$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft File: AiMNlU5PPWqtRJXXTNs-4PKHygc.mft (raw, json) Hash identifier: CvJ7gka0EbRqNisiRxjeITrG80PHQzavw4+Hs1OCS6M= Subject key identifier: 26:D5:BC:D9:20:18:6A:0B:D1:A0:9F:79:73:C9:A8:49:CA:D7:41:A5 Authority key identifier: 02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 Certificate issuer: /CN=A917B4C6/serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Certificate serial: 22FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft Manifest number: 22CD Signing time: Sat 04 May 2024 16:12:37 +0000 Manifest this update: Sat 04 May 2024 16:12:36 +0000 Manifest next update: Sat 11 May 2024 16:12:36 +0000 Files and hashes: 1: AiMNlU5PPWqtRJXXTNs-4PKHygc.crl (hash: Asp/+p3ZRJBCFZTGYAaY7Gput30sbZTcRquhNE5GUFM=) 2: 32B76C00562411E79589C739C4F9AE02.roa (hash: vb5cHcm55U7pljjzoO4g9FNB1flb1KgvWDDtM0SHGvU=) 3: 7DBDA87C561A11E79F98831DC4F9AE02.roa (hash: SI+LLofCjizJ4ADDiYbKrAg1//cncoxs2Ga5Zj0MMu4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 16:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8954 (0x22fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4C6/serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Validity Not Before: May 4 16:12:36 2024 GMT Not After : May 11 16:12:36 2024 GMT Subject: CN=66365e75-f30d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ff:85:c7:44:8d:d3:7c:56:40:c4:75:ee:d0: a5:16:60:a9:d7:57:63:07:a6:65:66:8d:07:30:0c: 7f:87:7a:54:57:f6:51:3f:0a:60:de:2e:7a:03:d2: 04:a2:af:87:8c:62:ca:d5:cb:10:40:eb:c6:da:97: e5:9f:d2:6e:3b:3a:c2:df:6e:35:f5:08:45:89:51: c3:2b:b3:c8:6d:c6:9b:3d:b0:90:53:67:fd:2e:5e: 18:cf:f0:ca:44:59:f9:cb:92:d6:16:d9:6c:d6:0e: 02:e9:7c:3c:be:93:f3:97:90:f9:59:cb:12:10:06: 3a:4c:e4:5c:6a:e4:57:e6:c3:81:5c:e7:d3:97:f6: 95:01:d3:8b:ec:0e:5e:10:71:f7:9f:d5:3a:79:3f: d0:44:7b:78:33:62:75:7a:5b:6d:2b:48:93:cb:b9: b3:a5:62:b2:1f:f5:d8:7a:d0:0d:d5:28:c4:a7:69: 8b:3d:ce:71:30:5e:88:e9:a6:06:4e:9c:07:e4:d9: 58:0e:c6:fa:54:18:14:82:a2:61:86:d2:89:fb:d2: 98:15:c9:94:2c:31:ee:c9:cc:9b:33:26:69:0b:e2: 3f:04:94:2d:69:b5:ac:79:71:d3:95:91:dd:cb:03: 07:d5:0c:fe:fd:ef:2f:ff:f6:ed:55:16:45:40:da: 76:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:D5:BC:D9:20:18:6A:0B:D1:A0:9F:79:73:C9:A8:49:CA:D7:41:A5 X509v3 Authority Key Identifier: keyid:02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:c6:c4:e8:59:3d:7c:8c:c9:45:c7:82:4b:1a:a8:13:7d:c6: ec:25:f3:38:1b:52:cf:af:a8:64:23:6a:1c:8d:ba:97:93:b9: 5d:51:e9:d0:cf:3e:a4:fe:ec:99:8d:df:a8:3e:b1:cd:50:9c: c1:6c:d4:86:b4:19:80:13:a8:9c:87:d5:fa:88:b1:6e:48:94: ba:70:9d:23:40:b0:11:72:36:ac:fa:cc:46:f4:50:37:39:c7: 82:6a:a6:74:15:e9:86:55:07:6a:a6:f4:35:e6:f6:33:96:e6: 0f:fd:54:df:c7:92:df:0e:c5:c2:44:c2:6c:af:aa:f4:14:4b: fd:66:65:07:13:56:78:31:18:ce:59:1f:be:e6:7b:3a:4a:12: f2:8d:73:0d:55:bd:a0:96:b9:81:ec:b2:3e:1e:10:e6:4f:36: b2:7c:86:8f:da:b1:85:9a:06:e6:92:bc:17:08:57:0c:45:ff: 55:31:17:cd:ca:6a:73:86:5d:1e:b0:30:49:e5:46:f9:ba:fb: 87:c3:8c:c9:46:36:d0:82:d1:a3:e7:86:a9:06:25:15:67:79: 2d:72:d8:7e:0c:3a:19:49:10:af:d2:57:6e:e4:8e:50:71:ff: d2:9e:0a:61:86:39:0a:6e:e3:94:b3:0f:09:4f:0d:da:b2:2d: 39:c6:69:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIvowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QzYxMTAvBgNVBAUTKDAyMjMwRDk1NEU0RjNENkFBRDQ0OTVENzRDREIzRUUw RjI4N0NBMDcwHhcNMjQwNTA0MTYxMjM2WhcNMjQwNTExMTYxMjM2WjAYMRYwFAYD VQQDEw02NjM2NWU3NS1mMzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/+Fx0SN03xWQMR17tClFmCp11djB6ZlZo0HMAx/h3pUV/ZRPwpg3i56A9IE oq+HjGLK1csQQOvG2pfln9JuOzrC32419QhFiVHDK7PIbcabPbCQU2f9Ll4Yz/DK RFn5y5LWFtls1g4C6Xw8vpPzl5D5WcsSEAY6TORcauRX5sOBXOfTl/aVAdOL7A5e EHH3n9U6eT/QRHt4M2J1elttK0iTy7mzpWKyH/XYetAN1SjEp2mLPc5xMF6I6aYG TpwH5NlYDsb6VBgUgqJhhtKJ+9KYFcmULDHuycybMyZpC+I/BJQtabWseXHTlZHd ywMH1Qz+/e8v//btVRZFQNp2BwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCbVvNkg GGoL0aCfeXPJqEnK10GlMB8GA1UdIwQYMBaAFAIjDZVOTz1qrUSV10zbPuDyh8oH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRDNi84REZFNjI4ODc4 QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBXcXRSSlhYVE5zLTRQS0h5 Z2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FpTU5sVTVQUFdxdFJKWFhUTnMtNFBLSHlnYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjRDNi84REZFNjI4ODc4QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBX cXRSSlhYVE5zLTRQS0h5Z2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWxsToWT18jMlFx4JLGqgTfcbsJfM4G1LPr6hkI2ocjbqXk7ldUenQ zz6k/uyZjd+oPrHNUJzBbNSGtBmAE6ich9X6iLFuSJS6cJ0jQLARcjas+sxG9FA3 OceCaqZ0FemGVQdqpvQ15vYzluYP/VTfx5LfDsXCRMJsr6r0FEv9ZmUHE1Z4MRjO WR++5ns6ShLyjXMNVb2glrmB7LI+HhDmTzayfIaP2rGFmgbmkrwXCFcMRf9VMRfN ympzhl0esDBJ5Ub5uvuHw4zJRjbQgtGj54apBiUVZ3ktcth+DDoZSRCv0ldu5I5Q cf/SngphhjkKbuOUsw8JTw3asi05xmmG -----END CERTIFICATE-----Generated at Sat May 4 17:19:49 2024 by rpki-client on console-fra.rpki-client.org