$ rpki-client -vvf rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft File: 4u3kp-qXJminlbJ7qdyH9LkNqJc.mft (raw, json) Hash identifier: RMYRMaRpU9Qrcs0D9IsaHT4xBimlk/rshqoH34aHSvY= Subject key identifier: BA:1E:47:6C:54:E2:9C:9C:8C:87:64:46:7C:3D:70:EE:E7:C8:5F:6C Authority key identifier: E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 Certificate issuer: /CN=A9172D91/serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Certificate serial: 1571 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft Manifest number: 1551 Signing time: Sat 04 May 2024 17:26:41 +0000 Manifest this update: Sat 04 May 2024 17:26:41 +0000 Manifest next update: Sat 11 May 2024 17:26:41 +0000 Files and hashes: 1: 4u3kp-qXJminlbJ7qdyH9LkNqJc.crl (hash: Fex8nNb5hTpkH0ykHW+N4wExf2eFX2jC0CyIGrpncA4=) 2: 62AE77F649CF11EDB720FD60C4F9AE02.roa (hash: rPdePceetxct/a19Wt0pkL9R3PCdheQ+DNEGWQBnu0Y=) 3: 6009614852AF11EEBB6AA031C4F9AE02.roa (hash: RD98gTIoN2lKephseYsIZxJg0Jn1q80h8l4JjwV/wcA=) 4: 854D304E0C9B11EC8433FE7AC4F9AE02.roa (hash: 6zixCXvyMVByBug8l6sKgw1BS2P2Wg6RaGuldOnJ0UQ=) 5: 9C79DBD23E7911EBBFFAC96BC4F9AE02.roa (hash: t1jhjHFqwru5Gpy8gjqkI5v0BDrYWL1hn2TMHHYltLw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:14:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5489 (0x1571) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172D91/serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Validity Not Before: May 4 17:26:41 2024 GMT Not After : May 11 17:26:41 2024 GMT Subject: CN=66366fd1-6c30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:04:30:70:0d:10:81:be:28:e1:77:34:f9:d6: d4:c3:4c:2b:c8:ff:0a:1e:14:26:a8:50:9f:6f:99: 39:63:e6:fc:ee:f7:fc:f1:1c:4e:4c:18:e0:e1:75: 92:ba:2a:81:59:9a:25:2f:ca:2d:2e:cd:11:37:66: 16:6d:2b:3d:1a:ba:0d:cd:b9:35:c8:33:53:04:59: d4:a0:9f:2e:44:74:3c:0c:fa:8c:ed:00:9c:68:5e: 14:21:28:13:c8:9e:8b:59:ee:72:cf:38:f4:ad:a1: fb:1c:35:71:ce:29:1a:67:1b:47:48:a9:83:84:f2: f6:d0:6b:89:bd:3b:ef:ec:c9:cf:9d:fd:4e:f9:aa: b2:d4:28:75:90:a1:16:2e:27:31:bb:f3:14:07:be: 2e:c1:2b:ca:cb:66:1d:3c:2f:5a:66:9a:25:33:f8: a5:96:e5:b8:14:45:65:37:1b:1b:3f:19:b8:8e:1a: 37:fd:1e:14:e4:a4:ed:aa:b9:d4:00:e2:18:d2:f6: d8:ab:8e:9a:17:0b:7d:0a:b0:86:71:61:82:45:c1: 0e:41:27:a4:00:9c:3e:0d:cb:18:b0:80:b3:75:7e: a4:eb:be:aa:f0:e4:bf:d5:d8:b2:b5:35:b6:dc:86: 19:5e:93:03:71:41:5a:2d:fb:e5:ec:b3:1a:fb:7d: f9:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:1E:47:6C:54:E2:9C:9C:8C:87:64:46:7C:3D:70:EE:E7:C8:5F:6C X509v3 Authority Key Identifier: keyid:E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:be:c5:a3:eb:63:f7:6f:d5:c4:67:35:09:6b:ee:a1:5c:fa: 3d:2e:25:37:5c:f0:25:ce:de:2d:5b:01:69:36:5b:d0:66:65: 3b:63:45:0b:a0:56:01:32:37:f3:d4:c2:05:28:73:d8:f2:4c: 44:34:48:e3:82:96:b7:70:52:7c:8e:09:27:70:f6:ce:f9:6e: 39:95:08:53:48:9a:6d:e5:e4:1a:67:ce:85:79:c1:fb:ef:f7: 84:f9:1d:02:52:e9:58:74:16:dd:82:08:f5:70:05:c7:70:9a: 69:c9:4a:b3:9f:78:dd:53:ab:1c:27:b8:37:9b:7c:8f:49:a1: 20:87:01:77:e5:8f:f5:cd:2c:5c:e3:1e:8f:7c:61:b0:7d:a0: bb:b0:6e:39:4d:fa:f5:7c:df:be:67:8d:78:a5:85:fc:8a:77: fb:f3:2b:50:39:ae:21:80:1e:6d:81:c7:e5:dc:77:31:b2:0c: 0b:e7:f6:e4:20:e9:15:25:17:98:ba:2e:3e:22:3b:63:62:f1: 8b:2f:9f:cf:cb:20:a5:8c:51:1b:24:fe:5f:25:05:56:0d:e0: 22:65:0a:56:89:83:24:12:d3:1a:7c:06:5f:17:47:c3:90:3b: 0c:eb:78:ec:6d:71:b6:b1:ec:68:3a:10:e6:8d:61:94:e4:a1: 2c:8b:ed:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJEOTExMTAvBgNVBAUTKEUyRURFNEE3RUE5NzI2NjhBNzk1QjI3QkE5REM4N0Y0 QjkwREE4OTcwHhcNMjQwNTA0MTcyNjQxWhcNMjQwNTExMTcyNjQxWjAYMRYwFAYD VQQDEw02NjM2NmZkMS02YzMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7AQwcA0Qgb4o4Xc0+dbUw0wryP8KHhQmqFCfb5k5Y+b87vf88RxOTBjg4XWS uiqBWZolL8otLs0RN2YWbSs9GroNzbk1yDNTBFnUoJ8uRHQ8DPqM7QCcaF4UISgT yJ6LWe5yzzj0raH7HDVxzikaZxtHSKmDhPL20GuJvTvv7MnPnf1O+aqy1Ch1kKEW Licxu/MUB74uwSvKy2YdPC9aZpolM/illuW4FEVlNxsbPxm4jho3/R4U5KTtqrnU AOIY0vbYq46aFwt9CrCGcWGCRcEOQSekAJw+DcsYsICzdX6k676q8OS/1diytTW2 3IYZXpMDcUFaLfvl7LMa+335vwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLoeR2xU 4pycjIdkRnw9cO7nyF9sMB8GA1UdIwQYMBaAFOLt5KfqlyZop5Wye6nch/S5DaiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkQ5MS9FQTY3MkE1QzE5 RTcxMUU4QjI0M0Q1N0NDNEY5QUUwMi80dTNrcC1xWEptaW5sYko3cWR5SDlMa05x SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR1M2twLXFYSm1pbmxiSjdxZHlIOUxrTnFKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkQ5MS9FQTY3MkE1QzE5RTcxMUU4QjI0M0Q1N0NDNEY5QUUwMi80dTNrcC1xWEpt aW5sYko3cWR5SDlMa05xSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJvsWj62P3b9XEZzUJa+6hXPo9LiU3XPAlzt4tWwFpNlvQZmU7Y0UL oFYBMjfz1MIFKHPY8kxENEjjgpa3cFJ8jgkncPbO+W45lQhTSJpt5eQaZ86FecH7 7/eE+R0CUulYdBbdggj1cAXHcJppyUqzn3jdU6scJ7g3m3yPSaEghwF35Y/1zSxc 4x6PfGGwfaC7sG45Tfr1fN++Z414pYX8inf78ytQOa4hgB5tgcfl3HcxsgwL5/bk IOkVJReYui4+IjtjYvGLL5/PyyCljFEbJP5fJQVWDeAiZQpWiYMkEtMafAZfF0fD kDsM63jsbXG2sexoOhDmjWGU5KEsi+3I -----END CERTIFICATE-----Generated at Sat May 4 18:00:11 2024 by rpki-client on console-fra.rpki-client.org