$ rpki-client -vvf rpki.apnic.net/member_repository/A9146D7A/93D24F4AB5C811EEB4A24A6FC4F9AE02/DprNgHEUtY9xipwrhZUmJebbK9E.mft File: DprNgHEUtY9xipwrhZUmJebbK9E.mft (raw, json) Hash identifier: 6T9l7sEcgD3IEFUa9D1HWPsRA6+bGm3PAU6lIxmRPvA= Subject key identifier: E1:78:1A:B0:1E:50:D4:F2:77:70:C8:22:18:55:7D:4E:3C:31:51:76 Authority key identifier: 0E:9A:CD:80:71:14:B5:8F:71:8A:9C:2B:85:95:26:25:E6:DB:2B:D1 Certificate issuer: /CN=A9146D7A/serialNumber=0E9ACD807114B58F718A9C2B85952625E6DB2BD1 Certificate serial: 44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DprNgHEUtY9xipwrhZUmJebbK9E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146D7A/93D24F4AB5C811EEB4A24A6FC4F9AE02/DprNgHEUtY9xipwrhZUmJebbK9E.mft Manifest number: 42 Signing time: Wed 15 May 2024 08:18:42 +0000 Manifest this update: Wed 15 May 2024 08:18:41 +0000 Manifest next update: Wed 22 May 2024 08:18:41 +0000 Files and hashes: 1: DprNgHEUtY9xipwrhZUmJebbK9E.crl (hash: Y4ySPbf2p0KVVk6kgBqZGePcJaWmfWZy3SLqyj+f0/A=) 2: E3AB124AB5C811EE8795EB6FC4F9AE02.roa (hash: ExCmATibx10XsjNVYFRzqOLQtC3WU3C6cM5a5cjLZq4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146D7A/93D24F4AB5C811EEB4A24A6FC4F9AE02/DprNgHEUtY9xipwrhZUmJebbK9E.crl rsync://rpki.apnic.net/member_repository/A9146D7A/93D24F4AB5C811EEB4A24A6FC4F9AE02/DprNgHEUtY9xipwrhZUmJebbK9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DprNgHEUtY9xipwrhZUmJebbK9E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:18:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68 (0x44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146D7A/serialNumber=0E9ACD807114B58F718A9C2B85952625E6DB2BD1 Validity Not Before: May 15 08:18:41 2024 GMT Not After : May 22 08:18:41 2024 GMT Subject: CN=66446fe2-1885 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:64:5d:f1:ab:ee:0e:57:2e:29:22:08:dd:b3: e0:f6:b9:2d:49:f8:5d:08:ff:c0:40:ba:ad:65:18: d9:60:2a:09:26:96:4a:ce:e3:8d:9b:70:b5:37:3d: f7:5a:4d:74:8f:ce:c0:e2:0d:54:73:67:2c:4b:8f: b6:73:b3:e1:db:0c:a4:78:56:a5:84:0f:f5:46:38: c6:c0:99:ec:59:f8:ce:b8:80:e8:07:ee:48:39:08: 0b:5b:a1:0c:72:29:f8:07:b1:cb:d5:53:62:fa:10: 11:e8:3a:10:13:f4:d5:50:10:e5:97:bb:f7:22:61: 5e:cc:8b:65:6b:c9:93:54:10:bb:9d:58:67:7f:b0: 79:6a:16:82:e2:be:60:d1:6c:bc:58:ac:cc:56:3c: fa:6f:67:19:b5:02:87:84:6c:5a:9e:b5:d2:86:03: 3a:4e:e5:a5:8f:ca:01:9e:f4:db:d3:03:7f:18:f0: b2:12:02:d4:50:ba:67:5c:4a:06:c9:dc:ac:60:cd: 74:5f:54:dd:39:0d:55:71:9a:9d:b4:7b:70:69:dc: d7:9e:9b:23:49:68:91:6d:04:69:78:06:29:4e:b6: a9:23:8a:4a:41:80:f3:97:bb:a1:b2:f2:2f:70:bf: a6:f7:06:05:db:98:e5:b6:db:7c:ec:72:9f:a3:bc: 9f:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:78:1A:B0:1E:50:D4:F2:77:70:C8:22:18:55:7D:4E:3C:31:51:76 X509v3 Authority Key Identifier: keyid:0E:9A:CD:80:71:14:B5:8F:71:8A:9C:2B:85:95:26:25:E6:DB:2B:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146D7A/93D24F4AB5C811EEB4A24A6FC4F9AE02/DprNgHEUtY9xipwrhZUmJebbK9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DprNgHEUtY9xipwrhZUmJebbK9E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146D7A/93D24F4AB5C811EEB4A24A6FC4F9AE02/DprNgHEUtY9xipwrhZUmJebbK9E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:64:d7:91:3e:0f:fc:97:c0:d3:e8:0b:f6:cf:90:e3:3e:74: 62:ae:d9:21:4a:e5:bd:7a:34:d2:3e:dc:41:e4:b8:08:70:7d: 2d:a1:4d:85:ce:92:22:92:27:01:2e:27:0e:7c:13:8e:27:2c: e4:d0:d0:58:12:04:a7:4a:7a:14:b7:e7:a5:72:9f:0f:37:3c: 03:67:ee:1a:e0:33:7f:ec:51:c2:dd:59:13:f1:76:de:17:49: c5:8e:11:18:34:0c:49:77:cb:f8:00:b6:d6:3f:7b:f6:a6:b1: 3f:13:48:59:1f:21:ea:99:26:2e:24:e1:af:1a:b8:06:ef:7f: ed:d8:d8:88:d2:7b:4e:01:fb:e1:f2:d1:09:d7:3d:aa:3f:33: 0f:9b:00:23:87:fd:81:97:02:72:c7:5b:ef:34:43:94:fb:cd: a0:2e:60:1f:55:35:0d:ac:d1:d9:27:cd:15:ba:8f:68:f2:b4: 10:da:ab:ed:5b:b5:cf:0f:80:41:ce:9f:dc:3b:f8:e3:d0:69: 6b:de:4a:8b:37:28:25:78:8b:f5:23:d5:5f:a9:66:f3:10:bc: 77:e9:7a:28:b8:ee:ea:eb:8f:d2:76:fb:30:d8:5a:e5:3b:fd: 0b:91:c6:fe:4e:43:3b:6c:e3:78:3a:24:ed:68:49:91:78:c4: 37:f4:0c:ed -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NkQ3QTExMC8GA1UEBRMoMEU5QUNEODA3MTE0QjU4RjcxOEE5QzJCODU5NTI2MjVF NkRCMkJEMTAeFw0yNDA1MTUwODE4NDFaFw0yNDA1MjIwODE4NDFaMBgxFjAUBgNV BAMTDTY2NDQ2ZmUyLTE4ODUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTZF3xq+4OVy4pIgjds+D2uS1J+F0I/8BAuq1lGNlgKgkmlkrO442bcLU3Pfda TXSPzsDiDVRzZyxLj7Zzs+HbDKR4VqWED/VGOMbAmexZ+M64gOgH7kg5CAtboQxy KfgHscvVU2L6EBHoOhAT9NVQEOWXu/ciYV7Mi2VryZNUELudWGd/sHlqFoLivmDR bLxYrMxWPPpvZxm1AoeEbFqetdKGAzpO5aWPygGe9NvTA38Y8LISAtRQumdcSgbJ 3KxgzXRfVN05DVVxmp20e3Bp3NeemyNJaJFtBGl4BilOtqkjikpBgPOXu6Gy8i9w v6b3BgXbmOW223zscp+jvJ8nAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4XgasB5Q 1PJ3cMgiGFV9TjwxUXYwHwYDVR0jBBgwFoAUDprNgHEUtY9xipwrhZUmJebbK9Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ2RDdBLzkzRDI0RjRBQjVD ODExRUVCNEEyNEE2RkM0RjlBRTAyL0Rwck5nSEVVdFk5eGlwd3JoWlVtSmViYks5 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRHByTmdIRVV0WTl4aXB3cmhaVW1KZWJiSzlFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ2 RDdBLzkzRDI0RjRBQjVDODExRUVCNEEyNEE2RkM0RjlBRTAyL0Rwck5nSEVVdFk5 eGlwd3JoWlVtSmViYks5RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAVk15E+D/yXwNPoC/bPkOM+dGKu2SFK5b16NNI+3EHkuAhwfS2hTYXO kiKSJwEuJw58E44nLOTQ0FgSBKdKehS356Vynw83PANn7hrgM3/sUcLdWRPxdt4X ScWOERg0DEl3y/gAttY/e/amsT8TSFkfIeqZJi4k4a8auAbvf+3Y2IjSe04B++Hy 0QnXPao/Mw+bACOH/YGXAnLHW+80Q5T7zaAuYB9VNQ2s0dknzRW6j2jytBDaq+1b tc8PgEHOn9w7+OPQaWveSos3KCV4i/Uj1V+pZvMQvHfpeii47urrj9J2+zDYWuU7 /QuRxv5OQzts43g6JO1oSZF4xDf0DO0= -----END CERTIFICATE-----Generated at Wed May 15 09:27:31 2024 by rpki-client on console-fra.rpki-client.org