$ rpki-client -vvf rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft File: 1FLGfvaHRDivqZOoStCrwYUWkhs.mft (raw, json) Hash identifier: b61H0iVSWrSlYSh039mPqx/9cC4Tk9rn4H/lNWPTk1g= Subject key identifier: E4:40:09:D5:1C:FC:A6:39:9A:45:59:BE:49:BF:4A:C5:B9:AE:16:4C Authority key identifier: D4:52:C6:7E:F6:87:44:38:AF:A9:93:A8:4A:D0:AB:C1:85:16:92:1B Certificate issuer: /CN=A915FD27/serialNumber=D452C67EF6874438AFA993A84AD0ABC18516921B Certificate serial: 014B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft Manifest number: 0149 Signing time: Fri 03 May 2024 05:02:21 +0000 Manifest this update: Fri 03 May 2024 05:02:20 +0000 Manifest next update: Fri 10 May 2024 05:02:20 +0000 Files and hashes: 1: 1FLGfvaHRDivqZOoStCrwYUWkhs.crl (hash: 15t0yzzrg+LTxPanQnovu4+arFsztRznlOG95/ptE0M=) 2: 839EEF2C35F211ED97DF4D2EC4F9AE02.roa (hash: TV/+X6Ps0g1Kl/JcyWSrY5IH2B6KFPZbRaWohq9Ha3o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.crl rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 331 (0x14b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FD27/serialNumber=D452C67EF6874438AFA993A84AD0ABC18516921B Validity Not Before: May 3 05:02:20 2024 GMT Not After : May 10 05:02:20 2024 GMT Subject: CN=66346fdd-823a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:94:15:56:ba:c1:68:0d:0c:c8:09:2f:aa:d2: 8e:25:95:b0:d6:aa:29:4b:21:44:c0:8e:35:55:7b: 93:d9:27:80:e4:b0:70:c0:d6:9d:b0:05:29:7d:8f: 08:a6:45:8a:be:f4:29:4d:c4:37:05:ac:3f:a7:b3: c7:9c:de:09:3c:5c:29:f1:ae:58:a1:26:83:d2:c9: 42:4f:a0:df:04:4a:22:9d:61:cd:c1:e5:f1:9b:62: dd:41:ad:86:62:f4:1e:f0:a4:95:0f:43:32:e2:ef: 76:8c:67:df:9d:f2:50:38:37:51:01:40:0f:21:dc: df:55:8e:3a:1b:c6:8e:7c:17:01:44:c7:b2:9e:ce: 85:21:7c:ce:ae:95:e5:71:31:ad:7a:3e:57:7a:c3: 4e:7b:d6:f3:0d:70:04:0b:99:6b:ae:00:62:93:f1: d6:3c:04:ab:75:23:c7:b2:4c:31:5e:92:12:d0:bf: 15:f5:8f:f7:d1:c6:b2:cd:98:29:40:f2:a4:96:a6: a5:c4:4b:80:13:08:0a:ae:d4:52:b1:7e:47:a3:fc: 0b:b8:d2:8f:4c:d9:51:87:46:cb:bb:b5:67:1d:33: a1:3e:dd:45:2b:d7:2d:e7:27:b0:55:c7:62:86:43: 5a:f0:89:72:20:9c:c1:0f:ba:6e:80:d5:5c:3e:bf: 61:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:40:09:D5:1C:FC:A6:39:9A:45:59:BE:49:BF:4A:C5:B9:AE:16:4C X509v3 Authority Key Identifier: keyid:D4:52:C6:7E:F6:87:44:38:AF:A9:93:A8:4A:D0:AB:C1:85:16:92:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:16:36:87:e9:c4:25:9b:72:f3:85:8c:72:7f:bd:59:29:31: 85:4f:ee:87:3d:0b:54:b0:47:4c:a9:ec:d5:40:0b:5b:a2:b0: 86:0e:0b:8c:88:02:88:88:ae:2f:e3:85:f4:9e:1c:06:9f:c0: 63:4c:0e:d5:61:a2:a8:37:6f:bd:fb:b9:6e:3e:97:f3:57:0f: 21:d1:c2:26:25:9c:0a:a1:c6:70:27:b8:3b:84:ea:2d:61:2d: 20:f1:19:cf:f8:fd:bc:be:be:e1:de:fc:dc:f3:e8:37:40:b4: d6:43:fe:09:0d:5a:69:fb:1b:9f:e8:eb:62:ef:03:eb:69:ae: 8e:31:8e:33:af:1c:07:e3:cc:18:da:7b:19:66:72:fd:59:73: c6:72:11:70:42:e6:65:4d:53:b1:28:82:a7:4b:c5:ea:db:99: bb:b7:99:c6:1d:b8:b7:d2:56:61:36:17:57:dd:16:dc:29:a2: c0:36:f5:00:35:b5:21:d8:35:56:52:76:2d:6d:48:22:10:d5: a1:01:c8:e6:0f:68:86:0a:09:6c:52:15:60:17:3f:f1:46:c7: a2:7c:58:5e:4c:5d:ed:c8:14:28:d3:73:c1:63:31:b1:15:c0: e7:7b:22:d6:69:17:f4:cc:42:a5:8e:d0:de:e4:b0:47:b0:bf: f9:0c:d0:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZEMjcxMTAvBgNVBAUTKEQ0NTJDNjdFRjY4NzQ0MzhBRkE5OTNBODRBRDBBQkMx ODUxNjkyMUIwHhcNMjQwNTAzMDUwMjIwWhcNMjQwNTEwMDUwMjIwWjAYMRYwFAYD VQQDEw02NjM0NmZkZC04MjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA25QVVrrBaA0MyAkvqtKOJZWw1qopSyFEwI41VXuT2SeA5LBwwNadsAUpfY8I pkWKvvQpTcQ3Baw/p7PHnN4JPFwp8a5YoSaD0slCT6DfBEoinWHNweXxm2LdQa2G YvQe8KSVD0My4u92jGffnfJQODdRAUAPIdzfVY46G8aOfBcBRMeyns6FIXzOrpXl cTGtej5XesNOe9bzDXAEC5lrrgBik/HWPASrdSPHskwxXpIS0L8V9Y/30cayzZgp QPKklqalxEuAEwgKrtRSsX5Ho/wLuNKPTNlRh0bLu7VnHTOhPt1FK9ct5yewVcdi hkNa8IlyIJzBD7pugNVcPr9hFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFORACdUc /KY5mkVZvkm/SsW5rhZMMB8GA1UdIwQYMBaAFNRSxn72h0Q4r6mTqErQq8GFFpIb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkQyNy9BODBEQjM4MjM1 RUYxMUVEODIzOUFGMkJDNEY5QUUwMi8xRkxHZnZhSFJEaXZxWk9vU3RDcndZVVdr aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFGTEdmdmFIUkRpdnFaT29TdENyd1lVV2tocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkQyNy9BODBEQjM4MjM1RUYxMUVEODIzOUFGMkJDNEY5QUUwMi8xRkxHZnZhSFJE aXZxWk9vU3RDcndZVVdraHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkFjaH6cQlm3LzhYxyf71ZKTGFT+6HPQtUsEdMqezVQAtborCGDguM iAKIiK4v44X0nhwGn8BjTA7VYaKoN2+9+7luPpfzVw8h0cImJZwKocZwJ7g7hOot YS0g8RnP+P28vr7h3vzc8+g3QLTWQ/4JDVpp+xuf6Oti7wPraa6OMY4zrxwH48wY 2nsZZnL9WXPGchFwQuZlTVOxKIKnS8Xq25m7t5nGHbi30lZhNhdX3RbcKaLANvUA NbUh2DVWUnYtbUgiENWhAcjmD2iGCglsUhVgFz/xRseifFheTF3tyBQo03PBYzGx FcDneyLWaRf0zEKljtDe5LBHsL/5DNDE -----END CERTIFICATE-----Generated at Fri May 3 06:28:39 2024 by rpki-client on console-fra.rpki-client.org