$ rpki-client -vvf rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.mft File: IffNCqAWhDVSmHRj5kIpcu8DnOg.mft (raw, json) Hash identifier: RvKcpib4YVSZzAGuMOsCETYS7p+GKtps0CK6rYNcGtg= Subject key identifier: D9:9D:1B:96:08:A7:19:6A:7A:26:CC:C5:DB:63:F6:B4:E5:C5:28:A4 Authority key identifier: 21:F7:CD:0A:A0:16:84:35:52:98:74:63:E6:42:29:72:EF:03:9C:E8 Certificate issuer: /CN=A919710C/serialNumber=21F7CD0AA016843552987463E6422972EF039CE8 Certificate serial: 03A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IffNCqAWhDVSmHRj5kIpcu8DnOg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.mft Manifest number: 03A0 Signing time: Wed 01 May 2024 02:52:17 +0000 Manifest this update: Wed 01 May 2024 02:52:17 +0000 Manifest next update: Wed 08 May 2024 02:52:17 +0000 Files and hashes: 1: IffNCqAWhDVSmHRj5kIpcu8DnOg.crl (hash: CEdoXTIUuTz7ngW90FkfRjUlwEEpIuH0hHlTg5TnoKI=) 2: F47ED252878B11EEA8C62644C4F9AE02.roa (hash: J7F5rWdEO0O5itoKRPpqVsgyFtbFRNLbshPrRk8ZKbo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.crl rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IffNCqAWhDVSmHRj5kIpcu8DnOg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 02:39:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 933 (0x3a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919710C/serialNumber=21F7CD0AA016843552987463E6422972EF039CE8 Validity Not Before: May 1 02:52:17 2024 GMT Not After : May 8 02:52:17 2024 GMT Subject: CN=6631ae61-2d8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:dc:e6:4b:97:b8:15:fd:db:f7:05:10:76:95: 05:02:f2:78:66:d0:77:ef:c3:c4:f3:49:1d:e5:18: 3d:cc:ff:c6:5c:fa:60:0c:89:46:8c:0f:5f:83:26: e3:48:a9:e2:c4:ac:00:0c:cb:0a:76:4a:19:b2:07: cb:cf:b0:b4:11:a1:2b:0e:e8:a1:63:43:f0:43:a9: 93:9c:e5:54:13:53:e8:c9:8c:cc:ce:13:18:30:ce: 41:2b:40:b7:4f:e7:d4:47:60:b3:e5:5d:ea:d0:94: 4c:aa:cf:fb:a9:08:d1:24:47:8d:6d:c1:b0:02:be: e0:01:8c:7e:99:33:88:fb:c8:da:fc:41:cd:2b:41: 9b:35:f6:1e:b7:c8:2f:f9:40:74:b2:1a:1f:8f:71: 29:50:66:f9:e9:76:75:92:be:80:76:a4:17:a3:2b: 6d:2d:cc:de:11:06:18:c0:8f:0f:8d:39:38:64:88: 4e:84:95:4e:69:b1:85:f4:54:95:7e:03:5c:5d:28: f1:8f:4e:46:ff:0a:97:e3:df:be:d3:35:bf:50:b8: c5:79:f5:7f:c7:46:5c:96:7a:0c:f9:70:d7:5c:15: f8:72:72:62:7d:05:d4:a3:84:67:e6:da:c6:9f:5b: cb:84:95:13:64:98:c9:01:5a:b0:6e:66:4b:04:8c: 87:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:9D:1B:96:08:A7:19:6A:7A:26:CC:C5:DB:63:F6:B4:E5:C5:28:A4 X509v3 Authority Key Identifier: keyid:21:F7:CD:0A:A0:16:84:35:52:98:74:63:E6:42:29:72:EF:03:9C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IffNCqAWhDVSmHRj5kIpcu8DnOg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:66:b3:7d:cf:a6:27:e8:7c:89:85:cc:50:12:a7:9e:7b:92: 3e:ff:7a:0c:91:13:64:95:c9:86:eb:2c:f2:45:b9:04:cf:fe: 1a:a4:06:e8:71:6d:78:58:dd:aa:a9:3a:79:dd:71:df:d9:2b: fa:b9:f3:f7:4a:16:a5:94:d7:7a:f9:a8:a6:60:6f:2d:bf:58: bc:38:38:21:71:bb:5b:bc:e9:59:a2:42:8e:29:94:ae:cb:93: ab:cc:12:f2:cf:c6:2c:be:ab:a3:4a:10:4d:d2:b0:23:e1:9c: 7e:e2:ee:67:07:2e:8c:a6:15:06:00:08:35:b2:ec:b3:38:de: a9:76:6b:11:9e:d5:1e:49:0c:de:64:13:1d:ef:ee:f0:8f:e9: 52:f6:67:7b:8b:68:72:9b:c4:cf:39:99:18:6c:7d:7e:db:47: 49:f5:66:af:e1:94:c8:cc:6a:fd:e0:cc:eb:43:ba:11:d8:09: 9a:5f:a0:db:69:1a:2e:25:19:ce:0c:e2:be:af:35:7f:5a:e5: 95:8e:2a:41:2a:a9:67:e1:b2:a9:e7:a2:f7:3e:a2:65:6a:0f: c8:86:6b:91:9f:31:6f:bc:20:16:c3:c7:b9:57:43:aa:10:29: 73:ad:97:4b:42:8a:0b:0e:51:5d:15:dd:ac:f3:f6:9e:69:88: 71:5e:ce:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcxMEMxMTAvBgNVBAUTKDIxRjdDRDBBQTAxNjg0MzU1Mjk4NzQ2M0U2NDIyOTcy RUYwMzlDRTgwHhcNMjQwNTAxMDI1MjE3WhcNMjQwNTA4MDI1MjE3WjAYMRYwFAYD VQQDEw02NjMxYWU2MS0yZDhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwdzmS5e4Ff3b9wUQdpUFAvJ4ZtB378PE80kd5Rg9zP/GXPpgDIlGjA9fgybj SKnixKwADMsKdkoZsgfLz7C0EaErDuihY0PwQ6mTnOVUE1PoyYzMzhMYMM5BK0C3 T+fUR2Cz5V3q0JRMqs/7qQjRJEeNbcGwAr7gAYx+mTOI+8ja/EHNK0GbNfYet8gv +UB0shofj3EpUGb56XZ1kr6AdqQXoyttLczeEQYYwI8PjTk4ZIhOhJVOabGF9FSV fgNcXSjxj05G/wqX49++0zW/ULjFefV/x0ZclnoM+XDXXBX4cnJifQXUo4Rn5trG n1vLhJUTZJjJAVqwbmZLBIyHGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNmdG5YI pxlqeibMxdtj9rTlxSikMB8GA1UdIwQYMBaAFCH3zQqgFoQ1Uph0Y+ZCKXLvA5zo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzEwQy8yRjM2NzYxMjRC NjAxMUVDOTU1NERDNTBDNEY5QUUwMi9JZmZOQ3FBV2hEVlNtSFJqNWtJcGN1OERu T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lmZk5DcUFXaERWU21IUmo1a0lwY3U4RG5PZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzEwQy8yRjM2NzYxMjRCNjAxMUVDOTU1NERDNTBDNEY5QUUwMi9JZmZOQ3FBV2hE VlNtSFJqNWtJcGN1OERuT2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOZrN9z6Yn6HyJhcxQEqeee5I+/3oMkRNklcmG6yzyRbkEz/4apAbo cW14WN2qqTp53XHf2Sv6ufP3ShallNd6+aimYG8tv1i8ODghcbtbvOlZokKOKZSu y5OrzBLyz8YsvqujShBN0rAj4Zx+4u5nBy6MphUGAAg1suyzON6pdmsRntUeSQze ZBMd7+7wj+lS9md7i2hym8TPOZkYbH1+20dJ9Wav4ZTIzGr94MzrQ7oR2AmaX6Db aRouJRnODOK+rzV/WuWVjipBKqln4bKp56L3PqJlag/IhmuRnzFvvCAWw8e5V0Oq EClzrZdLQooLDlFdFd2s8/aeaYhxXs7Q -----END CERTIFICATE-----Generated at Wed May 1 03:20:34 2024 by rpki-client on console-fra.rpki-client.org