$ rpki-client -vvf rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.mft File: rSHioIh9gBBYg2nxR4WWAoR3zb4.mft (raw, json) Hash identifier: Ru8mnDg1FuwFcn8gHdjhEe5jO7Secn/Lh4O38Z9q5cU= Subject key identifier: 54:0E:AF:A4:D0:8B:79:B0:B7:CF:76:54:E2:EB:70:F6:96:25:CD:BA Authority key identifier: AD:21:E2:A0:88:7D:80:10:58:83:69:F1:47:85:96:02:84:77:CD:BE Certificate issuer: /CN=A913344F/serialNumber=AD21E2A0887D8010588369F1478596028477CDBE Certificate serial: 0FF3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHioIh9gBBYg2nxR4WWAoR3zb4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.mft Manifest number: 0FED Signing time: Sat 04 May 2024 18:10:20 +0000 Manifest this update: Sat 04 May 2024 18:10:19 +0000 Manifest next update: Sat 11 May 2024 18:10:19 +0000 Files and hashes: 1: rSHioIh9gBBYg2nxR4WWAoR3zb4.crl (hash: s24+KzRaXoaUe7RCxWkPRe2EFpy0F42ZGBMsco/31nI=) 2: 2CDBC1B0251111E997B74770C4F9AE02.roa (hash: gvG1ZqQraEFhN08IlgwALzbDtTjdZshIJN/OLKpgb4Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.crl rsync://rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHioIh9gBBYg2nxR4WWAoR3zb4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:10:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4083 (0xff3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913344F/serialNumber=AD21E2A0887D8010588369F1478596028477CDBE Validity Not Before: May 4 18:10:19 2024 GMT Not After : May 11 18:10:19 2024 GMT Subject: CN=66367a0b-7eaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:95:26:e4:1f:c2:55:34:c7:56:c2:11:6d:c0: 6f:3e:9c:c6:70:37:0a:91:d6:08:53:95:f8:de:e8: d5:6b:6b:cf:0c:fe:67:e5:3f:98:9b:6b:77:bb:2c: 44:dd:f6:ac:85:de:52:55:d0:36:2a:81:a2:a1:c8: 06:94:4e:51:76:27:95:be:90:57:d6:65:13:c6:69: e7:f4:06:ed:0a:d8:3e:fb:d2:ab:69:f1:89:54:79: 48:b0:cb:98:2c:aa:50:35:37:3c:db:ff:e3:a1:27: 89:b7:f5:d6:bd:73:16:e9:77:91:4b:4a:88:f4:49: 35:8d:aa:e5:d5:b3:11:d9:88:8a:ac:73:4c:ad:01: b9:33:51:95:5a:03:eb:9f:dc:8c:c8:12:47:46:7e: c5:f0:ed:ea:e7:0c:3c:55:ba:c9:31:22:c0:67:53: 12:be:25:6d:54:e2:32:72:ef:00:0b:b5:88:a5:2d: 17:e2:c6:51:44:01:cf:3b:81:6a:72:d6:b6:c9:64: 73:e9:c3:6c:df:f5:f3:3c:e8:cd:c6:11:dd:f3:6c: da:c3:2f:6c:06:d9:69:98:3f:59:42:c4:76:53:94: 9e:c1:73:ac:15:31:60:1e:bc:f9:a2:66:38:4d:8b: 71:0a:98:07:b0:7f:f2:dd:ed:e2:3c:f7:d6:b2:ac: 3c:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:0E:AF:A4:D0:8B:79:B0:B7:CF:76:54:E2:EB:70:F6:96:25:CD:BA X509v3 Authority Key Identifier: keyid:AD:21:E2:A0:88:7D:80:10:58:83:69:F1:47:85:96:02:84:77:CD:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHioIh9gBBYg2nxR4WWAoR3zb4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:4a:8f:de:8f:47:a8:a6:ee:79:ce:0d:c9:61:e3:b2:e7:c4: 0c:4c:6f:5c:2c:35:4b:56:7a:23:52:d9:08:c2:de:ec:58:3d: 05:f1:a2:c4:91:39:53:3d:8c:d0:11:ef:70:5e:15:48:95:3a: af:49:c7:da:d8:f0:c0:a8:5a:d8:ae:e2:93:7c:eb:b4:5c:0b: 25:d6:17:c0:60:1f:1f:27:c4:fb:ba:7e:d8:ad:bb:09:0e:51: 19:ef:c0:76:45:cf:f5:4a:af:c0:89:d4:22:0b:f0:93:82:5b: 9d:2a:d2:fa:d7:56:d9:2b:29:3b:2e:bd:67:42:13:66:d7:b2: 3a:73:ed:f5:2a:b4:d0:55:85:e6:86:db:1f:9c:ff:5a:76:af: 0e:da:15:f2:5d:80:8c:74:2b:4e:6b:12:d9:ef:e5:55:31:73: ec:38:70:06:ac:99:25:20:32:3c:7d:9d:1c:5a:95:e6:d4:bb: df:51:af:8e:bc:75:ed:84:30:82:4f:7e:14:1a:7f:cd:60:f0: 28:1c:25:8c:29:21:7b:a1:03:7c:fc:25:ce:64:ea:d0:ea:87: 45:21:00:5e:f0:24:78:98:78:bb:d8:62:80:ae:98:12:d0:6e: 79:38:be:bd:45:e9:63:d1:ab:d1:f0:2e:5f:62:95:6c:da:d9: 7a:0c:79:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzM0NEYxMTAvBgNVBAUTKEFEMjFFMkEwODg3RDgwMTA1ODgzNjlGMTQ3ODU5NjAy ODQ3N0NEQkUwHhcNMjQwNTA0MTgxMDE5WhcNMjQwNTExMTgxMDE5WjAYMRYwFAYD VQQDEw02NjM2N2EwYi03ZWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9pUm5B/CVTTHVsIRbcBvPpzGcDcKkdYIU5X43ujVa2vPDP5n5T+Ym2t3uyxE 3fashd5SVdA2KoGiocgGlE5RdieVvpBX1mUTxmnn9AbtCtg++9KrafGJVHlIsMuY LKpQNTc82//joSeJt/XWvXMW6XeRS0qI9Ek1jarl1bMR2YiKrHNMrQG5M1GVWgPr n9yMyBJHRn7F8O3q5ww8VbrJMSLAZ1MSviVtVOIycu8AC7WIpS0X4sZRRAHPO4Fq cta2yWRz6cNs3/XzPOjNxhHd82zawy9sBtlpmD9ZQsR2U5SewXOsFTFgHrz5omY4 TYtxCpgHsH/y3e3iPPfWsqw8DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFQOr6TQ i3mwt892VOLrcPaWJc26MB8GA1UdIwQYMBaAFK0h4qCIfYAQWINp8UeFlgKEd82+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzQ0Ri85NEZGQkFBMDI1 MEYxMUU5OTBEREUzNkNDNEY5QUUwMi9yU0hpb0loOWdCQllnMm54UjRXV0FvUjN6 YjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JTSGlvSWg5Z0JCWWcybnhSNFdXQW9SM3piNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MzQ0Ri85NEZGQkFBMDI1MEYxMUU5OTBEREUzNkNDNEY5QUUwMi9yU0hpb0loOWdC QllnMm54UjRXV0FvUjN6YjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvSo/ej0eopu55zg3JYeOy58QMTG9cLDVLVnojUtkIwt7sWD0F8aLE kTlTPYzQEe9wXhVIlTqvScfa2PDAqFrYruKTfOu0XAsl1hfAYB8fJ8T7un7YrbsJ DlEZ78B2Rc/1Sq/AidQiC/CTgludKtL611bZKyk7Lr1nQhNm17I6c+31KrTQVYXm htsfnP9adq8O2hXyXYCMdCtOaxLZ7+VVMXPsOHAGrJklIDI8fZ0cWpXm1LvfUa+O vHXthDCCT34UGn/NYPAoHCWMKSF7oQN8/CXOZOrQ6odFIQBe8CR4mHi72GKArpgS 0G55OL69Relj0avR8C5fYpVs2tl6DHnb -----END CERTIFICATE-----Generated at Sat May 4 20:37:06 2024 by rpki-client on console-fra.rpki-client.org