$ rpki-client -vvf rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft File: o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft (raw, json) Hash identifier: LbRTSpF9JG+DMSs3na1z7SkyKpAG5hXYF7Iz405l29g= Subject key identifier: 47:68:01:5D:63:51:06:FC:B9:FF:E1:32:BB:1C:3D:71:2A:97:FB:EC Authority key identifier: A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 Certificate issuer: /CN=A914F6AF/serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Certificate serial: 010C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft Manifest number: 010A Signing time: Fri 03 May 2024 05:28:34 +0000 Manifest this update: Fri 03 May 2024 05:28:34 +0000 Manifest next update: Fri 10 May 2024 05:28:34 +0000 Files and hashes: 1: o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl (hash: P9ylBg3XzmiFXBfpGh+/TwPCdM+UfmmXvEZ2Y8wW0JM=) 2: CCCA3842714711EDBB61A87FC4F9AE02.roa (hash: jST31h743fh0G7nQ5yuFvr7M5qlYPELdwHHksCGFGB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 268 (0x10c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F6AF/serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Validity Not Before: May 3 05:28:34 2024 GMT Not After : May 10 05:28:34 2024 GMT Subject: CN=66347602-b0e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f5:34:e5:71:a2:d3:54:58:07:55:49:30:13: 3f:a0:fc:cc:6b:e5:af:0a:89:1c:81:2a:b5:22:e1: 38:8b:05:41:83:7e:83:a4:38:12:88:68:ba:63:4e: 85:a7:39:2d:9b:ab:aa:49:c7:b4:2d:e0:a5:87:a5: b5:4c:68:64:71:63:fc:30:b4:32:27:58:e0:8a:2d: f4:c1:7e:19:e6:a1:33:2b:1b:d3:6e:aa:7a:4a:dd: 53:7e:40:61:72:ed:3f:38:e4:58:cb:05:33:1a:08: 71:ec:24:69:f6:cd:1e:4b:ac:d5:71:c7:da:3c:f7: d0:99:8b:de:2e:dd:d8:2b:9e:47:40:33:7c:40:27: de:6f:54:a9:8f:4e:04:41:bc:57:18:44:97:48:8d: bb:e1:00:43:cf:43:f0:26:61:71:72:69:9b:24:5f: 04:27:b6:f9:ee:6f:29:1d:fb:d4:3f:b8:aa:5c:6d: ce:e4:99:3f:74:7a:69:d1:2e:4a:84:ef:84:5b:4e: 51:4d:e2:de:5e:a5:ae:49:f1:1e:bc:f2:27:e9:a8: 09:44:0e:c3:cb:cb:fc:aa:e0:77:a2:9d:db:b7:77: db:0f:0b:a9:c4:e6:f7:a9:7c:6d:ca:d6:34:3f:7a: f6:29:b6:e8:f7:a5:8d:52:b1:88:f7:3c:01:96:9e: a1:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:68:01:5D:63:51:06:FC:B9:FF:E1:32:BB:1C:3D:71:2A:97:FB:EC X509v3 Authority Key Identifier: keyid:A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:69:71:60:7f:1c:e2:71:a7:84:88:bb:b0:36:ce:fd:a5:2d: c7:97:dc:20:a3:e8:71:87:76:0e:f9:b4:cb:90:bc:ab:f4:f9: 68:26:98:15:a9:f8:8d:1e:f1:9e:ce:21:02:70:41:49:2a:be: 6d:76:0f:a9:2a:6f:95:82:14:20:22:03:d7:6a:f5:63:4b:97: 0f:60:ab:6c:fc:40:14:86:0f:ee:b3:06:74:e8:5e:98:0d:86: 3b:97:b8:dd:ce:ba:de:1c:58:c5:98:2b:82:fe:3b:ae:91:e0: d1:45:58:88:c2:62:0a:f6:bc:d6:70:e7:8f:2e:25:5e:16:09: 26:0d:9f:d7:24:7a:e3:33:29:8b:cc:7b:bf:d9:6d:8e:71:8f: 4e:f8:e6:2d:12:80:41:3b:a9:80:b7:1e:de:57:40:38:b4:81: 19:94:2f:3c:64:41:06:20:f5:31:49:aa:e3:0b:40:cb:9b:d4: 48:01:84:f1:c7:38:c6:92:86:94:10:68:8a:46:29:40:aa:30: 08:7e:a0:dc:1d:67:97:2f:0d:1b:f9:31:ad:9f:80:69:4f:f1: ba:eb:6a:26:09:91:3f:74:2d:7e:ce:0f:ae:e5:a6:27:8c:5c: d8:f5:7f:4c:30:fa:30:a2:6b:5f:e8:d0:88:e8:ae:01:e6:ee: cb:d9:e4:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY2QUYxMTAvBgNVBAUTKEEzRDI1MEM1RDUyQzVBOEFDNjdCQTAyMTg4NEQxOTFB NUQ0QTcxODIwHhcNMjQwNTAzMDUyODM0WhcNMjQwNTEwMDUyODM0WjAYMRYwFAYD VQQDEw02NjM0NzYwMi1iMGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0vU05XGi01RYB1VJMBM/oPzMa+WvCokcgSq1IuE4iwVBg36DpDgSiGi6Y06F pzktm6uqSce0LeClh6W1TGhkcWP8MLQyJ1jgii30wX4Z5qEzKxvTbqp6St1TfkBh cu0/OORYywUzGghx7CRp9s0eS6zVccfaPPfQmYveLt3YK55HQDN8QCfeb1Spj04E QbxXGESXSI274QBDz0PwJmFxcmmbJF8EJ7b57m8pHfvUP7iqXG3O5Jk/dHpp0S5K hO+EW05RTeLeXqWuSfEevPIn6agJRA7Dy8v8quB3op3bt3fbDwupxOb3qXxtytY0 P3r2Kbbo96WNUrGI9zwBlp6hjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEdoAV1j UQb8uf/hMrscPXEql/vsMB8GA1UdIwQYMBaAFKPSUMXVLFqKxnugIYhNGRpdSnGC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjZBRi9GNkQ4REE5Qzcx NDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dvckdlNkFoaUUwWkdsMUtj WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285SlF4ZFVzV29yR2U2QWhpRTBaR2wxS2NZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjZBRi9GNkQ4REE5QzcxNDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dv ckdlNkFoaUUwWkdsMUtjWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcaXFgfxzicaeEiLuwNs79pS3Hl9wgo+hxh3YO+bTLkLyr9PloJpgV qfiNHvGeziECcEFJKr5tdg+pKm+VghQgIgPXavVjS5cPYKts/EAUhg/uswZ06F6Y DYY7l7jdzrreHFjFmCuC/juukeDRRViIwmIK9rzWcOePLiVeFgkmDZ/XJHrjMymL zHu/2W2OcY9O+OYtEoBBO6mAtx7eV0A4tIEZlC88ZEEGIPUxSarjC0DLm9RIAYTx xzjGkoaUEGiKRilAqjAIfqDcHWeXLw0b+TGtn4BpT/G662omCZE/dC1+zg+u5aYn jFzY9X9MMPowomtf6NCI6K4B5u7L2eQH -----END CERTIFICATE-----Generated at Fri May 3 06:28:38 2024 by rpki-client on console-fra.rpki-client.org