$ rpki-client -vvf rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft File: -o32EYRRvVM4cqyjdiK_c77RlEE.mft (raw, json) Hash identifier: U4Vep2MFVRNI6rMvuMV7hlMqDScn1cwBwzWvOs4IUbA= Subject key identifier: 3E:3B:65:6A:23:F4:47:D2:0F:1E:A7:EC:27:B6:FE:F0:1D:BB:2B:BA Authority key identifier: FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 Certificate issuer: /CN=A9135450/serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Certificate serial: 0195 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft Manifest number: 0193 Signing time: Wed 01 May 2024 05:01:24 +0000 Manifest this update: Wed 01 May 2024 05:01:24 +0000 Manifest next update: Wed 08 May 2024 05:01:24 +0000 Files and hashes: 1: -o32EYRRvVM4cqyjdiK_c77RlEE.crl (hash: F0BneTReJh8zUe4MB0kHf9gfx9fVQzRqYNPQiajkK3Y=) 2: CA57150418B311EDB72D3165C4F9AE02.roa (hash: b4ViKHGezGw+5NXjeUCkvO49CZT0iW2nZTWY802a/24=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 405 (0x195) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135450/serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Validity Not Before: May 1 05:01:24 2024 GMT Not After : May 8 05:01:24 2024 GMT Subject: CN=6631cca4-8ac3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:42:f9:9e:f6:f7:d4:f4:f4:e9:df:4b:b4:80: 50:f3:46:93:47:fe:61:f9:e1:81:57:92:c7:d7:78: 80:86:d5:3e:5c:20:22:24:75:00:b9:02:1b:ab:b4: e1:b2:e4:6e:03:fa:dc:14:49:dd:a7:30:b0:c0:40: 2a:0b:f1:b7:da:69:92:b2:1b:49:7e:21:3f:0f:ac: 54:fd:4b:8b:76:c6:f9:bf:ae:a1:eb:cc:44:8d:06: a1:a7:e8:b4:b8:52:f7:58:46:e2:7d:72:31:65:7d: f0:e5:22:29:b4:4f:a4:9c:b6:0b:59:1b:9b:a8:a4: 94:d6:0e:3c:2b:36:a7:d4:47:3a:d6:6e:8d:3d:09: 95:39:e7:4c:4d:72:32:5c:fd:46:2a:47:87:14:03: 4d:61:c1:4d:4b:b9:9a:b2:c0:b2:5c:db:29:f3:5b: fb:8e:44:d5:70:ef:c1:7c:2d:87:da:69:46:79:43: 18:48:75:ab:cf:ea:f4:80:bd:2a:2c:04:f0:ca:b9: 9c:93:6a:ed:11:c2:c8:f0:00:07:8e:aa:50:b2:7e: 57:16:48:54:d5:cc:1b:4f:cc:8e:62:a7:33:33:73: 4b:d1:b8:97:ff:41:4d:e2:5a:f0:21:48:8c:44:e1: 56:b3:f5:9f:55:a5:29:40:54:c5:64:ca:9c:49:94: 76:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:3B:65:6A:23:F4:47:D2:0F:1E:A7:EC:27:B6:FE:F0:1D:BB:2B:BA X509v3 Authority Key Identifier: keyid:FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:26:df:46:af:e4:72:a1:ff:be:7d:21:0f:64:10:93:58:89: 19:b5:49:27:c2:73:c3:b4:e3:83:4f:15:b7:02:8a:5b:34:3c: 0d:6a:f3:e0:7f:d4:43:dc:6e:19:ca:36:c9:3f:b6:9b:5a:d0: db:7b:fd:10:8c:70:4d:f6:9a:c4:33:28:29:da:0a:51:a3:99: 76:b1:d4:0f:9c:ae:6c:45:bd:c3:0c:16:73:64:60:70:e0:e0: 4a:6b:85:76:f8:d8:7c:d8:96:01:4f:11:06:a2:97:08:d7:4a: dd:f8:b8:3f:38:c5:36:df:fc:6f:b5:a4:df:7f:f8:ab:dc:a2: 88:b0:3d:b2:01:36:53:84:1a:e9:44:0f:36:66:28:71:e7:44: a0:a9:b1:dc:66:89:df:91:11:28:83:ef:a0:39:ba:aa:6b:af: 53:bf:77:ce:d9:51:73:ef:a9:64:50:81:89:6e:42:bb:08:41: 08:ee:46:a4:d1:99:ab:0a:99:ae:9b:af:e7:44:25:34:b4:ed: 67:89:62:0d:a8:fa:ae:92:c3:59:a0:43:d9:d2:5c:30:a8:5b: 57:0c:44:f5:f7:83:47:6e:d7:6f:e1:6a:cb:a8:07:2c:ef:ec: 3f:06:ca:6f:bf:8a:40:ac:95:c1:66:03:45:26:73:be:3e:41: 7f:94:34:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU0NTAxMTAvBgNVBAUTKEZBOERGNjExODQ1MUJENTMzODcyQUNBMzc2MjJCRjcz QkVEMTk0NDEwHhcNMjQwNTAxMDUwMTI0WhcNMjQwNTA4MDUwMTI0WjAYMRYwFAYD VQQDEw02NjMxY2NhNC04YWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0L5nvb31PT06d9LtIBQ80aTR/5h+eGBV5LH13iAhtU+XCAiJHUAuQIbq7Th suRuA/rcFEndpzCwwEAqC/G32mmSshtJfiE/D6xU/UuLdsb5v66h68xEjQahp+i0 uFL3WEbifXIxZX3w5SIptE+knLYLWRubqKSU1g48Kzan1Ec61m6NPQmVOedMTXIy XP1GKkeHFANNYcFNS7massCyXNsp81v7jkTVcO/BfC2H2mlGeUMYSHWrz+r0gL0q LATwyrmck2rtEcLI8AAHjqpQsn5XFkhU1cwbT8yOYqczM3NL0biX/0FN4lrwIUiM ROFWs/WfVaUpQFTFZMqcSZR2nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD47ZWoj 9EfSDx6n7Ce2/vAduyu6MB8GA1UdIwQYMBaAFPqN9hGEUb1TOHKso3Yiv3O+0ZRB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTQ1MC84NDNEQzY5NjE4 QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZWTTRjcXlqZGlLX2M3N1Js RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1vMzJFWVJSdlZNNGNxeWpkaUtfYzc3UmxFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTQ1MC84NDNEQzY5NjE4QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZW TTRjcXlqZGlLX2M3N1JsRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtJt9Gr+Ryof++fSEPZBCTWIkZtUknwnPDtOODTxW3AopbNDwNavPg f9RD3G4ZyjbJP7abWtDbe/0QjHBN9prEMygp2gpRo5l2sdQPnK5sRb3DDBZzZGBw 4OBKa4V2+Nh82JYBTxEGopcI10rd+Lg/OMU23/xvtaTff/ir3KKIsD2yATZThBrp RA82Zihx50SgqbHcZonfkREog++gObqqa69Tv3fO2VFz76lkUIGJbkK7CEEI7kak 0ZmrCpmum6/nRCU0tO1niWINqPquksNZoEPZ0lwwqFtXDET194NHbtdv4WrLqAcs 7+w/Bspvv4pArJXBZgNFJnO+PkF/lDTv -----END CERTIFICATE-----Generated at Wed May 1 05:58:59 2024 by rpki-client on console-fra.rpki-client.org