$ rpki-client -vvf rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft File: fWXr4UwwRuc-OYaVcwKibggfGvg.mft (raw, json) Hash identifier: 04dRs45la3IMZ8WCjI8qYY7oluB0qGoIz9YrqM+9wYI= Subject key identifier: 4C:05:3A:FB:6D:83:E2:80:C6:19:05:77:3B:98:6C:A6:40:34:97:27 Authority key identifier: 7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 Certificate issuer: /CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Certificate serial: 259F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft Manifest number: 24CE Signing time: Tue 30 Apr 2024 16:08:00 +0000 Manifest this update: Tue 30 Apr 2024 16:08:00 +0000 Manifest next update: Tue 07 May 2024 16:08:00 +0000 Files and hashes: 1: fWXr4UwwRuc-OYaVcwKibggfGvg.crl (hash: wM9xUS8OeBViXLSRf2BV05XLPF3E3gzsB3RSRVkfH6o=) 2: 7196A634B0F311E5AB30F151C4F9AE02.roa (hash: mW5hlot/OWxdGy2G+8S/U4WU7UXA70pXWgTeIYHtZ3c=) 3: 089CB7F8E41C11E9AD4A8D16C4F9AE02.roa (hash: LW+TIr5v+G3CKRxsu0XP/t1VD2sS3Nf1hCjSfIn2mxw=) 4: 4F8D63203EBF11EBA940A946C4F9AE02.roa (hash: 0TqUmQGE+hp1bAha/REIBD7FqnSC8+MYeNCKfqOEapo=) 5: 3D7A10E8D94411E98E28CD85C4F9AE02.roa (hash: yG/I2mAqJpjKOayp1Q7VdbrAfMnbfz44sPipJGfWDUQ=) 6: 68356576B0F311E5AB30F151C4F9AE02.roa (hash: Lk+ppgIcRBj21y/ZGAyw+BybPAWYveI+BEAROftcudA=) 7: 73464EBCB0F311E5AB30F151C4F9AE02.roa (hash: SlptDjMQzHFALp9kIn44Euk5/Ii0MpZqMsnCNITNhKY=) 8: E4E0C13C5EBF11EAB066F050C4F9AE02.roa (hash: A6ivNhH2RwD+ywK9KEuzb7n0XDt7t1u93O0rUoFtcQw=) 9: 3E054AE6D94411E98E28CD85C4F9AE02.roa (hash: AMb0DaRiwZGuNrwWoaC/6R02ajPN3UOcl8c+ZwWjpJ0=) 10: 40397ED6D94411E98E28CD85C4F9AE02.roa (hash: 9idyDUq+0eQdkgLPwFC8qtnB6uP6OIUzczWqkhFlWkw=) 11: 3C670256D94411E98E28CD85C4F9AE02.roa (hash: X6Q5mYb5UYoGm54oHYSyGZZPwKZ9w7jQPziSxYN89/o=) 12: 40E8489ED94411E98E28CD85C4F9AE02.roa (hash: iND9o18eqcZPfyUOd1YGb3LhJrXmj/B/zX4GmAqgssM=) 13: 3F2B28B4D94411E98E28CD85C4F9AE02.roa (hash: x5D7YFaNXh4p45cM45XRDD05Cd62+rqCLj94VMZPKwI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 16:07:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9631 (0x259f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Validity Not Before: Apr 30 16:08:00 2024 GMT Not After : May 7 16:08:00 2024 GMT Subject: CN=66311760-6252 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2d:e9:67:77:f5:b3:d4:5b:32:91:f4:16:e1: 95:d3:49:a1:15:5a:c9:3b:08:d1:65:c6:54:5c:e8: 05:bd:2d:8f:d1:64:64:b7:29:94:eb:62:de:f5:a7: a4:09:df:d9:21:b6:d8:be:52:43:eb:9f:5e:7f:93: 17:22:bd:c0:94:d2:d8:17:26:81:be:25:d1:af:c8: a9:07:3e:de:e3:77:dc:70:04:0c:54:13:e0:5f:b7: e0:da:f5:f5:df:63:92:33:57:62:21:4b:fb:29:c6: ab:b5:17:da:d7:13:17:11:bd:df:1f:b1:26:53:23: 61:69:a7:59:16:16:3b:a3:de:78:0d:e3:c1:31:23: 8d:e8:af:7b:55:ff:4e:db:5e:5f:6d:92:f0:43:23: 7d:39:96:8d:9b:74:c5:53:ac:95:db:99:5a:98:b7: 07:04:36:15:00:73:62:fe:a3:18:f0:16:52:96:4d: a7:25:ac:bb:39:ac:f5:12:f5:55:2b:43:71:b2:a5: a2:a6:cf:9c:4b:a9:bd:ea:cd:68:0a:9d:eb:8f:83: 40:d1:69:2e:4b:73:f4:28:37:b7:ba:71:60:7b:55: 2e:66:ea:db:63:33:c5:54:c5:e7:49:a4:85:6b:ca: ad:1e:e8:46:6b:43:99:b3:ab:5a:55:d4:b9:b3:73: af:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:05:3A:FB:6D:83:E2:80:C6:19:05:77:3B:98:6C:A6:40:34:97:27 X509v3 Authority Key Identifier: keyid:7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:98:10:b6:93:5b:93:71:2f:12:bc:1f:f0:38:06:71:ae:94: a6:ba:27:e4:2b:bd:3d:af:4b:3e:08:78:5d:2d:74:dd:fe:82: aa:1c:51:9a:95:bf:1c:d1:66:fc:c3:a0:5a:50:15:b6:d7:e5: 1c:3f:46:6c:9e:9b:01:7d:73:f5:54:d9:fc:e1:df:b2:1a:b3: c5:ec:98:5a:0e:15:ce:2b:64:7d:34:4a:6a:f8:3e:b4:1c:79: 40:d6:de:f8:28:c7:8c:78:57:75:45:51:93:ad:03:c3:83:29: b6:71:ef:b1:80:a1:71:46:8e:87:a4:92:46:d5:e1:78:1a:ed: dc:5b:fe:a0:48:e8:9d:31:71:d9:2b:8d:35:e4:61:c5:1a:b6: cb:04:da:28:0a:83:4e:b9:a1:ed:c4:8a:cd:d8:84:f3:4f:68: e6:6b:9f:1b:4f:8e:1e:cb:58:9c:8b:38:9c:d9:5a:f5:5e:b7: 1e:c1:78:1c:0c:b7:c2:47:7e:c8:4a:7a:ed:3a:6e:58:56:e9: 7c:6f:ee:3e:d7:79:3b:62:c7:30:15:59:21:e3:62:8c:26:7a: 72:1c:28:76:cf:96:e2:17:63:c0:c3:42:78:ee:f3:36:74:44: cf:9f:88:fe:24:24:16:b0:1a:5e:50:56:c0:4c:0f:2c:2f:ac: 2e:61:36:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0NDYxMTAvBgNVBAUTKDdENjVFQkUxNEMzMDQ2RTczRTM5ODY5NTczMDJBMjZF MDgxRjFBRjgwHhcNMjQwNDMwMTYwODAwWhcNMjQwNTA3MTYwODAwWjAYMRYwFAYD VQQDEw02NjMxMTc2MC02MjUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuy3pZ3f1s9RbMpH0FuGV00mhFVrJOwjRZcZUXOgFvS2P0WRktymU62Le9aek Cd/ZIbbYvlJD659ef5MXIr3AlNLYFyaBviXRr8ipBz7e43fccAQMVBPgX7fg2vX1 32OSM1diIUv7KcartRfa1xMXEb3fH7EmUyNhaadZFhY7o954DePBMSON6K97Vf9O 215fbZLwQyN9OZaNm3TFU6yV25lamLcHBDYVAHNi/qMY8BZSlk2nJay7Oaz1EvVV K0NxsqWips+cS6m96s1oCp3rj4NA0WkuS3P0KDe3unFge1UuZurbYzPFVMXnSaSF a8qtHuhGa0OZs6taVdS5s3OvSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEwFOvtt g+KAxhkFdzuYbKZANJcnMB8GA1UdIwQYMBaAFH1l6+FMMEbnPjmGlXMCom4IHxr4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTQ0Ni9BQ0EyRTc1QzFG QzUxMUU1QjQ1MERENjJDNEY5QUUwMi9mV1hyNFV3d1J1Yy1PWWFWY3dLaWJnZ2ZH dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZXWHI0VXd3UnVjLU9ZYVZjd0tpYmdnZkd2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTQ0Ni9BQ0EyRTc1QzFGQzUxMUU1QjQ1MERENjJDNEY5QUUwMi9mV1hyNFV3d1J1 Yy1PWWFWY3dLaWJnZ2ZHdmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgmBC2k1uTcS8SvB/wOAZxrpSmuifkK709r0s+CHhdLXTd/oKqHFGa lb8c0Wb8w6BaUBW21+UcP0ZsnpsBfXP1VNn84d+yGrPF7JhaDhXOK2R9NEpq+D60 HHlA1t74KMeMeFd1RVGTrQPDgym2ce+xgKFxRo6HpJJG1eF4Gu3cW/6gSOidMXHZ K4015GHFGrbLBNooCoNOuaHtxIrN2ITzT2jma58bT44ey1icizic2Vr1XrcewXgc DLfCR37ISnrtOm5YVul8b+4+13k7YscwFVkh42KMJnpyHCh2z5biF2PAw0J47vM2 dETPn4j+JCQWsBpeUFbATA8sL6wuYTY2 -----END CERTIFICATE-----Generated at Tue Apr 30 18:56:58 2024 by rpki-client on console-fra.rpki-client.org