$ rpki-client -vvf rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft File: 3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft (raw, json) Hash identifier: kgAHeKpGK2t6qbgaDNSZjjObwJiVodzEieFLQT/ejiE= Subject key identifier: 63:7A:72:7A:54:63:48:66:0C:D7:EE:5E:16:A6:D7:4B:C4:97:75:45 Authority key identifier: DF:2F:8A:75:F3:E9:27:5E:0D:4F:10:FC:6A:31:99:97:91:1B:E5:B5 Certificate issuer: /CN=A919A016/serialNumber=DF2F8A75F3E9275E0D4F10FC6A319997911BE5B5 Certificate serial: 0A49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft Manifest number: 0A43 Signing time: Mon 06 May 2024 20:32:03 +0000 Manifest this update: Mon 06 May 2024 20:32:02 +0000 Manifest next update: Mon 13 May 2024 20:32:02 +0000 Files and hashes: 1: 3y-KdfPpJ14NTxD8ajGZl5Eb5bU.crl (hash: O75XS9m4PeWubhfsJzTK9Th3reDn1eQA3zKzrEVs1WM=) 2: AD03DBB2419D11EABC319278C4F9AE02.roa (hash: 6+MMXN2aqLvASPhAECYaxzJUt2qfIjJdf5Aa6BWJZSA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.crl rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 20:32:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2633 (0xa49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A016/serialNumber=DF2F8A75F3E9275E0D4F10FC6A319997911BE5B5 Validity Not Before: May 6 20:32:02 2024 GMT Not After : May 13 20:32:02 2024 GMT Subject: CN=66393e43-037b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ef:d3:e4:22:eb:ba:b1:1f:2b:f6:7d:13:c2: 56:af:fe:e1:6c:28:0a:bf:4b:21:d8:a9:79:1e:49: 95:e9:ce:03:f7:01:2a:9f:43:c1:d2:3d:7b:ff:71: d0:fe:39:86:92:9f:51:89:b2:a1:a3:25:c4:04:e3: eb:e5:77:48:95:60:50:56:42:b2:c2:71:f5:d5:8a: d6:90:06:23:97:0c:77:80:83:e5:67:7f:26:2b:f9: 2e:0d:af:d4:65:82:df:0c:64:c9:74:42:93:c2:54: 55:c1:a4:6e:db:29:aa:af:6b:00:ba:f4:0b:17:e1: ed:df:0f:8f:d9:cf:92:fd:07:04:8a:4a:08:c9:f5: 4e:0c:2c:64:39:75:0f:37:ff:29:7f:52:7a:8c:5c: 95:73:b6:59:de:b8:12:67:87:87:29:53:1f:ab:ae: a4:67:e2:14:65:69:a4:9d:82:cc:a4:f3:4a:ee:4d: f8:8a:41:5d:96:6a:85:2e:e9:bc:63:65:fd:74:bc: 51:68:57:bc:26:88:ec:84:ad:7c:d7:c9:d0:e6:80: 1d:24:43:f2:29:d7:6d:69:6d:83:46:9f:67:0b:e0: 3d:16:01:91:25:d8:fc:d2:0d:ff:e8:a6:0a:b8:d4: ff:af:7f:c0:8f:ab:26:a1:f4:43:22:ef:6e:ba:87: d1:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:7A:72:7A:54:63:48:66:0C:D7:EE:5E:16:A6:D7:4B:C4:97:75:45 X509v3 Authority Key Identifier: keyid:DF:2F:8A:75:F3:E9:27:5E:0D:4F:10:FC:6A:31:99:97:91:1B:E5:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:78:0a:77:e6:83:76:d1:25:f7:9c:3a:5c:a5:c6:fb:f7:cd: 3c:3d:86:6e:28:d1:f0:47:80:d8:57:f7:25:07:ee:f0:c4:26: 3f:1c:35:9f:1e:eb:bf:91:8b:09:9b:27:db:a0:b2:86:fc:28: d3:6a:ad:50:d1:09:aa:68:db:1b:d0:7c:ad:9e:d8:e4:cd:82: 52:bd:2d:5d:82:1a:30:d5:82:66:19:8e:17:a7:2a:9e:20:71: 4c:36:c1:73:ce:10:82:5e:a6:91:02:66:43:5d:99:47:e2:62: ad:c4:17:10:70:de:89:62:94:cf:9c:cb:a8:b8:f4:86:24:5f: a7:a2:d8:d8:ab:f5:43:2a:5d:40:cb:2f:79:0c:be:f1:cf:cd: 0e:c2:22:fa:ff:ff:34:54:46:c2:c0:fc:79:81:da:76:15:63: 60:ad:fc:57:03:68:65:3b:57:10:6b:e5:e9:66:22:2e:61:9c: ca:02:e5:b8:09:eb:28:4f:18:ab:94:11:a5:e6:3f:c2:49:60: a5:cc:13:50:90:53:41:6f:27:70:21:88:39:f5:64:d7:60:f1: 11:2c:38:b8:2d:07:6b:f0:89:43:1a:04:52:f9:49:34:a9:04: bd:47:4a:5a:92:cb:0d:c8:cc:f8:25:91:76:73:90:8e:cb:67: 87:01:6d:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEwMTYxMTAvBgNVBAUTKERGMkY4QTc1RjNFOTI3NUUwRDRGMTBGQzZBMzE5OTk3 OTExQkU1QjUwHhcNMjQwNTA2MjAzMjAyWhcNMjQwNTEzMjAzMjAyWjAYMRYwFAYD VQQDEw02NjM5M2U0My0wMzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzO/T5CLrurEfK/Z9E8JWr/7hbCgKv0sh2Kl5HkmV6c4D9wEqn0PB0j17/3HQ /jmGkp9RibKhoyXEBOPr5XdIlWBQVkKywnH11YrWkAYjlwx3gIPlZ38mK/kuDa/U ZYLfDGTJdEKTwlRVwaRu2ymqr2sAuvQLF+Ht3w+P2c+S/QcEikoIyfVODCxkOXUP N/8pf1J6jFyVc7ZZ3rgSZ4eHKVMfq66kZ+IUZWmknYLMpPNK7k34ikFdlmqFLum8 Y2X9dLxRaFe8JojshK1818nQ5oAdJEPyKddtaW2DRp9nC+A9FgGRJdj80g3/6KYK uNT/r3/Aj6smofRDIu9uuofRHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGN6cnpU Y0hmDNfuXham10vEl3VFMB8GA1UdIwQYMBaAFN8vinXz6SdeDU8Q/GoxmZeRG+W1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTAxNi9DMDY3NzIyNjQx NzExMUVBQUFEMjZBNkNDNEY5QUUwMi8zeS1LZGZQcEoxNE5UeEQ4YWpHWmw1RWI1 YlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN5LUtkZlBwSjE0TlR4RDhhakdabDVFYjViVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTAxNi9DMDY3NzIyNjQxNzExMUVBQUFEMjZBNkNDNEY5QUUwMi8zeS1LZGZQcEox NE5UeEQ4YWpHWmw1RWI1YlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjeAp35oN20SX3nDpcpcb79808PYZuKNHwR4DYV/clB+7wxCY/HDWf Huu/kYsJmyfboLKG/CjTaq1Q0QmqaNsb0HytntjkzYJSvS1dghow1YJmGY4Xpyqe IHFMNsFzzhCCXqaRAmZDXZlH4mKtxBcQcN6JYpTPnMuouPSGJF+notjYq/VDKl1A yy95DL7xz80OwiL6//80VEbCwPx5gdp2FWNgrfxXA2hlO1cQa+XpZiIuYZzKAuW4 CesoTxirlBGl5j/CSWClzBNQkFNBbydwIYg59WTXYPERLDi4LQdr8IlDGgRS+Uk0 qQS9R0pakssNyMz4JZF2c5COy2eHAW1w -----END CERTIFICATE-----Generated at Mon May 6 23:05:45 2024 by rpki-client on console-fra.rpki-client.org