$ rpki-client -vvf rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft File: 4AJb-TLnFuGh-K-QECEcQRCE_J0.mft (raw, json) Hash identifier: M+I4r3PhVM05SW7kBbqk3gyLDg7DfQP2jbUmNCtMhZU= Subject key identifier: 9D:4F:AF:CD:2D:E8:47:8F:8C:1A:45:C0:1B:A0:E3:8F:C3:DC:B0:8A Authority key identifier: E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D Certificate issuer: /CN=A9197FDB/serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Certificate serial: 04C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft Manifest number: 04C1 Signing time: Tue 07 May 2024 01:28:14 +0000 Manifest this update: Tue 07 May 2024 01:28:14 +0000 Manifest next update: Tue 14 May 2024 01:28:14 +0000 Files and hashes: 1: 4AJb-TLnFuGh-K-QECEcQRCE_J0.crl (hash: X6QPp2fUBg5TUjBcLb/1t7MLvw5UrqhcJ3C4E5cFFpo=) 2: 0A1FAC405BB211EEAD06B243C4F9AE02.roa (hash: tgnIyxqnM5e1e77M6KmIsMUhPNhnEFkzQfcV1nAwP9g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 01:28:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1223 (0x4c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197FDB/serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Validity Not Before: May 7 01:28:14 2024 GMT Not After : May 14 01:28:14 2024 GMT Subject: CN=663983ae-96db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c8:71:76:a4:41:50:9c:85:f4:4a:98:d4:00: ec:9b:6b:cd:d4:24:4b:af:af:80:b0:03:81:c5:e7: 6a:a8:25:f3:07:69:53:bd:6f:93:e7:8f:e6:b2:61: 0d:77:93:e0:73:9e:d1:d4:98:43:bb:49:5f:01:f7: c5:c6:d8:d2:1b:e8:57:8c:40:14:5e:68:cf:ef:60: 79:5e:58:84:88:10:28:18:42:f3:95:db:fe:1e:9d: 36:94:74:9a:63:4c:e1:1a:9b:e6:c9:f2:bb:8f:98: 0c:7b:87:63:64:f8:c0:24:cc:78:af:b3:56:d1:b1: 65:c7:01:bf:2f:b0:f1:bc:8c:2f:6b:2e:f4:d9:41: 10:93:6b:af:e3:b7:19:d1:00:3a:90:7e:91:95:6c: 2b:d4:c4:c0:b5:e0:af:72:62:49:d9:05:3f:af:c2: 9b:ec:c1:ac:47:45:c2:29:c6:05:2d:71:84:65:9f: 92:b6:cf:31:a7:8e:e8:23:bb:5e:4f:5d:a5:d3:69: bd:04:9e:fe:7c:97:5b:f1:77:03:ec:d9:20:b4:e6: 98:f1:db:58:21:22:a3:2c:b3:b7:fc:17:1a:1c:96: db:70:5b:66:a1:87:23:c9:22:d3:59:dd:af:2a:77: 97:9f:6a:20:99:57:c6:8c:ce:45:a4:18:d9:bd:f5: 3b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:4F:AF:CD:2D:E8:47:8F:8C:1A:45:C0:1B:A0:E3:8F:C3:DC:B0:8A X509v3 Authority Key Identifier: keyid:E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:5f:e8:fe:cf:a9:cf:91:0d:6d:d7:f7:8f:e7:e8:f4:55:ff: bc:93:dc:2d:e1:b6:2e:c5:b2:64:6a:1b:05:7f:4b:8a:6b:07: 63:21:d9:85:b6:83:17:e2:48:8f:61:ac:69:a4:92:b4:62:92: 8f:d5:57:09:a1:37:6f:ce:b6:7f:e4:86:f7:e2:d5:0a:85:cc: dd:3f:9a:36:88:67:20:ba:d0:f5:11:67:bc:02:f8:a6:de:51: 79:f3:22:1f:b6:a4:5b:c4:19:b7:14:7d:97:43:c9:48:58:0a: 93:d6:14:b0:cf:3d:1f:73:74:71:6b:67:7e:12:3b:f0:a2:92: d4:f3:1c:5d:9d:7b:0a:66:0a:2a:51:4a:5b:92:09:ed:dc:d3: 25:5a:99:72:5c:69:f9:e7:8e:af:40:df:dc:f4:15:76:c8:9b: 1a:4f:75:f7:40:31:5b:03:4f:1f:0e:d0:8c:c6:9b:5c:d8:de: dd:54:da:2d:e0:a0:57:2f:0b:40:01:f0:21:cd:26:fc:d4:5a: 55:aa:92:70:7f:47:d7:bd:3a:14:70:db:c1:04:8b:11:a5:80: e7:50:28:09:93:5a:f0:9f:dd:75:75:0c:cd:a8:60:dc:94:0d: 59:8b:fe:0e:70:26:a1:d5:30:8e:32:ca:3b:68:b7:02:52:f5: 74:18:c0:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdGREIxMTAvBgNVBAUTKEUwMDI1QkY5MzJFNzE2RTFBMUY4QUY5MDEwMjExQzQx MTA4NEZDOUQwHhcNMjQwNTA3MDEyODE0WhcNMjQwNTE0MDEyODE0WjAYMRYwFAYD VQQDEw02NjM5ODNhZS05NmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx8hxdqRBUJyF9EqY1ADsm2vN1CRLr6+AsAOBxedqqCXzB2lTvW+T54/msmEN d5Pgc57R1JhDu0lfAffFxtjSG+hXjEAUXmjP72B5XliEiBAoGELzldv+Hp02lHSa Y0zhGpvmyfK7j5gMe4djZPjAJMx4r7NW0bFlxwG/L7DxvIwvay702UEQk2uv47cZ 0QA6kH6RlWwr1MTAteCvcmJJ2QU/r8Kb7MGsR0XCKcYFLXGEZZ+Sts8xp47oI7te T12l02m9BJ7+fJdb8XcD7NkgtOaY8dtYISKjLLO3/BcaHJbbcFtmoYcjySLTWd2v KneXn2ogmVfGjM5FpBjZvfU7mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ1Pr80t 6EePjBpFwBug44/D3LCKMB8GA1UdIwQYMBaAFOACW/ky5xbhofivkBAhHEEQhPyd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0ZEQi82NTdFNDA3NERB MzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1R2gtSy1RRUNFY1FSQ0Vf SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRBSmItVExuRnVHaC1LLVFFQ0VjUVJDRV9KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0ZEQi82NTdFNDA3NERBMzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1 R2gtSy1RRUNFY1FSQ0VfSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdX+j+z6nPkQ1t1/eP5+j0Vf+8k9wt4bYuxbJkahsFf0uKawdjIdmF toMX4kiPYaxppJK0YpKP1VcJoTdvzrZ/5Ib34tUKhczdP5o2iGcgutD1EWe8Avim 3lF58yIftqRbxBm3FH2XQ8lIWAqT1hSwzz0fc3Rxa2d+EjvwopLU8xxdnXsKZgoq UUpbkgnt3NMlWplyXGn5546vQN/c9BV2yJsaT3X3QDFbA08fDtCMxptc2N7dVNot 4KBXLwtAAfAhzSb81FpVqpJwf0fXvToUcNvBBIsRpYDnUCgJk1rwn911dQzNqGDc lA1Zi/4OcCah1TCOMso7aLcCUvV0GMDb -----END CERTIFICATE-----Generated at Tue May 7 03:12:20 2024 by rpki-client on console-fra.rpki-client.org