$ rpki-client -vvf rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft File: JzKpmoY71iA82RXNcle10dmH6yg.mft (raw, json) Hash identifier: eBpr3RWtQVFnHqrA8HYdJTxXOR0Ofdd5WaaiC4V2COs= Subject key identifier: B9:C1:FF:D2:CC:76:78:9D:34:9E:7E:82:33:30:1D:94:10:05:B3:FF Authority key identifier: 27:32:A9:9A:86:3B:D6:20:3C:D9:15:CD:72:57:B5:D1:D9:87:EB:28 Certificate issuer: /CN=A9142A39/serialNumber=2732A99A863BD6203CD915CD7257B5D1D987EB28 Certificate serial: 2909 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft Manifest number: 2901 Signing time: Thu 02 May 2024 15:54:48 +0000 Manifest this update: Thu 02 May 2024 15:54:47 +0000 Manifest next update: Thu 09 May 2024 15:54:47 +0000 Files and hashes: 1: JzKpmoY71iA82RXNcle10dmH6yg.crl (hash: hVRDY09th3srhUp6VJLvoMFdxShD18Jk3NiG4f983uY=) 2: 2FF7E9A600BB11EA895E5253C4F9AE02.roa (hash: pNZMF+WBzUpeOcaYQoFvd/HRkM62Q3WH+Gxzwz98UQo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.crl rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 15:54:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10505 (0x2909) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142A39/serialNumber=2732A99A863BD6203CD915CD7257B5D1D987EB28 Validity Not Before: May 2 15:54:47 2024 GMT Not After : May 9 15:54:47 2024 GMT Subject: CN=6633b748-fbfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:87:d3:55:66:b6:69:7b:8e:a8:86:18:a9:ad: 6b:cb:99:b3:72:70:04:bd:de:4c:f2:95:74:e7:93: e0:cd:65:7e:76:10:71:15:dd:79:d9:36:fb:43:7e: b3:91:07:b5:67:a3:d1:f5:9f:2d:de:e3:3d:2a:fd: 55:a5:d1:22:da:42:09:e4:36:14:fb:33:81:d9:a9: 47:8c:b5:f8:38:c6:95:03:dd:06:ab:15:ae:84:70: b9:46:44:e5:56:8c:bc:14:de:e7:cb:16:eb:b0:96: c6:25:43:74:9c:be:d2:61:f6:5c:fd:fb:d1:73:bd: 6f:1f:22:58:9d:7d:73:1c:61:93:4c:9a:05:81:07: 27:1b:c9:d5:21:0c:ff:6a:5b:7a:e2:9e:6b:d5:49: 5c:c6:ce:c2:98:a2:a9:eb:8b:af:05:50:b4:73:da: 9b:28:5f:ff:35:a7:67:00:93:02:14:23:e2:f5:99: 44:3b:fb:fc:3c:33:27:e8:70:6e:56:e1:3c:4c:d0: 59:68:4f:48:73:dc:56:47:2b:b6:96:8a:e8:29:90: 0f:61:7f:85:fb:cd:6b:64:12:81:9b:ef:1c:34:d2: 52:26:90:01:ba:6b:91:a7:c4:23:f7:2e:05:13:21: 78:05:55:12:0e:7f:c1:a6:35:52:e2:93:69:84:69: 71:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:C1:FF:D2:CC:76:78:9D:34:9E:7E:82:33:30:1D:94:10:05:B3:FF X509v3 Authority Key Identifier: keyid:27:32:A9:9A:86:3B:D6:20:3C:D9:15:CD:72:57:B5:D1:D9:87:EB:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzKpmoY71iA82RXNcle10dmH6yg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142A39/A65949B23BC411E4B5A63E3BC4F9AE02/JzKpmoY71iA82RXNcle10dmH6yg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:65:c1:41:e3:26:61:6c:67:1b:c4:04:e8:98:03:ea:2f:f0: 11:17:7e:e2:55:27:e4:73:5d:9c:b2:69:39:03:fc:3a:28:d1: 40:c8:f5:cc:83:ee:0d:c8:87:06:40:5b:11:c8:b5:64:42:04: e7:9a:50:85:aa:0e:c1:95:8c:9a:9e:b9:a7:29:10:2f:73:7e: 7a:62:eb:6e:ae:79:1b:03:93:cb:e5:44:1b:21:dc:fb:83:76: e6:b6:d4:e2:ab:32:9b:f4:5d:ab:62:b0:36:2f:e9:72:fc:3b: 95:c8:5b:7d:0b:67:7c:25:26:16:13:06:73:c3:93:b1:4b:d3: 0e:b7:a0:d4:f6:bc:20:10:01:82:51:67:4b:c7:35:2e:25:be: 50:be:e3:0a:ad:9f:9b:62:60:eb:84:8d:e4:fa:1f:70:14:6d: c9:04:ce:f4:8d:73:78:21:89:a7:2c:88:0f:57:06:4a:51:42: f8:cc:bc:66:bd:8f:49:1e:6f:ee:19:f4:a4:d4:55:a2:17:95: 76:8a:fb:85:98:19:00:f1:26:4b:06:7f:f7:02:b9:0f:a5:4d: 64:f1:b1:a9:d6:81:4b:86:31:cb:ba:ca:de:cb:64:8f:c9:78: f0:5f:3e:aa:71:fd:52:3d:d7:d4:33:87:ab:10:3e:74:f3:74: 4e:c2:8e:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJBMzkxMTAvBgNVBAUTKDI3MzJBOTlBODYzQkQ2MjAzQ0Q5MTVDRDcyNTdCNUQx RDk4N0VCMjgwHhcNMjQwNTAyMTU1NDQ3WhcNMjQwNTA5MTU1NDQ3WjAYMRYwFAYD VQQDEw02NjMzYjc0OC1mYmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ofTVWa2aXuOqIYYqa1ry5mzcnAEvd5M8pV055PgzWV+dhBxFd152Tb7Q36z kQe1Z6PR9Z8t3uM9Kv1VpdEi2kIJ5DYU+zOB2alHjLX4OMaVA90GqxWuhHC5RkTl Voy8FN7nyxbrsJbGJUN0nL7SYfZc/fvRc71vHyJYnX1zHGGTTJoFgQcnG8nVIQz/ alt64p5r1Ulcxs7CmKKp64uvBVC0c9qbKF//NadnAJMCFCPi9ZlEO/v8PDMn6HBu VuE8TNBZaE9Ic9xWRyu2loroKZAPYX+F+81rZBKBm+8cNNJSJpABumuRp8Qj9y4F EyF4BVUSDn/BpjVS4pNphGlxSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLnB/9LM dnidNJ5+gjMwHZQQBbP/MB8GA1UdIwQYMBaAFCcyqZqGO9YgPNkVzXJXtdHZh+so MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkEzOS9BNjU5NDlCMjNC QzQxMUU0QjVBNjNFM0JDNEY5QUUwMi9KektwbW9ZNzFpQTgyUlhOY2xlMTBkbUg2 eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p6S3Btb1k3MWlBODJSWE5jbGUxMGRtSDZ5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkEzOS9BNjU5NDlCMjNCQzQxMUU0QjVBNjNFM0JDNEY5QUUwMi9KektwbW9ZNzFp QTgyUlhOY2xlMTBkbUg2eWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABZcFB4yZhbGcbxATomAPqL/ARF37iVSfkc12csmk5A/w6KNFAyPXM g+4NyIcGQFsRyLVkQgTnmlCFqg7BlYyanrmnKRAvc356YuturnkbA5PL5UQbIdz7 g3bmttTiqzKb9F2rYrA2L+ly/DuVyFt9C2d8JSYWEwZzw5OxS9MOt6DU9rwgEAGC UWdLxzUuJb5QvuMKrZ+bYmDrhI3k+h9wFG3JBM70jXN4IYmnLIgPVwZKUUL4zLxm vY9JHm/uGfSk1FWiF5V2ivuFmBkA8SZLBn/3ArkPpU1k8bGp1oFLhjHLusrey2SP yXjwXz6qcf1SPdfUM4erED5083ROwo7t -----END CERTIFICATE-----Generated at Thu May 2 17:43:05 2024 by rpki-client on console-fra.rpki-client.org