$ rpki-client -vvf rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft File: -AoX4Y4_OhL3UjNnLorGf4DlL98.mft (raw, json) Hash identifier: PmYpYzDH/4SVfMR0R5JjD7oG+ZOVNfyPedDB1Y2Zx4c= Subject key identifier: 7D:FC:76:B3:61:83:83:FC:6C:92:79:35:E9:48:C2:E9:2D:39:90:13 Authority key identifier: F8:0A:17:E1:8E:3F:3A:12:F7:52:33:67:2E:8A:C6:7F:80:E5:2F:DF Certificate issuer: /CN=A916423B/serialNumber=F80A17E18E3F3A12F75233672E8AC67F80E52FDF Certificate serial: B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft Manifest number: AE Signing time: Fri 17 May 2024 06:42:24 +0000 Manifest this update: Fri 17 May 2024 06:42:24 +0000 Manifest next update: Fri 24 May 2024 06:42:24 +0000 Files and hashes: 1: -AoX4Y4_OhL3UjNnLorGf4DlL98.crl (hash: slfrM3wJZ7rChplww9bW6awZi78HYjyz0BA8VjizmNI=) 2: 593888C40AB811EE97CC7A32C4F9AE02.roa (hash: YBTJyFDQVecrTFPkPy4W2Dd55PMCXx4820zaNKR8/1Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.crl rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 06:42:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916423B/serialNumber=F80A17E18E3F3A12F75233672E8AC67F80E52FDF Validity Not Before: May 17 06:42:24 2024 GMT Not After : May 24 06:42:24 2024 GMT Subject: CN=6646fc50-9676 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:c1:84:3f:52:86:ba:2d:ea:e1:ea:39:fb:2a: 78:7b:b6:8a:dd:af:04:e7:1b:e6:32:55:25:c4:9e: ed:d3:8b:02:80:3b:e7:75:29:c9:d2:4f:47:71:94: 38:51:47:70:e7:9f:4e:47:92:8a:f2:6d:bb:3f:43: ea:f6:83:ec:0c:3e:99:04:8e:c0:76:d7:1c:2f:44: a5:af:28:f4:fc:92:f9:d1:ac:93:b0:47:26:6e:4e: 62:a2:2b:f7:18:60:50:7f:71:ad:06:ea:0c:eb:f5: 70:54:d0:5f:e0:bc:e4:bf:e2:95:2b:42:14:55:41: 42:7d:62:16:62:5a:ae:5c:2c:c6:a8:61:48:f9:c7: 4f:63:56:99:fa:ae:ad:4c:15:c1:63:3a:c7:c4:bc: 9d:11:a8:d5:15:3f:96:da:72:d2:03:85:e5:d3:f6: 9b:0a:3e:81:4d:49:43:09:48:e1:3b:49:ef:60:a6: c3:27:1c:f8:81:2d:7e:ae:5c:81:cd:8f:47:7a:11: 01:81:09:32:b0:1d:40:46:8b:13:53:cd:65:fb:28: 49:88:ab:72:1c:93:6b:9e:c1:8e:37:3e:8c:2d:06: 06:2c:40:8d:ab:33:e5:28:c6:84:50:aa:b8:9f:db: cd:82:29:d4:76:7c:4c:f6:4f:6e:6f:c5:86:69:de: 9d:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:FC:76:B3:61:83:83:FC:6C:92:79:35:E9:48:C2:E9:2D:39:90:13 X509v3 Authority Key Identifier: keyid:F8:0A:17:E1:8E:3F:3A:12:F7:52:33:67:2E:8A:C6:7F:80:E5:2F:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:14:e8:ed:b7:f3:93:4a:e4:96:59:5b:dd:69:21:46:ef:3c: 64:72:62:84:37:7c:d8:4a:4b:5c:9a:d9:f6:dd:ca:8e:71:2d: 16:3e:b3:4c:a1:3d:70:bb:8c:e7:61:de:4a:ff:a8:4a:0e:0f: 75:3f:bf:28:db:28:59:9e:61:af:3c:08:25:70:bf:82:7a:1f: ab:19:aa:99:6a:a2:8c:fe:00:2d:ab:5c:70:b6:59:43:91:58: 05:cd:f6:66:cc:ca:6c:06:9a:51:65:2f:ea:0a:ff:e1:d9:0d: fa:ce:13:75:a7:11:f9:b0:03:35:64:28:6c:75:e4:8e:e3:6a: 8f:7b:65:49:9e:3b:59:f7:35:44:ee:be:c0:ee:12:87:d5:05: f6:b6:ba:ab:56:2a:3b:d3:fe:60:f6:a5:a1:98:ca:94:ab:2b: 0d:8a:41:eb:bb:19:2a:04:11:f5:ce:96:84:01:95:7f:57:c9: bb:84:80:29:69:9a:62:94:9b:17:d8:fa:6e:e9:d3:2e:19:cb: 1a:2c:bc:07:45:0d:70:83:91:96:6d:b5:57:e7:bf:0b:24:a6: db:fa:98:32:21:e9:b5:6a:4e:ef:07:6a:03:71:ff:17:68:23: fe:22:c7:e2:65:36:2e:2f:1d:39:d4:49:be:96:0e:7d:59:a9: 1f:44:db:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQyM0IxMTAvBgNVBAUTKEY4MEExN0UxOEUzRjNBMTJGNzUyMzM2NzJFOEFDNjdG ODBFNTJGREYwHhcNMjQwNTE3MDY0MjI0WhcNMjQwNTI0MDY0MjI0WjAYMRYwFAYD VQQDEw02NjQ2ZmM1MC05Njc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9MGEP1KGui3q4eo5+yp4e7aK3a8E5xvmMlUlxJ7t04sCgDvndSnJ0k9HcZQ4 UUdw559OR5KK8m27P0Pq9oPsDD6ZBI7AdtccL0Slryj0/JL50ayTsEcmbk5ioiv3 GGBQf3GtBuoM6/VwVNBf4Lzkv+KVK0IUVUFCfWIWYlquXCzGqGFI+cdPY1aZ+q6t TBXBYzrHxLydEajVFT+W2nLSA4Xl0/abCj6BTUlDCUjhO0nvYKbDJxz4gS1+rlyB zY9HehEBgQkysB1ARosTU81l+yhJiKtyHJNrnsGONz6MLQYGLECNqzPlKMaEUKq4 n9vNginUdnxM9k9ub8WGad6dcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH38drNh g4P8bJJ5NelIwuktOZATMB8GA1UdIwQYMBaAFPgKF+GOPzoS91IzZy6Kxn+A5S/f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDIzQi9EQzQ5QTVGQTBB QjIxMUVFODBCMzU1MzdDNEY5QUUwMi8tQW9YNFk0X09oTDNVak5uTG9yR2Y0RGxM OTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1Bb1g0WTRfT2hMM1VqTm5Mb3JHZjREbEw5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDIzQi9EQzQ5QTVGQTBBQjIxMUVFODBCMzU1MzdDNEY5QUUwMi8tQW9YNFk0X09o TDNVak5uTG9yR2Y0RGxMOTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvFOjtt/OTSuSWWVvdaSFG7zxkcmKEN3zYSktcmtn23cqOcS0WPrNM oT1wu4znYd5K/6hKDg91P78o2yhZnmGvPAglcL+Ceh+rGaqZaqKM/gAtq1xwtllD kVgFzfZmzMpsBppRZS/qCv/h2Q36zhN1pxH5sAM1ZChsdeSO42qPe2VJnjtZ9zVE 7r7A7hKH1QX2trqrVio70/5g9qWhmMqUqysNikHruxkqBBH1zpaEAZV/V8m7hIAp aZpilJsX2Ppu6dMuGcsaLLwHRQ1wg5GWbbVX578LJKbb+pgyIem1ak7vB2oDcf8X aCP+IsfiZTYuLx051Em+lg59WakfRNsP -----END CERTIFICATE-----Generated at Fri May 17 08:13:50 2024 by rpki-client on console-fra.rpki-client.org