$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft File: Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft (raw, json) Hash identifier: YLcIL6WDHL3Ov1DBf7od1ufnCc23qQS3TqGY8moQIeE= Subject key identifier: 8F:FF:9D:C8:37:0A:FA:D0:81:7E:3E:39:3D:33:16:22:AD:66:6B:7C Authority key identifier: 5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC Certificate issuer: /CN=A9158E8E/serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Certificate serial: 02D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft Manifest number: 02BC Signing time: Tue 07 May 2024 03:33:25 +0000 Manifest this update: Tue 07 May 2024 03:33:25 +0000 Manifest next update: Tue 14 May 2024 03:33:25 +0000 Files and hashes: 1: Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl (hash: 2hxlhQCiYDp5CMqhzVZsg3w8XFtbeCfCSrboOd4T7LU=) 2: DED376FAC0B211EEBAD8C90CC4F9AE02.roa (hash: 55JHX4ew0160t2EeeFzUdAANCqPk1wqNfiUZNAUhc9g=) 3: DD058EDAC0B211EEBAD8C90CC4F9AE02.roa (hash: mxN3e88k7fubkVX0grtmJ23AfKb/8VxSvKoITefqqmc=) 4: DDF31C5EC0B211EEBAD8C90CC4F9AE02.roa (hash: 4nJdqfAbv7yNLVKtomee0puKp1DxSseTMZJCnJsI1S4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 03:33:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 724 (0x2d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158E8E/serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Validity Not Before: May 7 03:33:25 2024 GMT Not After : May 14 03:33:25 2024 GMT Subject: CN=6639a105-bd16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:80:13:90:ed:27:96:ce:ea:c2:5b:96:0b:38: c9:11:0b:8a:36:00:fd:03:33:e7:60:bb:ed:9d:f4: 0b:cf:0a:d8:f2:8c:0b:85:fb:09:4d:d9:3e:21:9c: 42:96:4d:4e:0d:bd:9a:4c:62:6e:39:7b:91:71:99: a1:2e:d6:ef:6e:67:43:df:4c:5f:76:da:6f:e1:e3: a8:07:d6:32:c2:3b:6d:7f:1c:7d:72:27:56:10:48: 64:ea:59:e8:27:0e:cc:39:fc:49:b6:f9:83:be:bd: ca:29:c6:d6:88:f7:70:2f:5e:28:0f:9a:a1:f4:9c: 33:fd:56:fd:f2:df:6a:7a:6e:69:02:4b:eb:a7:16: ad:3f:65:62:68:9e:b0:10:ac:b7:2b:ad:58:b2:40: fd:56:73:ab:a8:83:fb:df:3e:ca:f4:75:fa:97:39: 09:bf:2a:eb:7b:d6:f5:d8:e8:2e:f4:fc:86:b1:65: 53:de:05:00:f8:ee:08:ed:ea:35:4f:2f:39:ff:aa: 79:75:b2:22:c5:10:ce:17:a2:ac:b4:e9:a9:44:2a: 4c:f5:1d:c2:f6:32:46:6a:63:7d:ca:13:7a:ec:83: a4:22:a7:81:c8:7e:cc:be:07:82:9b:14:58:42:49: 8c:cb:f0:d4:ed:7b:0e:07:3c:7f:f2:c4:1e:12:58: 10:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:FF:9D:C8:37:0A:FA:D0:81:7E:3E:39:3D:33:16:22:AD:66:6B:7C X509v3 Authority Key Identifier: keyid:5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:ae:86:55:52:22:9c:d4:59:ee:25:ee:64:c6:77:c7:79:08: 76:83:5a:60:e6:62:59:10:bf:d6:21:27:6b:a6:20:7b:8e:45: 8a:f3:9c:72:a9:06:29:77:a4:71:a7:0a:3d:3a:80:97:9b:fd: 79:01:d9:c7:45:af:75:a9:57:5e:11:36:74:cb:9a:65:0b:90: ce:a3:9b:95:72:b1:2f:d5:b2:a3:bb:e5:8f:b9:5c:9f:d4:b1: c5:18:31:6a:5c:4d:97:a2:7a:b2:b4:ab:be:7f:20:b6:79:6e: 9a:c9:c4:2a:a0:6d:ed:8c:fe:5f:8a:fa:1e:d2:d8:b7:d0:76: cc:aa:b2:12:57:70:3e:fb:23:d6:aa:28:ea:85:b6:b6:1c:89: 76:58:e5:bc:bd:45:59:48:0f:ec:15:88:4d:26:69:5e:0b:cd: 0f:ac:9c:11:f7:bd:0c:6b:4f:88:d7:0a:65:63:23:14:2c:96: aa:33:18:d0:e7:9d:94:f2:43:73:60:38:dc:32:af:5b:1e:a0: af:a5:8a:ac:0b:30:3c:2f:ce:f4:99:db:ce:ac:15:1b:c8:f2: 2f:08:3e:3b:2e:88:04:69:a9:f3:4c:49:01:1f:82:00:22:16: f2:ca:32:bc:6b:36:f7:02:43:be:aa:30:e0:8b:53:59:c0:14: 50:88:7c:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFOEUxMTAvBgNVBAUTKDVGMkU1RTYyOTMyQkI1MEE4NUZGMkY5QTVGMzFCMkJB REQ1RjM0QUMwHhcNMjQwNTA3MDMzMzI1WhcNMjQwNTE0MDMzMzI1WjAYMRYwFAYD VQQDEw02NjM5YTEwNS1iZDE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYATkO0nls7qwluWCzjJEQuKNgD9AzPnYLvtnfQLzwrY8owLhfsJTdk+IZxC lk1ODb2aTGJuOXuRcZmhLtbvbmdD30xfdtpv4eOoB9Yywjttfxx9cidWEEhk6lno Jw7MOfxJtvmDvr3KKcbWiPdwL14oD5qh9Jwz/Vb98t9qem5pAkvrpxatP2ViaJ6w EKy3K61YskD9VnOrqIP73z7K9HX6lzkJvyrre9b12Ogu9PyGsWVT3gUA+O4I7eo1 Ty85/6p5dbIixRDOF6KstOmpRCpM9R3C9jJGamN9yhN67IOkIqeByH7MvgeCmxRY QkmMy/DU7XsOBzx/8sQeElgQXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI//ncg3 CvrQgX4+OT0zFiKtZmt8MB8GA1UdIwQYMBaAFF8uXmKTK7UKhf8vml8xsrrdXzSs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEU4RS8wNEZCQjhGMEFF MEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRRcUZfeS1hWHpHeXV0MWZO S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h5NWVZcE1ydFFxRl95LWFYekd5dXQxZk5Ldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEU4RS8wNEZCQjhGMEFFMEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRR cUZfeS1hWHpHeXV0MWZOS3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHroZVUiKc1FnuJe5kxnfHeQh2g1pg5mJZEL/WISdrpiB7jkWK85xy qQYpd6Rxpwo9OoCXm/15AdnHRa91qVdeETZ0y5plC5DOo5uVcrEv1bKju+WPuVyf 1LHFGDFqXE2XonqytKu+fyC2eW6aycQqoG3tjP5fivoe0ti30HbMqrISV3A++yPW qijqhba2HIl2WOW8vUVZSA/sFYhNJmleC80PrJwR970Ma0+I1wplYyMULJaqMxjQ 552U8kNzYDjcMq9bHqCvpYqsCzA8L870mdvOrBUbyPIvCD47LogEaanzTEkBH4IA IhbyyjK8azb3AkO+qjDgi1NZwBRQiHxY -----END CERTIFICATE-----Generated at Tue May 7 04:34:49 2024 by rpki-client on console-fra.rpki-client.org