$ rpki-client -vvf rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft File: mgZOprZttN4gyTzAQbhaFwbIBnI.mft (raw, json) Hash identifier: U2sQeeqHip3hMH/1PKza3gif2ZN5WMDPTVIzIgakpYE= Subject key identifier: 4A:17:9C:65:4D:7B:7B:97:A5:A9:29:25:7E:BE:41:AC:B3:31:73:56 Authority key identifier: 9A:06:4E:A6:B6:6D:B4:DE:20:C9:3C:C0:41:B8:5A:17:06:C8:06:72 Certificate issuer: /CN=A913A5BD/serialNumber=9A064EA6B66DB4DE20C93CC041B85A1706C80672 Certificate serial: 018F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft Manifest number: 018B Signing time: Sun 05 May 2024 04:50:48 +0000 Manifest this update: Sun 05 May 2024 04:50:47 +0000 Manifest next update: Sun 12 May 2024 04:50:47 +0000 Files and hashes: 1: mgZOprZttN4gyTzAQbhaFwbIBnI.crl (hash: Z90nYz+2BjK7wXVZGp4KTdHS1HaFQvUzJZZYNcCOVqI=) 2: C6B3DBFE1CF911EDBAE62F45C4F9AE02.roa (hash: KNUSUG9icP8Pvhz1F1p7tJVMNn5LFGkVNJkPaQqPTVA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.crl rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 399 (0x18f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A5BD/serialNumber=9A064EA6B66DB4DE20C93CC041B85A1706C80672 Validity Not Before: May 5 04:50:47 2024 GMT Not After : May 12 04:50:47 2024 GMT Subject: CN=66371027-240d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f0:76:25:cf:8c:aa:06:51:75:5a:7c:56:8b: b8:1c:aa:a9:12:3b:45:25:d5:2b:15:70:5d:db:c1: 14:8b:22:6f:89:64:73:6c:c6:9d:42:22:c9:6d:4b: 3a:2f:0b:73:70:a2:33:25:48:9d:a8:22:ef:a8:7c: b8:7b:16:bb:88:72:6e:4a:6f:e5:74:61:5a:be:b1: b8:bf:a5:9b:cc:40:79:b4:7f:1f:09:95:61:7d:1c: 55:2f:da:b2:e1:77:12:58:35:04:29:f3:d8:85:8a: fe:01:af:8c:f4:d9:e5:61:ac:d7:74:bc:26:96:86: 74:4a:a4:a7:6a:8c:8e:47:7e:e1:d3:44:21:36:f7: b0:a1:bd:45:5c:99:b5:1e:ad:99:ab:f1:86:44:63: 1d:90:e1:68:71:f1:98:49:82:0b:61:90:e7:d6:dc: 0b:b9:04:92:d6:c3:2a:03:a2:85:85:45:ab:33:4a: 8e:49:2e:b6:3c:f3:20:8f:91:18:9d:ad:74:e6:0c: de:ba:31:72:2d:95:3b:ad:09:f3:21:64:e3:75:27: e7:6e:40:6a:6a:cf:52:7f:ac:45:75:74:cf:e3:0a: 92:08:7c:5d:72:71:32:fc:7f:29:ff:8b:35:9a:4a: 51:27:2a:25:d8:99:0f:b3:ab:fe:0e:00:e6:22:7d: b4:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:17:9C:65:4D:7B:7B:97:A5:A9:29:25:7E:BE:41:AC:B3:31:73:56 X509v3 Authority Key Identifier: keyid:9A:06:4E:A6:B6:6D:B4:DE:20:C9:3C:C0:41:B8:5A:17:06:C8:06:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:b6:e2:fb:e9:ae:0b:46:d5:6e:7f:ca:9b:c5:5d:1c:c3:56: 4b:b4:0e:91:a1:ad:30:e5:2b:d1:db:94:d3:1f:aa:56:9a:88: ac:67:46:54:69:59:45:bb:0b:11:29:4d:5e:06:e8:6d:24:fd: 02:43:c5:cb:7f:45:69:1e:1e:d9:44:ff:c3:f9:e0:93:f1:3c: 31:4e:8b:88:9c:33:05:35:9c:55:9f:4c:87:f3:c9:10:b8:4e: ac:65:17:fa:c9:37:d0:47:cb:dd:d3:0f:87:80:d0:de:54:b2: e0:9f:c8:c2:21:07:ca:a8:a6:fd:f2:97:e0:f4:49:8e:d8:0d: 4a:11:98:e2:21:97:60:63:00:6e:b5:b3:a4:f5:88:bc:71:4c: c7:fa:27:70:b4:16:64:87:b8:9f:e3:0f:52:a1:c2:9a:de:ee: 79:1b:93:c3:e0:d3:36:a2:76:e1:a2:d3:d5:dd:21:16:56:1c: d5:ba:1a:00:39:b9:4f:88:bc:ae:9f:0b:64:e1:71:c9:5f:9e: 96:fb:fa:6a:96:96:7f:fa:80:4d:50:f5:58:13:96:80:1a:d4: 53:a3:2c:75:55:20:b1:8c:c6:85:c2:e1:46:f0:92:02:5e:44: cc:a9:6a:8a:43:7f:d7:49:f6:af:6b:64:7d:92:9a:50:31:45: 7b:54:d8:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E1QkQxMTAvBgNVBAUTKDlBMDY0RUE2QjY2REI0REUyMEM5M0NDMDQxQjg1QTE3 MDZDODA2NzIwHhcNMjQwNTA1MDQ1MDQ3WhcNMjQwNTEyMDQ1MDQ3WjAYMRYwFAYD VQQDEw02NjM3MTAyNy0yNDBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvB2Jc+MqgZRdVp8Vou4HKqpEjtFJdUrFXBd28EUiyJviWRzbMadQiLJbUs6 LwtzcKIzJUidqCLvqHy4exa7iHJuSm/ldGFavrG4v6WbzEB5tH8fCZVhfRxVL9qy 4XcSWDUEKfPYhYr+Aa+M9NnlYazXdLwmloZ0SqSnaoyOR37h00QhNvewob1FXJm1 Hq2Zq/GGRGMdkOFocfGYSYILYZDn1twLuQSS1sMqA6KFhUWrM0qOSS62PPMgj5EY na105gzeujFyLZU7rQnzIWTjdSfnbkBqas9Sf6xFdXTP4wqSCHxdcnEy/H8p/4s1 mkpRJyol2JkPs6v+DgDmIn20eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEoXnGVN e3uXpakpJX6+QayzMXNWMB8GA1UdIwQYMBaAFJoGTqa2bbTeIMk8wEG4WhcGyAZy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTVCRC81NEVFRjUxNDFD RjcxMUVEQTAwRkQzNDNDNEY5QUUwMi9tZ1pPcHJadHRONGd5VHpBUWJoYUZ3YklC bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21nWk9wclp0dE40Z3lUekFRYmhhRndiSUJuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTVCRC81NEVFRjUxNDFDRjcxMUVEQTAwRkQzNDNDNEY5QUUwMi9tZ1pPcHJadHRO NGd5VHpBUWJoYUZ3YklCbkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+tuL76a4LRtVuf8qbxV0cw1ZLtA6Roa0w5SvR25TTH6pWmoisZ0ZU aVlFuwsRKU1eBuhtJP0CQ8XLf0VpHh7ZRP/D+eCT8TwxTouInDMFNZxVn0yH88kQ uE6sZRf6yTfQR8vd0w+HgNDeVLLgn8jCIQfKqKb98pfg9EmO2A1KEZjiIZdgYwBu tbOk9Yi8cUzH+idwtBZkh7if4w9SocKa3u55G5PD4NM2onbhotPV3SEWVhzVuhoA OblPiLyunwtk4XHJX56W+/pqlpZ/+oBNUPVYE5aAGtRToyx1VSCxjMaFwuFG8JIC XkTMqWqKQ3/XSfava2R9kppQMUV7VNil -----END CERTIFICATE-----Generated at Sun May 5 05:21:55 2024 by rpki-client on console-fra.rpki-client.org