$ rpki-client -vvf rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft File: _U2MY5rcFYR8e0kRFZ3nG9gTk64.mft (raw, json) Hash identifier: hrnTxO68utXIe0Hw24Ww1MqymtRwA55EMoSXS5vP/Xk= Subject key identifier: DC:99:B0:D8:A3:8A:FB:8D:56:A5:A1:45:6A:5F:D6:B0:7A:93:A1:ED Authority key identifier: FD:4D:8C:63:9A:DC:15:84:7C:7B:49:11:15:9D:E7:1B:D8:13:93:AE Certificate issuer: /CN=A9152462/serialNumber=FD4D8C639ADC15847C7B4911159DE71BD81393AE Certificate serial: 0744 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U2MY5rcFYR8e0kRFZ3nG9gTk64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft Manifest number: 0740 Signing time: Thu 02 May 2024 22:32:33 +0000 Manifest this update: Thu 02 May 2024 22:32:32 +0000 Manifest next update: Thu 09 May 2024 22:32:32 +0000 Files and hashes: 1: _U2MY5rcFYR8e0kRFZ3nG9gTk64.crl (hash: fBNHQcKh62JkV352dYvJma4rEGJGrINgD+GfIS6Kq8w=) 2: 4149D206DC4711EA80D5D916C4F9AE02.roa (hash: U5qwIcSE0jf6QudDGYVbl3Fu3p8nxRSluXp9BN5ItZo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.crl rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U2MY5rcFYR8e0kRFZ3nG9gTk64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 22:16:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1860 (0x744) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152462/serialNumber=FD4D8C639ADC15847C7B4911159DE71BD81393AE Validity Not Before: May 2 22:32:32 2024 GMT Not After : May 9 22:32:32 2024 GMT Subject: CN=66341480-44b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2d:5c:31:70:89:2c:95:85:85:0a:9b:76:23: be:4f:c6:5d:41:4c:df:cb:3d:e5:6c:47:0a:61:5b: ac:79:d2:16:33:01:27:c9:d6:3c:7f:83:f1:9c:59: 6f:ca:15:33:60:4b:06:ee:42:33:d2:ac:db:bb:40: e9:c0:a3:f1:4f:0e:3d:e4:e0:18:91:59:79:09:60: d9:84:49:c3:7e:82:7f:6e:77:05:2b:fe:33:f0:f6: ef:03:13:81:f1:ce:e4:90:47:c0:e6:d7:70:fd:85: b5:98:c3:21:aa:af:8f:d9:78:9b:ae:1b:3c:73:96: 96:5d:71:cb:e4:93:fd:59:a7:c5:0c:7f:7a:85:cb: 60:8c:b9:db:67:9c:c7:f5:b2:31:81:14:39:83:8e: 73:25:a4:de:55:74:e0:87:49:42:b0:73:aa:74:93: 7e:0b:48:44:b6:cc:77:23:d2:2b:dd:34:50:50:64: 2b:73:bc:2e:13:42:98:c0:60:19:26:ae:f4:b8:e1: 84:a3:7f:62:37:0b:c5:1d:77:70:c9:b1:66:4d:74: 9e:4c:aa:71:70:5b:bd:ef:5c:37:8b:32:54:44:d1: f1:f6:b7:4c:79:7e:4a:be:3b:1e:67:6e:ae:1e:8b: 74:78:6a:26:39:df:d6:77:e0:d7:4c:e8:cc:a7:fd: ca:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:99:B0:D8:A3:8A:FB:8D:56:A5:A1:45:6A:5F:D6:B0:7A:93:A1:ED X509v3 Authority Key Identifier: keyid:FD:4D:8C:63:9A:DC:15:84:7C:7B:49:11:15:9D:E7:1B:D8:13:93:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U2MY5rcFYR8e0kRFZ3nG9gTk64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:02:d7:df:b7:0f:05:b6:12:f8:86:46:b0:4b:3f:d9:f7:fb: 97:81:f4:3a:19:63:5c:d3:71:3d:bb:30:01:22:fd:5a:02:f6: 0a:cf:44:42:c9:0f:b7:e6:67:df:1f:ff:b8:f6:2c:bb:69:03: 44:19:eb:77:a1:3f:3c:aa:32:8a:db:23:06:79:fb:c1:f4:7f: 6e:c7:bf:8b:8a:ad:57:89:8b:d3:2d:87:17:5b:18:0f:75:45: 25:51:4c:64:7a:2a:93:9d:06:43:f6:b9:29:48:fc:22:df:dd: 0f:03:21:df:20:a8:98:24:10:2e:fc:d0:18:b0:41:0e:1b:12: 68:0e:a9:74:85:3d:b6:54:21:30:eb:a8:1e:06:31:f1:da:75: 78:03:97:cd:60:0d:70:65:88:a9:e3:ac:6e:8c:e7:4c:74:f2: f8:ad:98:9f:e9:0e:18:c4:68:38:7c:87:72:d3:5d:e7:ed:f1: 5d:0d:dd:5a:fb:e2:83:9c:81:9f:ce:ea:5c:c5:79:f4:5b:39: 7c:78:48:cc:ca:c9:e5:46:e2:fb:6e:d6:ff:ed:2f:eb:07:3c: 1e:77:a3:8f:42:7d:d6:ef:f6:45:61:c1:d9:7d:c2:22:46:06: 94:f4:ab:18:0f:fe:f2:05:59:5a:c3:7f:96:c2:6c:76:3e:c7: 16:ff:e1:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI0NjIxMTAvBgNVBAUTKEZENEQ4QzYzOUFEQzE1ODQ3QzdCNDkxMTE1OURFNzFC RDgxMzkzQUUwHhcNMjQwNTAyMjIzMjMyWhcNMjQwNTA5MjIzMjMyWjAYMRYwFAYD VQQDEw02NjM0MTQ4MC00NGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxy1cMXCJLJWFhQqbdiO+T8ZdQUzfyz3lbEcKYVusedIWMwEnydY8f4PxnFlv yhUzYEsG7kIz0qzbu0DpwKPxTw495OAYkVl5CWDZhEnDfoJ/bncFK/4z8PbvAxOB 8c7kkEfA5tdw/YW1mMMhqq+P2Xibrhs8c5aWXXHL5JP9WafFDH96hctgjLnbZ5zH 9bIxgRQ5g45zJaTeVXTgh0lCsHOqdJN+C0hEtsx3I9Ir3TRQUGQrc7wuE0KYwGAZ Jq70uOGEo39iNwvFHXdwybFmTXSeTKpxcFu971w3izJURNHx9rdMeX5KvjseZ26u Hot0eGomOd/Wd+DXTOjMp/3KnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNyZsNij ivuNVqWhRWpf1rB6k6HtMB8GA1UdIwQYMBaAFP1NjGOa3BWEfHtJERWd5xvYE5Ou MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjQ2Mi8zMkM3NTdFNkRD NDUxMUVBODZBNzM3MTNDNEY5QUUwMi9fVTJNWTVyY0ZZUjhlMGtSRlozbkc5Z1Rr NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19VMk1ZNXJjRllSOGUwa1JGWjNuRzlnVGs2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjQ2Mi8zMkM3NTdFNkRDNDUxMUVBODZBNzM3MTNDNEY5QUUwMi9fVTJNWTVyY0ZZ UjhlMGtSRlozbkc5Z1RrNjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9Atfftw8FthL4hkawSz/Z9/uXgfQ6GWNc03E9uzABIv1aAvYKz0RC yQ+35mffH/+49iy7aQNEGet3oT88qjKK2yMGefvB9H9ux7+Liq1XiYvTLYcXWxgP dUUlUUxkeiqTnQZD9rkpSPwi390PAyHfIKiYJBAu/NAYsEEOGxJoDql0hT22VCEw 66geBjHx2nV4A5fNYA1wZYip46xujOdMdPL4rZif6Q4YxGg4fIdy013n7fFdDd1a ++KDnIGfzupcxXn0Wzl8eEjMysnlRuL7btb/7S/rBzwed6OPQn3W7/ZFYcHZfcIi RgaU9KsYD/7yBVlaw3+Wwmx2PscW/+Ft -----END CERTIFICATE-----Generated at Thu May 2 23:03:11 2024 by rpki-client on console-fra.rpki-client.org