$ rpki-client -vvf rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft File: -1uWlTzNsR6SaDs-tbekV0lLJfA.mft (raw, json) Hash identifier: /UklYunNh4kLajogQhuyWMUWiJpk4OKjrcxgXsU3/20= Subject key identifier: 9E:B3:59:7B:DF:EA:DE:B5:EA:AD:BB:AB:CB:6C:62:3A:06:AA:7F:15 Authority key identifier: FB:5B:96:95:3C:CD:B1:1E:92:68:3B:3E:B5:B7:A4:57:49:4B:25:F0 Certificate issuer: /CN=A9146A72/serialNumber=FB5B96953CCDB11E92683B3EB5B7A457494B25F0 Certificate serial: 6B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft Manifest number: 6A Signing time: Sat 18 May 2024 15:46:36 +0000 Manifest this update: Sat 18 May 2024 15:46:35 +0000 Manifest next update: Sat 25 May 2024 15:46:35 +0000 Files and hashes: 1: -1uWlTzNsR6SaDs-tbekV0lLJfA.crl (hash: JqWyAwN1tH29a0aANFcUAdDzuygUQXdeU1QFMWPrLmY=) 2: 67B0ACBC8E5011EE95DFC141C4F9AE02.roa (hash: YD6E7yUp0RctZyobhCENLD5OcG1G8cz+ZRAqAjlbtG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.crl rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146A72/serialNumber=FB5B96953CCDB11E92683B3EB5B7A457494B25F0 Validity Not Before: May 18 15:46:35 2024 GMT Not After : May 25 15:46:35 2024 GMT Subject: CN=6648cd5c-d187 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:15:51:08:87:27:1d:a0:39:29:8c:de:c7:6a: fd:28:15:00:92:ee:d3:a4:64:b8:61:16:40:c0:4c: 71:26:5a:80:33:86:f3:cc:57:1a:cc:47:ae:9e:65: bd:0d:cd:d9:86:82:2f:33:6d:f4:ca:f9:1f:bd:12: f3:ac:e9:64:b7:0e:f3:51:35:e8:bf:17:d2:ea:7e: e5:a4:52:ec:02:65:f6:75:e8:d3:22:d8:ed:65:72: 08:40:ff:6b:fa:3a:5c:18:3c:4f:fe:35:f4:3e:1f: 94:73:2d:09:ee:84:ac:e6:06:f2:44:11:3a:d5:51: b8:d3:d2:d0:f5:71:5d:9f:81:99:26:e8:af:8e:96: f3:50:eb:ed:db:70:8c:04:46:32:98:a4:d5:f3:70: 1e:89:7f:0e:a4:e7:e9:70:20:6d:97:0b:6c:b1:37: dc:f7:ee:0d:98:d7:bf:76:81:03:72:60:a6:d3:88: f9:01:57:15:eb:c8:8a:c8:c9:48:5b:78:55:e9:4b: a2:40:90:32:39:d9:87:b2:d2:8c:ca:7e:eb:3d:9b: f4:0a:9c:1f:c6:c3:da:3d:84:eb:05:1c:84:93:dd: 21:26:bf:34:1a:dc:93:1d:dd:b0:ef:6a:bd:dd:4d: a0:76:04:8d:eb:a0:d7:0c:56:22:97:d8:83:f8:c7: 51:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:B3:59:7B:DF:EA:DE:B5:EA:AD:BB:AB:CB:6C:62:3A:06:AA:7F:15 X509v3 Authority Key Identifier: keyid:FB:5B:96:95:3C:CD:B1:1E:92:68:3B:3E:B5:B7:A4:57:49:4B:25:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:f4:9c:09:cb:db:4c:aa:51:21:e5:67:d1:27:c0:5e:f6:ef: cf:b1:5d:5b:f1:2d:ec:1b:6c:a6:43:77:d5:4d:fe:6e:98:27: 72:f6:09:c6:23:5d:d6:ad:12:8e:f5:5c:13:51:7c:2d:8c:81: 5f:6d:35:59:25:47:9c:f7:de:c2:19:63:e5:63:c0:d9:3d:08: 98:0c:d7:df:8d:e3:0b:2c:87:70:6d:87:40:50:d8:5c:e9:c5: 72:20:31:7c:9c:57:a9:09:bc:ee:b1:f3:05:36:1d:ca:54:39: bf:90:a6:32:ef:37:90:3a:ea:12:14:18:50:15:66:5c:7f:11: a9:33:d0:20:44:3e:0c:6b:82:e8:e8:9c:aa:00:19:20:08:38: 19:ad:f1:1e:a2:72:68:84:21:50:cd:8e:5e:30:4e:fa:52:2e: fd:56:d4:86:7a:e8:fa:7d:36:e3:c1:70:36:9c:a9:25:ba:64: da:2d:e8:92:78:fa:03:4e:d1:3d:6f:0d:8b:03:56:10:bf:c5: c8:7d:f8:07:b4:bb:92:36:4b:e2:fc:8c:09:6c:31:e4:5b:b8: b4:da:e1:ff:a2:f3:d2:f1:5c:4e:66:3f:d7:b9:04:22:94:ac: d3:43:29:00:a9:c2:b3:f6:d4:a2:74:21:4f:97:2a:bb:79:e6: 0f:c6:ad:a3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NkE3MjExMC8GA1UEBRMoRkI1Qjk2OTUzQ0NEQjExRTkyNjgzQjNFQjVCN0E0NTc0 OTRCMjVGMDAeFw0yNDA1MTgxNTQ2MzVaFw0yNDA1MjUxNTQ2MzVaMBgxFjAUBgNV BAMTDTY2NDhjZDVjLWQxODcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyFVEIhycdoDkpjN7Hav0oFQCS7tOkZLhhFkDATHEmWoAzhvPMVxrMR66eZb0N zdmGgi8zbfTK+R+9EvOs6WS3DvNRNei/F9LqfuWkUuwCZfZ16NMi2O1lcghA/2v6 OlwYPE/+NfQ+H5RzLQnuhKzmBvJEETrVUbjT0tD1cV2fgZkm6K+OlvNQ6+3bcIwE RjKYpNXzcB6Jfw6k5+lwIG2XC2yxN9z37g2Y1792gQNyYKbTiPkBVxXryIrIyUhb eFXpS6JAkDI52Yey0ozKfus9m/QKnB/Gw9o9hOsFHIST3SEmvzQa3JMd3bDvar3d TaB2BI3roNcMViKX2IP4x1EpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnrNZe9/q 3rXqrbury2xiOgaqfxUwHwYDVR0jBBgwFoAU+1uWlTzNsR6SaDs+tbekV0lLJfAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ2QTcyLzRGNTZDMDFDNzc5 RDExRUVCQjQ5RTI2OUM0RjlBRTAyLy0xdVdsVHpOc1I2U2FEcy10YmVrVjBsTEpm QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvLTF1V2xUek5zUjZTYURzLXRiZWtWMGxMSmZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ2 QTcyLzRGNTZDMDFDNzc5RDExRUVCQjQ5RTI2OUM0RjlBRTAyLy0xdVdsVHpOc1I2 U2FEcy10YmVrVjBsTEpmQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALH0nAnL20yqUSHlZ9EnwF7278+xXVvxLewbbKZDd9VN/m6YJ3L2CcYj XdatEo71XBNRfC2MgV9tNVklR5z33sIZY+VjwNk9CJgM19+N4wssh3Bth0BQ2Fzp xXIgMXycV6kJvO6x8wU2HcpUOb+QpjLvN5A66hIUGFAVZlx/Eakz0CBEPgxrgujo nKoAGSAIOBmt8R6icmiEIVDNjl4wTvpSLv1W1IZ66Pp9NuPBcDacqSW6ZNot6JJ4 +gNO0T1vDYsDVhC/xch9+Ae0u5I2S+L8jAlsMeRbuLTa4f+i89LxXE5mP9e5BCKU rNNDKQCpwrP21KJ0IU+XKrt55g/GraM= -----END CERTIFICATE-----Generated at Sat May 18 17:20:04 2024 by rpki-client on console-ams.rpki-client.org