$ rpki-client -vvf rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.mft File: FrgD2zk43LFdxZooyXcZ2h_yClM.mft (raw, json) Hash identifier: yAl6soojlcYu3dRAbLpjliEdmur4zsQsD+V4xkwbdNU= Subject key identifier: A3:AE:6B:5D:6E:B0:30:AD:9F:27:2D:53:10:ED:C1:C8:BB:99:B4:A3 Authority key identifier: 16:B8:03:DB:39:38:DC:B1:5D:C5:9A:28:C9:77:19:DA:1F:F2:0A:53 Certificate issuer: /CN=A9149E0D/serialNumber=16B803DB3938DCB15DC59A28C97719DA1FF20A53 Certificate serial: 0A81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrgD2zk43LFdxZooyXcZ2h_yClM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.mft Manifest number: 0A77 Signing time: Mon 06 May 2024 20:23:55 +0000 Manifest this update: Mon 06 May 2024 20:23:55 +0000 Manifest next update: Mon 13 May 2024 20:23:55 +0000 Files and hashes: 1: FrgD2zk43LFdxZooyXcZ2h_yClM.crl (hash: Lm2lt/2ZRYhj0MD8R8jTfogqSIsL3Wz7YQ8NMnUI8es=) 2: C8FB48F808AF11EBAB78DF6BC4F9AE02.roa (hash: PrjpZlh7Tuh2bb8hiFmK68isEjfllyctC7vNKOM8jnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.crl rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrgD2zk43LFdxZooyXcZ2h_yClM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 20:23:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2689 (0xa81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149E0D/serialNumber=16B803DB3938DCB15DC59A28C97719DA1FF20A53 Validity Not Before: May 6 20:23:55 2024 GMT Not After : May 13 20:23:55 2024 GMT Subject: CN=66393c5b-49e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:dd:69:c9:e5:58:27:a5:ba:ad:d0:4e:23:13: 41:ec:a1:85:f2:38:ae:41:26:c1:b4:df:7c:c7:b6: ca:d3:53:f1:9e:b7:79:9f:1c:f4:68:3a:38:cf:57: fb:1c:8a:a9:c7:16:f9:47:7e:1f:c6:6d:b1:f8:c7: 12:00:66:47:b8:32:03:3b:8e:25:72:c4:cd:d5:97: ec:a1:3f:30:91:7b:b4:31:ef:f1:bd:c2:df:54:01: 79:28:61:e9:48:e8:71:9f:fc:21:46:07:c3:95:de: 24:63:f7:6e:c5:f3:5d:7b:bb:87:5a:42:d5:d5:fb: ba:d9:8f:63:20:95:b5:8c:56:bb:c2:ab:95:ac:17: 0d:1a:c4:36:d8:1b:bb:f5:7c:b0:f8:e5:9b:59:37: da:1e:ef:d8:63:a1:89:a7:30:6d:5b:87:02:9e:45: 19:11:ac:0b:16:90:bb:01:fe:84:c9:03:19:24:e9: 54:59:d7:d4:e5:23:70:48:dd:07:80:1c:84:30:f9: 65:df:52:21:b9:52:15:21:62:a5:cd:9a:58:67:99: 21:0f:1d:c5:fb:cb:a8:18:c0:04:de:90:8d:04:c2: ef:7e:f0:74:a1:03:4b:52:19:0c:a1:9d:66:c5:26: 19:d6:35:31:25:47:74:ff:88:b6:19:35:29:4f:01: be:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:AE:6B:5D:6E:B0:30:AD:9F:27:2D:53:10:ED:C1:C8:BB:99:B4:A3 X509v3 Authority Key Identifier: keyid:16:B8:03:DB:39:38:DC:B1:5D:C5:9A:28:C9:77:19:DA:1F:F2:0A:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrgD2zk43LFdxZooyXcZ2h_yClM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:94:e8:c7:d2:62:d8:ac:be:5e:e0:59:3f:34:bb:dd:15:9a: 0f:38:f6:90:c3:83:6c:bd:7d:40:e7:1f:dc:c9:c9:02:ad:6a: cd:bd:fa:09:bf:5d:36:ec:d4:0a:3c:6b:29:03:8a:00:c1:ba: ed:76:78:30:30:d9:51:72:ff:58:c9:72:b8:0a:eb:0a:28:93: 2b:ea:c9:11:3f:33:8a:fc:4b:be:94:fe:66:a7:0f:19:30:78: 91:f3:7a:af:ae:c9:16:6c:96:e4:f4:5e:1a:a8:6d:38:88:06: 20:3e:4e:9c:c7:56:ee:df:a6:99:92:52:ae:e0:9f:c1:d8:f8: f0:52:10:bf:f6:4c:14:43:8f:10:83:52:4f:43:d5:27:d4:ec: 41:d7:09:e1:f1:dd:51:23:da:60:36:ca:c7:1b:db:bc:5d:16: 77:c4:5c:93:4e:3e:e9:73:47:70:a4:f1:7b:3d:a4:e0:3b:6d: 0c:ae:0f:79:f4:0c:b8:3b:49:d6:ab:44:82:5c:51:7b:6b:84: 63:7a:79:4c:c5:34:b8:d3:84:70:04:e3:db:c8:29:db:ac:7a: bf:75:23:5f:dd:af:2f:08:54:b4:40:30:95:cd:e7:f7:1f:65: 80:40:35:eb:3d:c9:42:ad:73:be:7c:57:9a:07:60:99:33:4d: 24:44:4d:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlFMEQxMTAvBgNVBAUTKDE2QjgwM0RCMzkzOERDQjE1REM1OUEyOEM5NzcxOURB MUZGMjBBNTMwHhcNMjQwNTA2MjAyMzU1WhcNMjQwNTEzMjAyMzU1WjAYMRYwFAYD VQQDEw02NjM5M2M1Yi00OWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArN1pyeVYJ6W6rdBOIxNB7KGF8jiuQSbBtN98x7bK01Pxnrd5nxz0aDo4z1f7 HIqpxxb5R34fxm2x+McSAGZHuDIDO44lcsTN1ZfsoT8wkXu0Me/xvcLfVAF5KGHp SOhxn/whRgfDld4kY/duxfNde7uHWkLV1fu62Y9jIJW1jFa7wquVrBcNGsQ22Bu7 9Xyw+OWbWTfaHu/YY6GJpzBtW4cCnkUZEawLFpC7Af6EyQMZJOlUWdfU5SNwSN0H gByEMPll31IhuVIVIWKlzZpYZ5khDx3F+8uoGMAE3pCNBMLvfvB0oQNLUhkMoZ1m xSYZ1jUxJUd0/4i2GTUpTwG+bwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKOua11u sDCtnyctUxDtwci7mbSjMB8GA1UdIwQYMBaAFBa4A9s5ONyxXcWaKMl3Gdof8gpT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUUwRC85MDRFNzQ3RTM5 MDkxMUVBQjBERTNGNDlDNEY5QUUwMi9GcmdEMnprNDNMRmR4Wm9veVhjWjJoX3lD bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZyZ0Qyems0M0xGZHhab295WGNaMmhfeUNsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUUwRC85MDRFNzQ3RTM5MDkxMUVBQjBERTNGNDlDNEY5QUUwMi9GcmdEMnprNDNM RmR4Wm9veVhjWjJoX3lDbE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnlOjH0mLYrL5e4Fk/NLvdFZoPOPaQw4NsvX1A5x/cyckCrWrNvfoJ v1027NQKPGspA4oAwbrtdngwMNlRcv9YyXK4CusKKJMr6skRPzOK/Eu+lP5mpw8Z MHiR83qvrskWbJbk9F4aqG04iAYgPk6cx1bu36aZklKu4J/B2PjwUhC/9kwUQ48Q g1JPQ9Un1OxB1wnh8d1RI9pgNsrHG9u8XRZ3xFyTTj7pc0dwpPF7PaTgO20Mrg95 9Ay4O0nWq0SCXFF7a4RjenlMxTS404RwBOPbyCnbrHq/dSNf3a8vCFS0QDCVzef3 H2WAQDXrPclCrXO+fFeaB2CZM00kRE3G -----END CERTIFICATE-----Generated at Mon May 6 23:05:38 2024 by rpki-client on console-fra.rpki-client.org