$ rpki-client -vvf rpki.apnic.net/member_repository/A9147CDA/49B27D8A054D11EE9DFC1624C4F9AE02/89pR_oC82pcIdSXiBGIeqfVXQZk.mft File: 89pR_oC82pcIdSXiBGIeqfVXQZk.mft (raw, json) Hash identifier: 65/6nHYDU1KoZbbXxfth21aw9S4e05atfQJhJMKZBm0= Subject key identifier: 7F:97:9F:74:7E:78:D2:3D:6D:4E:CA:B5:71:99:AA:3C:DC:93:4D:E5 Authority key identifier: F3:DA:51:FE:80:BC:DA:97:08:75:25:E2:04:62:1E:A9:F5:57:41:99 Certificate issuer: /CN=A9147CDA/serialNumber=F3DA51FE80BCDA97087525E204621EA9F5574199 Certificate serial: E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89pR_oC82pcIdSXiBGIeqfVXQZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147CDA/49B27D8A054D11EE9DFC1624C4F9AE02/89pR_oC82pcIdSXiBGIeqfVXQZk.mft Manifest number: CF Signing time: Sun 19 May 2024 06:31:21 +0000 Manifest this update: Sun 19 May 2024 06:31:21 +0000 Manifest next update: Sun 26 May 2024 06:31:21 +0000 Files and hashes: 1: 89pR_oC82pcIdSXiBGIeqfVXQZk.crl (hash: /oRK+zwn5HW0wdSXS+YFPsH5YWFpKArfwQPnvoAPmNs=) 2: 1D7A0DE468FF11EE8F94AD6AC4F9AE02.roa (hash: 19PXgHMM9nd9/NiLT2DWDkMd53VZi0B2KovLL2ytwGw=) 3: 35174AC6E85611EE939B7C5BC4F9AE02.roa (hash: cWgdK8QCpc3BVzLycZXVuMDHmnKXPFbKd2Ai8qggpwg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147CDA/49B27D8A054D11EE9DFC1624C4F9AE02/89pR_oC82pcIdSXiBGIeqfVXQZk.crl rsync://rpki.apnic.net/member_repository/A9147CDA/49B27D8A054D11EE9DFC1624C4F9AE02/89pR_oC82pcIdSXiBGIeqfVXQZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89pR_oC82pcIdSXiBGIeqfVXQZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 226 (0xe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147CDA/serialNumber=F3DA51FE80BCDA97087525E204621EA9F5574199 Validity Not Before: May 19 06:31:21 2024 GMT Not After : May 26 06:31:21 2024 GMT Subject: CN=66499cb9-2c6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:dc:92:f3:c2:a8:2c:8d:fe:8d:fa:25:5d:9f: df:d9:95:74:59:56:32:ca:1d:dc:07:17:0f:1e:ba: 0b:e1:e8:e2:8a:ce:e8:72:0f:c2:8e:a0:56:b2:e2: df:81:60:8b:87:d7:0a:79:29:e0:a6:91:30:5d:51: e2:33:07:d7:22:79:28:00:6f:a0:eb:43:d3:05:ba: e2:76:18:67:3d:00:07:e1:37:32:b4:c8:22:c9:a2: 08:b5:b6:b4:91:c9:66:e5:15:16:cf:bc:d1:77:7e: 94:b5:ed:ae:01:9c:1d:36:12:d3:cd:af:ac:a1:bc: 22:fc:c3:c9:58:e3:96:e6:9e:f6:23:87:c8:9e:61: 31:b5:49:86:54:37:5d:3f:c3:ef:ce:61:f0:ae:92: 00:d0:76:d5:b0:82:39:11:45:38:4c:32:c3:1a:40: 00:22:a4:84:49:14:de:71:02:b7:9b:5e:dc:32:90: 02:24:c6:af:bc:68:ff:ee:ee:48:4b:53:1c:42:6b: 16:28:f0:d7:23:8f:f2:0b:1e:b6:99:b8:1c:ef:a0: 12:8b:98:9a:9d:f7:68:5a:9e:65:69:14:a5:bc:ed: ad:57:de:71:f3:f3:46:a8:bf:7a:7d:9e:7c:6c:f7: 72:82:51:0f:8e:55:05:30:07:f2:b6:f7:f7:cf:73: 76:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:97:9F:74:7E:78:D2:3D:6D:4E:CA:B5:71:99:AA:3C:DC:93:4D:E5 X509v3 Authority Key Identifier: keyid:F3:DA:51:FE:80:BC:DA:97:08:75:25:E2:04:62:1E:A9:F5:57:41:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147CDA/49B27D8A054D11EE9DFC1624C4F9AE02/89pR_oC82pcIdSXiBGIeqfVXQZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89pR_oC82pcIdSXiBGIeqfVXQZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147CDA/49B27D8A054D11EE9DFC1624C4F9AE02/89pR_oC82pcIdSXiBGIeqfVXQZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:68:ca:00:9b:97:fe:29:65:b8:2d:c2:ad:f6:82:33:00:70: 27:6a:39:4d:bd:65:15:f8:d3:18:4e:75:e2:63:f0:26:99:26: ff:82:ed:7a:6e:cc:ed:37:c6:12:1e:0b:26:f3:30:9b:8b:c7: 35:ed:eb:ca:9f:1b:7d:21:37:cf:ac:79:38:21:e2:2b:80:26: 26:47:3a:53:95:0c:3b:41:e9:7f:6a:78:cc:28:d8:f6:62:71: 71:41:e0:15:34:b7:71:72:3d:4b:30:24:a0:80:3f:44:45:2c: 32:5a:c6:85:79:31:84:42:42:57:2b:4a:dd:67:a3:f4:4b:12: 4c:fe:df:eb:21:e8:7d:9b:3f:96:ed:35:23:3e:9c:9d:6d:f3: 66:76:9d:3d:23:a7:b4:52:92:26:77:31:91:65:ca:6c:29:3b: 45:8c:cd:23:6d:f7:e0:af:64:32:f2:e2:52:5e:92:ea:9c:de: 97:93:60:21:f7:1e:56:0d:2a:4f:e4:b4:65:1e:6f:dc:22:8a: d1:c2:49:08:62:9d:ef:e7:44:1e:e7:9f:41:c7:f6:ba:e0:7d: 8e:49:ec:c8:4a:3f:12:6d:1f:77:f1:7e:f9:58:8d:89:6c:37: 49:d8:f1:e7:c9:d7:c1:cc:db:b0:c8:b2:5f:4a:01:18:2b:fa: 55:2e:b6:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdDREExMTAvBgNVBAUTKEYzREE1MUZFODBCQ0RBOTcwODc1MjVFMjA0NjIxRUE5 RjU1NzQxOTkwHhcNMjQwNTE5MDYzMTIxWhcNMjQwNTI2MDYzMTIxWjAYMRYwFAYD VQQDEw02NjQ5OWNiOS0yYzZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8dyS88KoLI3+jfolXZ/f2ZV0WVYyyh3cBxcPHroL4ejiis7ocg/CjqBWsuLf gWCLh9cKeSngppEwXVHiMwfXInkoAG+g60PTBbridhhnPQAH4TcytMgiyaIItba0 kclm5RUWz7zRd36Ute2uAZwdNhLTza+sobwi/MPJWOOW5p72I4fInmExtUmGVDdd P8PvzmHwrpIA0HbVsII5EUU4TDLDGkAAIqSESRTecQK3m17cMpACJMavvGj/7u5I S1McQmsWKPDXI4/yCx62mbgc76ASi5ianfdoWp5laRSlvO2tV95x8/NGqL96fZ58 bPdyglEPjlUFMAfytvf3z3N2zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH+Xn3R+ eNI9bU7KtXGZqjzck03lMB8GA1UdIwQYMBaAFPPaUf6AvNqXCHUl4gRiHqn1V0GZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0NEQS80OUIyN0Q4QTA1 NEQxMUVFOURGQzE2MjRDNEY5QUUwMi84OXBSX29DODJwY0lkU1hpQkdJZXFmVlhR WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5cFJfb0M4MnBjSWRTWGlCR0llcWZWWFFaay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0NEQS80OUIyN0Q4QTA1NEQxMUVFOURGQzE2MjRDNEY5QUUwMi84OXBSX29DODJw Y0lkU1hpQkdJZXFmVlhRWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeaMoAm5f+KWW4LcKt9oIzAHAnajlNvWUV+NMYTnXiY/AmmSb/gu16 bsztN8YSHgsm8zCbi8c17evKnxt9ITfPrHk4IeIrgCYmRzpTlQw7Qel/anjMKNj2 YnFxQeAVNLdxcj1LMCSggD9ERSwyWsaFeTGEQkJXK0rdZ6P0SxJM/t/rIeh9mz+W 7TUjPpydbfNmdp09I6e0UpImdzGRZcpsKTtFjM0jbffgr2Qy8uJSXpLqnN6Xk2Ah 9x5WDSpP5LRlHm/cIorRwkkIYp3v50Qe559Bx/a64H2OSezISj8SbR938X75WI2J bDdJ2PHnydfBzNuwyLJfSgEYK/pVLra+ -----END CERTIFICATE-----Generated at Sun May 19 07:40:38 2024 by rpki-client on console-fra.rpki-client.org