$ rpki-client -vvf rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.mft File: DEwXIpxqtn9UP-ycTQPl_uTtL_Y.mft (raw, json) Hash identifier: CSqtfxpwz5gMWYOQjNtbqKz+oQ0ry+Q3pMxfipthuKM= Subject key identifier: 5F:9B:64:24:03:FB:5A:B1:11:61:A6:EF:0B:DA:01:45:49:5B:E6:2F Authority key identifier: 0C:4C:17:22:9C:6A:B6:7F:54:3F:EC:9C:4D:03:E5:FE:E4:ED:2F:F6 Certificate issuer: /CN=A9157ADC/serialNumber=0C4C17229C6AB67F543FEC9C4D03E5FEE4ED2FF6 Certificate serial: 0164 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.mft Manifest number: 0162 Signing time: Tue 07 May 2024 04:50:54 +0000 Manifest this update: Tue 07 May 2024 04:50:53 +0000 Manifest next update: Tue 14 May 2024 04:50:53 +0000 Files and hashes: 1: DEwXIpxqtn9UP-ycTQPl_uTtL_Y.crl (hash: R9V9lRppfMMkuR1j47mpjJITjcEezvvsjj1SX3KOoug=) 2: 88FCD2C62DBA11ED94AFED62C4F9AE02.roa (hash: V4nit8E6uk1aUlPOkiRD6LT8s+ZoM4aczSTBU0q1l28=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.crl rsync://rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 04:50:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 356 (0x164) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157ADC/serialNumber=0C4C17229C6AB67F543FEC9C4D03E5FEE4ED2FF6 Validity Not Before: May 7 04:50:53 2024 GMT Not After : May 14 04:50:53 2024 GMT Subject: CN=6639b32d-b8cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e0:6e:28:46:f2:0d:bf:ca:81:aa:e8:cd:94: 16:5c:b6:00:22:b9:ac:4c:c0:8d:ad:30:24:cd:d5: 0b:5a:55:92:69:49:f0:9b:1d:b5:0d:3e:28:4d:65: ff:a2:84:b8:c6:5f:d1:c3:ad:d6:84:51:7d:4a:d6: 31:0e:ed:86:75:a1:d4:1b:26:ac:09:cd:a2:4d:ba: d3:2d:1f:34:eb:dd:79:0e:86:67:bf:37:7e:c4:48: e6:46:93:0c:9e:77:5e:f0:35:29:cc:d4:64:a1:0c: cd:e1:8f:25:8c:03:e6:52:36:e9:3e:5b:b1:cf:5e: 51:ba:2e:c2:22:53:ba:28:b1:b3:2f:3b:43:ed:42: fd:0c:85:19:33:94:36:3d:cc:e6:c9:e2:e1:92:7d: f4:45:13:c4:bd:66:33:fc:51:17:59:27:03:44:93: 42:4e:a9:fe:e2:2d:e3:f2:04:13:b0:aa:e4:08:0d: a6:3d:ae:e3:a5:7d:59:8c:3a:13:53:cf:f5:fb:db: 93:dd:43:77:b2:b3:73:ca:eb:04:a7:fc:82:58:29: a3:70:20:7a:d1:09:f6:24:5c:b4:53:29:9e:ca:42: a9:42:2d:1f:c5:75:b5:fe:6e:7c:7f:5c:35:05:e0: 2c:0e:0e:d0:31:55:17:ef:79:06:38:9d:ce:cf:ed: 99:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:9B:64:24:03:FB:5A:B1:11:61:A6:EF:0B:DA:01:45:49:5B:E6:2F X509v3 Authority Key Identifier: keyid:0C:4C:17:22:9C:6A:B6:7F:54:3F:EC:9C:4D:03:E5:FE:E4:ED:2F:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:96:a5:0b:6d:77:ee:a6:f6:bf:c5:ee:56:29:e6:92:ed:15: 1b:25:ce:8a:70:ca:5c:0d:8a:4a:54:96:2d:b6:ea:af:61:6e: ab:d1:a3:04:af:85:ae:3a:91:b2:6e:7f:04:b6:f8:bf:72:5d: ff:2f:14:a0:3d:64:1b:16:1a:a6:f2:5d:ef:cc:e4:d7:05:11: 43:02:11:0f:ed:92:d3:d8:ca:d2:ef:d8:e8:6f:2a:56:ee:c3: 17:49:38:0f:04:01:a0:12:8e:b8:5b:5d:ad:6b:13:42:6a:e6: 49:db:09:ef:c2:ff:8d:07:a0:89:13:68:d4:31:88:05:3d:b4: 12:41:a2:54:fc:c7:e2:ad:21:5a:77:0a:3c:c3:f1:f0:ab:d9: 75:12:53:4a:52:a4:3f:8a:de:5a:7c:7f:72:79:2f:8b:23:18: c7:55:27:09:89:af:05:40:26:47:36:14:53:ae:30:db:56:6e: 91:97:fc:82:d6:19:94:96:2c:7a:0c:b0:9c:aa:b8:6e:93:90: 7c:24:07:b0:3c:76:12:f0:02:27:60:f2:9a:5d:98:a3:34:f4: e2:78:5f:34:0e:7e:f3:43:56:86:30:17:b8:c0:18:b0:b7:90: 65:9c:d3:e1:73:3e:e6:b0:12:63:8b:19:28:fd:a4:85:7e:27: 84:03:34:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdBREMxMTAvBgNVBAUTKDBDNEMxNzIyOUM2QUI2N0Y1NDNGRUM5QzREMDNFNUZF RTRFRDJGRjYwHhcNMjQwNTA3MDQ1MDUzWhcNMjQwNTE0MDQ1MDUzWjAYMRYwFAYD VQQDEw02NjM5YjMyZC1iOGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAruBuKEbyDb/KgarozZQWXLYAIrmsTMCNrTAkzdULWlWSaUnwmx21DT4oTWX/ ooS4xl/Rw63WhFF9StYxDu2GdaHUGyasCc2iTbrTLR806915DoZnvzd+xEjmRpMM nnde8DUpzNRkoQzN4Y8ljAPmUjbpPluxz15Rui7CIlO6KLGzLztD7UL9DIUZM5Q2 PczmyeLhkn30RRPEvWYz/FEXWScDRJNCTqn+4i3j8gQTsKrkCA2mPa7jpX1ZjDoT U8/1+9uT3UN3srNzyusEp/yCWCmjcCB60Qn2JFy0UymeykKpQi0fxXW1/m58f1w1 BeAsDg7QMVUX73kGOJ3Oz+2ZaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF+bZCQD +1qxEWGm7wvaAUVJW+YvMB8GA1UdIwQYMBaAFAxMFyKcarZ/VD/snE0D5f7k7S/2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0FEQy9GNTc1ODlFMjJE QjYxMUVEODIxNTlCNUVDNEY5QUUwMi9ERXdYSXB4cXRuOVVQLXljVFFQbF91VHRM X1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RFd1hJcHhxdG45VVAteWNUUVBsX3VUdExfWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0FEQy9GNTc1ODlFMjJEQjYxMUVEODIxNTlCNUVDNEY5QUUwMi9ERXdYSXB4cXRu OVVQLXljVFFQbF91VHRMX1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1lqULbXfupva/xe5WKeaS7RUbJc6KcMpcDYpKVJYttuqvYW6r0aME r4WuOpGybn8Etvi/cl3/LxSgPWQbFhqm8l3vzOTXBRFDAhEP7ZLT2MrS79jobypW 7sMXSTgPBAGgEo64W12taxNCauZJ2wnvwv+NB6CJE2jUMYgFPbQSQaJU/MfirSFa dwo8w/Hwq9l1ElNKUqQ/it5afH9yeS+LIxjHVScJia8FQCZHNhRTrjDbVm6Rl/yC 1hmUlix6DLCcqrhuk5B8JAewPHYS8AInYPKaXZijNPTieF80Dn7zQ1aGMBe4wBiw t5BlnNPhcz7msBJjixko/aSFfieEAzRA -----END CERTIFICATE-----Generated at Tue May 7 05:39:52 2024 by rpki-client on console-fra.rpki-client.org