$ rpki-client -vvf rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/-wGX2AKmYYboQL1i6I7kDtlelSk.mft File: -wGX2AKmYYboQL1i6I7kDtlelSk.mft (raw, json) Hash identifier: zdTGF3rfIf2SVDFlHPTgQO1dvtFX4LBFLwMLfAGM42c= Subject key identifier: EC:A7:CF:ED:F7:72:D2:E2:55:EB:F6:73:B7:F7:00:7B:09:60:81:A1 Authority key identifier: FB:01:97:D8:02:A6:61:86:E8:40:BD:62:E8:8E:E4:0E:D9:5E:95:29 Certificate issuer: /CN=A911CC1D/serialNumber=FB0197D802A66186E840BD62E88EE40ED95E9529 Certificate serial: E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-wGX2AKmYYboQL1i6I7kDtlelSk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/-wGX2AKmYYboQL1i6I7kDtlelSk.mft Manifest number: DB Signing time: Sun 19 May 2024 06:08:04 +0000 Manifest this update: Sun 19 May 2024 06:08:04 +0000 Manifest next update: Sun 26 May 2024 06:08:04 +0000 Files and hashes: 1: -wGX2AKmYYboQL1i6I7kDtlelSk.crl (hash: gy445HGfe8zWY6uWNvKWAxGwy6+R6Dib5VidAiW7JaU=) 2: 60377A8C695311EEB599BD23C4F9AE02.roa (hash: rNowfx2EhJf4hg/ESYIlYmZHv4ibD1NacFWQmrG90/0=) 3: 8FF4E2E2EFAE11EDBD96F26BC4F9AE02.roa (hash: Pe4PqMIXtInrbuhCkwTXEJmkAr8mwmle3jC+theMc8E=) 4: 359322B2D1E711EDB90DBF27C4F9AE02.roa (hash: g3jRBxrdz6zKgIcn2QreDWmD/HJu19xeFhsqvhWYUBA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/-wGX2AKmYYboQL1i6I7kDtlelSk.crl rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/-wGX2AKmYYboQL1i6I7kDtlelSk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-wGX2AKmYYboQL1i6I7kDtlelSk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 226 (0xe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CC1D/serialNumber=FB0197D802A66186E840BD62E88EE40ED95E9529 Validity Not Before: May 19 06:08:04 2024 GMT Not After : May 26 06:08:04 2024 GMT Subject: CN=66499744-e06b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f9:78:79:d0:ca:a6:2c:e8:8f:1c:6c:91:ac: 9d:90:e5:dc:b5:30:a1:f9:3a:01:10:02:96:91:be: 50:ab:6a:d3:52:70:62:a8:a2:a4:c0:91:e3:f4:bf: 3a:cb:03:2c:84:38:fa:85:bd:99:87:c5:33:ad:29: 31:37:03:d7:e9:df:e9:b2:5b:f9:8f:6d:23:f2:9a: cd:6d:15:82:71:d4:f0:dd:f0:e1:45:bb:38:e7:4a: 65:bd:28:07:97:97:c5:d7:67:84:a3:5d:17:8a:f7: 5b:07:01:5f:bf:7d:23:90:0c:dc:f1:12:28:c1:9d: e2:94:aa:31:9a:0e:44:d5:37:61:b3:56:13:cb:0e: 7b:9d:98:84:53:a8:da:ce:89:88:48:8b:96:35:d0: 9a:4f:00:6d:ee:b1:74:c3:35:d1:c2:48:c7:03:6d: e0:18:23:31:f5:d4:17:15:36:36:f3:b8:a3:79:f8: d5:6c:ce:15:49:0a:1b:f9:15:40:cd:8a:73:4e:93: 9e:45:70:81:aa:76:d9:e0:28:11:29:ef:53:64:80: 90:2f:98:88:4a:8c:00:d4:23:79:db:b6:b7:76:a2: 94:e4:4b:e4:79:48:10:b5:64:98:86:54:b7:c9:be: 67:08:2a:86:80:aa:7b:21:21:08:35:fc:09:dc:57: 97:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:A7:CF:ED:F7:72:D2:E2:55:EB:F6:73:B7:F7:00:7B:09:60:81:A1 X509v3 Authority Key Identifier: keyid:FB:01:97:D8:02:A6:61:86:E8:40:BD:62:E8:8E:E4:0E:D9:5E:95:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/-wGX2AKmYYboQL1i6I7kDtlelSk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-wGX2AKmYYboQL1i6I7kDtlelSk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/-wGX2AKmYYboQL1i6I7kDtlelSk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:7a:9f:05:d7:e4:54:e7:95:43:ee:61:0d:b1:c8:ec:cd:3d: e6:c5:bf:37:d4:f7:3f:33:51:e5:2e:12:00:38:0b:da:6f:3e: 0d:83:24:25:87:90:b4:f4:9e:ba:aa:89:73:73:d8:4d:50:cb: ca:1e:a0:b6:57:2b:98:e5:11:6c:f3:fa:1c:9b:0b:27:bb:85: 38:63:4d:10:25:0d:7c:9e:19:c2:fb:45:91:0e:b3:95:b4:2b: 1e:43:5b:75:a1:54:db:03:b5:6a:b9:71:1a:cd:42:ab:78:ac: 5c:03:22:26:58:2f:8d:a5:78:5c:df:70:8f:f2:a4:23:68:6f: 5c:59:45:5d:47:0b:9b:8a:9e:15:3d:27:26:24:4c:3c:59:9d: d1:7c:4e:d4:8f:89:b4:f6:6c:ac:b8:b0:69:c1:4b:c4:33:4f: f5:87:46:9c:ab:cd:59:17:d7:3a:be:5f:78:65:a3:8d:39:7d: c8:8c:88:71:27:6a:ea:04:a0:43:d1:0e:2e:c6:b3:3a:65:c7: 19:57:a6:04:7b:e4:8d:54:03:ab:21:ab:17:9c:a2:9b:2b:ae: 89:d2:08:ee:df:9c:45:e8:8d:9c:e3:20:e5:90:77:52:dc:bd: 4e:1d:11:6a:8b:9c:33:e8:7b:64:58:53:63:cd:be:99:b3:07: 8f:39:d9:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNDMUQxMTAvBgNVBAUTKEZCMDE5N0Q4MDJBNjYxODZFODQwQkQ2MkU4OEVFNDBF RDk1RTk1MjkwHhcNMjQwNTE5MDYwODA0WhcNMjQwNTI2MDYwODA0WjAYMRYwFAYD VQQDEw02NjQ5OTc0NC1lMDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/l4edDKpizojxxskaydkOXctTCh+ToBEAKWkb5Qq2rTUnBiqKKkwJHj9L86 ywMshDj6hb2Zh8UzrSkxNwPX6d/pslv5j20j8prNbRWCcdTw3fDhRbs450plvSgH l5fF12eEo10XivdbBwFfv30jkAzc8RIowZ3ilKoxmg5E1Tdhs1YTyw57nZiEU6ja zomISIuWNdCaTwBt7rF0wzXRwkjHA23gGCMx9dQXFTY287ijefjVbM4VSQob+RVA zYpzTpOeRXCBqnbZ4CgRKe9TZICQL5iISowA1CN527a3dqKU5EvkeUgQtWSYhlS3 yb5nCCqGgKp7ISEINfwJ3FeXVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOynz+33 ctLiVev2c7f3AHsJYIGhMB8GA1UdIwQYMBaAFPsBl9gCpmGG6EC9YuiO5A7ZXpUp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0MxRC84Q0ZFMUQ5QUQx RTIxMUVEOTIzQzYxMUZDNEY5QUUwMi8td0dYMkFLbVlZYm9RTDFpNkk3a0R0bGVs U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy13R1gyQUttWVlib1FMMWk2STdrRHRsZWxTay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0MxRC84Q0ZFMUQ5QUQxRTIxMUVEOTIzQzYxMUZDNEY5QUUwMi8td0dYMkFLbVlZ Ym9RTDFpNkk3a0R0bGVsU2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXep8F1+RU55VD7mENscjszT3mxb831Pc/M1HlLhIAOAvabz4NgyQl h5C09J66qolzc9hNUMvKHqC2VyuY5RFs8/ocmwsnu4U4Y00QJQ18nhnC+0WRDrOV tCseQ1t1oVTbA7VquXEazUKreKxcAyImWC+NpXhc33CP8qQjaG9cWUVdRwubip4V PScmJEw8WZ3RfE7Uj4m09mysuLBpwUvEM0/1h0acq81ZF9c6vl94ZaONOX3IjIhx J2rqBKBD0Q4uxrM6ZccZV6YEe+SNVAOrIasXnKKbK66J0gju35xF6I2c4yDlkHdS 3L1OHRFqi5wz6HtkWFNjzb6ZswePOdmG -----END CERTIFICATE-----Generated at Sun May 19 07:40:36 2024 by rpki-client on console-fra.rpki-client.org