$ rpki-client -vvf rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft File: 1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft (raw, json) Hash identifier: QOBD2ikEVrZPWB2h8l87ZUq4O7G5wpBj8w2XZaBokwg= Subject key identifier: C0:A9:76:49:68:FA:94:AC:15:9C:63:3E:EB:15:7F:E0:E6:21:43:D8 Authority key identifier: D5:A0:25:06:34:DF:C0:3D:C9:CF:CA:BA:97:95:18:0F:F0:51:58:FC Certificate issuer: /CN=A914247C/serialNumber=D5A0250634DFC03DC9CFCABA9795180FF05158FC Certificate serial: 0A52 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft Manifest number: 0A46 Signing time: Sat 04 May 2024 20:39:55 +0000 Manifest this update: Sat 04 May 2024 20:39:55 +0000 Manifest next update: Sat 11 May 2024 20:39:55 +0000 Files and hashes: 1: 1aAlBjTfwD3Jz8q6l5UYD_BRWPw.crl (hash: PFZ3k4atqs0cScREJMAk3FxOS4J8BQoX7vm727f+Ja4=) 2: 9156042083EB11ECB7EC3B76C4F9AE02.roa (hash: GlJ1yeFR55LNoLckk6GQUAc5SYT4WibNg/OgJ7dHJMQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.crl rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2642 (0xa52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914247C/serialNumber=D5A0250634DFC03DC9CFCABA9795180FF05158FC Validity Not Before: May 4 20:39:55 2024 GMT Not After : May 11 20:39:55 2024 GMT Subject: CN=66369d1b-7324 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:84:2e:15:85:59:77:5c:e9:c4:12:24:3f:40: 69:0d:86:83:e8:2e:5d:8f:ea:96:29:60:05:be:cd: a7:a3:6d:36:19:a5:64:87:d9:14:3e:04:2f:26:a6: f0:7e:f2:6e:2e:45:4a:62:da:53:93:c2:da:ba:75: e2:b4:1d:13:c3:0a:45:93:e7:72:85:f3:e4:9a:56: 29:37:d9:27:0f:be:cd:fa:53:bd:ef:2b:6e:b5:44: 28:71:ee:3e:da:a0:a8:ef:ed:e5:ff:c4:93:9c:8b: 9c:4c:6b:d7:f0:ac:da:ce:d5:69:6a:f1:fc:e9:b0: 75:fb:c0:83:82:20:a6:a4:d7:bb:7c:dd:1f:29:ab: e7:b0:b8:f9:c1:eb:d7:10:22:25:01:67:55:86:c2: bb:f8:77:f1:56:7a:7b:f3:df:7c:07:60:37:77:58: 91:d1:ad:e0:e9:b6:62:6a:94:5d:a2:64:2e:59:fa: e6:33:08:b3:7d:33:f2:97:1d:61:46:86:96:17:28: 40:e7:81:8e:11:23:6a:5f:cc:eb:e9:0f:4c:9d:f6: 1e:ca:86:55:07:86:75:8b:83:da:b6:53:18:95:b4: 08:66:17:65:a2:19:36:f3:14:d5:e0:a7:75:bc:9a: d8:63:2e:10:c6:7a:64:c1:38:36:9e:4d:b8:78:ae: 77:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:A9:76:49:68:FA:94:AC:15:9C:63:3E:EB:15:7F:E0:E6:21:43:D8 X509v3 Authority Key Identifier: keyid:D5:A0:25:06:34:DF:C0:3D:C9:CF:CA:BA:97:95:18:0F:F0:51:58:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:e7:27:61:39:f6:d9:8f:94:cd:a0:0f:fe:33:c2:25:15:fa: c6:a8:66:d1:4f:5b:67:24:dc:5d:2d:c9:f3:3e:47:05:de:7f: 9d:0d:57:9d:ef:ec:ae:9a:bb:0e:be:9e:03:01:14:73:9e:9a: 4d:b6:43:9f:79:52:fb:3d:2e:d8:67:6c:1d:b0:10:2f:3d:11: 63:d3:f5:b4:7e:81:11:d7:e6:40:29:22:c0:f6:83:64:d8:e4: a3:e3:49:24:cb:8f:12:99:68:11:a3:78:cc:2c:54:7f:28:59: 4b:91:b3:68:2f:72:e3:8e:28:8d:1e:db:c8:ac:40:4e:86:e5: 8f:81:9d:21:23:f8:0c:73:db:e0:ba:63:1d:4f:9c:5a:c6:5c: 08:e8:77:cf:58:b3:7b:d5:0c:ea:aa:1f:c8:72:13:be:10:a0: b8:74:d6:dd:14:1c:db:59:c1:7d:f0:d8:09:66:41:2d:19:f4: 1f:1e:2d:2a:61:63:2b:bd:64:df:fe:4b:c6:77:7f:05:5b:f7: cd:5e:97:c1:94:69:d9:ba:60:5d:a0:06:9c:20:bc:6e:46:57: 33:c5:7c:26:4a:bb:cf:a6:6d:89:05:48:04:a2:e2:55:bd:1a: 2c:c1:bd:7f:d1:b5:f6:2b:7e:51:fe:99:f8:0c:20:a9:46:ef: 5d:46:9a:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI0N0MxMTAvBgNVBAUTKEQ1QTAyNTA2MzRERkMwM0RDOUNGQ0FCQTk3OTUxODBG RjA1MTU4RkMwHhcNMjQwNTA0MjAzOTU1WhcNMjQwNTExMjAzOTU1WjAYMRYwFAYD VQQDEw02NjM2OWQxYi03MzI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2IQuFYVZd1zpxBIkP0BpDYaD6C5dj+qWKWAFvs2no202GaVkh9kUPgQvJqbw fvJuLkVKYtpTk8LaunXitB0TwwpFk+dyhfPkmlYpN9knD77N+lO97ytutUQoce4+ 2qCo7+3l/8STnIucTGvX8KzaztVpavH86bB1+8CDgiCmpNe7fN0fKavnsLj5wevX ECIlAWdVhsK7+HfxVnp78998B2A3d1iR0a3g6bZiapRdomQuWfrmMwizfTPylx1h RoaWFyhA54GOESNqX8zr6Q9MnfYeyoZVB4Z1i4PatlMYlbQIZhdlohk28xTV4Kd1 vJrYYy4QxnpkwTg2nk24eK532QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMCpdklo +pSsFZxjPusVf+DmIUPYMB8GA1UdIwQYMBaAFNWgJQY038A9yc/KupeVGA/wUVj8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjQ3Qy84QTFDNDYxNjQz MEExMUVBODU4Q0RDNzZDNEY5QUUwMi8xYUFsQmpUZndEM0p6OHE2bDVVWURfQlJX UHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFhQWxCalRmd0QzSno4cTZsNVVZRF9CUldQdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjQ3Qy84QTFDNDYxNjQzMEExMUVBODU4Q0RDNzZDNEY5QUUwMi8xYUFsQmpUZndE M0p6OHE2bDVVWURfQlJXUHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC55ydhOfbZj5TNoA/+M8IlFfrGqGbRT1tnJNxdLcnzPkcF3n+dDVed 7+yumrsOvp4DARRznppNtkOfeVL7PS7YZ2wdsBAvPRFj0/W0foER1+ZAKSLA9oNk 2OSj40kky48SmWgRo3jMLFR/KFlLkbNoL3LjjiiNHtvIrEBOhuWPgZ0hI/gMc9vg umMdT5xaxlwI6HfPWLN71Qzqqh/IchO+EKC4dNbdFBzbWcF98NgJZkEtGfQfHi0q YWMrvWTf/kvGd38FW/fNXpfBlGnZumBdoAacILxuRlczxXwmSrvPpm2JBUgEouJV vRoswb1/0bX2K35R/pn4DCCpRu9dRprZ -----END CERTIFICATE-----Generated at Sat May 4 21:32:58 2024 by rpki-client on console-fra.rpki-client.org