$ rpki-client -vvf rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft File: rTu2A7FO-ybXFWgvsEE1Hsj502c.mft (raw, json) Hash identifier: adOGjVPmFhAeJ7zKapTkTUpAuoxO3YkVWvWLk87R2iE= Subject key identifier: 86:73:A2:1F:F4:4B:AC:64:54:5E:65:15:B1:6E:BD:A4:70:8E:21:1C Authority key identifier: AD:3B:B6:03:B1:4E:FB:26:D7:15:68:2F:B0:41:35:1E:C8:F9:D3:67 Certificate issuer: /CN=A9191436/serialNumber=AD3BB603B14EFB26D715682FB041351EC8F9D367 Certificate serial: 11F5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft Manifest number: 11DB Signing time: Sat 04 May 2024 17:52:49 +0000 Manifest this update: Sat 04 May 2024 17:52:48 +0000 Manifest next update: Sat 11 May 2024 17:52:48 +0000 Files and hashes: 1: rTu2A7FO-ybXFWgvsEE1Hsj502c.crl (hash: zh47IvVqiGXZ8zxkBfGKKT7sGCuQC3232VnRMITW0AU=) 2: 403398AA233111EEAF768F66C4F9AE02.roa (hash: FLNHQ37nVN7jzWdzIG3Z7vJwyk/LRxgATl+aq5j57sQ=) 3: E4AFD636233211EE8737EE2AC4F9AE02.roa (hash: I4Cnkf7lzkqLnc4f4vTRyRNiopCEkAOSa+SBIvRJfZM=) 4: 4426B244F6A011EC8E197883C4F9AE02.roa (hash: bBZfLoHpOK0OlB0OzQEVHa924CCG++Yge8OBC7CQuI4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.crl rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4597 (0x11f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191436/serialNumber=AD3BB603B14EFB26D715682FB041351EC8F9D367 Validity Not Before: May 4 17:52:48 2024 GMT Not After : May 11 17:52:48 2024 GMT Subject: CN=663675f1-b048 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:38:c9:18:6c:07:e2:16:8f:d8:67:15:2b:d2: 43:51:89:cf:7a:67:93:f2:2e:7a:45:02:8d:31:5a: 92:15:20:e2:d9:64:c9:cb:db:bb:34:b4:5c:4c:e0: fa:65:54:3e:87:19:31:e9:b4:97:d9:22:43:b0:b8: af:4d:0d:cb:9b:02:24:73:10:b1:c1:6f:f3:cc:6d: 7f:dc:2d:e6:83:6f:b3:8a:5a:5d:43:a9:ea:8c:37: d9:7e:1d:f3:2c:70:65:84:98:27:ca:4c:02:6c:17: 46:08:67:19:c7:2b:5b:2f:78:9a:df:56:ae:f7:8b: 31:24:02:21:01:c3:0f:0b:73:27:11:1f:7e:36:cb: 49:0d:53:99:a1:47:84:7e:8c:46:c0:ff:40:4d:4b: af:a2:d2:93:46:8e:57:96:74:c0:32:5b:55:cc:08: 92:59:e5:e5:44:eb:00:5f:83:98:54:2a:36:8d:76: e0:60:e5:95:71:5a:a5:6d:4a:17:25:b4:5d:fe:1c: 34:97:ab:20:7e:31:67:e8:68:0f:3d:c1:f9:bb:90: cc:26:33:11:14:ba:a8:24:4a:f1:76:73:5f:4f:a0: 81:67:19:21:e8:9b:83:a9:70:05:9a:bc:f8:92:58: af:6d:3e:c5:f7:63:54:88:19:b6:3d:9b:10:6a:a6: 80:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:73:A2:1F:F4:4B:AC:64:54:5E:65:15:B1:6E:BD:A4:70:8E:21:1C X509v3 Authority Key Identifier: keyid:AD:3B:B6:03:B1:4E:FB:26:D7:15:68:2F:B0:41:35:1E:C8:F9:D3:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:36:2e:b4:30:7c:20:63:a9:c2:8c:58:4b:66:98:3c:75:e0: 95:1a:1c:1c:57:ba:84:9c:23:a6:7c:cf:a0:71:ba:85:5d:b1: a1:75:28:e1:1f:56:16:34:cf:11:00:00:18:3b:55:84:f1:ab: 86:2f:99:23:8b:c9:ec:a2:b3:c7:57:e8:af:45:00:5e:77:08: 2c:a8:6e:e8:74:6b:37:b9:88:da:70:6c:19:0b:ce:e0:f4:b5: 4e:eb:e4:f0:1d:f2:9e:54:41:e9:49:62:f5:41:87:3e:65:ef: b1:14:8b:68:8d:1f:db:8b:89:61:32:1d:00:aa:5d:e8:90:d1: 7e:da:54:d3:6f:a5:8f:d6:8f:35:7c:c2:2f:99:fb:43:c4:dc: 97:92:15:4b:88:76:b5:d9:e3:99:65:17:58:65:a6:25:78:e6: fe:18:7e:cc:e7:78:1a:6e:04:9b:ef:6c:f8:55:0a:3d:11:28: e3:65:0f:d4:b0:c6:13:ca:27:00:c8:58:66:61:65:2c:08:ea: 0a:60:6f:da:66:44:ad:b7:b0:2f:2d:51:af:2e:b3:b4:f3:25: e1:22:b4:e7:d5:bb:31:2a:39:ab:e9:90:b9:a5:bc:a8:26:ab: 70:61:72:df:ca:65:11:18:a3:af:ac:5c:0c:62:0d:0b:15:cf: 78:db:21:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE0MzYxMTAvBgNVBAUTKEFEM0JCNjAzQjE0RUZCMjZENzE1NjgyRkIwNDEzNTFF QzhGOUQzNjcwHhcNMjQwNTA0MTc1MjQ4WhcNMjQwNTExMTc1MjQ4WjAYMRYwFAYD VQQDEw02NjM2NzVmMS1iMDQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1jjJGGwH4haP2GcVK9JDUYnPemeT8i56RQKNMVqSFSDi2WTJy9u7NLRcTOD6 ZVQ+hxkx6bSX2SJDsLivTQ3LmwIkcxCxwW/zzG1/3C3mg2+zilpdQ6nqjDfZfh3z LHBlhJgnykwCbBdGCGcZxytbL3ia31au94sxJAIhAcMPC3MnER9+NstJDVOZoUeE foxGwP9ATUuvotKTRo5XlnTAMltVzAiSWeXlROsAX4OYVCo2jXbgYOWVcVqlbUoX JbRd/hw0l6sgfjFn6GgPPcH5u5DMJjMRFLqoJErxdnNfT6CBZxkh6JuDqXAFmrz4 klivbT7F92NUiBm2PZsQaqaA2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIZzoh/0 S6xkVF5lFbFuvaRwjiEcMB8GA1UdIwQYMBaAFK07tgOxTvsm1xVoL7BBNR7I+dNn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTQzNi9BMzBCNUE0QUM3 OEMxMUU4QTc2Q0Q5MTRDNEY5QUUwMi9yVHUyQTdGTy15YlhGV2d2c0VFMUhzajUw MmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JUdTJBN0ZPLXliWEZXZ3ZzRUUxSHNqNTAyYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTQzNi9BMzBCNUE0QUM3OEMxMUU4QTc2Q0Q5MTRDNEY5QUUwMi9yVHUyQTdGTy15 YlhGV2d2c0VFMUhzajUwMmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKNi60MHwgY6nCjFhLZpg8deCVGhwcV7qEnCOmfM+gcbqFXbGhdSjh H1YWNM8RAAAYO1WE8auGL5kji8nsorPHV+ivRQBedwgsqG7odGs3uYjacGwZC87g 9LVO6+TwHfKeVEHpSWL1QYc+Ze+xFItojR/bi4lhMh0Aql3okNF+2lTTb6WP1o81 fMIvmftDxNyXkhVLiHa12eOZZRdYZaYleOb+GH7M53gabgSb72z4VQo9ESjjZQ/U sMYTyicAyFhmYWUsCOoKYG/aZkStt7AvLVGvLrO08yXhIrTn1bsxKjmr6ZC5pbyo JqtwYXLfymURGKOvrFwMYg0LFc942yGw -----END CERTIFICATE-----Generated at Sat May 4 20:37:13 2024 by rpki-client on console-fra.rpki-client.org