$ rpki-client -vvf rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft File: X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft (raw, json) Hash identifier: HeeeNLVoZOCmTGgxMOxFLcRgcOB3H0eNLP7VXtv2IYo= Subject key identifier: 37:22:C3:17:9F:4E:57:42:F8:3C:5D:78:4C:C8:D8:98:76:38:90:2F Authority key identifier: 5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 Certificate issuer: /CN=A9156255/serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Certificate serial: 0126 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft Manifest number: 0122 Signing time: Fri 03 May 2024 05:14:00 +0000 Manifest this update: Fri 03 May 2024 05:13:59 +0000 Manifest next update: Fri 10 May 2024 05:13:59 +0000 Files and hashes: 1: X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl (hash: B/4rF897qlkTyLte6sWBr18LAP/24+HnF5JDyPZP4yU=) 2: 5637146C507611EDB59D9E2EC4F9AE02.roa (hash: OY0zr2n6spxnIHGbL3oStlwDmEG60mOZ/pJc1RRwfOk=) 3: D1FCB742514711ED92E3885EC4F9AE02.roa (hash: YxeOVJUAGpB4uR8Uh6hpe+MVw/LDcqDhKKHxSAXAZM4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 294 (0x126) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156255/serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Validity Not Before: May 3 05:13:59 2024 GMT Not After : May 10 05:13:59 2024 GMT Subject: CN=66347297-d4e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e8:73:24:f7:b8:31:db:62:ac:c6:49:41:09: fb:44:2c:40:fd:19:5e:fe:ac:ab:98:f4:a3:4a:cb: 92:36:a0:07:f0:e8:8e:08:35:b4:04:6e:a6:a4:3c: ca:31:66:d4:4d:61:0b:60:46:1d:96:3e:b4:c1:17: 93:98:01:f1:5d:a6:9e:80:93:b9:a5:29:10:e5:fe: 62:cf:6c:8a:30:00:f9:83:24:a3:bd:02:37:4a:b1: 49:f7:5a:f1:07:18:ef:46:02:56:c9:e0:33:f8:b9: ff:da:81:aa:16:f8:11:84:62:b0:06:bd:f9:f9:ef: fe:d9:c4:39:b9:6f:f5:7e:93:7a:f9:cc:9e:c5:51: 08:b3:83:7e:e6:55:ab:a6:c3:90:b1:22:0c:2f:9e: d3:2f:67:f8:99:51:6f:46:71:47:5f:10:23:20:08: 8d:03:39:50:75:ea:aa:37:15:e0:c9:48:8f:09:a5: f8:fc:bf:48:e8:9b:5a:f3:d0:1d:14:9f:d8:95:6b: 17:8a:f6:42:14:41:39:66:46:9a:97:1b:9f:9e:0e: 71:fa:f9:a1:19:dd:68:ac:5f:b6:3e:5b:00:30:9c: 9e:1b:b0:16:0f:f2:e2:2f:3b:0f:2f:39:fc:ac:05: d1:74:4a:78:d5:34:51:2c:86:2b:8a:cc:5d:19:f6: b6:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:22:C3:17:9F:4E:57:42:F8:3C:5D:78:4C:C8:D8:98:76:38:90:2F X509v3 Authority Key Identifier: keyid:5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:ca:0f:3f:a9:cb:94:a2:d7:45:a6:89:b8:16:9f:de:00:3b: 6c:25:bd:8a:bd:fe:d2:59:e5:6f:70:e6:cf:a2:98:60:5d:dc: 58:1d:0b:28:27:7d:d7:5d:86:51:ca:22:07:8a:8b:cf:a2:e1: 2e:e5:c1:1d:1e:44:a8:6f:02:17:dd:5c:7d:10:d7:4f:a2:ca: 9a:be:c9:ac:f6:94:d0:66:dd:42:30:8e:1f:05:01:48:2f:0e: 8f:60:7a:38:43:b0:d2:2e:3d:52:35:a1:77:bb:69:0b:37:bd: 64:98:86:d2:28:10:39:35:eb:cc:7d:75:e1:a4:b9:61:f5:cd: 32:7e:1f:b3:2e:3c:74:93:0d:bc:6e:1f:ac:b3:00:26:d6:65: 77:1d:79:71:fd:af:8e:75:25:88:a3:c4:ef:6e:fb:7a:23:69: 9c:d9:83:98:f4:71:82:f1:8c:09:8e:ff:57:74:4a:b2:14:36: 81:c8:d9:de:b1:21:be:36:0d:8b:92:1b:41:90:78:2d:9c:63: cc:5c:03:a8:db:75:b0:6b:f0:33:6b:c3:1b:8e:f0:80:c0:f8: 83:3d:c0:c5:0c:fc:15:e0:75:0c:00:8a:23:83:cb:9b:a5:62: 63:b7:a2:31:2f:79:dd:43:2b:4b:b2:f7:1f:92:fc:fd:cd:a4: 7c:af:ee:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYyNTUxMTAvBgNVBAUTKDVGNkM4RkEzQTY1ODc0MDIzMUIyQzRCMTM0ODFCRTEx NTAwQURDNzYwHhcNMjQwNTAzMDUxMzU5WhcNMjQwNTEwMDUxMzU5WjAYMRYwFAYD VQQDEw02NjM0NzI5Ny1kNGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1+hzJPe4MdtirMZJQQn7RCxA/Rle/qyrmPSjSsuSNqAH8OiOCDW0BG6mpDzK MWbUTWELYEYdlj60wReTmAHxXaaegJO5pSkQ5f5iz2yKMAD5gySjvQI3SrFJ91rx BxjvRgJWyeAz+Ln/2oGqFvgRhGKwBr35+e/+2cQ5uW/1fpN6+cyexVEIs4N+5lWr psOQsSIML57TL2f4mVFvRnFHXxAjIAiNAzlQdeqqNxXgyUiPCaX4/L9I6Jta89Ad FJ/YlWsXivZCFEE5Zkaalxufng5x+vmhGd1orF+2PlsAMJyeG7AWD/LiLzsPLzn8 rAXRdEp41TRRLIYrisxdGfa2+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDciwxef TldC+DxdeEzI2Jh2OJAvMB8GA1UdIwQYMBaAFF9sj6OmWHQCMbLEsTSBvhFQCtx2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjI1NS85MTYyMDg0QzUw NzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRBSXhzc1N4TklHLUVWQUsz SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gyeVBvNlpZZEFJeHNzU3hOSUctRVZBSzNIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjI1NS85MTYyMDg0QzUwNzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRB SXhzc1N4TklHLUVWQUszSFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIyg8/qcuUotdFpom4Fp/eADtsJb2Kvf7SWeVvcObPophgXdxYHQso J33XXYZRyiIHiovPouEu5cEdHkSobwIX3Vx9ENdPosqavsms9pTQZt1CMI4fBQFI Lw6PYHo4Q7DSLj1SNaF3u2kLN71kmIbSKBA5NevMfXXhpLlh9c0yfh+zLjx0kw28 bh+sswAm1mV3HXlx/a+OdSWIo8Tvbvt6I2mc2YOY9HGC8YwJjv9XdEqyFDaByNne sSG+Ng2LkhtBkHgtnGPMXAOo23Wwa/Aza8MbjvCAwPiDPcDFDPwV4HUMAIojg8ub pWJjt6IxL3ndQytLsvcfkvz9zaR8r+7E -----END CERTIFICATE-----Generated at Fri May 3 06:28:39 2024 by rpki-client on console-fra.rpki-client.org