$ rpki-client -vvf rpki.apnic.net/member_repository/A918E293/2841D92E17DC11EE88804A71C4F9AE02/tJhXdJtDHfMjL417C4OVpy_9GEk.mft File: tJhXdJtDHfMjL417C4OVpy_9GEk.mft (raw, json) Hash identifier: DGY0pAqd/M7umj2Anck2Nid3Pk3/pDpvTkC5TtScUtY= Subject key identifier: C5:1F:A2:E1:C8:7D:64:5E:7F:E2:E8:6E:76:6A:1A:F1:B9:46:13:10 Authority key identifier: B4:98:57:74:9B:43:1D:F3:23:2F:8D:7B:0B:83:95:A7:2F:FD:18:49 Certificate issuer: /CN=A918E293/serialNumber=B49857749B431DF3232F8D7B0B8395A72FFD1849 Certificate serial: A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJhXdJtDHfMjL417C4OVpy_9GEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E293/2841D92E17DC11EE88804A71C4F9AE02/tJhXdJtDHfMjL417C4OVpy_9GEk.mft Manifest number: A6 Signing time: Wed 15 May 2024 06:48:13 +0000 Manifest this update: Wed 15 May 2024 06:48:12 +0000 Manifest next update: Wed 22 May 2024 06:48:12 +0000 Files and hashes: 1: tJhXdJtDHfMjL417C4OVpy_9GEk.crl (hash: P0M1pafIjXIucMpgIXo959j/q+bA4Y0hfx7i9lUx0yg=) 2: D865F69A233111EE813C5D26C4F9AE02.roa (hash: SF9Y/S/Ql9q4YuiPXmmr85flblCi8Ls3X2BfxxKztwc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E293/2841D92E17DC11EE88804A71C4F9AE02/tJhXdJtDHfMjL417C4OVpy_9GEk.crl rsync://rpki.apnic.net/member_repository/A918E293/2841D92E17DC11EE88804A71C4F9AE02/tJhXdJtDHfMjL417C4OVpy_9GEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJhXdJtDHfMjL417C4OVpy_9GEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 06:48:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E293/serialNumber=B49857749B431DF3232F8D7B0B8395A72FFD1849 Validity Not Before: May 15 06:48:12 2024 GMT Not After : May 22 06:48:12 2024 GMT Subject: CN=66445aac-a90e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:6f:a2:f3:b2:8e:9c:ae:7b:46:a8:12:ab:91: 38:0d:cb:42:e4:05:3e:0d:c8:c9:cb:57:e0:ea:8e: 56:3d:32:39:d8:db:dd:ce:17:b4:4d:9e:7f:70:b6: 81:1f:06:b0:48:ef:3d:36:33:9b:7f:94:86:7c:5f: e7:10:1b:19:ff:0a:4b:c4:83:83:51:3d:e5:f1:40: 50:d0:b6:98:b1:7f:39:3c:6e:e6:66:a4:6a:bb:08: 82:51:5e:69:bc:38:6d:f1:08:2c:ac:14:88:0f:74: 0b:58:c8:b3:79:46:f2:1c:e3:f5:e1:f0:11:84:a0: de:9e:d4:5b:0f:75:cd:78:6f:34:5e:35:67:41:38: 71:c0:5b:c3:94:b9:ef:44:19:4d:5e:ae:2c:f2:07: 09:57:bd:62:2b:54:1e:9e:cf:72:1f:e3:60:4b:78: b1:e6:43:6b:44:6a:6a:bb:11:a6:7e:7f:10:3d:6f: 3a:0e:a9:fc:06:2d:2d:35:37:be:33:24:b2:50:5e: d9:36:0a:43:5c:0d:c3:9d:43:25:99:3e:ec:6a:2d: 0a:a8:3f:c0:ee:28:8c:00:a3:b5:5f:6c:06:37:71: 93:05:6f:66:c2:34:77:42:19:d9:55:28:65:17:8a: 50:e0:3d:4d:ca:a9:36:36:05:09:86:c7:2f:ae:8d: 7f:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:1F:A2:E1:C8:7D:64:5E:7F:E2:E8:6E:76:6A:1A:F1:B9:46:13:10 X509v3 Authority Key Identifier: keyid:B4:98:57:74:9B:43:1D:F3:23:2F:8D:7B:0B:83:95:A7:2F:FD:18:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E293/2841D92E17DC11EE88804A71C4F9AE02/tJhXdJtDHfMjL417C4OVpy_9GEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJhXdJtDHfMjL417C4OVpy_9GEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E293/2841D92E17DC11EE88804A71C4F9AE02/tJhXdJtDHfMjL417C4OVpy_9GEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:4e:c6:ee:dd:a0:b8:a2:ef:53:c9:20:e3:b0:02:c4:d8:d4: e9:8e:db:31:51:55:2e:4c:9f:52:ff:93:69:58:95:6b:85:8d: ea:81:f5:38:a7:62:dd:21:2d:b8:18:3b:68:39:db:89:24:d9: 3e:57:57:3d:79:f8:d7:5a:0f:61:45:30:4f:7b:98:68:f2:8d: 51:05:75:5b:e2:03:a2:7e:2f:d2:24:c6:70:a7:fa:6e:01:3a: 1f:ce:53:b7:a3:f4:68:10:5e:1a:d1:31:cc:13:de:91:cc:8d: 9c:ae:82:3c:dc:97:10:dd:7d:13:5e:54:32:fe:71:c2:af:37: 03:71:c0:7c:12:aa:6d:32:1f:f3:ea:ae:3d:25:60:e5:e6:6e: db:3c:6f:38:8a:51:1b:a3:3a:38:2f:ef:3e:29:59:75:e2:d5: 3a:93:29:72:f3:10:0e:49:b9:83:ed:a4:d5:2f:c1:f6:7e:87: 4f:c8:56:01:db:b5:6c:ad:bf:e2:00:8e:79:90:8a:6f:7b:0d: 40:50:a9:cf:eb:60:39:f2:a7:b6:a9:50:c4:fe:bd:eb:d2:a0: 03:ed:2d:0f:61:cb:d4:32:9f:ac:8e:57:d8:32:ca:0e:31:a4: ff:f6:3b:46:93:5a:3f:ce:3d:3e:f0:e9:16:90:c1:39:d5:b3: e9:15:aa:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUyOTMxMTAvBgNVBAUTKEI0OTg1Nzc0OUI0MzFERjMyMzJGOEQ3QjBCODM5NUE3 MkZGRDE4NDkwHhcNMjQwNTE1MDY0ODEyWhcNMjQwNTIyMDY0ODEyWjAYMRYwFAYD VQQDEw02NjQ0NWFhYy1hOTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0G+i87KOnK57RqgSq5E4DctC5AU+DcjJy1fg6o5WPTI52Nvdzhe0TZ5/cLaB HwawSO89NjObf5SGfF/nEBsZ/wpLxIODUT3l8UBQ0LaYsX85PG7mZqRquwiCUV5p vDht8QgsrBSID3QLWMizeUbyHOP14fARhKDentRbD3XNeG80XjVnQThxwFvDlLnv RBlNXq4s8gcJV71iK1Qens9yH+NgS3ix5kNrRGpquxGmfn8QPW86Dqn8Bi0tNTe+ MySyUF7ZNgpDXA3DnUMlmT7sai0KqD/A7iiMAKO1X2wGN3GTBW9mwjR3QhnZVShl F4pQ4D1Nyqk2NgUJhscvro1/FwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMUfouHI fWRef+LobnZqGvG5RhMQMB8GA1UdIwQYMBaAFLSYV3SbQx3zIy+NewuDlacv/RhJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTI5My8yODQxRDkyRTE3 REMxMUVFODg4MDRBNzFDNEY5QUUwMi90SmhYZEp0REhmTWpMNDE3QzRPVnB5XzlH RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RKaFhkSnRESGZNakw0MTdDNE9WcHlfOUdFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTI5My8yODQxRDkyRTE3REMxMUVFODg4MDRBNzFDNEY5QUUwMi90SmhYZEp0REhm TWpMNDE3QzRPVnB5XzlHRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzTsbu3aC4ou9TySDjsALE2NTpjtsxUVUuTJ9S/5NpWJVrhY3qgfU4 p2LdIS24GDtoOduJJNk+V1c9efjXWg9hRTBPe5ho8o1RBXVb4gOifi/SJMZwp/pu ATofzlO3o/RoEF4a0THME96RzI2croI83JcQ3X0TXlQy/nHCrzcDccB8EqptMh/z 6q49JWDl5m7bPG84ilEbozo4L+8+KVl14tU6kyly8xAOSbmD7aTVL8H2fodPyFYB 27Vsrb/iAI55kIpvew1AUKnP62A58qe2qVDE/r3r0qAD7S0PYcvUMp+sjlfYMsoO MaT/9jtGk1o/zj0+8OkWkME51bPpFaqC -----END CERTIFICATE-----Generated at Wed May 15 09:27:35 2024 by rpki-client on console-fra.rpki-client.org