$ rpki-client -vvf rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft File: r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft (raw, json) Hash identifier: /YjgG3v0k8j36hJ/KWj2XxXA2Eg6AV3xv/cJkPDyhXA= Subject key identifier: 25:80:B5:F7:DD:B3:BD:C5:83:3B:FB:6C:86:BB:40:1D:41:52:A2:7E Authority key identifier: AF:D9:43:E4:B1:42:76:36:59:E0:8F:8D:BF:6C:E7:E6:D8:0C:C5:17 Certificate issuer: /CN=A913BA97/serialNumber=AFD943E4B142763659E08F8DBF6CE7E6D80CC517 Certificate serial: EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft Manifest number: E6 Signing time: Sun 05 May 2024 05:57:08 +0000 Manifest this update: Sun 05 May 2024 05:57:08 +0000 Manifest next update: Sun 12 May 2024 05:57:08 +0000 Files and hashes: 1: r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl (hash: 4dfJ7st1OLJvnl0dGAUvYiZPzQcIaUrjkcpqcljCBGw=) 2: D793DD56FADF11EDAFF63D09C4F9AE02.roa (hash: oM0R2/P8HciNGnDZ2neDe3v0u8CL7kwA/Leow6cKnKM=) 3: D6412850FADF11EDAFF63D09C4F9AE02.roa (hash: 7OtEofE3nTfr6udQgsj6oRmVKhWPKS/6rM17wBvwqVU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 05:57:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 236 (0xec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BA97/serialNumber=AFD943E4B142763659E08F8DBF6CE7E6D80CC517 Validity Not Before: May 5 05:57:08 2024 GMT Not After : May 12 05:57:08 2024 GMT Subject: CN=66371fb4-1d29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:11:1a:4f:98:0b:90:70:4f:0f:0f:fd:c7:a7: 95:de:ab:86:f8:de:b3:b6:3d:b1:43:74:57:e1:1f: b1:42:cb:21:3a:a8:3e:67:5b:6e:f0:ea:b0:ea:22: b8:da:3d:b3:f3:16:21:a1:8a:b9:d3:ea:02:a8:df: 1e:84:96:6b:0a:ef:31:a7:d8:22:d8:61:99:f2:1b: 4e:38:af:9e:ba:1d:3c:c0:95:ff:3e:1a:ee:1b:7c: a7:b5:89:12:a8:56:18:3e:1c:00:d2:b4:d9:84:0a: 13:99:c7:56:e8:47:e6:84:2d:a3:a0:f0:bd:0e:eb: 20:6f:08:2e:0b:ae:4a:0d:50:e1:a6:91:f0:3a:16: ed:c5:81:92:7f:bc:a8:6e:6c:4a:61:be:de:cb:e8: a7:d9:7e:a6:a9:f1:fc:fd:67:71:9b:36:fd:d8:63: 13:e2:c4:ec:15:00:06:2d:11:97:ec:40:7c:ef:95: b1:e4:cb:6e:6e:05:b6:a1:3a:a0:80:5f:c3:98:d6: 48:64:5e:8d:17:d0:21:11:18:9e:d9:b3:06:ee:12: 84:b4:0d:54:b9:b7:18:04:2e:ac:3b:d2:f7:d2:8b: af:92:aa:a6:d1:d5:d0:a5:40:bf:3c:0a:bc:84:0e: d8:89:bc:07:a0:64:da:39:0f:59:a3:96:a6:6a:d7: f9:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:80:B5:F7:DD:B3:BD:C5:83:3B:FB:6C:86:BB:40:1D:41:52:A2:7E X509v3 Authority Key Identifier: keyid:AF:D9:43:E4:B1:42:76:36:59:E0:8F:8D:BF:6C:E7:E6:D8:0C:C5:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:b9:88:59:a2:bb:e0:3a:41:ea:3e:18:0a:1c:7f:ec:fd:99: c9:ac:6e:0b:f6:bc:8e:bf:83:43:5b:fb:2e:ec:e9:3a:d5:82: b4:4f:5a:20:51:f8:9d:ef:3b:7a:0f:a5:a5:96:b9:b5:37:13: db:b0:d7:6e:60:8f:bb:50:ff:0b:e9:b9:72:fe:8a:2b:5a:40: 71:ed:36:aa:77:9c:fb:15:4b:39:9f:9c:3f:8d:eb:b0:cd:9e: 25:46:8f:88:58:e2:92:86:ee:a5:a6:47:2a:13:6c:e3:5a:fa: 20:5c:eb:05:d0:a2:38:d6:da:5f:8a:34:7f:16:d9:c0:2b:ad: 9d:7c:98:66:a7:fc:32:39:75:29:d7:e2:28:3b:fd:5b:1d:2d: 70:84:30:b4:6f:5f:ab:1a:73:b2:32:f0:cc:66:dd:93:3d:cf: 6c:9b:83:3c:cc:6e:55:4f:f5:d3:98:b8:b5:0d:4b:e0:f4:fc: c7:ad:82:b8:77:6e:26:5b:e8:a3:af:df:b5:12:8b:d5:b8:30: c2:35:a7:53:22:f8:6f:4c:7e:53:31:24:f1:7e:36:84:82:77: ae:b2:27:0d:38:2f:98:ed:b1:c1:51:76:76:e4:e4:fa:a2:1d: 85:cd:8c:ae:f3:f0:8e:97:c2:46:2f:c4:8f:7d:74:bd:1b:6e: 97:aa:50:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0JBOTcxMTAvBgNVBAUTKEFGRDk0M0U0QjE0Mjc2MzY1OUUwOEY4REJGNkNFN0U2 RDgwQ0M1MTcwHhcNMjQwNTA1MDU1NzA4WhcNMjQwNTEyMDU1NzA4WjAYMRYwFAYD VQQDEw02NjM3MWZiNC0xZDI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAshEaT5gLkHBPDw/9x6eV3quG+N6ztj2xQ3RX4R+xQsshOqg+Z1tu8Oqw6iK4 2j2z8xYhoYq50+oCqN8ehJZrCu8xp9gi2GGZ8htOOK+euh08wJX/PhruG3yntYkS qFYYPhwA0rTZhAoTmcdW6EfmhC2joPC9DusgbwguC65KDVDhppHwOhbtxYGSf7yo bmxKYb7ey+in2X6mqfH8/Wdxmzb92GMT4sTsFQAGLRGX7EB875Wx5MtubgW2oTqg gF/DmNZIZF6NF9AhERie2bMG7hKEtA1UubcYBC6sO9L30ouvkqqm0dXQpUC/PAq8 hA7YibwHoGTaOQ9Zo5amatf5eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCWAtffd s73Fgzv7bIa7QB1BUqJ+MB8GA1UdIwQYMBaAFK/ZQ+SxQnY2WeCPjb9s5+bYDMUX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQkE5Ny9GMUZFQjFGRUFD NEExMUVEQTdGMUIwNDRDNEY5QUUwMi9yOWxENUxGQ2RqWlo0SS1OdjJ6bjV0Z014 UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I5bEQ1TEZDZGpaWjRJLU52MnpuNXRnTXhSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QkE5Ny9GMUZFQjFGRUFDNEExMUVEQTdGMUIwNDRDNEY5QUUwMi9yOWxENUxGQ2Rq Wlo0SS1OdjJ6bjV0Z014UmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfuYhZorvgOkHqPhgKHH/s/ZnJrG4L9ryOv4NDW/su7Ok61YK0T1og Ufid7zt6D6Wllrm1NxPbsNduYI+7UP8L6bly/oorWkBx7Taqd5z7FUs5n5w/jeuw zZ4lRo+IWOKShu6lpkcqE2zjWvogXOsF0KI41tpfijR/FtnAK62dfJhmp/wyOXUp 1+IoO/1bHS1whDC0b1+rGnOyMvDMZt2TPc9sm4M8zG5VT/XTmLi1DUvg9PzHrYK4 d24mW+ijr9+1EovVuDDCNadTIvhvTH5TMSTxfjaEgneusicNOC+Y7bHBUXZ25OT6 oh2FzYyu8/COl8JGL8SPfXS9G26XqlAM -----END CERTIFICATE-----Generated at Sun May 5 08:39:00 2024 by rpki-client on console-fra.rpki-client.org