$ rpki-client -vvf rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft File: ItPpdE2tSXUDbMQirBHEBHIOZuo.mft (raw, json) Hash identifier: hGgC5X0IV659PYZK+oePBZZJia7AeZ9J8VSp6w6XUZY= Subject key identifier: B3:3E:1A:10:CB:DC:36:21:DF:2D:9F:D4:7C:CE:0F:0A:A5:B0:FA:D1 Authority key identifier: 22:D3:E9:74:4D:AD:49:75:03:6C:C4:22:AC:11:C4:04:72:0E:66:EA Certificate issuer: /CN=A917A4F7/serialNumber=22D3E9744DAD4975036CC422AC11C404720E66EA Certificate serial: 61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItPpdE2tSXUDbMQirBHEBHIOZuo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft Manifest number: 60 Signing time: Wed 15 May 2024 07:44:43 +0000 Manifest this update: Wed 15 May 2024 07:44:43 +0000 Manifest next update: Wed 22 May 2024 07:44:43 +0000 Files and hashes: 1: ItPpdE2tSXUDbMQirBHEBHIOZuo.crl (hash: 35lCWuMCnUAvmCLnyy7lObnpnZCZZ1T8NiE83akuK8E=) 2: 9BE3C7087E8311EEBC7E6681C4F9AE02.roa (hash: e+PPjlFLXc6MN2cqTUfg11r9FRcEBPWXN3IXgHLc99I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.crl rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItPpdE2tSXUDbMQirBHEBHIOZuo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:44:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A4F7/serialNumber=22D3E9744DAD4975036CC422AC11C404720E66EA Validity Not Before: May 15 07:44:43 2024 GMT Not After : May 22 07:44:43 2024 GMT Subject: CN=664467eb-6bd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:5f:b2:b8:ae:16:3b:66:70:4d:e2:57:f4:81: e1:c8:56:d3:06:68:b0:f3:09:95:22:12:e4:25:75: a0:7e:27:8a:85:8e:57:43:27:2c:ee:10:54:e8:82: c3:bf:6c:61:3f:7e:52:4d:97:7d:ed:15:72:0a:9f: 24:01:02:88:e4:91:79:e1:ed:6a:2d:2d:00:77:0d: 82:07:88:17:4d:ec:75:aa:5a:1e:2e:9c:ed:29:66: 78:b7:04:e1:8e:9a:0f:06:12:fd:af:ee:f2:49:31: be:67:05:67:9c:b8:0a:d8:09:a5:8e:ac:b8:3f:e3: e5:47:92:bc:15:75:29:3d:60:ba:b5:02:c8:e2:89: 86:7e:09:4c:bc:7c:db:e6:96:75:04:86:71:39:55: ed:c9:69:f2:c6:7f:ad:f4:fa:c6:44:1f:e1:c6:1f: 00:08:17:40:8a:88:89:b8:c2:8e:b7:1c:34:bd:2e: d9:e0:67:f1:21:88:4f:e0:b3:5c:36:49:89:5b:6d: c1:65:14:19:e5:af:ec:5a:ac:8e:e0:7f:e7:59:09: af:a3:a9:c7:53:9e:75:78:8d:d1:8b:16:00:11:6f: f2:9e:c3:04:5d:64:d8:29:b5:41:f1:e1:06:3a:1a: d8:b5:e3:31:35:74:60:ff:00:e3:c4:2e:a3:ab:f9: 42:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:3E:1A:10:CB:DC:36:21:DF:2D:9F:D4:7C:CE:0F:0A:A5:B0:FA:D1 X509v3 Authority Key Identifier: keyid:22:D3:E9:74:4D:AD:49:75:03:6C:C4:22:AC:11:C4:04:72:0E:66:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItPpdE2tSXUDbMQirBHEBHIOZuo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:85:7c:bd:c5:fe:ba:8c:c3:db:7a:91:fa:70:f6:8c:ad:4c: 2b:ea:49:15:0f:26:aa:55:18:95:19:7b:27:e4:e4:de:55:f9: dc:bf:9a:17:7b:12:18:3d:67:d4:ac:d1:ba:70:88:15:93:b6: 75:ea:ec:94:05:3c:a3:a0:a5:09:c3:7d:ab:cb:5c:97:16:c9: 37:f4:64:f6:45:cd:f2:77:76:37:6c:a3:9a:ad:39:27:5b:1d: d7:c7:4c:b4:f4:03:dd:ad:0d:02:95:1e:38:6a:cd:d7:89:8e: ee:2e:9d:08:18:4c:05:b8:d6:f4:20:4f:7f:68:91:b0:fb:cd: 9e:1c:0a:46:ba:9d:66:4c:35:20:43:4d:28:f3:44:a4:b7:37: b4:53:93:84:6e:d0:fa:0c:31:a7:fb:8a:27:33:99:59:b2:d8: 4c:a8:dc:22:9b:10:b6:cc:86:c2:a3:e4:34:b5:64:a2:d3:fb: d5:6f:1b:cd:18:24:a0:f9:bf:1e:6a:20:08:61:1e:f6:10:c2: ae:ac:a7:9f:a2:e4:3e:cb:f1:29:10:69:d0:f1:6c:49:d9:b1: 6c:62:e8:4d:59:96:08:0c:de:5b:02:18:b6:55:ab:82:44:31: b6:ad:9b:57:10:29:b4:99:cd:ee:89:73:59:f8:a8:14:90:3c: 6a:26:d3:57 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QTRGNzExMC8GA1UEBRMoMjJEM0U5NzQ0REFENDk3NTAzNkNDNDIyQUMxMUM0MDQ3 MjBFNjZFQTAeFw0yNDA1MTUwNzQ0NDNaFw0yNDA1MjIwNzQ0NDNaMBgxFjAUBgNV BAMTDTY2NDQ2N2ViLTZiZDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7X7K4rhY7ZnBN4lf0geHIVtMGaLDzCZUiEuQldaB+J4qFjldDJyzuEFTogsO/ bGE/flJNl33tFXIKnyQBAojkkXnh7WotLQB3DYIHiBdN7HWqWh4unO0pZni3BOGO mg8GEv2v7vJJMb5nBWecuArYCaWOrLg/4+VHkrwVdSk9YLq1AsjiiYZ+CUy8fNvm lnUEhnE5Ve3JafLGf630+sZEH+HGHwAIF0CKiIm4wo63HDS9LtngZ/EhiE/gs1w2 SYlbbcFlFBnlr+xarI7gf+dZCa+jqcdTnnV4jdGLFgARb/KewwRdZNgptUHx4QY6 Gti14zE1dGD/AOPELqOr+UIdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUsz4aEMvc NiHfLZ/UfM4PCqWw+tEwHwYDVR0jBBgwFoAUItPpdE2tSXUDbMQirBHEBHIOZuow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdBNEY3LzJBNDg5Mzg2N0U4 MjExRUU5OURBOUI3QUM0RjlBRTAyL0l0UHBkRTJ0U1hVRGJNUWlyQkhFQkhJT1p1 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSXRQcGRFMnRTWFVEYk1RaXJCSEVCSElPWnVvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdB NEY3LzJBNDg5Mzg2N0U4MjExRUU5OURBOUI3QUM0RjlBRTAyL0l0UHBkRTJ0U1hV RGJNUWlyQkhFQkhJT1p1by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEaFfL3F/rqMw9t6kfpw9oytTCvqSRUPJqpVGJUZeyfk5N5V+dy/mhd7 Ehg9Z9Ss0bpwiBWTtnXq7JQFPKOgpQnDfavLXJcWyTf0ZPZFzfJ3djdso5qtOSdb HdfHTLT0A92tDQKVHjhqzdeJju4unQgYTAW41vQgT39okbD7zZ4cCka6nWZMNSBD TSjzRKS3N7RTk4Ru0PoMMaf7iiczmVmy2Eyo3CKbELbMhsKj5DS1ZKLT+9VvG80Y JKD5vx5qIAhhHvYQwq6sp5+i5D7L8SkQadDxbEnZsWxi6E1ZlggM3lsCGLZVq4JE Mbatm1cQKbSZze6Jc1n4qBSQPGom01c= -----END CERTIFICATE-----Generated at Wed May 15 09:27:34 2024 by rpki-client on console-fra.rpki-client.org