$ rpki-client -vvf rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft File: jNZeQOKuy7xVttozRr8czjg1wnc.mft (raw, json) Hash identifier: Jer7mbsYucJzwHY9UrQO/jSdDKGvtCg2pmb5Mklar9c= Subject key identifier: FD:33:45:29:88:FC:A1:5B:D5:49:DF:4A:44:BC:BA:3D:D5:A1:34:A5 Authority key identifier: 8C:D6:5E:40:E2:AE:CB:BC:55:B6:DA:33:46:BF:1C:CE:38:35:C2:77 Certificate issuer: /CN=A919A6EB/serialNumber=8CD65E40E2AECBBC55B6DA3346BF1CCE3835C277 Certificate serial: AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNZeQOKuy7xVttozRr8czjg1wnc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft Manifest number: AB Signing time: Wed 15 May 2024 06:42:01 +0000 Manifest this update: Wed 15 May 2024 06:42:01 +0000 Manifest next update: Wed 22 May 2024 06:42:01 +0000 Files and hashes: 1: jNZeQOKuy7xVttozRr8czjg1wnc.crl (hash: PPF3XO1rN6aiSg7pmdwwEWtD4oqZKgWqLJ1LSBr8dM8=) 2: 4CEE00EC0A8811EEA788A750C4F9AE02.roa (hash: OHxr2hB7crGU69rLV633zyt9NIU01nRPahke+eb5utU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.crl rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNZeQOKuy7xVttozRr8czjg1wnc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 06:42:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A6EB/serialNumber=8CD65E40E2AECBBC55B6DA3346BF1CCE3835C277 Validity Not Before: May 15 06:42:01 2024 GMT Not After : May 22 06:42:01 2024 GMT Subject: CN=66445939-3885 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:1d:a2:92:1a:dc:67:fc:15:53:b3:80:0d:35: ac:21:c4:f2:6f:75:dc:a1:e1:5c:33:eb:5d:19:b4: e8:3b:3e:97:14:65:09:0f:df:94:e0:cf:74:ad:05: 36:ba:c2:8e:0b:a7:cf:2a:db:ac:b9:75:b8:9c:a7: 15:41:71:56:b9:c6:9b:99:9f:12:e0:46:26:97:5e: ed:71:12:a6:e1:da:b1:62:37:c1:3f:50:df:4b:ce: f6:8f:8e:08:52:30:ae:bb:e4:e6:c2:7e:03:f6:78: fb:c4:6e:f5:eb:42:e5:b5:96:f6:b6:07:c4:a7:21: 1b:a8:e7:a2:36:44:da:88:4b:76:bf:ed:50:fb:63: c2:84:25:a7:11:83:55:6b:da:1c:2c:21:ab:7d:8b: c8:a8:a7:86:cd:7c:82:c1:cb:23:91:65:aa:ab:3d: 83:0a:e9:a6:eb:86:33:71:6c:d8:8e:2d:39:4f:63: 05:9d:a2:1b:2a:6f:98:29:2b:61:95:56:60:d1:a8: 31:9e:72:7c:85:38:26:ca:c7:ab:25:fd:22:32:1b: 77:a0:35:0b:e7:8c:c9:a5:cb:ab:d9:1a:26:c2:53: 33:13:aa:0b:64:09:40:e8:25:9e:82:51:a1:7a:5e: f0:d7:79:bc:6f:ac:1d:54:3d:23:5f:4d:67:19:30: ea:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:33:45:29:88:FC:A1:5B:D5:49:DF:4A:44:BC:BA:3D:D5:A1:34:A5 X509v3 Authority Key Identifier: keyid:8C:D6:5E:40:E2:AE:CB:BC:55:B6:DA:33:46:BF:1C:CE:38:35:C2:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNZeQOKuy7xVttozRr8czjg1wnc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:63:73:d7:ce:bb:04:59:16:11:7a:5c:d9:e9:4f:41:ba:42: 0d:27:63:ad:c3:cb:15:02:98:15:47:28:14:71:3f:0f:51:12: 72:16:3a:2d:a9:c8:59:70:bd:7e:57:99:4a:02:f5:31:b5:1c: bb:42:44:96:29:99:e1:ff:c4:0f:da:50:49:db:c1:38:20:4c: db:7d:da:6a:b9:9f:e9:93:d0:3c:16:36:00:08:08:80:64:ac: 06:3e:fb:5d:c4:c2:9f:8a:b6:ad:e9:4e:39:1d:72:0b:9f:c7: 62:36:3e:6a:41:ae:35:58:b2:f4:ff:2f:dc:e8:f2:25:bc:34: b0:e6:cf:5e:db:6c:ad:3b:6c:08:7a:f8:a6:52:98:a9:8d:b4: dd:8f:02:ac:58:c5:4b:f5:3f:75:41:1f:5b:53:0e:d0:bd:00: 9b:da:5a:c5:a6:28:e0:87:eb:bf:0a:4a:b9:aa:08:9a:93:ff: ac:a5:ad:b8:97:2e:88:62:34:f6:e3:95:9a:93:5e:2e:d9:6c: 2b:ad:2c:c4:ef:94:c0:4b:ea:14:29:3a:af:8e:71:34:ec:61: 42:63:e6:8c:79:08:b5:9c:7d:14:02:a9:f4:74:eb:4a:a3:47: 7d:19:94:03:ed:5f:1c:46:c2:10:05:83:2e:ce:80:23:9c:65: 95:a9:8f:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE2RUIxMTAvBgNVBAUTKDhDRDY1RTQwRTJBRUNCQkM1NUI2REEzMzQ2QkYxQ0NF MzgzNUMyNzcwHhcNMjQwNTE1MDY0MjAxWhcNMjQwNTIyMDY0MjAxWjAYMRYwFAYD VQQDEw02NjQ0NTkzOS0zODg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5R2ikhrcZ/wVU7OADTWsIcTyb3XcoeFcM+tdGbToOz6XFGUJD9+U4M90rQU2 usKOC6fPKtusuXW4nKcVQXFWucabmZ8S4EYml17tcRKm4dqxYjfBP1DfS872j44I UjCuu+Tmwn4D9nj7xG7160LltZb2tgfEpyEbqOeiNkTaiEt2v+1Q+2PChCWnEYNV a9ocLCGrfYvIqKeGzXyCwcsjkWWqqz2DCumm64YzcWzYji05T2MFnaIbKm+YKSth lVZg0agxnnJ8hTgmyserJf0iMht3oDUL54zJpcur2RomwlMzE6oLZAlA6CWeglGh el7w13m8b6wdVD0jX01nGTDqVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP0zRSmI /KFb1UnfSkS8uj3VoTSlMB8GA1UdIwQYMBaAFIzWXkDirsu8VbbaM0a/HM44NcJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTZFQi9ERDRDMUIyQTBB NUExMUVFQkU4MjQzNDRDNEY5QUUwMi9qTlplUU9LdXk3eFZ0dG96UnI4Y3pqZzF3 bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pOWmVRT0t1eTd4VnR0b3pScjhjempnMXduYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTZFQi9ERDRDMUIyQTBBNUExMUVFQkU4MjQzNDRDNEY5QUUwMi9qTlplUU9LdXk3 eFZ0dG96UnI4Y3pqZzF3bmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPY3PXzrsEWRYRelzZ6U9BukINJ2Otw8sVApgVRygUcT8PURJyFjot qchZcL1+V5lKAvUxtRy7QkSWKZnh/8QP2lBJ28E4IEzbfdpquZ/pk9A8FjYACAiA ZKwGPvtdxMKfirat6U45HXILn8diNj5qQa41WLL0/y/c6PIlvDSw5s9e22ytO2wI evimUpipjbTdjwKsWMVL9T91QR9bUw7QvQCb2lrFpijgh+u/Ckq5qgiak/+spa24 ly6IYjT245Wak14u2WwrrSzE75TAS+oUKTqvjnE07GFCY+aMeQi1nH0UAqn0dOtK o0d9GZQD7V8cRsIQBYMuzoAjnGWVqY9W -----END CERTIFICATE-----Generated at Wed May 15 09:28:12 2024 by rpki-client on console-fra.rpki-client.org