$ rpki-client -vvf rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.mft File: cH1IYFoNhXcvkNxLEXK-8wKUoIc.mft (raw, json) Hash identifier: uar90ph0/2OATrD1AYl1lBUkoyTeZ8wkstazZdDMT7c= Subject key identifier: 92:F0:5D:F6:67:9C:C9:24:0A:A6:7B:32:52:DE:28:42:F8:75:0D:FA Authority key identifier: 70:7D:48:60:5A:0D:85:77:2F:90:DC:4B:11:72:BE:F3:02:94:A0:87 Certificate issuer: /CN=A919D49F/serialNumber=707D48605A0D85772F90DC4B1172BEF30294A087 Certificate serial: 0F9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cH1IYFoNhXcvkNxLEXK-8wKUoIc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.mft Manifest number: 0F97 Signing time: Sat 04 May 2024 18:14:39 +0000 Manifest this update: Sat 04 May 2024 18:14:37 +0000 Manifest next update: Sat 11 May 2024 18:14:37 +0000 Files and hashes: 1: cH1IYFoNhXcvkNxLEXK-8wKUoIc.crl (hash: 4kjElmFMPHmtVBj36BRZ8AUpCUIQ8Sz7Sd13MIuMfoU=) 2: 74087358355111E99EC82E0AC4F9AE02.roa (hash: J13YXMbpb9DmPsFXcQePqhqj7Wu1xBAXD7neNPMUSJw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.crl rsync://rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cH1IYFoNhXcvkNxLEXK-8wKUoIc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:14:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3997 (0xf9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D49F/serialNumber=707D48605A0D85772F90DC4B1172BEF30294A087 Validity Not Before: May 4 18:14:37 2024 GMT Not After : May 11 18:14:37 2024 GMT Subject: CN=66367b0e-e567 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:37:45:51:79:c3:f3:65:37:0e:87:f9:5b:86: 96:9b:c9:af:5c:28:c5:5e:2a:4e:45:af:71:dd:85: c7:f6:fb:de:7a:50:42:64:69:49:c0:49:c3:c6:c4: 83:9b:a3:8b:7f:7f:e2:e7:60:06:86:ca:1c:81:76: b1:87:20:51:6e:9b:f8:5e:2c:bd:9f:54:70:d0:21: a1:34:34:a3:56:75:fd:8d:bb:38:bb:60:53:34:9d: 99:12:f7:c8:52:b5:fc:e2:19:68:87:fa:4b:ad:59: d0:00:a8:9f:17:f3:2b:50:bd:f2:37:e1:46:56:83: e3:c4:30:a1:1e:24:88:7f:19:04:db:fd:07:79:75: 73:0f:b8:83:b7:a6:5b:25:75:30:60:44:dc:b8:8d: 8b:97:88:61:de:3e:2b:89:8d:87:81:94:ae:51:f5: 37:0a:2c:1d:70:da:45:7d:6b:6e:2a:bd:5b:ff:91: f8:d6:84:54:cc:86:11:bf:83:0c:a9:dd:b5:33:8a: a6:4b:d5:cf:ea:0d:ef:dd:f4:16:8b:1b:00:85:da: 1b:e4:18:ba:b5:04:68:ad:08:39:b7:9a:03:d8:35: af:f3:f8:d0:3d:fd:8c:d3:ce:5b:99:c1:56:51:11: d4:55:84:73:00:45:6f:19:95:83:3d:a6:e0:fa:8d: 3b:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:F0:5D:F6:67:9C:C9:24:0A:A6:7B:32:52:DE:28:42:F8:75:0D:FA X509v3 Authority Key Identifier: keyid:70:7D:48:60:5A:0D:85:77:2F:90:DC:4B:11:72:BE:F3:02:94:A0:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cH1IYFoNhXcvkNxLEXK-8wKUoIc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:2b:d0:dc:21:95:b3:59:27:ae:4c:12:31:2a:71:ba:de:a8: 24:50:c7:d4:b0:8c:20:29:7d:01:d1:86:95:7a:b4:6a:7d:8a: e9:dd:19:19:bb:3a:57:4c:67:5e:cb:3e:41:32:b1:3c:bf:d3: 85:24:1f:5f:d8:e7:d1:43:6c:cc:8f:e3:6d:bf:93:20:b0:e5: 8e:61:2e:41:ce:db:f6:45:cb:84:95:81:0c:f6:ac:8a:36:d5: e7:c4:ff:7e:bf:8e:b3:d2:9d:27:c0:01:e6:69:76:ca:e8:71: f0:fb:cd:02:c3:87:d4:18:a6:64:f8:80:02:16:06:c5:31:a9: 67:ac:3e:24:d9:5a:12:75:8b:6c:28:b4:3c:36:86:d1:98:fc: 30:9e:51:18:b6:03:c3:cf:6b:21:65:4d:2c:42:63:71:0b:3a: cc:5e:96:e9:c3:6e:63:15:9e:88:2a:f1:fe:1d:85:7f:6c:76: 60:ed:4d:1a:9d:76:60:b9:08:14:80:91:32:43:99:99:30:e1: e6:00:f5:ea:50:7d:4c:c5:74:13:30:0a:12:46:46:c5:a3:f5: 4d:f5:3d:95:46:24:c4:40:cb:a8:02:d9:c9:0a:00:b3:a6:ba: 90:98:0c:f3:9f:02:6b:8c:2f:91:c3:7f:25:cc:71:0d:24:52: 88:72:a2:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD50wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ0OUYxMTAvBgNVBAUTKDcwN0Q0ODYwNUEwRDg1NzcyRjkwREM0QjExNzJCRUYz MDI5NEEwODcwHhcNMjQwNTA0MTgxNDM3WhcNMjQwNTExMTgxNDM3WjAYMRYwFAYD VQQDEw02NjM2N2IwZS1lNTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArzdFUXnD82U3Dof5W4aWm8mvXCjFXipORa9x3YXH9vveelBCZGlJwEnDxsSD m6OLf3/i52AGhsocgXaxhyBRbpv4Xiy9n1Rw0CGhNDSjVnX9jbs4u2BTNJ2ZEvfI UrX84hloh/pLrVnQAKifF/MrUL3yN+FGVoPjxDChHiSIfxkE2/0HeXVzD7iDt6Zb JXUwYETcuI2Ll4hh3j4riY2HgZSuUfU3CiwdcNpFfWtuKr1b/5H41oRUzIYRv4MM qd21M4qmS9XP6g3v3fQWixsAhdob5Bi6tQRorQg5t5oD2DWv8/jQPf2M085bmcFW URHUVYRzAEVvGZWDPabg+o07TwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJLwXfZn nMkkCqZ7MlLeKEL4dQ36MB8GA1UdIwQYMBaAFHB9SGBaDYV3L5DcSxFyvvMClKCH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDQ5Ri8wQkFDODU1NjM1 NTExMUU5OThBNTBBMEFDNEY5QUUwMi9jSDFJWUZvTmhYY3ZrTnhMRVhLLTh3S1Vv SWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NIMUlZRm9OaFhjdmtOeExFWEstOHdLVW9JYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDQ5Ri8wQkFDODU1NjM1NTExMUU5OThBNTBBMEFDNEY5QUUwMi9jSDFJWUZvTmhY Y3ZrTnhMRVhLLTh3S1VvSWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDLK9DcIZWzWSeuTBIxKnG63qgkUMfUsIwgKX0B0YaVerRqfYrp3RkZ uzpXTGdeyz5BMrE8v9OFJB9f2OfRQ2zMj+Ntv5MgsOWOYS5Bztv2RcuElYEM9qyK NtXnxP9+v46z0p0nwAHmaXbK6HHw+80Cw4fUGKZk+IACFgbFMalnrD4k2VoSdYts KLQ8NobRmPwwnlEYtgPDz2shZU0sQmNxCzrMXpbpw25jFZ6IKvH+HYV/bHZg7U0a nXZguQgUgJEyQ5mZMOHmAPXqUH1MxXQTMAoSRkbFo/VN9T2VRiTEQMuoAtnJCgCz prqQmAzznwJrjC+Rw38lzHENJFKIcqI/ -----END CERTIFICATE-----Generated at Sat May 4 20:37:14 2024 by rpki-client on console-fra.rpki-client.org