$ rpki-client -vvf rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.mft File: 9MxDBOF5Dgj17JKahzciadCPtoE.mft (raw, json) Hash identifier: sso62Jb4Bf9B/oxzsnx8unQnsIJCud+H7q64ZrJpHrk= Subject key identifier: 07:45:5F:EB:CD:AA:B6:B5:36:EC:C6:3D:4D:4C:CF:D4:FF:AE:96:E5 Authority key identifier: F4:CC:43:04:E1:79:0E:08:F5:EC:92:9A:87:37:22:69:D0:8F:B6:81 Certificate issuer: /CN=A9167BCA/serialNumber=F4CC4304E1790E08F5EC929A87372269D08FB681 Certificate serial: 032E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MxDBOF5Dgj17JKahzciadCPtoE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.mft Manifest number: 032A Signing time: Fri 03 May 2024 03:07:23 +0000 Manifest this update: Fri 03 May 2024 03:07:22 +0000 Manifest next update: Fri 10 May 2024 03:07:22 +0000 Files and hashes: 1: 9MxDBOF5Dgj17JKahzciadCPtoE.crl (hash: jRGXapPSg3Y5exR5Y8/bHE47bw9kAOGBc6yic1zGEa4=) 2: 0E7858548CBB11ECB0842F23C4F9AE02.roa (hash: jH8psL2SmOH/Zt6q1SyS6fHiP/kk+iM9+sC0uv7rAGw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.crl rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MxDBOF5Dgj17JKahzciadCPtoE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:07:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 814 (0x32e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167BCA/serialNumber=F4CC4304E1790E08F5EC929A87372269D08FB681 Validity Not Before: May 3 03:07:22 2024 GMT Not After : May 10 03:07:22 2024 GMT Subject: CN=663454ea-6e00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:0f:dc:de:c0:91:2d:e0:0b:a7:ea:2d:15:05: 19:a0:63:1c:c5:cc:62:ad:c4:99:0f:71:8d:0c:79: c8:16:86:d8:0b:d2:02:9e:00:05:3d:88:12:86:ae: e9:5c:fc:0c:d4:ca:33:60:2d:65:57:59:e0:3b:5c: 74:dc:b0:41:4a:5c:72:31:64:be:1c:78:7c:c9:da: 3c:71:ef:ee:6c:ed:fd:37:b4:46:8f:d0:52:c0:2d: 10:f6:a7:1a:4e:78:7d:4f:51:38:4d:56:3f:2f:db: 64:40:ec:3c:4e:4e:2d:9b:a0:75:43:10:b9:ae:ca: 1a:05:05:7c:87:ce:01:e0:f8:ee:d3:75:65:42:b7: e5:24:9b:98:8a:e4:50:50:6a:1d:47:22:9c:d6:be: 42:f2:cf:28:6e:77:c3:76:86:ea:88:a5:24:92:6f: a5:4c:e5:27:f5:30:67:ed:b1:d2:f8:a6:7d:2b:4e: 8b:1f:4c:73:67:d1:b7:d6:45:a3:3e:31:6c:18:10: c8:82:b0:70:03:5c:b7:7f:6d:58:4a:f9:60:48:80: e9:da:35:91:90:0e:27:f1:c2:e2:32:dd:39:82:1f: 1c:97:e7:48:49:c0:50:ca:b3:fb:dd:64:e4:36:c3: e7:7b:43:a5:8d:ce:97:1f:6d:85:4c:cc:41:dd:5d: ac:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:45:5F:EB:CD:AA:B6:B5:36:EC:C6:3D:4D:4C:CF:D4:FF:AE:96:E5 X509v3 Authority Key Identifier: keyid:F4:CC:43:04:E1:79:0E:08:F5:EC:92:9A:87:37:22:69:D0:8F:B6:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MxDBOF5Dgj17JKahzciadCPtoE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption da:47:56:6e:16:a9:a3:2e:93:ec:fc:cc:20:94:b8:e7:0c:0e: 6d:96:b5:be:f9:53:33:c8:4e:9c:d0:31:74:74:62:fb:ae:d8: 7b:82:f6:c3:02:a0:81:7c:f6:b0:aa:e9:2f:61:f8:3f:85:4a: 10:60:a2:3e:77:23:b8:d6:ba:bc:ff:39:1a:a8:2f:73:40:33: ce:3a:6e:e0:0d:1c:92:19:8c:ef:b2:f3:79:a8:d3:98:6b:10: 61:dd:55:7d:96:d9:7f:3e:01:85:08:49:62:0e:f8:2c:08:26: 91:11:68:01:58:4e:74:c9:3a:e3:46:29:5c:f3:2b:f9:34:bc: 55:ae:1d:f5:03:2e:a6:2c:20:26:ea:fd:0e:38:bd:1f:eb:e6: e3:b5:45:76:7a:70:fe:89:f5:fb:10:5d:51:c4:f6:5f:a0:33: e7:6f:f0:49:d9:89:9d:18:de:8c:78:30:68:da:ab:41:ab:da: 7b:0b:22:37:ec:fe:4c:b7:eb:de:4e:80:68:de:c2:50:9b:0c: e7:61:40:af:6a:b8:14:d8:34:c4:b4:b5:42:30:85:eb:66:29: ac:b9:86:1e:10:8b:81:82:fc:d4:ae:1a:96:e1:37:48:84:50: 35:c3:35:1a:d8:64:cc:d0:ce:c6:23:dd:61:ba:c9:e6:1f:ab: 79:77:16:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAy4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdCQ0ExMTAvBgNVBAUTKEY0Q0M0MzA0RTE3OTBFMDhGNUVDOTI5QTg3MzcyMjY5 RDA4RkI2ODEwHhcNMjQwNTAzMDMwNzIyWhcNMjQwNTEwMDMwNzIyWjAYMRYwFAYD VQQDEw02NjM0NTRlYS02ZTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4g/c3sCRLeALp+otFQUZoGMcxcxircSZD3GNDHnIFobYC9ICngAFPYgShq7p XPwM1MozYC1lV1ngO1x03LBBSlxyMWS+HHh8ydo8ce/ubO39N7RGj9BSwC0Q9qca Tnh9T1E4TVY/L9tkQOw8Tk4tm6B1QxC5rsoaBQV8h84B4Pju03VlQrflJJuYiuRQ UGodRyKc1r5C8s8obnfDdobqiKUkkm+lTOUn9TBn7bHS+KZ9K06LH0xzZ9G31kWj PjFsGBDIgrBwA1y3f21YSvlgSIDp2jWRkA4n8cLiMt05gh8cl+dIScBQyrP73WTk NsPne0Oljc6XH22FTMxB3V2sLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAdFX+vN qra1NuzGPU1Mz9T/rpblMB8GA1UdIwQYMBaAFPTMQwTheQ4I9eySmoc3ImnQj7aB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0JDQS82MkJDRDVERTdB OUIxMUVDOENDMjc0MkJDNEY5QUUwMi85TXhEQk9GNURnajE3SkthaHpjaWFkQ1B0 b0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlNeERCT0Y1RGdqMTdKS2FoemNpYWRDUHRvRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0JDQS82MkJDRDVERTdBOUIxMUVDOENDMjc0MkJDNEY5QUUwMi85TXhEQk9GNURn ajE3SkthaHpjaWFkQ1B0b0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDaR1ZuFqmjLpPs/MwglLjnDA5tlrW++VMzyE6c0DF0dGL7rth7gvbD AqCBfPawqukvYfg/hUoQYKI+dyO41rq8/zkaqC9zQDPOOm7gDRySGYzvsvN5qNOY axBh3VV9ltl/PgGFCEliDvgsCCaREWgBWE50yTrjRilc8yv5NLxVrh31Ay6mLCAm 6v0OOL0f6+bjtUV2enD+ifX7EF1RxPZfoDPnb/BJ2YmdGN6MeDBo2qtBq9p7CyI3 7P5Mt+veToBo3sJQmwznYUCvargU2DTEtLVCMIXrZimsuYYeEIuBgvzUrhqW4TdI hFA1wzUa2GTM0M7GI91husnmH6t5dxae -----END CERTIFICATE-----Generated at Fri May 3 04:45:15 2024 by rpki-client on console-fra.rpki-client.org