$ rpki-client -vvf rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft File: D9l6GEHJl08fSQQu2j5yhCGq5f4.mft (raw, json) Hash identifier: 9Zk9QBKO6AlVb+67CIrIvUik2fV5KjEDsVRY4DxyK6c= Subject key identifier: A7:51:DC:8C:5B:04:D8:29:AA:5C:E0:4D:05:38:4F:0D:69:51:A1:CC Authority key identifier: 0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE Certificate issuer: /CN=A914ED2B/serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Certificate serial: 0711 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft Manifest number: 0706 Signing time: Sat 04 May 2024 22:49:33 +0000 Manifest this update: Sat 04 May 2024 22:49:32 +0000 Manifest next update: Sat 11 May 2024 22:49:32 +0000 Files and hashes: 1: D9l6GEHJl08fSQQu2j5yhCGq5f4.crl (hash: YqlVjhgAgR1qJY4mgrjFMUn4Hs+MFM0Ot6tl0EZaCFo=) 2: D31B3092F40911EA8A5C9E70C4F9AE02.roa (hash: JFhYsMMnyex24FGUJR1yANnkLrSFJUOiAE+xycKHDJ0=) 3: D25A6970F40911EA8A5C9E70C4F9AE02.roa (hash: AszckkIo7xo3rKnWp1vwStrZWGfITs2JKvmhphBQlP0=) 4: CD0710DA3F3511ED84AFEA5BC4F9AE02.roa (hash: tWgKdiKEkxy7J+w5eCL6fH6x9Y2woWkufKdftPBBbXw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1809 (0x711) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ED2B/serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Validity Not Before: May 4 22:49:32 2024 GMT Not After : May 11 22:49:32 2024 GMT Subject: CN=6636bb7c-8291 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b9:ca:79:7b:c0:e7:03:bf:47:23:36:52:18: 1e:2f:aa:00:2d:ce:cc:0c:f5:0c:3d:c6:77:91:05: 5b:c0:e7:ce:f0:cb:b8:0e:e9:76:72:ba:28:79:a0: 01:5f:7a:da:f8:00:9a:c8:56:0b:5b:e8:18:8e:8a: 71:f6:e0:26:18:29:36:97:2e:be:50:d2:d4:6a:82: ff:6f:56:7e:73:b5:dc:ae:5f:ec:05:61:0c:74:4f: 66:de:9e:cc:cc:1e:5c:55:0e:e9:aa:d0:7e:12:14: d3:ce:a6:53:af:00:8f:58:fa:08:6d:43:0a:7e:5a: 52:72:a5:5e:66:47:ae:63:d0:b1:fb:18:29:bd:c7: ef:14:c5:a8:74:b7:0d:2d:1a:a9:ab:7a:3d:ba:34: 86:47:e8:ac:b8:38:29:a4:32:fe:86:3e:c7:dc:8d: 2d:96:51:84:02:6c:7a:4d:9b:e9:fa:db:ca:1d:72: 00:47:11:72:25:4c:41:95:34:11:b5:db:03:9e:3c: 0c:62:5b:fa:69:1d:f0:ee:5a:d1:70:d0:f7:24:43: 53:4a:02:71:59:0b:0a:f7:2a:ac:27:14:65:fb:c9: f8:f2:be:1a:1f:90:45:88:a0:2b:5a:37:64:9c:05: f1:90:57:4e:d0:5d:5b:c3:4f:b4:73:f3:e4:53:42: 6c:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:51:DC:8C:5B:04:D8:29:AA:5C:E0:4D:05:38:4F:0D:69:51:A1:CC X509v3 Authority Key Identifier: keyid:0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:2f:01:79:8c:7c:84:ed:3d:bb:ec:f7:4d:8f:3d:5e:d2:46: b8:e7:a3:a4:ac:98:b0:94:de:e4:e7:eb:ac:15:09:d2:c0:fd: cf:89:5a:25:6d:ae:68:a7:c1:a1:db:c3:95:cf:0f:af:1d:85: e1:ea:cc:28:cb:b2:5c:39:7e:a9:30:53:39:29:8c:d0:d5:74: ca:da:41:6a:c6:88:4c:13:db:a2:6b:bf:2c:9e:31:2b:92:ae: 6d:ca:df:db:a2:c0:43:31:a7:22:4b:8f:a9:e7:0e:79:f1:38: a8:c8:33:2d:aa:e1:64:5f:96:00:3f:d9:1c:74:33:1b:ac:73: e0:99:f0:e4:3c:b1:a3:e0:9f:57:54:83:eb:b7:78:a9:4c:36: e0:c1:75:3d:ef:58:57:65:e3:ac:6e:5d:4e:b7:2e:d7:d9:8c: 85:8a:b7:9d:f8:ee:3e:0a:f7:3f:09:32:20:47:b1:1f:37:84: 28:fe:0d:22:55:db:14:34:bb:9e:08:97:4d:5e:d0:b0:38:0d: 74:52:92:a0:91:5b:fa:4d:bc:fd:56:01:3e:41:62:f8:21:20: 6d:38:cb:1b:59:b3:e2:1a:2f:b7:d8:f1:f2:c5:d7:0c:37:6d: c7:4a:99:7f:df:c7:31:95:cd:30:b4:d8:d5:1c:d9:87:23:35: db:16:39:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVEMkIxMTAvBgNVBAUTKDBGRDk3QTE4NDFDOTk3NEYxRjQ5MDQyRURBM0U3Mjg0 MjFBQUU1RkUwHhcNMjQwNTA0MjI0OTMyWhcNMjQwNTExMjI0OTMyWjAYMRYwFAYD VQQDEw02NjM2YmI3Yy04MjkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwLnKeXvA5wO/RyM2UhgeL6oALc7MDPUMPcZ3kQVbwOfO8Mu4Dul2crooeaAB X3ra+ACayFYLW+gYjopx9uAmGCk2ly6+UNLUaoL/b1Z+c7Xcrl/sBWEMdE9m3p7M zB5cVQ7pqtB+EhTTzqZTrwCPWPoIbUMKflpScqVeZkeuY9Cx+xgpvcfvFMWodLcN LRqpq3o9ujSGR+isuDgppDL+hj7H3I0tllGEAmx6TZvp+tvKHXIARxFyJUxBlTQR tdsDnjwMYlv6aR3w7lrRcND3JENTSgJxWQsK9yqsJxRl+8n48r4aH5BFiKArWjdk nAXxkFdO0F1bw0+0c/PkU0JsWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKdR3Ixb BNgpqlzgTQU4Tw1pUaHMMB8GA1UdIwQYMBaAFA/ZehhByZdPH0kELto+coQhquX+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUQyQi84QjY3MDBBNkY0 MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmwwOGZTUVF1Mmo1eWhDR3E1 ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5bDZHRUhKbDA4ZlNRUXUyajV5aENHcTVmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUQyQi84QjY3MDBBNkY0MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmww OGZTUVF1Mmo1eWhDR3E1ZjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGLwF5jHyE7T277PdNjz1e0ka456OkrJiwlN7k5+usFQnSwP3PiVol ba5op8Gh28OVzw+vHYXh6swoy7JcOX6pMFM5KYzQ1XTK2kFqxohME9uia78snjEr kq5tyt/bosBDMaciS4+p5w558TioyDMtquFkX5YAP9kcdDMbrHPgmfDkPLGj4J9X VIPrt3ipTDbgwXU971hXZeOsbl1Oty7X2YyFired+O4+Cvc/CTIgR7EfN4Qo/g0i VdsUNLueCJdNXtCwOA10UpKgkVv6Tbz9VgE+QWL4ISBtOMsbWbPiGi+32PHyxdcM N23HSpl/38cxlc0wtNjVHNmHIzXbFjlH -----END CERTIFICATE-----Generated at Sun May 5 00:12:22 2024 by rpki-client on console-fra.rpki-client.org