$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft File: cI8eBxM4VcgHTu1fjIO0RmpgesI.mft (raw, json) Hash identifier: k2PvviYH/OIHozyHpj0EJgA5NRORIoIwdG1Mfm199Uk= Subject key identifier: AF:15:6F:56:4C:2F:3A:A2:BF:B3:67:44:D1:5A:29:82:7F:19:2A:0A Authority key identifier: 70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 Certificate issuer: /CN=A9171D16/serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft Manifest number: 44 Signing time: Fri 17 May 2024 08:09:55 +0000 Manifest this update: Fri 17 May 2024 08:09:54 +0000 Manifest next update: Fri 24 May 2024 08:09:54 +0000 Files and hashes: 1: cI8eBxM4VcgHTu1fjIO0RmpgesI.crl (hash: av8mki0DqOV/tr0eBpZbvQnBW98tz/uQ9kmZBp6q5RA=) 2: 81B9E0A6AF8911EEB9587446C4F9AE02.roa (hash: JHxaipZ1wIvGYG+Zt3XlJ2Zy3zT8C9h1/hC61qxRDrA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D16/serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Validity Not Before: May 17 08:09:54 2024 GMT Not After : May 24 08:09:54 2024 GMT Subject: CN=664710d2-2f88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:76:5e:4a:71:85:8c:2d:e4:7b:b3:ec:c1:da: b2:dd:19:00:ae:1b:6c:6e:00:e8:c5:c3:54:ff:10: 62:6e:0e:5a:05:b1:21:58:70:60:20:29:6e:c3:54: cd:4a:32:5a:7a:61:86:ee:c6:e5:3e:9a:42:94:bb: da:44:f3:b4:4c:34:a0:53:42:c7:82:d7:e2:93:48: 1c:f9:43:28:b0:0d:b5:cc:9d:ab:25:e0:13:30:d5: 06:54:0f:43:24:69:d6:fb:78:19:f0:f8:51:38:79: ad:3b:70:63:4f:a3:9c:72:dc:1e:51:46:57:7d:b2: b4:3b:01:24:9b:a1:8e:9e:fb:9b:34:30:e3:d9:62: 4c:54:3a:a4:31:2d:c1:b7:1b:d4:fe:f0:ab:77:4b: 21:e0:b3:ce:9c:32:e5:7c:ce:6d:c7:d4:7e:3d:93: 9d:18:59:98:52:0e:d6:fb:a0:32:ad:18:36:79:f4: dc:99:4a:9c:3d:7f:b7:a3:f8:e7:f6:0d:1a:bf:bc: 29:16:8a:fb:af:95:cc:35:01:33:31:9a:ee:9a:69: 77:97:70:24:34:3e:bf:77:72:ef:db:32:b6:1d:0f: c3:bb:2d:d6:49:b6:66:9f:ff:fb:c0:45:1c:62:5a: 92:81:34:d0:21:db:60:14:e7:82:f8:29:c0:17:77: 02:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:15:6F:56:4C:2F:3A:A2:BF:B3:67:44:D1:5A:29:82:7F:19:2A:0A X509v3 Authority Key Identifier: keyid:70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:5c:81:fe:ec:e3:89:d6:3f:b7:9e:ec:b4:86:0c:e3:2e:97: 22:8e:68:17:bc:b1:b2:01:61:e4:7c:0f:34:51:b3:b0:6a:15: 46:5a:72:9b:42:0d:57:36:9c:27:3d:3e:6b:3b:c2:4e:82:c9: 7b:fd:6d:89:43:0f:6b:45:d6:8d:fb:2e:61:6b:2e:3f:b1:01: 5b:54:26:f9:bd:a4:65:f2:bd:60:49:ec:1c:57:7d:e3:d5:57: 0f:c6:29:48:67:30:6b:95:0d:a2:d2:a5:04:e8:ed:4e:9a:61: 89:2c:a3:34:20:c9:72:33:26:02:f9:48:4a:b1:9d:f5:da:f7: e7:c3:e2:0b:66:ee:f5:28:e4:36:75:f4:db:32:0d:18:7a:3f: b3:fa:a5:9f:05:68:55:fa:e6:47:83:7a:3b:59:9d:e8:c2:d8: 72:63:35:95:16:22:7c:37:48:1a:74:02:73:c1:74:c4:64:78: 5c:8d:cf:4c:6d:20:f1:1e:f7:56:85:9b:0c:e2:1a:61:66:50: 9a:4a:42:d1:37:f1:0b:03:23:ce:e1:23:91:90:3e:93:f2:5d: 65:7a:ce:ee:b5:f1:cc:89:a0:b3:32:a4:d3:40:f5:df:01:0f: b7:c2:2b:fa:0e:64:52:29:7f:d2:99:27:5e:84:fb:63:5f:4b: fd:29:7f:7e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MUQxNjExMC8GA1UEBRMoNzA4RjFFMDcxMzM4NTVDODA3NEVFRDVGOEM4M0I0NDY2 QTYwN0FDMjAeFw0yNDA1MTcwODA5NTRaFw0yNDA1MjQwODA5NTRaMBgxFjAUBgNV BAMTDTY2NDcxMGQyLTJmODgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5dl5KcYWMLeR7s+zB2rLdGQCuG2xuAOjFw1T/EGJuDloFsSFYcGAgKW7DVM1K Mlp6YYbuxuU+mkKUu9pE87RMNKBTQseC1+KTSBz5QyiwDbXMnasl4BMw1QZUD0Mk adb7eBnw+FE4ea07cGNPo5xy3B5RRld9srQ7ASSboY6e+5s0MOPZYkxUOqQxLcG3 G9T+8Kt3SyHgs86cMuV8zm3H1H49k50YWZhSDtb7oDKtGDZ59NyZSpw9f7ej+Of2 DRq/vCkWivuvlcw1ATMxmu6aaXeXcCQ0Pr93cu/bMrYdD8O7LdZJtmaf//vARRxi WpKBNNAh22AU54L4KcAXdwINAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrxVvVkwv OqK/s2dE0Vopgn8ZKgowHwYDVR0jBBgwFoAUcI8eBxM4VcgHTu1fjIO0RmpgesIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcxRDE2LzY1NkQxN0E4QUU5 QzExRUU5MTFBRkI2M0M0RjlBRTAyL2NJOGVCeE00VmNnSFR1MWZqSU8wUm1wZ2Vz SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvY0k4ZUJ4TTRWY2dIVHUxZmpJTzBSbXBnZXNJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcx RDE2LzY1NkQxN0E4QUU5QzExRUU5MTFBRkI2M0M0RjlBRTAyL2NJOGVCeE00VmNn SFR1MWZqSU8wUm1wZ2VzSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ1cgf7s44nWP7ee7LSGDOMulyKOaBe8sbIBYeR8DzRRs7BqFUZacptC DVc2nCc9Pms7wk6CyXv9bYlDD2tF1o37LmFrLj+xAVtUJvm9pGXyvWBJ7BxXfePV Vw/GKUhnMGuVDaLSpQTo7U6aYYksozQgyXIzJgL5SEqxnfXa9+fD4gtm7vUo5DZ1 9NsyDRh6P7P6pZ8FaFX65keDejtZnejC2HJjNZUWInw3SBp0AnPBdMRkeFyNz0xt IPEe91aFmwziGmFmUJpKQtE38QsDI87hI5GQPpPyXWV6zu618cyJoLMypNNA9d8B D7fCK/oOZFIpf9KZJ16E+2NfS/0pf34= -----END CERTIFICATE-----Generated at Fri May 17 10:10:50 2024 by rpki-client on console-fra.rpki-client.org