$ rpki-client -vvf rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft File: Ad9hVyR3ojDnn48oz91tKDd_Iis.mft (raw, json) Hash identifier: ccFboYDYicpul6g+y6JV5tEe8ao0oIIpYzncPrd4ZoU= Subject key identifier: 1C:21:16:70:D9:55:D8:E9:E6:BD:37:A4:08:91:01:F7:53:F5:52:AC Authority key identifier: 01:DF:61:57:24:77:A2:30:E7:9F:8F:28:CF:DD:6D:28:37:7F:22:2B Certificate issuer: /CN=A914E5AE/serialNumber=01DF61572477A230E79F8F28CFDD6D28377F222B Certificate serial: 0451 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft Manifest number: 044B Signing time: Sun 05 May 2024 02:02:50 +0000 Manifest this update: Sun 05 May 2024 02:02:50 +0000 Manifest next update: Sun 12 May 2024 02:02:50 +0000 Files and hashes: 1: Ad9hVyR3ojDnn48oz91tKDd_Iis.crl (hash: q6VD45lPfnRUMc1P/WwI8Zy8u28O/jIZvywhAuuHbIw=) 2: C847114C07D411ECBF875117C4F9AE02.roa (hash: 8jiWS5tF75Q6xeG+tS7HXmjjPoQpozn1Cf2cagIPojY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.crl rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1105 (0x451) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E5AE/serialNumber=01DF61572477A230E79F8F28CFDD6D28377F222B Validity Not Before: May 5 02:02:50 2024 GMT Not After : May 12 02:02:50 2024 GMT Subject: CN=6636e8ca-b4fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e3:7a:47:6a:5b:57:cd:65:70:5e:0b:77:0d: ef:e9:07:e1:74:cc:37:5e:c8:6a:67:46:72:d7:f2: 02:38:e2:71:54:02:20:d6:78:06:7a:79:e0:ba:13: 35:7e:4a:dc:e2:49:c6:1a:33:fa:75:ce:ce:bc:4f: 7b:3c:ad:78:ec:a5:f4:13:ac:f3:3b:7f:06:f7:fa: 90:07:78:6f:3c:53:26:47:9b:fa:ec:bb:eb:76:79: 4d:43:dc:63:60:e8:40:52:b5:ba:80:ef:96:b5:fb: c0:a2:34:a9:6c:60:89:69:97:44:01:f3:2f:a0:c7: 57:31:30:bd:b7:d2:e3:ee:90:78:50:a0:6c:93:e1: 43:f0:d4:7e:9f:54:bb:c1:b7:69:29:f4:3e:09:0d: 05:f0:28:05:21:37:9a:d7:6b:67:0d:6a:d3:b7:94: f4:75:b8:73:f1:7c:90:47:5d:b2:f8:e5:36:3f:b0: 27:d6:b0:56:2c:f2:7b:12:3d:21:24:f0:67:cf:0a: cd:ec:e4:ef:f1:b3:e1:70:d0:46:41:c3:c2:5a:56: 93:88:c4:9c:e1:94:bd:07:eb:5a:23:48:18:30:73: 4b:16:58:46:7f:84:23:33:73:fa:56:ac:43:e1:19: 05:74:fa:dd:03:f8:8e:98:17:90:d2:ae:15:23:63: 67:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:21:16:70:D9:55:D8:E9:E6:BD:37:A4:08:91:01:F7:53:F5:52:AC X509v3 Authority Key Identifier: keyid:01:DF:61:57:24:77:A2:30:E7:9F:8F:28:CF:DD:6D:28:37:7F:22:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:d9:86:ea:19:f7:b4:0a:19:9b:c3:e2:46:94:8c:1d:20:58: ee:8d:ed:a4:0a:ee:ea:fb:d6:76:aa:9f:9e:04:91:4e:9b:36: 3b:78:e0:96:a2:3e:6b:67:85:1a:61:66:62:00:a4:8b:1d:36: eb:c1:b0:1e:56:31:c3:b7:eb:02:61:97:c0:e7:ad:2d:60:a3: 94:94:33:5b:67:88:93:b4:9b:89:86:cf:11:8a:eb:b9:f7:28: 17:6a:d4:09:02:fb:22:d9:06:d5:3a:e4:f1:3c:5c:b0:b7:19: ca:d2:07:43:9b:e1:fc:9f:f3:81:f5:bf:30:6d:4e:b4:7a:22: 9a:df:65:65:26:28:08:a8:2d:0d:bf:08:3a:e5:83:ee:bc:c8: 3d:29:5a:c3:8b:e2:7a:a3:7f:ed:0f:30:f5:52:4c:a1:c2:9a: 38:e1:df:48:91:10:49:3a:fd:ad:59:e2:61:a1:40:86:08:0b: 35:59:83:58:f1:e4:cc:79:82:b0:e6:cc:0e:87:30:a7:3e:46: 54:b2:64:10:22:2e:11:15:e6:b7:50:79:d7:ef:3e:f5:25:6b: 86:b8:97:4d:1f:25:59:19:6c:9e:ea:e1:84:45:cb:3b:1b:bc: 5d:75:38:af:bd:0c:03:07:36:79:ab:1d:e1:22:e0:97:33:49: 9a:a2:64:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU1QUUxMTAvBgNVBAUTKDAxREY2MTU3MjQ3N0EyMzBFNzlGOEYyOENGREQ2RDI4 Mzc3RjIyMkIwHhcNMjQwNTA1MDIwMjUwWhcNMjQwNTEyMDIwMjUwWjAYMRYwFAYD VQQDEw02NjM2ZThjYS1iNGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv+N6R2pbV81lcF4Ldw3v6QfhdMw3XshqZ0Zy1/ICOOJxVAIg1ngGennguhM1 fkrc4knGGjP6dc7OvE97PK147KX0E6zzO38G9/qQB3hvPFMmR5v67LvrdnlNQ9xj YOhAUrW6gO+WtfvAojSpbGCJaZdEAfMvoMdXMTC9t9Lj7pB4UKBsk+FD8NR+n1S7 wbdpKfQ+CQ0F8CgFITea12tnDWrTt5T0dbhz8XyQR12y+OU2P7An1rBWLPJ7Ej0h JPBnzwrN7OTv8bPhcNBGQcPCWlaTiMSc4ZS9B+taI0gYMHNLFlhGf4QjM3P6VqxD 4RkFdPrdA/iOmBeQ0q4VI2NnIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBwhFnDZ Vdjp5r03pAiRAfdT9VKsMB8GA1UdIwQYMBaAFAHfYVckd6Iw55+PKM/dbSg3fyIr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTVBRS80NkQ0MjJGMDA3 RDIxMUVDQUE4MkI2MTFDNEY5QUUwMi9BZDloVnlSM29qRG5uNDhvejkxdEtEZF9J aXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FkOWhWeVIzb2pEbm40OG96OTF0S0RkX0lpcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTVBRS80NkQ0MjJGMDA3RDIxMUVDQUE4MkI2MTFDNEY5QUUwMi9BZDloVnlSM29q RG5uNDhvejkxdEtEZF9JaXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAP2YbqGfe0Chmbw+JGlIwdIFjuje2kCu7q+9Z2qp+eBJFOmzY7eOCW oj5rZ4UaYWZiAKSLHTbrwbAeVjHDt+sCYZfA560tYKOUlDNbZ4iTtJuJhs8Riuu5 9ygXatQJAvsi2QbVOuTxPFywtxnK0gdDm+H8n/OB9b8wbU60eiKa32VlJigIqC0N vwg65YPuvMg9KVrDi+J6o3/tDzD1Ukyhwpo44d9IkRBJOv2tWeJhoUCGCAs1WYNY 8eTMeYKw5swOhzCnPkZUsmQQIi4RFea3UHnX7z71JWuGuJdNHyVZGWye6uGERcs7 G7xddTivvQwDBzZ5qx3hIuCXM0maomQ3 -----END CERTIFICATE-----Generated at Sun May 5 02:33:35 2024 by rpki-client on console-fra.rpki-client.org