$ rpki-client -vvf rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft File: S3IqOmeTvzLJvPUuTncuCm86Yxk.mft (raw, json) Hash identifier: kCqbchRWR9FOKqgrUGcFeIxVQckpuALztdYJuL//OBY= Subject key identifier: 07:1F:22:33:8F:6E:21:20:EA:64:67:BC:85:79:AA:5A:31:4F:A6:AD Authority key identifier: 4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 Certificate issuer: /CN=A917A67E/serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Certificate serial: A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft Manifest number: A1 Signing time: Wed 15 May 2024 06:49:53 +0000 Manifest this update: Wed 15 May 2024 06:49:53 +0000 Manifest next update: Wed 22 May 2024 06:49:53 +0000 Files and hashes: 1: S3IqOmeTvzLJvPUuTncuCm86Yxk.crl (hash: iUBJYomjPK4QMUTtfgOcjyW4gQsLPzAIfvNyaXjRzMQ=) 2: E3901F981BD711EEB9597921C4F9AE02.roa (hash: WAkCaN8gPES1r0aKIa9bLRXktTida+w4l1rKNkY5dRk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 06:49:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A67E/serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Validity Not Before: May 15 06:49:53 2024 GMT Not After : May 22 06:49:53 2024 GMT Subject: CN=66445b11-dcf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:62:45:bf:37:7f:10:97:fd:73:37:8a:9f:2c: ab:f3:2c:f7:b8:eb:3c:84:8e:6d:b6:92:56:25:57: b9:e4:97:6d:2f:5f:83:b5:08:44:9d:cf:5b:3e:eb: b0:24:88:8c:1d:c8:95:77:da:e1:e5:e1:83:f1:68: 66:56:97:d6:f8:09:4f:73:b6:65:b9:77:72:e0:20: d3:17:ae:5a:c9:c3:ce:3b:37:dc:fb:7c:d6:b6:12: 2d:ad:c3:5a:04:87:a9:ac:4f:e7:37:5f:5f:dd:b4: 81:14:cf:13:ff:88:07:3b:34:02:6c:6a:f7:5d:c6: 88:13:f2:b4:51:2d:e9:f8:14:01:01:ed:90:95:05: 78:10:9c:88:f1:a7:0f:0d:31:7c:31:3f:6a:5f:15: 6a:20:d0:73:ee:e0:f0:f8:90:04:d3:48:6e:b6:00: 6d:34:e8:ec:63:50:3e:cb:65:d3:71:3d:89:c9:f1: 7a:bf:7c:2c:c5:51:6e:3e:c9:f7:89:a2:9d:bf:58: 1d:d6:a3:b5:9f:21:2e:a9:01:15:ea:ef:c8:af:47: dc:0a:4a:00:97:dc:a8:8c:9a:48:fd:56:d8:42:30: cb:f8:7e:44:45:be:d7:a9:54:ef:45:ff:9b:12:4f: d1:e3:08:10:1c:6f:f3:a2:96:0c:09:15:4f:a0:6d: ec:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:1F:22:33:8F:6E:21:20:EA:64:67:BC:85:79:AA:5A:31:4F:A6:AD X509v3 Authority Key Identifier: keyid:4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:6b:ce:e1:64:37:0b:b9:9e:6e:07:b8:19:21:25:64:65:73: 11:9e:9a:38:5d:93:e0:29:72:43:6e:a3:45:85:10:73:34:53: 88:f4:71:38:b4:5c:cd:81:b9:70:c0:13:fd:98:b6:6a:12:be: bb:cf:73:9d:09:3c:ce:4a:7c:fa:fc:88:a1:31:78:08:20:35: b7:76:ec:4d:e6:3a:91:19:e0:de:20:ba:00:ae:45:f9:ff:8a: 81:24:08:f3:cb:d7:4b:c8:1a:e4:96:02:5c:04:2c:17:a0:2f: 33:12:2f:a2:e3:2d:9a:e8:8e:6b:2e:72:5e:8a:35:20:47:68: 6a:e8:f9:51:7d:98:49:c8:27:ed:13:df:67:27:81:69:b2:1e: 5b:ea:28:3d:3a:75:d8:bb:34:6b:50:6a:35:3d:fb:c7:37:35: c2:c8:51:4c:68:b4:19:69:26:84:83:02:b7:c0:df:82:36:bc: 53:9e:1b:20:73:82:4e:6d:60:2b:22:a6:38:09:05:e8:2c:86: d3:16:45:c0:6a:dc:b3:f1:cd:4c:c5:ac:68:86:5c:61:30:e1: 2a:2f:36:f5:e0:ee:42:01:40:8c:79:f4:7a:36:42:06:eb:d7: c1:56:62:1c:15:39:f0:b0:e2:b0:e4:96:ea:cf:ba:0f:5f:f7: 54:39:2c:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E2N0UxMTAvBgNVBAUTKDRCNzIyQTNBNjc5M0JGMzJDOUJDRjUyRTRFNzcyRTBB NkYzQTYzMTkwHhcNMjQwNTE1MDY0OTUzWhcNMjQwNTIyMDY0OTUzWjAYMRYwFAYD VQQDEw02NjQ0NWIxMS1kY2Y0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGJFvzd/EJf9czeKnyyr8yz3uOs8hI5ttpJWJVe55JdtL1+DtQhEnc9bPuuw JIiMHciVd9rh5eGD8WhmVpfW+AlPc7ZluXdy4CDTF65aycPOOzfc+3zWthItrcNa BIeprE/nN19f3bSBFM8T/4gHOzQCbGr3XcaIE/K0US3p+BQBAe2QlQV4EJyI8acP DTF8MT9qXxVqINBz7uDw+JAE00hutgBtNOjsY1A+y2XTcT2JyfF6v3wsxVFuPsn3 iaKdv1gd1qO1nyEuqQEV6u/Ir0fcCkoAl9yojJpI/VbYQjDL+H5ERb7XqVTvRf+b Ek/R4wgQHG/zopYMCRVPoG3sOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAcfIjOP biEg6mRnvIV5qloxT6atMB8GA1UdIwQYMBaAFEtyKjpnk78yybz1Lk53LgpvOmMZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTY3RS82N0I0Q0I4NDFC RDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6TEp2UFV1VG5jdUNtODZZ eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MzSXFPbWVUdnpMSnZQVXVUbmN1Q204Nll4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTY3RS82N0I0Q0I4NDFCRDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6 TEp2UFV1VG5jdUNtODZZeGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAza87hZDcLuZ5uB7gZISVkZXMRnpo4XZPgKXJDbqNFhRBzNFOI9HE4 tFzNgblwwBP9mLZqEr67z3OdCTzOSnz6/IihMXgIIDW3duxN5jqRGeDeILoArkX5 /4qBJAjzy9dLyBrklgJcBCwXoC8zEi+i4y2a6I5rLnJeijUgR2hq6PlRfZhJyCft E99nJ4Fpsh5b6ig9OnXYuzRrUGo1PfvHNzXCyFFMaLQZaSaEgwK3wN+CNrxTnhsg c4JObWArIqY4CQXoLIbTFkXAatyz8c1MxaxohlxhMOEqLzb14O5CAUCMefR6NkIG 69fBVmIcFTnwsOKw5Jbqz7oPX/dUOSww -----END CERTIFICATE-----Generated at Wed May 15 09:27:34 2024 by rpki-client on console-fra.rpki-client.org