$ rpki-client -vvf rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft File: FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft (raw, json) Hash identifier: /EIPqNMW09Dc2cwahooFsi92yFs+LqZw/MJBbyrM8xg= Subject key identifier: 6A:7D:1C:54:6D:A0:99:C9:83:31:DE:AE:F4:EB:56:BB:76:4D:AB:0C Authority key identifier: 14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3 Certificate issuer: /CN=A914F5BA/serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3 Certificate serial: 0827 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft Manifest number: 0822 Signing time: Sat 18 May 2024 21:48:21 +0000 Manifest this update: Sat 18 May 2024 21:48:20 +0000 Manifest next update: Sat 25 May 2024 21:48:20 +0000 Files and hashes: 1: FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl (hash: WGt/D3DJ1utXhCBvgF+/3AreAV8nVUVZWT7VxKtkm0E=) 2: E9E80356AD6211EABEDF046AC4F9AE02.roa (hash: 7ACqKmydrlbcDMmdFbL+eMCON8jfWJReeBw8pdVIUbs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:52:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2087 (0x827) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F5BA/serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3 Validity Not Before: May 18 21:48:20 2024 GMT Not After : May 25 21:48:20 2024 GMT Subject: CN=66492225-b885 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:49:d3:fa:d7:b6:c2:24:96:36:ed:b4:cf:e2: fb:bd:44:e1:f7:e7:29:2b:fa:47:5e:19:34:6e:6b: 40:bf:27:b5:46:23:9a:06:53:ac:81:4a:aa:e9:e2: ec:ec:60:40:07:9c:7e:a4:65:93:6c:33:59:be:b5: 3b:5d:b8:56:32:fc:38:50:b4:79:cd:9f:0c:5a:b9: aa:f6:0b:5d:92:9d:29:6d:d8:66:26:ff:6b:ae:69: 23:21:3f:bc:78:c0:2f:63:7a:52:6a:ea:97:c1:ed: cf:a2:e7:f9:b0:33:bf:3d:b8:44:57:a4:f8:45:12: ba:63:33:f7:89:8b:ef:3a:40:4b:8b:7d:5b:72:64: 7c:d2:b6:0c:ad:5b:38:4f:5a:30:fa:96:7d:dc:0a: 4e:17:6c:3c:f3:a8:56:29:16:4a:15:0a:c6:8a:30: e9:32:43:2b:7d:b1:25:3c:17:07:15:52:4c:10:f1: bc:0f:53:05:10:d8:1f:eb:de:c7:39:86:6f:a6:48: cc:36:8c:9e:5b:1a:ae:8d:4a:72:60:0a:fb:e1:ea: 57:83:23:4c:48:40:d2:54:d3:0d:7a:68:4a:d7:6c: 32:59:31:32:c4:6e:e5:0e:38:d5:a4:b6:b3:02:a0: 50:ee:31:92:c8:a4:f8:df:db:8a:63:a9:f3:a6:9c: c8:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:7D:1C:54:6D:A0:99:C9:83:31:DE:AE:F4:EB:56:BB:76:4D:AB:0C X509v3 Authority Key Identifier: keyid:14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:d3:cc:22:b0:3a:c3:f2:ea:cd:13:73:ad:14:1c:75:65:8e: f6:dd:2c:d0:d0:6d:38:58:2d:62:39:00:08:73:50:0e:86:e1: 73:97:79:62:2b:81:51:46:80:ac:3d:8a:49:89:42:a9:40:be: 97:4f:0c:d5:85:bf:02:89:ec:93:0f:19:e4:33:14:f5:60:42: 26:77:90:0a:1b:fb:d9:d1:d7:7f:2f:02:86:80:de:47:92:ff: b8:ca:86:b7:85:15:68:b4:40:26:e0:a8:0b:19:20:db:39:75: bc:05:8e:71:94:78:02:be:b5:be:a5:20:76:43:e4:7d:72:63: 02:b4:9b:e2:79:1b:88:63:29:b6:fb:d4:0a:f8:84:9d:f4:0e: 9c:24:9b:5a:2e:94:6b:1a:3a:66:f4:a6:1e:e5:5b:e3:b0:aa: 10:13:3b:a8:ea:a0:4f:4d:c4:53:57:e9:e2:29:9a:3d:ab:03: c0:88:9d:f5:f4:ec:5b:d7:39:1f:12:2f:85:73:d5:1b:f0:41: 64:34:fb:a4:0b:61:88:fa:fa:e2:e0:54:30:81:8c:39:05:56: d0:30:a7:2b:04:86:e0:d5:4a:95:42:b1:6b:31:5d:78:73:12: c0:ee:2d:f3:ea:39:56:16:0b:70:44:87:f9:ff:ea:8a:58:a4: 00:7b:eb:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY1QkExMTAvBgNVBAUTKDE0MjBGODA3MDlEREQzREZDM0Y1MTE1NjU1MDNDRUY0 NDQ0QkVEQzMwHhcNMjQwNTE4MjE0ODIwWhcNMjQwNTI1MjE0ODIwWjAYMRYwFAYD VQQDEw02NjQ5MjIyNS1iODg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo0nT+te2wiSWNu20z+L7vUTh9+cpK/pHXhk0bmtAvye1RiOaBlOsgUqq6eLs 7GBAB5x+pGWTbDNZvrU7XbhWMvw4ULR5zZ8MWrmq9gtdkp0pbdhmJv9rrmkjIT+8 eMAvY3pSauqXwe3Pouf5sDO/PbhEV6T4RRK6YzP3iYvvOkBLi31bcmR80rYMrVs4 T1ow+pZ93ApOF2w886hWKRZKFQrGijDpMkMrfbElPBcHFVJMEPG8D1MFENgf697H OYZvpkjMNoyeWxqujUpyYAr74epXgyNMSEDSVNMNemhK12wyWTEyxG7lDjjVpLaz AqBQ7jGSyKT439uKY6nzppzIeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGp9HFRt oJnJgzHervTrVrt2TasMMB8GA1UdIwQYMBaAFBQg+AcJ3dPfw/URVlUDzvRES+3D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjVCQS8wNDlEQ0QyMkFE NjExMUVBOEYxQThENjNDNEY5QUUwMi9GQ0Q0QnduZDA5X0Q5UkZXVlFQTzlFUkw3 Y00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0ZDRDRCd25kMDlfRDlSRldWUVBPOUVSTDdjTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjVCQS8wNDlEQ0QyMkFENjExMUVBOEYxQThENjNDNEY5QUUwMi9GQ0Q0QnduZDA5 X0Q5UkZXVlFQTzlFUkw3Y00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBz08wisDrD8urNE3OtFBx1ZY723SzQ0G04WC1iOQAIc1AOhuFzl3li K4FRRoCsPYpJiUKpQL6XTwzVhb8CieyTDxnkMxT1YEImd5AKG/vZ0dd/LwKGgN5H kv+4yoa3hRVotEAm4KgLGSDbOXW8BY5xlHgCvrW+pSB2Q+R9cmMCtJvieRuIYym2 +9QK+ISd9A6cJJtaLpRrGjpm9KYe5VvjsKoQEzuo6qBPTcRTV+niKZo9qwPAiJ31 9Oxb1zkfEi+Fc9Ub8EFkNPukC2GI+vri4FQwgYw5BVbQMKcrBIbg1UqVQrFrMV14 cxLA7i3z6jlWFgtwRIf5/+qKWKQAe+uy -----END CERTIFICATE-----Generated at Sat May 18 22:27:54 2024 by rpki-client on console-ams.rpki-client.org