$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft File: Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft (raw, json) Hash identifier: CiXhuwnC75QUxKOuWCUtahLgwYo7jO2vbvkEvrskyjk= Subject key identifier: 36:8E:70:64:33:22:EB:DE:76:CA:F4:0E:3F:FD:25:5A:D6:1A:EB:A8 Authority key identifier: 33:3E:C5:03:01:4D:06:74:AF:16:74:19:94:10:F9:B0:91:B8:FB:94 Certificate issuer: /CN=A9171A59/serialNumber=333EC503014D0674AF1674199410F9B091B8FB94 Certificate serial: 03E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft Manifest number: 03E5 Signing time: Tue 07 May 2024 02:16:28 +0000 Manifest this update: Tue 07 May 2024 02:16:28 +0000 Manifest next update: Tue 14 May 2024 02:16:28 +0000 Files and hashes: 1: Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl (hash: 1SSsWkRCUNBMfaHbifNTdbNBCF9dBpet0PfJlr3/D7k=) 2: ABD9CB4630C711ECA2491515C4F9AE02.roa (hash: e5DQN0gUt317ERWZVtRRumZ22rqenKdlnkwt5HATBok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 02:16:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1001 (0x3e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A59/serialNumber=333EC503014D0674AF1674199410F9B091B8FB94 Validity Not Before: May 7 02:16:28 2024 GMT Not After : May 14 02:16:28 2024 GMT Subject: CN=66398efc-5bdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:9c:6c:9d:c1:75:db:48:fe:83:fa:23:f5:01: 87:cf:b3:0b:db:ed:b6:5c:32:bd:31:2f:0a:8d:55: 33:67:12:41:60:8f:75:80:9e:a9:3b:41:bd:a6:8b: e7:6e:a3:5d:c3:84:cd:1f:55:ee:24:3b:50:1d:c4: fe:d8:0b:d4:7a:e5:2a:f9:9c:ac:78:a7:de:af:8e: 1a:c0:9c:55:92:a8:9a:fc:e9:be:a7:35:6d:c0:60: b2:69:ce:3c:b9:e5:6a:ea:5d:1d:d0:1e:eb:9b:5b: eb:ea:e2:2b:35:3a:3a:ee:49:7f:ca:06:33:36:4c: e1:db:3a:d8:80:45:3b:15:46:f5:4e:80:32:67:b5: 79:90:c8:f2:23:87:49:a7:b9:5b:f1:1a:0b:8f:31: cd:8b:b4:1b:21:85:c4:76:b0:26:80:e1:02:56:47: fb:e5:0a:e3:44:37:26:13:05:cd:47:98:9b:86:36: cb:29:66:d2:07:c1:8e:f6:69:76:c1:b7:cc:9f:1d: 70:8b:b5:e2:39:c0:a4:5f:d9:49:6a:ee:ad:52:d0: d8:4a:3c:a4:dd:58:ab:6c:11:b5:5d:f9:e1:11:c6: 2b:56:72:45:ff:e1:ad:af:3a:3e:42:6f:86:70:d6: 4c:1e:8c:90:d2:2f:da:c3:d3:0c:b7:dd:30:c5:1c: 87:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:8E:70:64:33:22:EB:DE:76:CA:F4:0E:3F:FD:25:5A:D6:1A:EB:A8 X509v3 Authority Key Identifier: keyid:33:3E:C5:03:01:4D:06:74:AF:16:74:19:94:10:F9:B0:91:B8:FB:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:32:01:8a:50:4a:e4:a9:5b:06:29:66:f7:b6:36:66:47:f0: ea:90:9d:aa:83:5a:a0:d5:c2:98:d2:b8:98:27:b6:9d:53:eb: c0:7e:f5:25:a1:68:c0:73:8d:9b:3b:f6:5c:a6:71:44:bf:ef: 96:e0:fc:b6:1d:7a:8a:a0:15:67:b3:c0:0d:24:5b:bc:e3:f3: 38:c1:39:56:46:4e:1b:f3:e0:a0:13:e8:62:9d:8a:8e:5a:ec: 76:a6:a9:dc:4f:cb:d7:31:bb:18:8c:2e:ae:a9:0b:c7:65:dd: 5a:7d:6b:33:04:ab:f3:01:a2:a0:48:48:12:28:dd:61:f5:e4: ac:5b:dc:b9:e6:82:0e:21:9c:0a:1c:a7:90:9b:ae:5f:57:6c: c6:e2:16:97:0f:f8:0c:08:ee:39:40:1c:d1:1c:a1:87:c5:d0: 5d:b8:1f:22:6f:df:9c:25:df:3a:14:b3:51:4b:be:71:d3:8d: 2d:3b:f7:87:53:1b:95:67:66:0f:be:6c:8e:8c:fd:c6:65:31: 69:78:3e:d7:e3:0b:cc:eb:4c:98:99:80:e3:80:9a:9a:0b:84: 9b:b7:fb:ac:b4:41:55:bd:c1:41:fe:f1:a3:cd:fc:b4:e1:4e: cd:15:c4:c8:58:5e:49:b5:35:c9:7d:84:ac:01:78:d1:21:c0: 29:6c:0d:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBNTkxMTAvBgNVBAUTKDMzM0VDNTAzMDE0RDA2NzRBRjE2NzQxOTk0MTBGOUIw OTFCOEZCOTQwHhcNMjQwNTA3MDIxNjI4WhcNMjQwNTE0MDIxNjI4WjAYMRYwFAYD VQQDEw02NjM5OGVmYy01YmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ZxsncF120j+g/oj9QGHz7ML2+22XDK9MS8KjVUzZxJBYI91gJ6pO0G9povn bqNdw4TNH1XuJDtQHcT+2AvUeuUq+ZyseKfer44awJxVkqia/Om+pzVtwGCyac48 ueVq6l0d0B7rm1vr6uIrNTo67kl/ygYzNkzh2zrYgEU7FUb1ToAyZ7V5kMjyI4dJ p7lb8RoLjzHNi7QbIYXEdrAmgOECVkf75QrjRDcmEwXNR5ibhjbLKWbSB8GO9ml2 wbfMnx1wi7XiOcCkX9lJau6tUtDYSjyk3VirbBG1XfnhEcYrVnJF/+Gtrzo+Qm+G cNZMHoyQ0i/aw9MMt90wxRyHKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDaOcGQz Iuvedsr0Dj/9JVrWGuuoMB8GA1UdIwQYMBaAFDM+xQMBTQZ0rxZ0GZQQ+bCRuPuU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUE1OS84QUI5MzNFQTMw QzUxMUVDOEE2N0FBN0NDNEY5QUUwMi9NejdGQXdGTkJuU3ZGblFabEJENXNKRzQt NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL016N0ZBd0ZOQm5TdkZuUVpsQkQ1c0pHNC01US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUE1OS84QUI5MzNFQTMwQzUxMUVDOEE2N0FBN0NDNEY5QUUwMi9NejdGQXdGTkJu U3ZGblFabEJENXNKRzQtNVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYMgGKUErkqVsGKWb3tjZmR/DqkJ2qg1qg1cKY0riYJ7adU+vAfvUl oWjAc42bO/ZcpnFEv++W4Py2HXqKoBVns8ANJFu84/M4wTlWRk4b8+CgE+hinYqO Wux2pqncT8vXMbsYjC6uqQvHZd1afWszBKvzAaKgSEgSKN1h9eSsW9y55oIOIZwK HKeQm65fV2zG4haXD/gMCO45QBzRHKGHxdBduB8ib9+cJd86FLNRS75x040tO/eH UxuVZ2YPvmyOjP3GZTFpeD7X4wvM60yYmYDjgJqaC4Sbt/ustEFVvcFB/vGjzfy0 4U7NFcTIWF5JtTXJfYSsAXjRIcApbA1R -----END CERTIFICATE-----Generated at Tue May 7 03:12:19 2024 by rpki-client on console-fra.rpki-client.org