$ rpki-client -vvf rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft File: EpTEi8aWr-ggvRWC80NnutqwJDI.mft (raw, json) Hash identifier: Ev2YjBGpibIrK4+jHBYGoZ0CVF4Gx2E7KGIRrO1FoXc= Subject key identifier: FA:10:CF:20:2B:E9:F1:38:35:44:05:8A:C5:E5:51:1F:81:7E:3E:04 Authority key identifier: 12:94:C4:8B:C6:96:AF:E8:20:BD:15:82:F3:43:67:BA:DA:B0:24:32 Certificate issuer: /CN=A9117817/serialNumber=1294C48BC696AFE820BD1582F34367BADAB02432 Certificate serial: 03AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft Manifest number: 03A5 Signing time: Sun 19 May 2024 02:34:01 +0000 Manifest this update: Sun 19 May 2024 02:34:01 +0000 Manifest next update: Sun 26 May 2024 02:34:01 +0000 Files and hashes: 1: EpTEi8aWr-ggvRWC80NnutqwJDI.crl (hash: xgmdCKjQ6McmAbi+Llyh3O4AYHq/UdnOx7bvkvaF/mM=) 2: 2A84118CE0A311EC9CF2B738C4F9AE02.roa (hash: bIUk6ZZ/A1xldg4HDw1gT54BgctTYwC/Te7zgetsISU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.crl rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:34:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 940 (0x3ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117817/serialNumber=1294C48BC696AFE820BD1582F34367BADAB02432 Validity Not Before: May 19 02:34:01 2024 GMT Not After : May 26 02:34:01 2024 GMT Subject: CN=66496519-e621 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a5:a5:8e:88:e2:d3:b6:5e:5d:3a:07:61:63: f9:0d:02:73:9a:9c:9e:39:93:3c:68:04:f9:30:48: 3a:88:d6:92:9c:f5:1f:28:97:b2:56:eb:3c:59:9d: 78:df:8e:25:38:3f:61:b9:23:c9:34:ff:62:80:45: f5:7e:ee:1f:eb:a2:c6:78:d8:36:9b:a2:c1:0b:86: ed:85:b5:8b:00:8f:1f:b4:e6:9f:34:71:82:80:68: 51:56:51:73:93:b5:23:78:00:d9:e1:94:fa:49:2c: 1f:3a:c4:b2:6d:31:ad:56:d2:25:88:99:a7:d0:d1: 96:ac:73:04:72:56:fe:b1:52:e8:a5:c7:11:48:fd: 18:c8:8a:9d:72:a3:f7:c0:f2:1a:e0:ac:2c:dc:65: 04:58:3a:59:66:6e:9b:11:09:0d:bb:c5:27:06:53: 9b:80:b9:63:a9:5d:5a:99:0b:3c:37:08:e5:2f:bf: 28:4f:c2:58:9f:c8:26:5a:b5:7a:c6:26:df:88:1e: b4:4f:fc:89:85:97:bb:91:23:70:85:66:77:74:28: e3:8f:95:ce:bb:97:34:f9:8e:03:75:8c:d7:8b:f9: 21:59:0a:e8:fd:ff:d8:c1:3e:d8:b1:2e:93:55:f1: 9c:08:e3:62:d9:af:70:a8:37:eb:5b:85:2b:67:84: 68:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:10:CF:20:2B:E9:F1:38:35:44:05:8A:C5:E5:51:1F:81:7E:3E:04 X509v3 Authority Key Identifier: keyid:12:94:C4:8B:C6:96:AF:E8:20:BD:15:82:F3:43:67:BA:DA:B0:24:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:6b:b4:4e:29:6b:7f:84:04:ff:de:51:40:91:a5:d0:97:37: 9a:d6:47:62:d0:df:0e:dd:53:b4:e4:f4:76:4e:4f:fa:a1:1d: cc:16:b4:b2:20:a3:90:62:bb:58:01:ef:85:e3:c1:01:a9:bf: 0e:e2:c1:7c:7b:08:64:4b:88:4e:04:31:18:a2:6b:f0:f2:4b: 2d:c4:49:a9:cb:c9:75:17:ad:f0:5b:34:d3:ae:4c:97:14:55: 4d:4c:78:96:dc:05:ad:80:ee:da:3f:8e:f8:19:8f:5f:18:62: 66:19:f3:fe:37:d1:02:5d:6c:e6:d2:be:66:65:4d:7d:74:a5: 73:a0:6e:df:68:06:a3:8f:bb:07:c4:95:88:4f:2c:9e:b5:6c: d4:7d:43:d5:30:91:5d:77:04:40:8b:13:93:06:e9:c7:dd:7a: 23:fc:de:d3:14:af:da:3b:04:0f:67:04:ff:5e:72:9b:ce:d2: 5c:2c:06:a5:dc:a4:7a:96:d6:cd:01:b3:8f:f8:f7:2b:f2:51: 40:31:41:be:67:a3:d0:0f:d7:4b:73:dd:28:28:22:fc:9c:b4: f1:ae:48:e9:86:44:98:9b:fb:62:d3:17:66:c4:33:c1:fd:fe: e0:7a:52:d1:76:50:3d:d0:61:dd:83:42:62:a6:67:8b:02:17: a9:45:bb:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc4MTcxMTAvBgNVBAUTKDEyOTRDNDhCQzY5NkFGRTgyMEJEMTU4MkYzNDM2N0JB REFCMDI0MzIwHhcNMjQwNTE5MDIzNDAxWhcNMjQwNTI2MDIzNDAxWjAYMRYwFAYD VQQDEw02NjQ5NjUxOS1lNjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz6Wljoji07ZeXToHYWP5DQJzmpyeOZM8aAT5MEg6iNaSnPUfKJeyVus8WZ14 344lOD9huSPJNP9igEX1fu4f66LGeNg2m6LBC4bthbWLAI8ftOafNHGCgGhRVlFz k7UjeADZ4ZT6SSwfOsSybTGtVtIliJmn0NGWrHMEclb+sVLopccRSP0YyIqdcqP3 wPIa4Kws3GUEWDpZZm6bEQkNu8UnBlObgLljqV1amQs8NwjlL78oT8JYn8gmWrV6 xibfiB60T/yJhZe7kSNwhWZ3dCjjj5XOu5c0+Y4DdYzXi/khWQro/f/YwT7YsS6T VfGcCONi2a9wqDfrW4UrZ4RomQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPoQzyAr 6fE4NUQFisXlUR+Bfj4EMB8GA1UdIwQYMBaAFBKUxIvGlq/oIL0VgvNDZ7rasCQy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzgxNy8wNjgzRUI3MDRE QUMxMUVDODU3MTYwMjNDNEY5QUUwMi9FcFRFaThhV3ItZ2d2UldDODBObnV0cXdK REkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VwVEVpOGFXci1nZ3ZSV0M4ME5udXRxd0pESS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzgxNy8wNjgzRUI3MDREQUMxMUVDODU3MTYwMjNDNEY5QUUwMi9FcFRFaThhV3It Z2d2UldDODBObnV0cXdKREkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQa7ROKWt/hAT/3lFAkaXQlzea1kdi0N8O3VO05PR2Tk/6oR3MFrSy IKOQYrtYAe+F48EBqb8O4sF8ewhkS4hOBDEYomvw8kstxEmpy8l1F63wWzTTrkyX FFVNTHiW3AWtgO7aP474GY9fGGJmGfP+N9ECXWzm0r5mZU19dKVzoG7faAajj7sH xJWITyyetWzUfUPVMJFddwRAixOTBunH3Xoj/N7TFK/aOwQPZwT/XnKbztJcLAal 3KR6ltbNAbOP+Pcr8lFAMUG+Z6PQD9dLc90oKCL8nLTxrkjphkSYm/ti0xdmxDPB /f7gelLRdlA90GHdg0JipmeLAhepRbv9 -----END CERTIFICATE-----Generated at Sun May 19 03:14:48 2024 by rpki-client on console-fra.rpki-client.org