$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft File: 4dFD2djqAiJMHLDJFey4TuKLWqo.mft (raw, json) Hash identifier: esCRObgGWzjgy/z+KRxp9KS/pi/gfXibzJRG3Afhu+w= Subject key identifier: DF:02:EF:9E:07:2C:76:B8:C1:6E:6B:10:CD:02:F8:87:F8:87:07:54 Authority key identifier: E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA Certificate issuer: /CN=A9170C53/serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Certificate serial: D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft Manifest number: D0 Signing time: Sun 19 May 2024 06:12:19 +0000 Manifest this update: Sun 19 May 2024 06:12:19 +0000 Manifest next update: Sun 26 May 2024 06:12:18 +0000 Files and hashes: 1: 4dFD2djqAiJMHLDJFey4TuKLWqo.crl (hash: qqWGdaFQM04YGZJghhNDNTGLfJTfoUuzdPYEjLh/3Mg=) 2: 916EFEE0DA6011ED9BC6175FC4F9AE02.roa (hash: vsjbxgnsu4js7P8qBMwu6Lsiuxc8FSwnkRepwtKMDGg=) 3: 9283C1F8DA6011ED9BC6175FC4F9AE02.roa (hash: wcvDlosddSTycDcREnmOVKPG8D7H1CDbLrG8MkUwnuo=) 4: 90AE648CDA6011ED9BC6175FC4F9AE02.roa (hash: BDMd7zXZTi8TGUzFMP6g4ZCP1AR9dJAUgKTkXnhx8ZI=) 5: 91FAB1ECDA6011ED9BC6175FC4F9AE02.roa (hash: CqW1hlz94OPhJLdVFAuZObFGW/52L113z6akbmZDQp4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53/serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Validity Not Before: May 19 06:12:19 2024 GMT Not After : May 26 06:12:18 2024 GMT Subject: CN=66499843-aef2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:64:5c:4d:e6:60:e1:2a:53:77:c3:08:8c:4d: 80:64:51:a1:52:c6:d2:82:58:48:63:59:a6:bf:a7: cd:25:63:88:45:b8:d7:26:56:2e:b4:c5:f0:f4:e8: 9b:1e:a2:48:8d:c5:bb:e5:7a:c4:b5:64:66:6c:4e: ad:67:7a:c4:3c:3d:39:27:0c:c4:57:32:68:ca:f3: 3f:21:f8:8f:a7:a6:4f:cd:49:ce:a2:ea:dd:8e:78: 9c:50:b0:42:c0:2e:a5:21:3e:9c:9c:9e:f2:c5:94: ae:a3:e0:12:84:f7:63:c7:3b:3d:64:9b:a1:c5:e9: 3a:9d:6e:61:91:1f:62:7d:93:11:0d:62:44:e6:0e: d1:fa:af:36:c0:39:58:bb:6f:11:bc:8b:77:85:ce: 6f:b2:58:b2:52:65:3f:22:d9:40:e4:8b:6f:c3:b8: de:f5:48:78:16:0e:8a:74:ba:a5:39:5a:22:38:90: 53:d6:56:2e:98:ab:f4:27:da:7f:8e:74:6b:a9:4e: f1:9c:b0:93:34:97:c7:c9:b2:15:0f:ac:2d:7b:b6: b2:c6:70:d3:30:45:2f:51:5a:9c:20:24:7f:86:06: 05:cc:00:c3:12:1c:d4:76:e1:ab:42:a1:f9:f2:53: 03:16:5d:be:36:cc:5e:7d:00:99:c5:50:ad:a0:e9: 31:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:02:EF:9E:07:2C:76:B8:C1:6E:6B:10:CD:02:F8:87:F8:87:07:54 X509v3 Authority Key Identifier: keyid:E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:32:76:77:78:1c:f7:dc:89:04:b6:18:b2:72:8f:b3:68:a8: e4:af:0a:cc:3d:e1:a0:62:82:06:85:ae:88:2f:58:61:2d:08: a8:97:d4:bb:23:c6:2d:da:57:81:59:f0:2a:d0:5e:f8:84:66: c5:81:ec:3e:df:b3:4a:8d:af:09:b1:8b:b8:7d:5e:b3:bc:82: 49:72:9c:f1:93:48:99:ce:e2:b4:fe:fd:f2:3c:74:3a:a6:08: 1e:f5:45:c0:24:a7:c4:d1:2b:15:7b:48:28:cc:36:90:f2:e3: d4:40:33:7b:f9:0c:35:2a:af:e1:84:b4:71:8e:bd:13:60:c6: 45:45:de:88:33:05:ee:38:26:95:2f:4b:01:f3:9f:99:b0:ad: d0:93:c6:68:23:0e:18:c1:1a:2d:0a:92:ab:f2:99:b1:a0:b6: 8d:8f:99:ab:26:18:6a:2d:4f:8a:1c:c5:57:fe:6a:86:a6:dd: a0:94:50:6e:aa:e9:8b:84:90:db:99:8b:7a:0c:14:14:24:87: 26:fc:59:63:e1:46:19:07:fc:89:97:b4:c0:23:56:a4:2f:52: 04:57:a0:d5:ee:5d:48:20:de:e8:57:b1:a9:17:d1:04:bd:a7: a8:cd:d6:e5:ed:25:21:24:67:9d:24:4d:23:a4:90:97:5c:70: c0:7c:7b:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEUxRDE0M0Q5RDhFQTAyMjI0QzFDQjBDOTE1RUNCODRF RTI4QjVBQUEwHhcNMjQwNTE5MDYxMjE5WhcNMjQwNTI2MDYxMjE4WjAYMRYwFAYD VQQDEw02NjQ5OTg0My1hZWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymRcTeZg4SpTd8MIjE2AZFGhUsbSglhIY1mmv6fNJWOIRbjXJlYutMXw9Oib HqJIjcW75XrEtWRmbE6tZ3rEPD05JwzEVzJoyvM/IfiPp6ZPzUnOourdjnicULBC wC6lIT6cnJ7yxZSuo+AShPdjxzs9ZJuhxek6nW5hkR9ifZMRDWJE5g7R+q82wDlY u28RvIt3hc5vsliyUmU/ItlA5Itvw7je9Uh4Fg6KdLqlOVoiOJBT1lYumKv0J9p/ jnRrqU7xnLCTNJfHybIVD6wte7ayxnDTMEUvUVqcICR/hgYFzADDEhzUduGrQqH5 8lMDFl2+NsxefQCZxVCtoOkxWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN8C754H LHa4wW5rEM0C+If4hwdUMB8GA1UdIwQYMBaAFOHRQ9nY6gIiTBywyRXsuE7ii1qq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9DRTQ0NUJEMERB NUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFpSk1ITERKRmV5NFR1S0xX cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkRkQyZGpxQWlKTUhMREpGZXk0VHVLTFdxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9DRTQ0NUJEMERBNUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFp Sk1ITERKRmV5NFR1S0xXcW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUMnZ3eBz33IkEthiyco+zaKjkrwrMPeGgYoIGha6IL1hhLQiol9S7 I8Yt2leBWfAq0F74hGbFgew+37NKja8JsYu4fV6zvIJJcpzxk0iZzuK0/v3yPHQ6 pgge9UXAJKfE0SsVe0gozDaQ8uPUQDN7+Qw1Kq/hhLRxjr0TYMZFRd6IMwXuOCaV L0sB85+ZsK3Qk8ZoIw4YwRotCpKr8pmxoLaNj5mrJhhqLU+KHMVX/mqGpt2glFBu qumLhJDbmYt6DBQUJIcm/Flj4UYZB/yJl7TAI1akL1IEV6DV7l1IIN7oV7GpF9EE vaeozdbl7SUhJGedJE0jpJCXXHDAfHvE -----END CERTIFICATE-----Generated at Sun May 19 07:40:40 2024 by rpki-client on console-fra.rpki-client.org