$ rpki-client -vvf rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.mft File: svBcLOw1UNLTyetRODn0egAqhy4.mft (raw, json) Hash identifier: J2bOW2Z4Y6FVHZbYaYFN+bfJ4czhsZdmgoCjFeFeyWs= Subject key identifier: 26:DB:AD:08:2D:29:BF:A3:CC:79:46:40:A8:EB:0A:4A:B6:AB:C1:88 Authority key identifier: B2:F0:5C:2C:EC:35:50:D2:D3:C9:EB:51:38:39:F4:7A:00:2A:87:2E Certificate issuer: /CN=A9172D88/serialNumber=B2F05C2CEC3550D2D3C9EB513839F47A002A872E Certificate serial: 02EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svBcLOw1UNLTyetRODn0egAqhy4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.mft Manifest number: 02EA Signing time: Fri 03 May 2024 03:22:58 +0000 Manifest this update: Fri 03 May 2024 03:22:58 +0000 Manifest next update: Fri 10 May 2024 03:22:58 +0000 Files and hashes: 1: svBcLOw1UNLTyetRODn0egAqhy4.crl (hash: j6dtPUomFPY0U3NVlWCI2uVHwFHENohmBhautp22mf4=) 2: D118AD20820911EDAC2FD360C4F9AE02.roa (hash: ixpGpZxeJE6MjqJE4TZF5F7RqpJksuo4R/FnZcP/pPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.crl rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svBcLOw1UNLTyetRODn0egAqhy4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:22:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 751 (0x2ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172D88/serialNumber=B2F05C2CEC3550D2D3C9EB513839F47A002A872E Validity Not Before: May 3 03:22:58 2024 GMT Not After : May 10 03:22:58 2024 GMT Subject: CN=66345892-d2c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:1a:49:35:e4:72:a3:66:a7:1c:f6:6d:73:30: f6:00:3f:ce:b9:86:37:69:d8:e1:a2:da:2c:0e:7b: 50:59:5e:82:99:3f:d1:65:0c:cd:db:42:45:a9:75: b6:96:16:ad:fe:c6:4d:58:4c:1f:f5:9c:6a:ba:79: 27:6f:d9:d3:b7:07:5a:4d:a1:5d:d3:3c:44:76:32: 74:cb:ef:75:d9:19:9e:3c:c7:05:d6:ab:8e:d3:b4: 9b:57:e7:06:e0:c5:a5:5b:1e:92:a6:49:5d:65:d4: 80:a9:dc:81:bf:34:e0:8e:eb:cf:58:08:fa:73:6c: 74:2d:23:a0:39:f9:17:b7:b4:ad:81:0d:50:0a:9e: 82:47:e2:2d:f3:92:d1:e5:87:8f:08:7f:0a:1c:76: 35:c0:37:c8:db:64:3f:72:18:bc:22:02:59:55:e5: 36:be:82:c5:3a:1a:c5:bb:a7:ef:93:37:31:87:d0: 1a:90:81:b5:4e:51:e3:9b:94:3f:d4:d5:52:cd:2e: c9:10:a8:6c:cf:80:42:62:09:e3:02:cd:33:34:c7: 6f:4d:54:d0:ea:78:00:0d:95:ad:f7:2a:4e:1f:48: 18:d1:fd:23:e8:58:f5:a0:ae:8a:3a:c5:a8:30:90: 48:a5:97:b6:5f:9a:75:d0:90:82:fd:f4:6f:35:cf: 52:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:DB:AD:08:2D:29:BF:A3:CC:79:46:40:A8:EB:0A:4A:B6:AB:C1:88 X509v3 Authority Key Identifier: keyid:B2:F0:5C:2C:EC:35:50:D2:D3:C9:EB:51:38:39:F4:7A:00:2A:87:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svBcLOw1UNLTyetRODn0egAqhy4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:b9:32:4d:4b:7d:d1:4d:a1:11:0a:4f:e6:db:27:bd:fa:0b: b2:0f:d5:88:11:77:5d:60:e7:56:b4:de:c4:27:23:f5:e1:14: 31:b9:87:ed:ae:80:90:74:2c:75:3d:77:9f:d0:f6:a9:f5:19: 29:97:cc:4a:01:2e:3e:e6:1f:21:50:90:f4:d9:7b:2e:6e:7f: fd:d1:d1:2e:b1:b8:15:29:2b:73:fb:97:03:ba:4b:47:84:dc: 99:1f:15:45:b4:a1:c8:33:23:17:44:cb:8e:03:cf:c3:6e:4f: e2:d1:5f:7a:3d:a5:1c:ad:f4:fd:8e:56:c5:d0:d5:09:e9:98: 40:fe:14:31:c2:91:84:12:14:cb:f1:b6:93:37:c4:8f:2d:4a: 58:b9:be:1b:a6:d2:ca:ae:b1:14:91:18:e0:af:67:f9:58:e4: 36:2e:15:1b:51:40:c8:03:01:3a:42:54:c8:c1:5f:8c:88:43: bb:a0:5a:84:ee:d2:54:55:ae:31:18:2b:1c:40:de:10:89:de: 16:fd:7c:8d:92:d8:80:e6:f5:99:4d:15:94:5f:a9:ae:0f:af: 67:61:19:81:4c:d0:80:6f:c0:8a:01:27:e1:5e:cb:e6:48:90: de:c4:63:c3:b0:4c:cc:0d:aa:02:c8:97:46:9c:54:1e:e1:82: de:83:d8:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAu8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJEODgxMTAvBgNVBAUTKEIyRjA1QzJDRUMzNTUwRDJEM0M5RUI1MTM4MzlGNDdB MDAyQTg3MkUwHhcNMjQwNTAzMDMyMjU4WhcNMjQwNTEwMDMyMjU4WjAYMRYwFAYD VQQDEw02NjM0NTg5Mi1kMmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3BpJNeRyo2anHPZtczD2AD/OuYY3adjhotosDntQWV6CmT/RZQzN20JFqXW2 lhat/sZNWEwf9Zxqunknb9nTtwdaTaFd0zxEdjJ0y+912RmePMcF1quO07SbV+cG 4MWlWx6SpkldZdSAqdyBvzTgjuvPWAj6c2x0LSOgOfkXt7StgQ1QCp6CR+It85LR 5YePCH8KHHY1wDfI22Q/chi8IgJZVeU2voLFOhrFu6fvkzcxh9AakIG1TlHjm5Q/ 1NVSzS7JEKhsz4BCYgnjAs0zNMdvTVTQ6ngADZWt9ypOH0gY0f0j6Fj1oK6KOsWo MJBIpZe2X5p10JCC/fRvNc9SqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCbbrQgt Kb+jzHlGQKjrCkq2q8GIMB8GA1UdIwQYMBaAFLLwXCzsNVDS08nrUTg59HoAKocu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkQ4OC9GMUI3RUFCQTkz QUMxMUVDQjY3QTMxNTJDNEY5QUUwMi9zdkJjTE93MVVOTFR5ZXRST0RuMGVnQXFo eTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3N2QmNMT3cxVU5MVHlldFJPRG4wZWdBcWh5NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkQ4OC9GMUI3RUFCQTkzQUMxMUVDQjY3QTMxNTJDNEY5QUUwMi9zdkJjTE93MVVO TFR5ZXRST0RuMGVnQXFoeTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABuTJNS33RTaERCk/m2ye9+guyD9WIEXddYOdWtN7EJyP14RQxuYft roCQdCx1PXef0Pap9Rkpl8xKAS4+5h8hUJD02Xsubn/90dEusbgVKStz+5cDuktH hNyZHxVFtKHIMyMXRMuOA8/Dbk/i0V96PaUcrfT9jlbF0NUJ6ZhA/hQxwpGEEhTL 8baTN8SPLUpYub4bptLKrrEUkRjgr2f5WOQ2LhUbUUDIAwE6QlTIwV+MiEO7oFqE 7tJUVa4xGCscQN4Qid4W/XyNktiA5vWZTRWUX6muD69nYRmBTNCAb8CKASfhXsvm SJDexGPDsEzMDaoCyJdGnFQe4YLeg9hH -----END CERTIFICATE-----Generated at Fri May 3 04:45:16 2024 by rpki-client on console-fra.rpki-client.org