$ rpki-client -vvf rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft File: IcuqoETeGlZkRp9Bi80Id7ITlzo.mft (raw, json) Hash identifier: WnL/fhx5KvQE2r7qQHkVerlsLxY8Bf2xmo8uXbsv8kI= Subject key identifier: D0:BA:23:40:A3:A1:CD:5B:6C:94:63:1C:C3:DB:B2:0F:54:D9:B0:BC Authority key identifier: 21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A Certificate issuer: /CN=A911393B/serialNumber=21CBAAA044DE1A5664469F418BCD0877B213973A Certificate serial: 7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft Manifest number: 7C Signing time: Sat 01 Jun 2024 08:40:26 +0000 Manifest this update: Sat 01 Jun 2024 08:40:25 +0000 Manifest next update: Sat 08 Jun 2024 08:40:25 +0000 Files and hashes: 1: IcuqoETeGlZkRp9Bi80Id7ITlzo.crl (hash: EtFYQhc0v3fpv+MTKp3zAkyok+0fx6Y492MM/hU/OrA=) 2: 6538D178628E11EEBF375134C4F9AE02.roa (hash: Pw/x/vys3i7BCNdlrQIbToItEZqfAmbAqkABXFykZto=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911393B/serialNumber=21CBAAA044DE1A5664469F418BCD0877B213973A Validity Not Before: Jun 1 08:40:25 2024 GMT Not After : Jun 8 08:40:25 2024 GMT Subject: CN=665ade7a-fb59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:cd:12:e1:e0:10:a3:e8:72:73:a8:d6:61:9d: e2:ad:61:22:8e:e2:09:ad:a4:6c:4f:50:f5:c9:76: 21:b0:41:86:cf:7e:70:45:dc:3c:34:9c:c5:76:2b: 8b:2f:04:f4:4f:0b:33:cd:d4:1d:4b:45:01:84:ee: 2f:aa:3d:8e:30:ea:74:8a:52:50:a1:84:a5:3d:8d: 8c:44:76:00:71:4a:59:35:8a:24:b9:3e:87:8a:f3: ff:15:91:aa:18:ae:fe:b3:45:12:43:16:d6:ef:f8: 75:6b:30:5c:0d:6f:1f:9d:61:3b:49:8b:df:84:1c: 99:de:7d:31:34:5b:5e:9d:81:dc:93:31:ec:51:b9: ba:b9:e7:80:a6:34:59:49:08:ca:7a:6b:a0:8f:08: 05:57:44:e8:f6:c3:e2:ff:a9:5e:e4:70:40:61:c3: 0b:0e:21:ab:9e:62:e9:0e:b4:31:75:3f:8a:f6:e5: f2:2f:b4:9d:eb:d7:47:e1:4d:f7:7f:a9:6b:f1:81: 3c:68:77:07:2b:a0:8c:b0:59:21:0a:b5:58:ec:26: d5:ca:ff:1c:7e:b9:24:81:aa:20:7a:15:75:57:89: 8e:b6:95:6c:dc:5b:af:cf:b9:a6:f0:8c:b3:cb:cc: b7:44:f2:33:0b:9f:1d:85:74:62:e7:ef:dd:19:d4: 5b:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:BA:23:40:A3:A1:CD:5B:6C:94:63:1C:C3:DB:B2:0F:54:D9:B0:BC X509v3 Authority Key Identifier: keyid:21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:6c:a0:79:33:ec:c0:77:cf:83:29:a5:d0:65:0a:06:ff:9b: cc:5f:ae:13:b3:b4:91:1a:ae:83:95:2a:76:be:ea:7d:a4:12: 6a:32:32:1d:bd:99:1f:fe:78:9d:6a:3e:ba:51:51:19:86:5b: 5e:30:71:5e:f3:d5:c6:86:31:47:b3:de:6b:fd:49:86:1e:23: ef:80:55:f8:d4:bc:44:57:de:3c:60:17:0e:e7:83:5c:1f:61: 5f:7d:77:e2:46:5c:b1:f9:97:ec:99:6e:b1:0d:ca:50:39:47: 78:6b:c1:7c:de:35:22:2e:80:c1:17:8a:74:ea:ec:ef:cc:e7: 65:5b:39:6a:ec:b3:18:6d:f1:52:d7:28:97:08:ec:06:45:79: 43:57:3c:69:96:0e:64:50:84:5b:9f:45:54:1a:ec:2b:f2:44: 4b:ba:fe:dd:f7:1f:53:dc:9b:9c:30:61:06:c0:9c:02:21:f1: 76:d5:d4:12:78:3d:f9:b4:60:da:56:e0:78:0a:09:fa:41:3b: 6f:e4:28:b5:8f:e2:f7:78:08:0a:da:e6:a8:2c:92:62:fe:cb: 3b:8b:9b:1a:57:e6:cf:03:bb:c7:59:3e:90:7f:58:6f:d2:4b: 2f:1c:76:30:d2:06:ad:ab:58:3d:76:59:c4:98:1f:4f:2e:7c: 11:ea:7d:02 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MzkzQjExMC8GA1UEBRMoMjFDQkFBQTA0NERFMUE1NjY0NDY5RjQxOEJDRDA4NzdC MjEzOTczQTAeFw0yNDA2MDEwODQwMjVaFw0yNDA2MDgwODQwMjVaMBgxFjAUBgNV BAMTDTY2NWFkZTdhLWZiNTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5zRLh4BCj6HJzqNZhneKtYSKO4gmtpGxPUPXJdiGwQYbPfnBF3Dw0nMV2K4sv BPRPCzPN1B1LRQGE7i+qPY4w6nSKUlChhKU9jYxEdgBxSlk1iiS5PoeK8/8VkaoY rv6zRRJDFtbv+HVrMFwNbx+dYTtJi9+EHJnefTE0W16dgdyTMexRubq554CmNFlJ CMp6a6CPCAVXROj2w+L/qV7kcEBhwwsOIaueYukOtDF1P4r25fIvtJ3r10fhTfd/ qWvxgTxodwcroIywWSEKtVjsJtXK/xx+uSSBqiB6FXVXiY62lWzcW6/PuabwjLPL zLdE8jMLnx2FdGLn790Z1FvRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0LojQKOh zVtslGMcw9uyD1TZsLwwHwYDVR0jBBgwFoAUIcuqoETeGlZkRp9Bi80Id7ITlzow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEzOTNCLzY3RDA4QkE4NjI4 QzExRUU5NTY1QjU2OUM0RjlBRTAyL0ljdXFvRVRlR2xaa1JwOUJpODBJZDdJVGx6 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSWN1cW9FVGVHbFprUnA5Qmk4MElkN0lUbHpvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEz OTNCLzY3RDA4QkE4NjI4QzExRUU5NTY1QjU2OUM0RjlBRTAyL0ljdXFvRVRlR2xa a1JwOUJpODBJZDdJVGx6by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI1soHkz7MB3z4MppdBlCgb/m8xfrhOztJEaroOVKna+6n2kEmoyMh29 mR/+eJ1qPrpRURmGW14wcV7z1caGMUez3mv9SYYeI++AVfjUvERX3jxgFw7ng1wf YV99d+JGXLH5l+yZbrENylA5R3hrwXzeNSIugMEXinTq7O/M52VbOWrssxht8VLX KJcI7AZFeUNXPGmWDmRQhFufRVQa7CvyREu6/t33H1Pcm5wwYQbAnAIh8XbV1BJ4 Pfm0YNpW4HgKCfpBO2/kKLWP4vd4CAra5qgskmL+yzuLmxpX5s8Du8dZPpB/WG/S Sy8cdjDSBq2rWD12WcSYH08ufBHqfQI= -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:28 2024 by rpki-client on console-fra.rpki-client.org