$ rpki-client -vvf rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.mft File: O0irhhZS-u7X4dElg_Frt_uyiRM.mft (raw, json) Hash identifier: qNLAn2IuhGslMLa9+1nqPvjkc+x/GtUu62ZP67hIFKE= Subject key identifier: F2:9F:7B:F5:8B:F6:ED:9C:80:CC:DC:0A:A6:86:9E:59:3B:B5:D9:36 Authority key identifier: 3B:48:AB:86:16:52:FA:EE:D7:E1:D1:25:83:F1:6B:B7:FB:B2:89:13 Certificate issuer: /CN=A9176909/serialNumber=3B48AB861652FAEED7E1D12583F16BB7FBB28913 Certificate serial: 0129 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0irhhZS-u7X4dElg_Frt_uyiRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.mft Manifest number: 0123 Signing time: Mon 29 Apr 2024 05:01:07 +0000 Manifest this update: Mon 29 Apr 2024 05:01:07 +0000 Manifest next update: Mon 06 May 2024 05:01:07 +0000 Files and hashes: 1: O0irhhZS-u7X4dElg_Frt_uyiRM.crl (hash: jgU4QuqiU500rtDNyKHGOg2jcUGXWhbRJPbcZJzhu5Q=) 2: FCCF8F6E5B8111ED85FB0456C4F9AE02.roa (hash: qp0p19FgxJZz7DqlZ+b6D0Wx5IorPdvXYrQ3BI/Cxqg=) 3: 9712CDA05B8411ED86486677C4F9AE02.roa (hash: 6gTLTXRF2NvIWrnjZ56KbV4EZOnMg4hlapiVBI7hRTQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.crl rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0irhhZS-u7X4dElg_Frt_uyiRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 05:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176909/serialNumber=3B48AB861652FAEED7E1D12583F16BB7FBB28913 Validity Not Before: Apr 29 05:01:07 2024 GMT Not After : May 6 05:01:07 2024 GMT Subject: CN=662f2993-c2d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:79:19:2b:10:34:ee:9d:87:9d:40:e5:8f:e5: a2:4f:da:dc:84:1b:e1:5f:11:bf:20:dd:92:86:d3: 6b:94:65:0c:08:d1:a2:3e:23:a1:cd:1c:ef:2f:ff: 84:ea:fa:df:11:06:86:b3:b6:43:8a:a2:97:c6:38: 15:12:76:3b:19:8d:46:4d:54:85:31:9a:cb:03:eb: 5e:2b:60:30:e8:72:a3:11:27:46:a9:a9:71:e0:10: d6:9d:e5:79:92:af:85:50:f5:80:88:93:78:d8:c2: e7:cc:7a:cd:05:f9:c3:06:52:1b:a5:a7:20:a6:39: b8:78:c8:43:d3:41:31:76:13:d5:69:42:2a:3a:cb: ef:07:7a:e6:04:ad:0f:75:17:17:2b:0c:b7:a3:66: a6:34:3e:44:67:57:d7:5a:77:1c:ed:73:9b:54:24: 6d:aa:a7:ec:8f:35:01:9b:73:1e:db:7c:33:7f:66: 5e:00:66:9e:d1:94:1f:e1:bf:f7:9d:f6:bc:ed:7f: e5:79:3f:ad:b1:5a:78:7c:ac:4f:f2:87:9e:db:32: 12:b6:8d:a4:52:b7:b5:11:e6:8d:45:ee:2b:de:7a: 67:b0:a5:2f:5c:c5:09:ff:d6:64:2d:fc:44:68:cf: 72:8f:1a:2a:a1:79:34:fc:ae:65:88:2f:c5:4d:4c: a9:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:9F:7B:F5:8B:F6:ED:9C:80:CC:DC:0A:A6:86:9E:59:3B:B5:D9:36 X509v3 Authority Key Identifier: keyid:3B:48:AB:86:16:52:FA:EE:D7:E1:D1:25:83:F1:6B:B7:FB:B2:89:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0irhhZS-u7X4dElg_Frt_uyiRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:ec:fb:00:4e:e6:27:6b:8e:67:61:03:8e:07:47:6f:85:ef: c5:ea:ea:1b:4b:ff:1f:c1:00:b2:7d:4c:e9:98:a6:af:3c:e5: 5f:73:f7:bf:be:fd:d8:27:5f:01:0d:fe:6f:ee:f9:b5:95:de: fe:bc:44:5e:91:23:64:3d:de:ba:dc:ff:16:31:c5:df:8e:28: 00:ab:03:ce:c2:85:b1:9a:af:6c:5d:3d:96:b2:30:7e:1c:08: 10:77:19:f4:5e:1b:02:45:d7:5a:b6:9d:91:2c:fb:5f:04:48: 29:55:6e:db:92:f2:88:24:08:2a:94:af:b5:5b:2c:db:63:73: ab:c5:16:62:b8:5c:eb:b3:c6:2f:78:6d:33:74:f4:27:b0:b6: f3:43:3f:42:7e:71:8e:b7:46:ed:89:aa:6e:01:a8:82:cb:d9: 60:c1:17:06:45:c7:32:da:84:a0:14:4c:4a:1d:61:29:a4:73: a9:3b:e7:7d:9e:3e:91:96:39:02:ea:73:d6:c9:c9:50:b5:c3: b6:d1:55:8f:f2:d9:30:2a:fb:25:52:c4:d7:cf:c3:d9:3a:7a: 62:61:d2:6d:35:27:3d:c8:93:63:08:9f:49:f6:aa:a5:49:39: 3d:12:4f:36:28:d8:35:b8:a4:4f:2a:1a:76:81:99:02:35:82: d8:76:5f:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY5MDkxMTAvBgNVBAUTKDNCNDhBQjg2MTY1MkZBRUVEN0UxRDEyNTgzRjE2QkI3 RkJCMjg5MTMwHhcNMjQwNDI5MDUwMTA3WhcNMjQwNTA2MDUwMTA3WjAYMRYwFAYD VQQDEw02NjJmMjk5My1jMmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtXkZKxA07p2HnUDlj+WiT9rchBvhXxG/IN2ShtNrlGUMCNGiPiOhzRzvL/+E 6vrfEQaGs7ZDiqKXxjgVEnY7GY1GTVSFMZrLA+teK2Aw6HKjESdGqalx4BDWneV5 kq+FUPWAiJN42MLnzHrNBfnDBlIbpacgpjm4eMhD00ExdhPVaUIqOsvvB3rmBK0P dRcXKwy3o2amND5EZ1fXWncc7XObVCRtqqfsjzUBm3Me23wzf2ZeAGae0ZQf4b/3 nfa87X/leT+tsVp4fKxP8oee2zISto2kUre1EeaNRe4r3npnsKUvXMUJ/9ZkLfxE aM9yjxoqoXk0/K5liC/FTUypOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPKfe/WL 9u2cgMzcCqaGnlk7tdk2MB8GA1UdIwQYMBaAFDtIq4YWUvru1+HRJYPxa7f7sokT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjkwOS85QUJBQ0FDODRE Q0IxMUVEODI5NjFCMzZDNEY5QUUwMi9PMGlyaGhaUy11N1g0ZEVsZ19GcnRfdXlp Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08waXJoaFpTLXU3WDRkRWxnX0ZydF91eWlSTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjkwOS85QUJBQ0FDODREQ0IxMUVEODI5NjFCMzZDNEY5QUUwMi9PMGlyaGhaUy11 N1g0ZEVsZ19GcnRfdXlpUk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBt7PsATuYna45nYQOOB0dvhe/F6uobS/8fwQCyfUzpmKavPOVfc/e/ vv3YJ18BDf5v7vm1ld7+vERekSNkPd663P8WMcXfjigAqwPOwoWxmq9sXT2WsjB+ HAgQdxn0XhsCRddatp2RLPtfBEgpVW7bkvKIJAgqlK+1WyzbY3OrxRZiuFzrs8Yv eG0zdPQnsLbzQz9CfnGOt0btiapuAaiCy9lgwRcGRccy2oSgFExKHWEppHOpO+d9 nj6RljkC6nPWyclQtcO20VWP8tkwKvslUsTXz8PZOnpiYdJtNSc9yJNjCJ9J9qql STk9Ek82KNg1uKRPKhp2gZkCNYLYdl+w -----END CERTIFICATE-----Generated at Mon Apr 29 05:41:30 2024 by rpki-client on console-fra.rpki-client.org