$ rpki-client -vvf rpki.apnic.net/member_repository/A9169382/A5FB81581CD911EC92AD571CC4F9AE02/IRcCLfYdpCG55OG7hIPYXkmCv5E.mft File: IRcCLfYdpCG55OG7hIPYXkmCv5E.mft (raw, json) Hash identifier: JPaaZY2dmKqZkPYd0jIUMVpj5i8qCg/6BWcBsWOyamk= Subject key identifier: E2:01:FA:DA:91:70:E4:60:42:B5:37:87:09:46:2A:17:BE:4E:93:67 Authority key identifier: 21:17:02:2D:F6:1D:A4:21:B9:E4:E1:BB:84:83:D8:5E:49:82:BF:91 Certificate issuer: /CN=A9169382/serialNumber=2117022DF61DA421B9E4E1BB8483D85E4982BF91 Certificate serial: 0417 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IRcCLfYdpCG55OG7hIPYXkmCv5E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169382/A5FB81581CD911EC92AD571CC4F9AE02/IRcCLfYdpCG55OG7hIPYXkmCv5E.mft Manifest number: 0413 Signing time: Wed 01 May 2024 02:24:24 +0000 Manifest this update: Wed 01 May 2024 02:24:24 +0000 Manifest next update: Wed 08 May 2024 02:24:24 +0000 Files and hashes: 1: IRcCLfYdpCG55OG7hIPYXkmCv5E.crl (hash: KZo+2sMMnSpW+fIH19kRokDlRRrlbMx6N/BsLlI83uQ=) 2: E41BF8841CDC11ECBA794120C4F9AE02.roa (hash: OIj0dgrPd8UzAJPwVHslafedCBw/kqimM+g2XTGacbs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169382/A5FB81581CD911EC92AD571CC4F9AE02/IRcCLfYdpCG55OG7hIPYXkmCv5E.crl rsync://rpki.apnic.net/member_repository/A9169382/A5FB81581CD911EC92AD571CC4F9AE02/IRcCLfYdpCG55OG7hIPYXkmCv5E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IRcCLfYdpCG55OG7hIPYXkmCv5E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 02:24:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1047 (0x417) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169382/serialNumber=2117022DF61DA421B9E4E1BB8483D85E4982BF91 Validity Not Before: May 1 02:24:24 2024 GMT Not After : May 8 02:24:24 2024 GMT Subject: CN=6631a7d8-95b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0c:ec:46:39:92:73:40:06:a9:59:64:20:71: b9:3e:17:7f:44:65:34:bc:a3:00:7b:1f:ca:55:50: 32:ee:84:77:e9:cd:67:0f:81:db:c3:e4:bc:6b:0c: 7c:0b:f9:99:f6:b4:93:58:16:ca:6f:26:30:1d:9f: 5d:bc:fc:c3:8f:b9:15:62:07:c6:aa:0e:ff:5a:ba: ab:c5:ae:f7:44:c6:66:a3:b1:63:15:4e:91:13:ff: a9:60:d4:9f:65:2e:3e:ff:6e:6a:04:c3:9c:f4:88: c2:94:4e:e8:d5:34:3e:00:0a:9b:68:f7:d8:38:f1: 37:97:5d:3f:5e:49:d8:82:e5:3e:7f:fc:ae:8c:74: f0:5f:ed:fd:d1:7b:b5:89:dd:29:60:8d:81:c2:3b: a2:05:e5:25:0a:68:35:6d:7c:78:d5:d5:57:b6:f7: ae:55:1c:4e:69:ac:8b:6a:17:4b:15:eb:79:b7:84: b4:ef:ae:cd:7c:9d:74:7f:7d:9b:e5:23:be:c9:c4: f1:19:b7:25:18:93:fc:14:c1:d3:c0:96:63:4f:f4: 11:42:f7:e8:e7:ae:2a:87:5b:0e:0b:79:b6:f0:e9: 49:2b:8d:19:c1:ba:87:09:9d:de:fa:a3:a3:95:6c: e6:c6:bd:1b:9b:43:6f:1d:c2:1a:25:e6:f5:9c:97: 59:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:01:FA:DA:91:70:E4:60:42:B5:37:87:09:46:2A:17:BE:4E:93:67 X509v3 Authority Key Identifier: keyid:21:17:02:2D:F6:1D:A4:21:B9:E4:E1:BB:84:83:D8:5E:49:82:BF:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169382/A5FB81581CD911EC92AD571CC4F9AE02/IRcCLfYdpCG55OG7hIPYXkmCv5E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IRcCLfYdpCG55OG7hIPYXkmCv5E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169382/A5FB81581CD911EC92AD571CC4F9AE02/IRcCLfYdpCG55OG7hIPYXkmCv5E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:5e:d9:5b:89:e3:d9:56:9b:7b:a8:43:e5:3b:34:18:01:81: 74:f8:4e:2d:70:3f:a7:52:f4:28:71:e2:42:dd:01:c8:7f:d4: f6:9c:aa:5a:98:f5:09:57:93:a6:07:0b:6b:67:ee:8d:79:d6: 76:4b:17:22:c8:93:7b:a1:a8:93:b0:fd:7e:0e:dd:09:bd:ad: 85:e7:f4:4c:82:e9:b0:4b:c8:df:57:74:96:f4:7d:2c:5a:59: 49:ca:af:1d:d0:12:2c:7c:cd:3f:96:03:14:7e:2f:27:3c:b7: c8:f7:0e:b8:9f:a8:31:2d:3e:d7:98:14:c8:aa:fc:9a:7a:ac: 16:2b:c4:3d:77:0e:fd:01:03:73:57:5a:85:39:3f:96:0a:c3: 29:1f:73:e8:5b:f0:41:1a:db:89:8e:69:42:12:d9:be:37:80: dc:ad:18:44:27:fc:9f:07:88:26:94:72:12:f8:9a:da:52:ff: e3:91:5b:fb:ac:3f:12:a7:7f:ad:f8:e0:a9:20:ac:70:9a:8b: be:e2:30:17:70:e6:2a:6b:c1:d6:af:88:84:9e:3d:3c:90:1f: a1:e0:9f:28:d3:01:c0:ee:eb:82:ff:c6:34:8a:d6:8d:30:c4: ba:27:bd:9a:38:3b:80:df:49:2e:c5:c2:35:7a:63:4f:38:a9: 9c:84:a4:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjkzODIxMTAvBgNVBAUTKDIxMTcwMjJERjYxREE0MjFCOUU0RTFCQjg0ODNEODVF NDk4MkJGOTEwHhcNMjQwNTAxMDIyNDI0WhcNMjQwNTA4MDIyNDI0WjAYMRYwFAYD VQQDEw02NjMxYTdkOC05NWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuwzsRjmSc0AGqVlkIHG5Phd/RGU0vKMAex/KVVAy7oR36c1nD4Hbw+S8awx8 C/mZ9rSTWBbKbyYwHZ9dvPzDj7kVYgfGqg7/Wrqrxa73RMZmo7FjFU6RE/+pYNSf ZS4+/25qBMOc9IjClE7o1TQ+AAqbaPfYOPE3l10/XknYguU+f/yujHTwX+390Xu1 id0pYI2BwjuiBeUlCmg1bXx41dVXtveuVRxOaayLahdLFet5t4S0767NfJ10f32b 5SO+ycTxGbclGJP8FMHTwJZjT/QRQvfo564qh1sOC3m28OlJK40ZwbqHCZ3e+qOj lWzmxr0bm0NvHcIaJeb1nJdZVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOIB+tqR cORgQrU3hwlGKhe+TpNnMB8GA1UdIwQYMBaAFCEXAi32HaQhueThu4SD2F5Jgr+R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTM4Mi9BNUZCODE1ODFD RDkxMUVDOTJBRDU3MUNDNEY5QUUwMi9JUmNDTGZZZHBDRzU1T0c3aElQWVhrbUN2 NUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lSY0NMZllkcENHNTVPRzdoSVBZWGttQ3Y1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTM4Mi9BNUZCODE1ODFDRDkxMUVDOTJBRDU3MUNDNEY5QUUwMi9JUmNDTGZZZHBD RzU1T0c3aElQWVhrbUN2NUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFXtlbiePZVpt7qEPlOzQYAYF0+E4tcD+nUvQoceJC3QHIf9T2nKpa mPUJV5OmBwtrZ+6NedZ2SxciyJN7oaiTsP1+Dt0Jva2F5/RMgumwS8jfV3SW9H0s WllJyq8d0BIsfM0/lgMUfi8nPLfI9w64n6gxLT7XmBTIqvyaeqwWK8Q9dw79AQNz V1qFOT+WCsMpH3PoW/BBGtuJjmlCEtm+N4DcrRhEJ/yfB4gmlHIS+JraUv/jkVv7 rD8Sp3+t+OCpIKxwmou+4jAXcOYqa8HWr4iEnj08kB+h4J8o0wHA7uuC/8Y0itaN MMS6J72aODuA30kuxcI1emNPOKmchKQh -----END CERTIFICATE-----Generated at Wed May 1 03:20:32 2024 by rpki-client on console-fra.rpki-client.org