$ rpki-client -vvf rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft File: 4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft (raw, json) Hash identifier: xvhiNjzFBFk80ev7yl/ruZ0sJBb69YqNXVQdcFCYqr4= Subject key identifier: 21:A1:8C:AF:F1:9A:CD:01:A1:35:4F:B8:B0:5D:9F:04:C1:35:BC:AA Authority key identifier: E0:C8:92:8F:94:51:52:0E:64:D1:DE:D5:8F:07:19:6B:58:61:B2:86 Certificate issuer: /CN=A917D4C4/serialNumber=E0C8928F9451520E64D1DED58F07196B5861B286 Certificate serial: 058E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MiSj5RRUg5k0d7VjwcZa1hhsoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft Manifest number: 058B Signing time: Sat 04 May 2024 14:56:09 +0000 Manifest this update: Sat 04 May 2024 14:56:08 +0000 Manifest next update: Sat 11 May 2024 14:56:08 +0000 Files and hashes: 1: 4MiSj5RRUg5k0d7VjwcZa1hhsoY.crl (hash: ShXqOaKBQTP5FfV541tAEGrkLbZbv5A+S1am5SaYOk8=) 2: 6E325DBC0E2F11EDB4659653C4F9AE02.roa (hash: dO5nZq15UBNcy6JzPU4ZCXdX9MbHTyXCt1oRP1sN3wc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.crl rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MiSj5RRUg5k0d7VjwcZa1hhsoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1422 (0x58e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D4C4/serialNumber=E0C8928F9451520E64D1DED58F07196B5861B286 Validity Not Before: May 4 14:56:08 2024 GMT Not After : May 11 14:56:08 2024 GMT Subject: CN=66364c89-3242 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:bf:f5:09:f0:cc:ce:af:02:ec:db:81:4f:c6: b2:d4:a8:3d:a0:50:01:00:19:f7:9b:8e:67:a8:6c: 6c:5a:e9:c2:dc:2c:ba:20:73:c4:d6:b0:11:d2:47: 85:a0:53:56:75:df:14:58:f6:12:01:d6:84:68:92: d2:f7:0c:9a:19:c3:3b:1d:66:42:d2:9c:08:62:cd: ce:18:0c:a9:97:40:e3:12:fa:1b:33:18:15:f2:54: 9b:88:44:bc:44:89:ad:09:da:9b:88:e0:57:b8:3c: 83:49:c0:ab:6d:8a:48:89:dc:6d:af:62:02:f6:14: 09:e6:5e:20:d5:4a:77:ad:13:20:4d:bf:69:ad:cb: 8e:34:80:86:0c:e6:47:04:0b:56:d1:ef:05:ff:35: 9f:2a:d5:d2:e4:81:05:47:d8:9e:7c:1e:0e:51:cc: 29:26:ed:d3:cb:fd:b9:20:f3:4e:79:11:72:13:73: 25:ac:8e:97:21:d8:08:b6:03:bf:27:58:1f:f7:11: ee:1e:95:93:83:ae:4b:97:06:1d:1e:ae:5f:26:02: 19:bc:cf:d2:4b:5a:32:48:06:d5:9d:ea:82:02:fe: 54:07:5f:38:3f:2e:96:5a:10:db:5a:0c:15:c3:a9: 40:9d:ab:d7:05:ed:bd:7d:6b:7f:50:09:8a:a3:73: 1f:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:A1:8C:AF:F1:9A:CD:01:A1:35:4F:B8:B0:5D:9F:04:C1:35:BC:AA X509v3 Authority Key Identifier: keyid:E0:C8:92:8F:94:51:52:0E:64:D1:DE:D5:8F:07:19:6B:58:61:B2:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MiSj5RRUg5k0d7VjwcZa1hhsoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:10:0c:50:c8:d0:b7:9e:bc:7f:a6:00:0a:02:d1:c0:e8:5d: ba:d7:dc:bf:80:f9:e0:65:e0:10:f6:89:7b:56:b3:4f:ab:a1: 71:8c:81:4b:bf:0a:5c:5a:21:87:d5:87:ab:f0:0e:24:b3:cf: 52:f2:3d:3a:ab:14:f0:61:a7:a6:42:60:50:20:8c:52:5a:40: cc:35:51:94:37:ae:a9:9a:da:4f:ea:1f:d3:df:1f:22:0a:8e: ae:a3:c6:f9:82:a6:56:60:a9:0d:fe:f7:9a:62:2d:36:df:c0: ed:51:64:4c:13:01:ba:bd:f4:20:03:3d:28:32:55:4c:3c:10: ec:54:66:01:84:d2:8c:9b:22:cb:04:1a:1c:ec:01:32:2f:f2: 7a:e3:fd:59:2f:ab:50:0e:08:0c:90:94:0a:35:06:7a:0d:53: 71:e1:29:7c:09:7a:78:84:5f:1d:b2:c3:38:9e:8a:03:c7:3c: be:67:1f:87:53:4e:da:1e:3f:44:74:00:0a:7c:d6:7e:b9:fa: 53:bc:09:21:3b:df:3c:85:96:19:a3:82:75:08:2c:78:1b:73: 4d:38:e6:f2:c9:ea:7d:7e:a1:e8:13:2c:c6:6c:65:40:7e:8b: 42:88:0b:18:da:7d:0f:ed:60:1d:ba:11:b6:bc:a9:6f:db:77: bb:ef:81:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q0QzQxMTAvBgNVBAUTKEUwQzg5MjhGOTQ1MTUyMEU2NEQxREVENThGMDcxOTZC NTg2MUIyODYwHhcNMjQwNTA0MTQ1NjA4WhcNMjQwNTExMTQ1NjA4WjAYMRYwFAYD VQQDEw02NjM2NGM4OS0zMjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx7/1CfDMzq8C7NuBT8ay1Kg9oFABABn3m45nqGxsWunC3Cy6IHPE1rAR0keF oFNWdd8UWPYSAdaEaJLS9wyaGcM7HWZC0pwIYs3OGAypl0DjEvobMxgV8lSbiES8 RImtCdqbiOBXuDyDScCrbYpIidxtr2IC9hQJ5l4g1Up3rRMgTb9prcuONICGDOZH BAtW0e8F/zWfKtXS5IEFR9iefB4OUcwpJu3Ty/25IPNOeRFyE3MlrI6XIdgItgO/ J1gf9xHuHpWTg65LlwYdHq5fJgIZvM/SS1oySAbVneqCAv5UB184Py6WWhDbWgwV w6lAnavXBe29fWt/UAmKo3MfRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCGhjK/x ms0BoTVPuLBdnwTBNbyqMB8GA1UdIwQYMBaAFODIko+UUVIOZNHe1Y8HGWtYYbKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDRDNC80MzlDRjg3QzhE N0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi80TWlTajVSUlVnNWswZDdWandjWmExaGhz b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRNaVNqNVJSVWc1azBkN1Zqd2NaYTFoaHNvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDRDNC80MzlDRjg3QzhEN0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi80TWlTajVSUlVn NWswZDdWandjWmExaGhzb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaEAxQyNC3nrx/pgAKAtHA6F2619y/gPngZeAQ9ol7VrNPq6FxjIFL vwpcWiGH1Yer8A4ks89S8j06qxTwYaemQmBQIIxSWkDMNVGUN66pmtpP6h/T3x8i Co6uo8b5gqZWYKkN/veaYi0238DtUWRMEwG6vfQgAz0oMlVMPBDsVGYBhNKMmyLL BBoc7AEyL/J64/1ZL6tQDggMkJQKNQZ6DVNx4Sl8CXp4hF8dssM4nooDxzy+Zx+H U07aHj9EdAAKfNZ+ufpTvAkhO988hZYZo4J1CCx4G3NNOObyyep9fqHoEyzGbGVA fotCiAsY2n0P7WAduhG2vKlv23e774EH -----END CERTIFICATE-----Generated at Sat May 4 15:45:47 2024 by rpki-client on console-fra.rpki-client.org