$ rpki-client -vvf rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft File: ehMEShEYWGwP2hOLs-vdSEiRTjc.mft (raw, json) Hash identifier: EOXbTkGkQC9bCs2NIfMhUhsqLa4bLIeS+RDEBTaNvlM= Subject key identifier: CF:67:66:68:F3:0D:91:B1:09:47:BA:CB:DC:78:90:22:F7:03:09:EE Authority key identifier: 7A:13:04:4A:11:18:58:6C:0F:DA:13:8B:B3:EB:DD:48:48:91:4E:37 Certificate issuer: /CN=A9154EAF/serialNumber=7A13044A1118586C0FDA138BB3EBDD4848914E37 Certificate serial: 019B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft Manifest number: 0199 Signing time: Tue 07 May 2024 04:39:41 +0000 Manifest this update: Tue 07 May 2024 04:39:40 +0000 Manifest next update: Tue 14 May 2024 04:39:40 +0000 Files and hashes: 1: ehMEShEYWGwP2hOLs-vdSEiRTjc.crl (hash: 3S/MGL4bRVYEcNa04GqhCP9zbxr09WLNPIVuX5YsPXo=) 2: 62A0C17A16C511ED91E80F56C4F9AE02.roa (hash: /GIZ8EE2qpv2qSmSHnfpq4oc3z3rckA0lTZLTGHlwNw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.crl rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 04:39:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 411 (0x19b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154EAF/serialNumber=7A13044A1118586C0FDA138BB3EBDD4848914E37 Validity Not Before: May 7 04:39:40 2024 GMT Not After : May 14 04:39:40 2024 GMT Subject: CN=6639b08c-a4be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:51:ca:5a:ae:9a:43:62:72:2c:39:0a:93:42: 0b:0f:ce:1c:81:15:ed:35:3c:7d:8a:89:60:fe:6e: de:d0:c4:c9:41:1d:09:45:18:52:7f:7b:a9:f2:bd: e2:60:f9:82:7c:5c:c7:3d:20:53:80:2d:04:5e:86: 77:f9:42:84:8e:4b:57:cc:42:5b:aa:48:73:89:44: 71:55:94:81:d8:15:f0:b6:c1:6c:ee:f6:90:5c:26: 05:80:c5:ce:62:a8:10:17:b0:91:08:b6:d2:86:66: 4d:74:d4:ee:59:71:8a:e6:e1:98:56:26:ff:09:ec: d9:db:0a:a9:40:bd:51:7c:0b:58:9d:ec:07:22:88: 0e:58:fc:5a:50:2a:10:7d:be:b0:ee:3c:56:1c:db: 5d:42:cf:cb:36:f2:1b:f2:44:e8:4e:bc:4d:01:23: a8:c9:a1:fd:32:a6:f8:29:12:02:f9:63:05:22:f5: 8b:4a:09:2d:99:6c:28:57:db:3a:1d:1f:41:f1:84: 51:d0:95:6b:2d:e8:27:4e:95:10:e1:9a:5e:de:f3: b1:42:b9:78:76:75:34:4d:f4:c5:0a:1a:8d:b8:ae: 80:75:18:01:61:0f:fd:a4:51:80:71:ec:0c:34:44: 0d:22:fd:0d:2c:7e:ca:58:1c:47:47:9b:8e:c1:34: 21:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:67:66:68:F3:0D:91:B1:09:47:BA:CB:DC:78:90:22:F7:03:09:EE X509v3 Authority Key Identifier: keyid:7A:13:04:4A:11:18:58:6C:0F:DA:13:8B:B3:EB:DD:48:48:91:4E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:88:20:b6:0e:0a:bc:70:23:12:63:83:16:b0:73:79:6e:79: 2a:60:b9:66:43:85:18:dd:c7:78:2b:29:ee:b0:df:d2:9d:7d: 76:d3:9c:12:74:5b:8d:57:cd:fc:6a:c9:90:d9:d1:72:dd:67: 6f:c3:b1:26:77:de:29:41:36:50:e4:4b:11:8a:7b:6f:71:b8: 75:eb:a9:08:0a:f4:3c:ee:57:29:98:50:3e:14:34:c8:d5:20: 89:64:3e:3d:f5:7d:86:c0:94:7c:16:c8:43:68:ec:de:a1:56: 29:38:1d:0d:ff:b6:c3:e1:1b:17:4e:10:17:81:5b:2a:7a:7a: 97:b4:99:c1:77:db:b8:a5:47:69:01:04:3b:3a:e3:4a:13:60: 44:b7:ce:f2:a0:15:51:1d:48:93:72:53:93:52:52:b7:d7:43: de:2a:bc:b5:6f:59:ba:d5:3d:51:ad:b4:14:db:79:d1:0b:4f: 48:ce:48:a2:25:9c:01:75:a9:08:68:6b:c5:b7:e1:c3:72:c7: a9:84:65:a7:df:a4:ce:2b:57:ee:b8:f5:4e:4e:74:0d:8e:00: 38:e3:e0:91:18:31:01:3d:ba:94:92:bd:73:5e:79:0b:38:e7: 0b:c2:b2:4f:33:90:f3:ba:47:89:65:51:98:87:85:2b:39:10: bf:16:5c:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRFQUYxMTAvBgNVBAUTKDdBMTMwNDRBMTExODU4NkMwRkRBMTM4QkIzRUJERDQ4 NDg5MTRFMzcwHhcNMjQwNTA3MDQzOTQwWhcNMjQwNTE0MDQzOTQwWjAYMRYwFAYD VQQDEw02NjM5YjA4Yy1hNGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmFHKWq6aQ2JyLDkKk0ILD84cgRXtNTx9iolg/m7e0MTJQR0JRRhSf3up8r3i YPmCfFzHPSBTgC0EXoZ3+UKEjktXzEJbqkhziURxVZSB2BXwtsFs7vaQXCYFgMXO YqgQF7CRCLbShmZNdNTuWXGK5uGYVib/CezZ2wqpQL1RfAtYnewHIogOWPxaUCoQ fb6w7jxWHNtdQs/LNvIb8kToTrxNASOoyaH9Mqb4KRIC+WMFIvWLSgktmWwoV9s6 HR9B8YRR0JVrLegnTpUQ4Zpe3vOxQrl4dnU0TfTFChqNuK6AdRgBYQ/9pFGAcewM NEQNIv0NLH7KWBxHR5uOwTQhGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM9nZmjz DZGxCUe6y9x4kCL3AwnuMB8GA1UdIwQYMBaAFHoTBEoRGFhsD9oTi7Pr3UhIkU43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEVBRi80N0Q1QTdFMDE2 QzMxMUVEQUU3RUI5NTVDNEY5QUUwMi9laE1FU2hFWVdHd1AyaE9Mcy12ZFNFaVJU amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VoTUVTaEVZV0d3UDJoT0xzLXZkU0VpUlRqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEVBRi80N0Q1QTdFMDE2QzMxMUVEQUU3RUI5NTVDNEY5QUUwMi9laE1FU2hFWVdH d1AyaE9Mcy12ZFNFaVJUamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaiCC2Dgq8cCMSY4MWsHN5bnkqYLlmQ4UY3cd4KynusN/SnX1205wS dFuNV838asmQ2dFy3Wdvw7Emd94pQTZQ5EsRintvcbh166kICvQ87lcpmFA+FDTI 1SCJZD499X2GwJR8FshDaOzeoVYpOB0N/7bD4RsXThAXgVsqenqXtJnBd9u4pUdp AQQ7OuNKE2BEt87yoBVRHUiTclOTUlK310PeKry1b1m61T1RrbQU23nRC09Izkii JZwBdakIaGvFt+HDcsephGWn36TOK1fuuPVOTnQNjgA44+CRGDEBPbqUkr1zXnkL OOcLwrJPM5DzukeJZVGYh4UrORC/FlwS -----END CERTIFICATE-----Generated at Tue May 7 05:39:52 2024 by rpki-client on console-fra.rpki-client.org