$ rpki-client -vvf rpki.apnic.net/member_repository/A9146207/8C68B9A2098111EB9D461B30C4F9AE02/iX4CzNjrQDmng9AjecVf7p8M7lk.mft File: iX4CzNjrQDmng9AjecVf7p8M7lk.mft (raw, json) Hash identifier: HIAXTgblxm1fY5teRUdie+aYfAskFKJBa2XyK9Tsw9o= Subject key identifier: 14:C0:6F:5C:F1:7B:BE:65:31:81:BD:EF:30:2F:25:E7:04:48:3E:73 Authority key identifier: 89:7E:02:CC:D8:EB:40:39:A7:83:D0:23:79:C5:5F:EE:9F:0C:EE:59 Certificate issuer: /CN=A9146207/serialNumber=897E02CCD8EB4039A783D02379C55FEE9F0CEE59 Certificate serial: 0720 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iX4CzNjrQDmng9AjecVf7p8M7lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146207/8C68B9A2098111EB9D461B30C4F9AE02/iX4CzNjrQDmng9AjecVf7p8M7lk.mft Manifest number: 0707 Signing time: Tue 30 Apr 2024 16:25:31 +0000 Manifest this update: Tue 30 Apr 2024 16:25:30 +0000 Manifest next update: Tue 07 May 2024 16:25:30 +0000 Files and hashes: 1: iX4CzNjrQDmng9AjecVf7p8M7lk.crl (hash: cJaNC+Yc0o77I0a6Foc0NWdt3mdBPkm57Upd00afiJ8=) 2: E19826A0EAA511EBA4C1F32CC4F9AE02.roa (hash: gYJqe1joyytxkN1ZytJH28Ehz1uUP2ymtDRMZmWEPps=) 3: 0CC38EEC80E711EBB8CFF825C4F9AE02.roa (hash: pT4OFb0Ut3O3WHsP00oq6WU/Xt3BvFk/JWRe+d3rVAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146207/8C68B9A2098111EB9D461B30C4F9AE02/iX4CzNjrQDmng9AjecVf7p8M7lk.crl rsync://rpki.apnic.net/member_repository/A9146207/8C68B9A2098111EB9D461B30C4F9AE02/iX4CzNjrQDmng9AjecVf7p8M7lk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iX4CzNjrQDmng9AjecVf7p8M7lk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 16:25:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1824 (0x720) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146207/serialNumber=897E02CCD8EB4039A783D02379C55FEE9F0CEE59 Validity Not Before: Apr 30 16:25:30 2024 GMT Not After : May 7 16:25:30 2024 GMT Subject: CN=66311b7a-ad6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:4f:2e:b7:51:c5:f8:27:77:8a:bf:31:9f:16: 95:39:df:1a:90:48:9a:e4:62:73:10:d9:48:67:b2: 75:af:c4:90:18:9a:5b:71:69:94:33:3f:80:b1:10: cf:0d:9b:b3:fd:e2:a5:49:18:19:8f:4f:c0:5e:e3: 6d:61:80:4c:23:96:6d:c5:d4:9a:40:45:6e:39:ea: df:52:c6:41:32:19:52:eb:c1:cc:05:f2:cd:c5:e7: 6c:52:8f:ff:e0:df:c0:88:9e:49:d8:b0:92:c2:b9: c8:b0:71:71:98:8b:00:03:5a:d6:ab:5c:26:13:49: 92:8e:94:49:93:74:d6:d5:93:46:6e:2d:55:96:2d: b2:80:a5:c1:67:16:48:63:26:72:53:66:12:a3:3d: a8:99:3a:8f:e3:00:a5:9d:0c:55:81:4c:be:82:da: 27:a3:14:c4:a9:44:b6:11:31:6b:bb:fc:d0:53:ac: 96:84:ec:b5:26:70:b5:6d:02:e4:1f:30:85:4c:12: 25:d0:6f:c8:02:ac:c0:bd:e6:82:be:ec:b0:ca:4b: b7:e5:e0:af:e8:f0:b7:cf:09:d4:3e:e7:04:cb:d2: 62:85:cd:8f:be:59:92:bb:69:87:98:5a:4a:48:f3: 52:f1:9d:7e:ee:ea:eb:fb:3a:21:84:cd:5d:4e:16: 8f:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:C0:6F:5C:F1:7B:BE:65:31:81:BD:EF:30:2F:25:E7:04:48:3E:73 X509v3 Authority Key Identifier: keyid:89:7E:02:CC:D8:EB:40:39:A7:83:D0:23:79:C5:5F:EE:9F:0C:EE:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146207/8C68B9A2098111EB9D461B30C4F9AE02/iX4CzNjrQDmng9AjecVf7p8M7lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iX4CzNjrQDmng9AjecVf7p8M7lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146207/8C68B9A2098111EB9D461B30C4F9AE02/iX4CzNjrQDmng9AjecVf7p8M7lk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:d7:02:09:8b:4e:a4:49:3f:14:0d:87:8a:32:9d:36:3c:d3: 70:e7:ed:e1:17:0b:08:5b:b8:fe:bc:79:04:eb:7e:4e:c0:b1: 2c:69:c9:f6:9f:dd:96:ee:64:28:26:c8:24:1c:63:3c:e6:29: bd:f2:a7:e9:5f:b4:ed:fc:b4:89:6b:71:0e:87:df:2c:c6:ab: e8:2e:14:f0:07:8d:df:03:79:cd:4d:6a:51:6f:1e:29:af:c1: ff:dd:17:03:b8:b2:27:c4:7f:55:00:94:fe:3f:1f:0a:50:21: eb:35:a3:23:2b:c8:ae:38:ca:9b:34:6a:8c:10:a4:86:87:8a: 22:e3:bd:54:9f:59:3a:62:16:60:be:f6:cb:01:4f:29:a3:99: 25:99:5e:0d:93:98:23:b2:ff:4a:78:8c:cf:2a:5a:4f:a5:57: c1:4c:91:42:d0:ab:20:80:47:75:05:fc:71:50:d0:bf:68:74: 98:29:19:2d:1a:2a:b2:9e:90:c1:3e:cc:74:9b:69:15:af:b3: e4:c0:64:de:4f:c9:39:25:e2:4a:fe:d6:6f:df:85:e7:1e:a3: fe:92:5c:71:f6:18:f1:59:6f:ca:6e:dd:71:a9:f5:56:b3:7d: 33:1d:a5:3e:7e:17:61:ac:5b:f4:2f:14:e6:0a:b5:66:74:64: 28:ac:92:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyMDcxMTAvBgNVBAUTKDg5N0UwMkNDRDhFQjQwMzlBNzgzRDAyMzc5QzU1RkVF OUYwQ0VFNTkwHhcNMjQwNDMwMTYyNTMwWhcNMjQwNTA3MTYyNTMwWjAYMRYwFAYD VQQDEw02NjMxMWI3YS1hZDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwE8ut1HF+Cd3ir8xnxaVOd8akEia5GJzENlIZ7J1r8SQGJpbcWmUMz+AsRDP DZuz/eKlSRgZj0/AXuNtYYBMI5ZtxdSaQEVuOerfUsZBMhlS68HMBfLNxedsUo// 4N/AiJ5J2LCSwrnIsHFxmIsAA1rWq1wmE0mSjpRJk3TW1ZNGbi1Vli2ygKXBZxZI YyZyU2YSoz2omTqP4wClnQxVgUy+gtonoxTEqUS2ETFru/zQU6yWhOy1JnC1bQLk HzCFTBIl0G/IAqzAveaCvuywyku35eCv6PC3zwnUPucEy9Jihc2PvlmSu2mHmFpK SPNS8Z1+7urr+zohhM1dThaPzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBTAb1zx e75lMYG97zAvJecESD5zMB8GA1UdIwQYMBaAFIl+AszY60A5p4PQI3nFX+6fDO5Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjIwNy84QzY4QjlBMjA5 ODExMUVCOUQ0NjFCMzBDNEY5QUUwMi9pWDRDek5qclFEbW5nOUFqZWNWZjdwOE03 bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lYNEN6TmpyUURtbmc5QWplY1ZmN3A4TTdsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjIwNy84QzY4QjlBMjA5ODExMUVCOUQ0NjFCMzBDNEY5QUUwMi9pWDRDek5qclFE bW5nOUFqZWNWZjdwOE03bGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAf1wIJi06kST8UDYeKMp02PNNw5+3hFwsIW7j+vHkE635OwLEsacn2 n92W7mQoJsgkHGM85im98qfpX7Tt/LSJa3EOh98sxqvoLhTwB43fA3nNTWpRbx4p r8H/3RcDuLInxH9VAJT+Px8KUCHrNaMjK8iuOMqbNGqMEKSGh4oi471Un1k6YhZg vvbLAU8po5klmV4Nk5gjsv9KeIzPKlpPpVfBTJFC0KsggEd1BfxxUNC/aHSYKRkt GiqynpDBPsx0m2kVr7PkwGTeT8k5JeJK/tZv34XnHqP+klxx9hjxWW/Kbt1xqfVW s30zHaU+fhdhrFv0LxTmCrVmdGQorJIO -----END CERTIFICATE-----Generated at Tue Apr 30 18:56:59 2024 by rpki-client on console-fra.rpki-client.org