$ rpki-client -vvf rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.mft File: joN3gQz5wgS7ElhPPltfBQNoJG8.mft (raw, json) Hash identifier: R+qwYRiWJscR8jfogok8SkXCtLLQ/PQulvEUiIxMTio= Subject key identifier: BF:C2:D4:53:58:82:53:30:B1:44:7E:D9:CA:ED:D2:03:9B:8F:B1:2F Authority key identifier: 8E:83:77:81:0C:F9:C2:04:BB:12:58:4F:3E:5B:5F:05:03:68:24:6F Certificate issuer: /CN=A913F0E3/serialNumber=8E8377810CF9C204BB12584F3E5B5F050368246F Certificate serial: 1E02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.mft Manifest number: 1DE6 Signing time: Sat 04 May 2024 16:30:30 +0000 Manifest this update: Sat 04 May 2024 16:30:29 +0000 Manifest next update: Sat 11 May 2024 16:30:29 +0000 Files and hashes: 1: joN3gQz5wgS7ElhPPltfBQNoJG8.crl (hash: yAd+cWvl2SP9fw02G1jFexIrj91rL71lq43q74k1ycg=) 2: 214233D0E46211EBB880A73AC4F9AE02.roa (hash: lg+GMx809C9t6MoJJjhpeDWTEsKTDm3tsnDSB6Fm4Go=) 3: 4D240522C92711EDAE3AB84EC4F9AE02.roa (hash: EIHjK2e+E7rHjVZMC+fDNtdY3pw8jNLvA/ctsL3ijIg=) 4: 33522F58CC2D11EDABE25F72C4F9AE02.roa (hash: q/aCOWiQ3P4bmw2k3J2LI9loy9lkToU9uj8Vd6x6UhA=) 5: 229357E6E46211EBB880A73AC4F9AE02.roa (hash: /tuH2o+L6COqz455MtJQT1smgIzMIZN+NTYUwLLg1Co=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.crl rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 16:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7682 (0x1e02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F0E3/serialNumber=8E8377810CF9C204BB12584F3E5B5F050368246F Validity Not Before: May 4 16:30:29 2024 GMT Not After : May 11 16:30:29 2024 GMT Subject: CN=663662a5-4fdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b3:94:3f:a7:bb:bd:40:be:58:35:f0:89:36: 39:d4:82:a6:07:0b:59:59:dd:d9:9f:c7:bb:2f:27: 01:74:d8:05:fc:14:a2:db:b6:39:de:87:59:23:98: 6e:f0:06:c2:2a:70:64:18:63:78:b3:1f:11:b2:32: 19:ba:22:66:e8:82:75:0e:5f:92:29:f6:87:f5:2b: 70:77:b9:ed:15:28:c6:ae:11:c1:d7:01:a0:2a:5b: 29:86:d4:00:45:dc:63:a5:94:88:45:d0:87:9a:04: d3:7e:63:09:42:50:10:88:ae:9b:a2:f2:0f:27:ae: cb:b6:ff:63:ab:81:79:10:30:ef:fe:16:cb:91:a1: 2c:20:75:39:0e:b2:56:dc:ce:16:ba:02:b0:cf:fd: 3d:88:dc:50:6c:ee:8d:4f:68:b9:5b:86:14:ba:41: 7f:f3:ab:58:71:5c:b6:2a:66:58:c5:e9:e6:cd:ed: 80:e5:d0:aa:41:2c:6f:c4:2e:c0:13:77:ff:90:6f: 1a:62:43:a9:37:50:03:c6:f3:40:11:54:54:6c:44: d3:5b:0e:93:3e:58:fc:43:89:cb:e0:2a:77:2a:f6: 8b:75:e6:2b:47:b1:33:15:96:6d:3e:c8:29:13:6c: 3d:01:63:b6:fc:e6:69:f5:df:fe:c7:5d:f8:f5:17: d3:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:C2:D4:53:58:82:53:30:B1:44:7E:D9:CA:ED:D2:03:9B:8F:B1:2F X509v3 Authority Key Identifier: keyid:8E:83:77:81:0C:F9:C2:04:BB:12:58:4F:3E:5B:5F:05:03:68:24:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:0a:c3:1a:1c:7f:42:7c:31:48:7d:ed:9a:1e:36:95:d7:ed: 6a:b3:7f:6d:89:32:b0:37:0e:5e:68:84:51:26:aa:23:27:cb: 99:fa:a5:ce:e5:03:c8:a6:f7:3c:a6:72:7d:87:0e:bd:01:94: dd:73:d4:b4:b0:74:7d:93:c0:77:dd:c6:50:bd:aa:b4:fe:c0: c7:76:c0:47:10:28:71:78:6b:64:5e:98:84:b3:cd:0e:c6:29: 55:17:4f:96:ba:5c:b2:7f:b5:0a:53:78:de:03:6d:eb:8b:e4: 34:b2:48:43:82:0c:df:b3:b8:59:39:d1:9c:42:86:ad:ae:e9: 21:16:f9:50:24:40:1d:8f:e4:6a:8c:f3:cf:20:96:0f:4d:d2: 9e:b3:55:83:9b:65:22:71:bc:25:73:86:95:db:ae:7a:6a:3d: f7:74:71:e4:1c:96:50:8f:d4:c5:41:77:ef:ce:98:2b:0e:c3: 92:f7:2b:a2:5c:a2:fb:16:66:a8:c2:bf:f2:b2:01:61:87:75: c6:50:2f:2c:4d:e5:c0:24:b6:b7:8a:ae:e9:86:3f:e2:c8:dc: b2:a7:63:41:85:df:e7:bf:80:76:a8:5d:85:74:5c:84:53:75: b4:b2:e0:10:59:7e:dd:be:d9:a2:2a:91:e4:11:eb:bd:61:c0: d1:c8:05:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YwRTMxMTAvBgNVBAUTKDhFODM3NzgxMENGOUMyMDRCQjEyNTg0RjNFNUI1RjA1 MDM2ODI0NkYwHhcNMjQwNTA0MTYzMDI5WhcNMjQwNTExMTYzMDI5WjAYMRYwFAYD VQQDEw02NjM2NjJhNS00ZmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArbOUP6e7vUC+WDXwiTY51IKmBwtZWd3Zn8e7LycBdNgF/BSi27Y53odZI5hu 8AbCKnBkGGN4sx8RsjIZuiJm6IJ1Dl+SKfaH9Stwd7ntFSjGrhHB1wGgKlsphtQA RdxjpZSIRdCHmgTTfmMJQlAQiK6bovIPJ67Ltv9jq4F5EDDv/hbLkaEsIHU5DrJW 3M4WugKwz/09iNxQbO6NT2i5W4YUukF/86tYcVy2KmZYxenmze2A5dCqQSxvxC7A E3f/kG8aYkOpN1ADxvNAEVRUbETTWw6TPlj8Q4nL4Cp3KvaLdeYrR7EzFZZtPsgp E2w9AWO2/OZp9d/+x1349RfTHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL/C1FNY glMwsUR+2crt0gObj7EvMB8GA1UdIwQYMBaAFI6Dd4EM+cIEuxJYTz5bXwUDaCRv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjBFMy8yOTE1NzZCRTZC MzQxMUU2OTE4NEI2NkNDNEY5QUUwMi9qb04zZ1F6NXdnUzdFbGhQUGx0ZkJRTm9K RzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pvTjNnUXo1d2dTN0VsaFBQbHRmQlFOb0pHOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjBFMy8yOTE1NzZCRTZCMzQxMUU2OTE4NEI2NkNDNEY5QUUwMi9qb04zZ1F6NXdn UzdFbGhQUGx0ZkJRTm9KRzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDCsMaHH9CfDFIfe2aHjaV1+1qs39tiTKwNw5eaIRRJqojJ8uZ+qXO 5QPIpvc8pnJ9hw69AZTdc9S0sHR9k8B33cZQvaq0/sDHdsBHEChxeGtkXpiEs80O xilVF0+Wulyyf7UKU3jeA23ri+Q0skhDggzfs7hZOdGcQoatrukhFvlQJEAdj+Rq jPPPIJYPTdKes1WDm2Uicbwlc4aV2656aj33dHHkHJZQj9TFQXfvzpgrDsOS9yui XKL7Fmaowr/ysgFhh3XGUC8sTeXAJLa3iq7phj/iyNyyp2NBhd/nv4B2qF2FdFyE U3W0suAQWX7dvtmiKpHkEeu9YcDRyAXK -----END CERTIFICATE-----Generated at Sat May 4 17:19:48 2024 by rpki-client on console-fra.rpki-client.org