$ rpki-client -vvf rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.mft File: D5mx_s-lcAT2Q9gr9RHN1HR4baA.mft (raw, json) Hash identifier: u8lNOjHz5gzJKEXk6C+YixNZ4F1MIo0OncpyolJBn0o= Subject key identifier: 36:FB:A7:4C:9D:70:A1:B3:7E:A5:B4:06:EF:79:BE:5E:81:A8:45:A5 Authority key identifier: 0F:99:B1:FE:CF:A5:70:04:F6:43:D8:2B:F5:11:CD:D4:74:78:6D:A0 Certificate issuer: /CN=A9185413/serialNumber=0F99B1FECFA57004F643D82BF511CDD474786DA0 Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5mx_s-lcAT2Q9gr9RHN1HR4baA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.mft Manifest number: 47 Signing time: Wed 15 May 2024 08:09:53 +0000 Manifest this update: Wed 15 May 2024 08:09:52 +0000 Manifest next update: Wed 22 May 2024 08:09:52 +0000 Files and hashes: 1: D5mx_s-lcAT2Q9gr9RHN1HR4baA.crl (hash: +wZf4t0EqvigaDfOiUzxUHPSzv58JowiNr9grWvYonk=) 2: C1D49C12AEDF11EE96155C68C4F9AE02.roa (hash: dzuBA92ULhmJzmxGgdHpyawAKCUbaQ8RTfKuM5up9R0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.crl rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5mx_s-lcAT2Q9gr9RHN1HR4baA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185413/serialNumber=0F99B1FECFA57004F643D82BF511CDD474786DA0 Validity Not Before: May 15 08:09:52 2024 GMT Not After : May 22 08:09:52 2024 GMT Subject: CN=66446dd1-884b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:27:9e:40:13:48:4d:c3:09:c4:e4:20:ce:cd: 2c:22:88:4e:d8:3a:dd:f5:6d:09:4c:84:5b:50:94: 42:05:d3:04:82:60:22:62:2d:8e:6c:11:54:0f:20: b2:c4:06:44:13:03:83:38:6f:8e:8c:f2:50:88:ef: 59:51:86:99:c8:64:bc:78:de:04:1d:7a:0b:1f:94: 5f:f2:3f:95:3c:bb:78:a5:f0:5d:e0:06:7a:08:a8: 4e:da:b0:13:2d:54:9d:1c:ce:0f:4e:a9:ae:18:2b: 42:3d:f5:d4:1d:69:f1:16:3c:27:59:9f:24:3f:7f: 32:ec:f4:7c:5b:61:f9:5a:0e:7d:0a:0a:a7:bf:da: b7:21:bf:b9:77:64:ee:da:8c:25:25:3b:4c:8c:af: ce:cd:c4:31:7c:8a:e3:71:67:36:a9:a6:80:ea:20: cf:d2:2f:cc:25:6e:16:1e:77:c4:8d:ce:93:71:a2: 24:0b:fa:b0:a8:28:c7:69:eb:05:ab:b7:77:95:83: bd:a4:ac:0a:5e:9c:02:06:ec:98:20:53:06:79:07: 92:5d:c3:ea:fe:2e:d4:a5:81:be:c0:31:0c:76:b7: 1b:de:73:2e:49:b8:57:17:b9:75:de:9d:48:cf:8b: 69:48:94:da:b8:90:2a:c8:5b:d5:b0:7e:d3:30:d5: b8:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:FB:A7:4C:9D:70:A1:B3:7E:A5:B4:06:EF:79:BE:5E:81:A8:45:A5 X509v3 Authority Key Identifier: keyid:0F:99:B1:FE:CF:A5:70:04:F6:43:D8:2B:F5:11:CD:D4:74:78:6D:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5mx_s-lcAT2Q9gr9RHN1HR4baA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:22:a3:64:92:b2:c9:64:bf:d5:51:10:d7:99:c2:a8:a5:b9: 1e:49:1f:b6:a5:b9:ab:e8:ce:aa:3c:b4:51:dd:12:41:50:e3: b5:19:f9:e7:97:bf:4d:66:2b:77:ff:df:88:66:08:f7:a4:b4: 83:ba:79:f3:4c:00:09:52:3e:c4:29:8d:d7:dc:c2:bc:ce:df: b9:f8:12:0f:be:32:ec:dc:ed:a2:81:b0:33:7d:a5:45:cb:f0: 02:c7:e4:42:ee:54:09:31:2d:87:9e:f8:c5:d9:6c:31:e5:fd: 56:b2:11:bf:5a:76:f2:a5:4b:aa:77:78:e9:f3:ad:c8:0f:c5: cd:25:ce:8c:5f:d4:c1:fb:37:fe:93:99:93:17:76:31:0e:3d: 06:a3:02:c4:60:2a:66:4e:5a:b3:7f:a4:d3:1a:15:30:fb:60: e1:be:be:e4:7a:d3:61:e2:df:34:df:ef:81:48:6b:d6:63:eb: d9:14:aa:96:17:1f:e6:10:f3:57:f6:77:68:e1:eb:69:c1:4d: e6:23:49:6c:29:1b:f8:e3:59:e8:fd:24:11:08:27:19:47:cc: ee:fa:77:75:52:c7:b2:8d:d3:43:0e:d7:0e:e1:28:a3:eb:6e: 03:9b:95:02:78:5c:10:40:84:ca:ae:20:6d:61:e3:d6:99:94: 39:9b:57:99 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NTQxMzExMC8GA1UEBRMoMEY5OUIxRkVDRkE1NzAwNEY2NDNEODJCRjUxMUNERDQ3 NDc4NkRBMDAeFw0yNDA1MTUwODA5NTJaFw0yNDA1MjIwODA5NTJaMBgxFjAUBgNV BAMTDTY2NDQ2ZGQxLTg4NGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtJ55AE0hNwwnE5CDOzSwiiE7YOt31bQlMhFtQlEIF0wSCYCJiLY5sEVQPILLE BkQTA4M4b46M8lCI71lRhpnIZLx43gQdegsflF/yP5U8u3il8F3gBnoIqE7asBMt VJ0czg9Oqa4YK0I99dQdafEWPCdZnyQ/fzLs9HxbYflaDn0KCqe/2rchv7l3ZO7a jCUlO0yMr87NxDF8iuNxZzappoDqIM/SL8wlbhYed8SNzpNxoiQL+rCoKMdp6wWr t3eVg72krApenAIG7JggUwZ5B5Jdw+r+LtSlgb7AMQx2txvecy5JuFcXuXXenUjP i2lIlNq4kCrIW9WwftMw1bh5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNvunTJ1w obN+pbQG73m+XoGoRaUwHwYDVR0jBBgwFoAUD5mx/s+lcAT2Q9gr9RHN1HR4baAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg1NDEzLzc1OUFEMjRDQUI5 RTExRUU5NjNEMzE3REM0RjlBRTAyL0Q1bXhfcy1sY0FUMlE5Z3I5UkhOMUhSNGJh QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRDVteF9zLWxjQVQyUTlncjlSSE4xSFI0YmFBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg1 NDEzLzc1OUFEMjRDQUI5RTExRUU5NjNEMzE3REM0RjlBRTAyL0Q1bXhfcy1sY0FU MlE5Z3I5UkhOMUhSNGJhQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAYio2SSsslkv9VRENeZwqiluR5JH7aluavozqo8tFHdEkFQ47UZ+eeX v01mK3f/34hmCPektIO6efNMAAlSPsQpjdfcwrzO37n4Eg++Muzc7aKBsDN9pUXL 8ALH5ELuVAkxLYee+MXZbDHl/VayEb9advKlS6p3eOnzrcgPxc0lzoxf1MH7N/6T mZMXdjEOPQajAsRgKmZOWrN/pNMaFTD7YOG+vuR602Hi3zTf74FIa9Zj69kUqpYX H+YQ81f2d2jh62nBTeYjSWwpG/jjWej9JBEIJxlHzO76d3VSx7KN00MO1w7hKKPr bgOblQJ4XBBAhMquIG1h49aZlDmbV5k= -----END CERTIFICATE-----Generated at Wed May 15 09:27:35 2024 by rpki-client on console-fra.rpki-client.org