$ rpki-client -vvf rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft File: 0aHv0iQTWusJg56ovbjNxZnOZX8.mft (raw, json) Hash identifier: vxKVYqf8s4EKIEJfhctIYi4Vwukum022k+cblsWlRvQ= Subject key identifier: 0F:AC:15:27:2E:62:2C:85:6B:B7:A0:19:17:5E:74:AE:CF:38:A4:77 Authority key identifier: D1:A1:EF:D2:24:13:5A:EB:09:83:9E:A8:BD:B8:CD:C5:99:CE:65:7F Certificate issuer: /CN=A917D9FC/serialNumber=D1A1EFD224135AEB09839EA8BDB8CDC599CE657F Certificate serial: 03CF Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft Manifest number: 03CB Signing time: Sun 26 May 2024 17:05:08 +0000 Manifest this update: Sun 26 May 2024 17:05:07 +0000 Manifest next update: Sun 02 Jun 2024 17:05:07 +0000 Files and hashes: 1: 0aHv0iQTWusJg56ovbjNxZnOZX8.crl (hash: Xqjk2Uj8N1rVu0MsSF2Fu+w71OD4N1vEnsU2Spl8eME=) 2: AD94C92242BA11ECB1E8FF11C4F9AE02.roa (hash: pu6dJPh07UcYd+mIMy5+Y6mbrncfU/s+tKgupfIo1HM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.crl rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 14:50:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 975 (0x3cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D9FC/serialNumber=D1A1EFD224135AEB09839EA8BDB8CDC599CE657F Validity Not Before: May 26 17:05:07 2024 GMT Not After : Jun 2 17:05:07 2024 GMT Subject: CN=66536bc3-eee0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:77:69:e1:f4:61:01:1f:28:81:31:b1:6d:de: ab:32:a1:7e:fb:59:94:2f:5e:b4:8e:f3:e4:ef:12: fc:ef:07:5f:79:0d:77:43:99:c6:65:2e:bb:4d:3b: f7:d5:3a:0e:f9:26:e8:29:8e:66:3e:a2:48:2b:ed: 82:eb:d5:df:64:d6:46:47:7b:ed:57:91:21:d1:20: 6a:28:10:58:93:46:92:c4:cd:9c:97:61:d3:cc:96: 86:78:25:db:5e:2f:b4:0b:27:36:7c:1f:ed:6a:e2: 1a:29:a5:42:6e:74:6f:8f:84:d0:52:ef:68:09:d7: 13:59:ee:09:a0:8f:33:a2:7d:d7:bb:1c:3d:4e:08: ca:a9:8d:2c:74:81:10:d2:ba:8c:d0:a0:3a:6b:56: 0b:ff:47:14:39:a2:91:c8:b4:21:31:f2:5f:73:11: 51:4a:dc:30:a9:0f:34:20:28:6f:13:32:b5:f1:42: 80:81:69:1b:80:f5:76:cf:7f:86:3c:b9:90:f5:b3: 73:4e:38:f7:48:5f:32:c6:94:aa:9f:e6:e9:53:39: 9b:2a:76:93:9d:29:aa:ec:4b:af:db:c3:96:1e:2c: 08:1a:3c:65:1a:e7:0e:48:b0:30:9c:f4:5f:7d:8c: 5c:db:bb:91:76:b0:1d:7b:be:0b:c0:ea:ee:09:8a: 9e:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:AC:15:27:2E:62:2C:85:6B:B7:A0:19:17:5E:74:AE:CF:38:A4:77 X509v3 Authority Key Identifier: keyid:D1:A1:EF:D2:24:13:5A:EB:09:83:9E:A8:BD:B8:CD:C5:99:CE:65:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:16:f7:8b:35:a2:2e:1e:4a:c6:76:e6:7a:f8:f1:e3:f7:4a: 42:64:95:af:70:96:6c:d2:0f:01:4f:9b:72:1b:09:37:4e:fb: 76:10:f8:63:aa:eb:3f:73:b8:a5:ef:e8:34:e3:cb:c8:a2:ec: 01:a2:a7:ce:74:2f:c0:08:58:1a:27:83:3a:58:0e:d0:97:af: 0f:60:6c:49:46:24:eb:6c:d3:9b:21:16:d1:78:10:54:b0:1b: eb:8f:4c:38:b7:42:f0:e3:f0:70:5c:7b:e1:11:0f:c7:0b:3c: 0d:3a:02:49:ba:22:11:bd:53:0e:df:dc:d3:40:20:ae:96:84: 1e:01:91:ff:82:8a:ef:24:79:41:9e:8c:72:d2:55:4c:4b:6f: 29:41:f5:93:5d:60:1e:35:a1:b6:7d:c3:49:58:1d:5a:6c:13: 41:ce:18:bd:86:81:cc:e4:74:97:92:66:36:02:80:8a:8c:36: 73:71:a6:ae:d7:3d:3d:cb:26:ec:9a:9f:80:15:10:1e:49:35: d1:8f:8b:8a:4e:d0:bd:59:77:a0:0d:df:d5:ed:f3:23:6f:6e: 06:66:a0:02:4d:d2:66:21:49:bd:a4:c9:e8:b9:de:a6:68:eb: 48:76:c6:bb:86:53:16:4d:b3:d4:81:04:2c:26:14:4f:fc:37: 19:8e:45:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q5RkMxMTAvBgNVBAUTKEQxQTFFRkQyMjQxMzVBRUIwOTgzOUVBOEJEQjhDREM1 OTlDRTY1N0YwHhcNMjQwNTI2MTcwNTA3WhcNMjQwNjAyMTcwNTA3WjAYMRYwFAYD VQQDEw02NjUzNmJjMy1lZWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvXdp4fRhAR8ogTGxbd6rMqF++1mUL160jvPk7xL87wdfeQ13Q5nGZS67TTv3 1ToO+SboKY5mPqJIK+2C69XfZNZGR3vtV5Eh0SBqKBBYk0aSxM2cl2HTzJaGeCXb Xi+0Cyc2fB/tauIaKaVCbnRvj4TQUu9oCdcTWe4JoI8zon3Xuxw9TgjKqY0sdIEQ 0rqM0KA6a1YL/0cUOaKRyLQhMfJfcxFRStwwqQ80IChvEzK18UKAgWkbgPV2z3+G PLmQ9bNzTjj3SF8yxpSqn+bpUzmbKnaTnSmq7Euv28OWHiwIGjxlGucOSLAwnPRf fYxc27uRdrAde74LwOruCYqeZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA+sFScu YiyFa7egGRdedK7POKR3MB8GA1UdIwQYMBaAFNGh79IkE1rrCYOeqL24zcWZzmV/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDlGQy83QTMwMkQwMDQy QjExMUVDOUYyNEEwNkVDNEY5QUUwMi8wYUh2MGlRVFd1c0pnNTZvdmJqTnhabk9a WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzBhSHYwaVFUV3VzSmc1Nm92YmpOeFpuT1pYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDlGQy83QTMwMkQwMDQyQjExMUVDOUYyNEEwNkVDNEY5QUUwMi8wYUh2MGlRVFd1 c0pnNTZvdmJqTnhabk9aWDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzFveLNaIuHkrGduZ6+PHj90pCZJWvcJZs0g8BT5tyGwk3Tvt2EPhj qus/c7il7+g048vIouwBoqfOdC/ACFgaJ4M6WA7Ql68PYGxJRiTrbNObIRbReBBU sBvrj0w4t0Lw4/BwXHvhEQ/HCzwNOgJJuiIRvVMO39zTQCCuloQeAZH/gorvJHlB noxy0lVMS28pQfWTXWAeNaG2fcNJWB1abBNBzhi9hoHM5HSXkmY2AoCKjDZzcaau 1z09yybsmp+AFRAeSTXRj4uKTtC9WXegDd/V7fMjb24GZqACTdJmIUm9pMnoud6m aOtIdsa7hlMWTbPUgQQsJhRP/DcZjkV4 -----END CERTIFICATE-----Generated at Sun May 26 18:02:32 2024 by rpki-client on console-fra.rpki-client.org