICATE-----Generated at Thu May 2 17:43:04 2024 by rpki-client on console-fra.rpki-client.org