$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft File: 4bgHrCt0Vfux4xYGjR0BcSYLscc.mft (raw, json) Hash identifier: TcKCDfQlW/z3MEpLR8T2HB9i0sf9p03ET4IztposGV4= Subject key identifier: 38:F3:21:21:86:22:05:A3:5C:6B:2E:0B:35:75:BC:77:4E:B5:1E:82 Authority key identifier: E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 Certificate issuer: /CN=A9157DAE/serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Certificate serial: 1238 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft Manifest number: 11CC Signing time: Thu 16 May 2024 17:53:56 +0000 Manifest this update: Thu 16 May 2024 17:53:56 +0000 Manifest next update: Thu 23 May 2024 17:53:56 +0000 Files and hashes: 1: 4bgHrCt0Vfux4xYGjR0BcSYLscc.crl (hash: 65hFFEY7cwPdKbUUxWr07SFdZ4yWXS/F4T4N8e03cPY=) 2: A6A4A20E89B911EC8FDB572DC4F9AE02.roa (hash: 27uopz7ODO14BOd/pvPRwbIDw8sqr18aZvrjAgOOVFM=) 3: A8949F64D86E11E982BA0712C4F9AE02.roa (hash: oFLyaf6YOXONv9KOGlMDpV7u06F2Uq1w4mcwKVfVwXk=) 4: BBC62D8A732611E9B461626DC4F9AE02.roa (hash: xZPOECFS52IuNnATrkmGXhj9m72Vo/Ga5mIC18gvS2k=) 5: 1F8378E6BCBD11EBAC9A4744C4F9AE02.roa (hash: kVem8HgOEZ3vRlY7BKH9onUoK64q4pGUgOU+9R9c588=) 6: 9EE31802996B11E9B3FEED46C4F9AE02.roa (hash: n+2+XWfRVWzvzKGMyzLA2GRAo3wJ5E7GeWY5WCJYJ28=) 7: 161983C2B9EB11EDB53AC21BC4F9AE02.roa (hash: W4z3IhNIU584Cp0CV2K23aNEpELeR2xG62pbjbefnyQ=) 8: FDB29514452511E98F23AE4FC4F9AE02.roa (hash: jKjgjHAVwE6QjT9uxqWJZ+6l7n4ZvhOgISiekncD66w=) 9: 8E6CF9C8E59911E98D355932C4F9AE02.roa (hash: imtagZtXIX7MrByPsKQhivDaupRQWtWVgGZvHFLSCWw=) 10: F99AFAFE1D5411EA921E0351C4F9AE02.roa (hash: kNnrL0zrpFKK/qT3na/E9TuES0ckmpQm754fx2YmySA=) 11: C21FA1CE080511EAA9457C67C4F9AE02.roa (hash: YKQHGJEMzcVd/VeTOaZJXYx7/8P1yEtO0yBthH+z7wI=) 12: 0038D872072E11EB8914E540C4F9AE02.roa (hash: y0+Gv+ZWp6qwBaBdw9FoHQj+CTNMkEHp70fW9+cJ5JI=) 13: D8E0EC82927711E985E0423AC4F9AE02.roa (hash: F/rMOej/eW/6RfGJ6EY8bhqAyVqDiX5qLMRUjgJdSB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 17:44:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4664 (0x1238) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE/serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Validity Not Before: May 16 17:53:56 2024 GMT Not After : May 23 17:53:56 2024 GMT Subject: CN=66464834-604c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8e:26:90:45:6b:96:6e:6a:c5:17:ec:4b:d8: 51:aa:da:a2:9b:47:1c:8b:57:ba:e3:ce:64:87:11: 84:47:50:53:47:6e:eb:6d:64:71:46:52:0f:16:3a: 4f:fa:08:00:05:75:e1:18:34:02:f3:2a:58:ef:c1: 39:80:13:c9:7a:90:b4:8d:82:ad:30:fd:59:26:e7: c3:aa:0a:5d:65:35:cd:44:4b:3b:6f:fd:62:ba:83: 09:24:24:53:0b:d8:b3:fd:e6:25:f5:35:1f:7f:af: 04:da:20:41:a5:ee:04:ef:22:a7:bd:9d:7b:9e:c8: 6e:ac:97:18:cc:bc:ec:2f:27:38:65:5a:6a:93:99: 26:db:81:53:1a:89:06:27:5d:bc:1f:e4:18:27:b6: 31:d3:2c:04:bc:73:9b:e7:7f:bf:d3:60:9e:00:9e: 01:83:75:02:b3:ab:eb:00:fb:7d:41:88:c5:10:c4: 3f:e4:43:e7:b4:af:0a:73:7e:ba:55:a9:f8:2b:24: 7d:a5:d9:31:e7:21:c1:54:79:3f:5b:71:a9:bc:44: ae:4f:48:e9:4b:bb:21:dc:58:5d:0d:7b:a6:ef:f1: 7c:2e:fa:da:9f:ef:16:54:e2:25:6e:9b:d1:2b:5f: 51:2f:ce:19:47:c1:0d:10:4c:c7:f5:b0:c5:05:57: 9e:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:F3:21:21:86:22:05:A3:5C:6B:2E:0B:35:75:BC:77:4E:B5:1E:82 X509v3 Authority Key Identifier: keyid:E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:ea:52:b5:21:cb:4e:04:bf:ad:24:c1:37:cd:7c:d9:eb:e7: c2:16:55:34:18:4f:d3:c3:31:df:a4:71:d5:93:f7:5e:83:0b: f0:35:06:7f:9b:2a:17:c2:82:e5:17:1e:ce:6e:60:35:fc:a8: a8:41:87:75:46:b6:ca:4e:0c:00:3b:b7:bc:ea:b5:2e:93:ee: c0:3e:f9:05:1a:1c:7b:a6:e8:20:28:33:3a:97:c0:ce:67:d0: 92:50:93:02:fb:7e:11:6a:9a:85:45:c1:ff:d2:7d:d4:59:6e: 46:f2:bb:d1:81:c0:11:48:43:cd:a0:b6:4d:bd:fa:d0:90:71: 68:ee:07:7d:eb:bc:d4:d2:96:ad:1d:e3:2b:d3:b3:2a:0c:d4: 43:47:9d:e3:5e:d1:d5:1f:02:d4:a2:a8:bc:30:ac:02:bb:2e: f5:b6:65:b1:89:bc:78:1c:98:50:0b:66:a1:93:d4:e4:f5:72: ed:13:00:a2:ab:33:7f:cb:f6:5e:a5:dc:0b:23:a6:12:6b:08: bf:98:72:10:43:16:a0:ad:e3:68:0b:bc:69:b3:3f:e3:05:2a: 93:0e:8f:00:24:39:d8:ac:9e:11:59:f8:77:df:a8:18:d0:6a: fd:fe:11:96:4c:e1:5e:26:e8:ae:a1:e7:e3:1a:58:f2:31:79: 4e:7c:3f:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKEUxQjgwN0FDMkI3NDU1RkJCMUUzMTYwNjhEMUQwMTcx MjYwQkIxQzcwHhcNMjQwNTE2MTc1MzU2WhcNMjQwNTIzMTc1MzU2WjAYMRYwFAYD VQQDEw02NjQ2NDgzNC02MDRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvo4mkEVrlm5qxRfsS9hRqtqim0cci1e6485khxGER1BTR27rbWRxRlIPFjpP +ggABXXhGDQC8ypY78E5gBPJepC0jYKtMP1ZJufDqgpdZTXNREs7b/1iuoMJJCRT C9iz/eYl9TUff68E2iBBpe4E7yKnvZ17nshurJcYzLzsLyc4ZVpqk5km24FTGokG J128H+QYJ7Yx0ywEvHOb53+/02CeAJ4Bg3UCs6vrAPt9QYjFEMQ/5EPntK8Kc366 Van4KyR9pdkx5yHBVHk/W3GpvESuT0jpS7sh3FhdDXum7/F8Lvran+8WVOIlbpvR K19RL84ZR8ENEEzH9bDFBVeeAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDjzISGG IgWjXGsuCzV1vHdOtR6CMB8GA1UdIwQYMBaAFOG4B6wrdFX7seMWBo0dAXEmC7HH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS82MTY2NkMwRUQ2 ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZmdXg0eFlHalIwQmNTWUxz Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRiZ0hyQ3QwVmZ1eDR4WUdqUjBCY1NZTHNjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS82MTY2NkMwRUQ2ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZm dXg0eFlHalIwQmNTWUxzY2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAG6lK1IctOBL+tJME3zXzZ6+fCFlU0GE/TwzHfpHHVk/degwvwNQZ/ myoXwoLlFx7ObmA1/KioQYd1RrbKTgwAO7e86rUuk+7APvkFGhx7puggKDM6l8DO Z9CSUJMC+34RapqFRcH/0n3UWW5G8rvRgcARSEPNoLZNvfrQkHFo7gd967zU0pat HeMr07MqDNRDR53jXtHVHwLUoqi8MKwCuy71tmWxibx4HJhQC2ahk9Tk9XLtEwCi qzN/y/ZepdwLI6YSawi/mHIQQxagreNoC7xpsz/jBSqTDo8AJDnYrJ4RWfh336gY 0Gr9/hGWTOFeJuiuoefjGljyMXlOfD+2 -----END CERTIFICATE-----Generated at Thu May 16 18:26:04 2024 by rpki-client on console-fra.rpki-client.org