$ rpki-client -vvf rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft File: J_xj2GH0aU96L5UfsShH4H-qkHI.mft (raw, json) Hash identifier: DefOAcbi1vgLLixlS9H0nIRNO/+rmBH4vOmsP4aqXTg= Subject key identifier: F7:27:07:DE:4E:DB:FD:AA:A7:5C:4C:37:93:BC:35:A8:AB:0C:51:6B Authority key identifier: 27:FC:63:D8:61:F4:69:4F:7A:2F:95:1F:B1:28:47:E0:7F:AA:90:72 Certificate issuer: /CN=A9125F95/serialNumber=27FC63D861F4694F7A2F951FB12847E07FAA9072 Certificate serial: 1CC8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft Manifest number: 1CC1 Signing time: Fri 31 May 2024 16:43:23 +0000 Manifest this update: Fri 31 May 2024 16:43:23 +0000 Manifest next update: Fri 07 Jun 2024 16:43:23 +0000 Files and hashes: 1: J_xj2GH0aU96L5UfsShH4H-qkHI.crl (hash: RICSOyYQG+me60XanvCICp41n33A2STZZTZIyaZZhhY=) 2: A17F07705FA311EAB1BB612CC4F9AE02.roa (hash: 4/DRGItaisoBOYwcQyk5DVwDf1fvf1QmNj2xLG0/hYc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.crl rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:43:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7368 (0x1cc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125F95/serialNumber=27FC63D861F4694F7A2F951FB12847E07FAA9072 Validity Not Before: May 31 16:43:23 2024 GMT Not After : Jun 7 16:43:23 2024 GMT Subject: CN=6659fe2b-1773 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:04:28:12:64:18:7f:ff:1a:6a:68:c8:74:68: aa:09:ed:7c:9a:43:ed:67:28:da:84:6e:2b:f9:6e: af:16:e9:af:04:d8:e7:5e:3f:d2:9b:eb:09:21:36: aa:37:03:98:d6:79:73:5c:97:22:a0:f9:73:88:d4: 01:f6:11:a2:96:2b:1a:be:83:75:c4:d1:d7:5b:69: 16:b6:56:a8:71:33:88:9d:bd:ed:e2:ef:8b:6d:5a: 42:8b:ee:7a:7c:03:a7:fa:f4:48:a5:2a:c8:0a:0d: 5c:82:8e:33:b4:35:f3:9f:4a:8e:55:14:f5:7a:20: 49:70:4a:34:8c:7d:c3:4e:c2:b9:e0:d2:b3:95:02: f9:b8:c6:07:da:74:20:67:32:cf:fb:c2:3e:19:fa: 82:3c:2d:8b:99:b9:54:d9:85:92:a8:5a:46:48:c4: 4b:b9:a1:c0:a3:aa:c0:31:81:43:fb:bb:71:57:ee: 24:4b:37:22:66:a3:67:22:b3:e3:7d:3a:33:95:24: 1e:b2:af:f5:d4:97:28:00:48:1e:39:67:ec:b4:a0: 95:31:76:80:4f:95:79:c6:55:4a:94:bb:95:c9:33: 8e:36:ab:43:ed:44:63:78:59:fc:f3:97:a7:39:c2: c0:8a:ab:4f:76:31:25:64:49:27:6b:3c:77:8e:76: 39:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:27:07:DE:4E:DB:FD:AA:A7:5C:4C:37:93:BC:35:A8:AB:0C:51:6B X509v3 Authority Key Identifier: keyid:27:FC:63:D8:61:F4:69:4F:7A:2F:95:1F:B1:28:47:E0:7F:AA:90:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:3e:27:a0:22:9f:28:9e:be:9e:11:39:1e:b2:06:ff:3f:b5: 0d:8d:80:53:d8:f2:ca:f1:2c:e0:e2:29:c7:ff:19:41:a7:60: d7:fd:fd:59:ef:1e:a4:3a:89:e4:7e:b5:28:6d:87:2a:23:05: 33:8d:a7:6f:d8:ff:55:de:56:8b:d7:c0:1a:0a:92:c6:10:91: 00:fa:dc:37:83:0b:52:2f:01:66:d1:8b:e0:18:8d:bb:0e:76: 53:ea:2c:9a:76:75:e8:5f:f3:e5:e6:15:a4:8c:e4:38:6e:d0: f3:8c:35:92:a3:df:39:62:e6:78:c2:36:f7:0f:e5:56:7e:65: 71:27:dc:e7:ef:61:03:cc:04:7d:b1:ff:28:3f:77:b0:56:e5: e6:77:20:42:42:0c:80:0c:67:d6:cd:b2:72:03:14:e9:8d:e2: 54:7e:07:8f:99:b0:8c:3b:92:f4:7f:e5:1c:50:69:97:02:5f: 0b:5b:a5:1e:6a:65:3c:89:b4:01:5c:14:65:5a:6f:a7:2e:1a: 0c:d0:87:df:2a:3d:c4:27:3a:07:62:9a:3e:95:13:04:c2:e4: 8f:3f:5c:53:c8:03:70:3d:3e:ae:b5:f0:4e:6f:a8:a8:33:af: 87:17:47:20:93:ea:d9:02:36:08:b8:9c:e3:9c:8d:4e:58:73: 55:fe:a1:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVGOTUxMTAvBgNVBAUTKDI3RkM2M0Q4NjFGNDY5NEY3QTJGOTUxRkIxMjg0N0Uw N0ZBQTkwNzIwHhcNMjQwNTMxMTY0MzIzWhcNMjQwNjA3MTY0MzIzWjAYMRYwFAYD VQQDEw02NjU5ZmUyYi0xNzczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAQoEmQYf/8aamjIdGiqCe18mkPtZyjahG4r+W6vFumvBNjnXj/Sm+sJITaq NwOY1nlzXJcioPlziNQB9hGilisavoN1xNHXW2kWtlaocTOInb3t4u+LbVpCi+56 fAOn+vRIpSrICg1cgo4ztDXzn0qOVRT1eiBJcEo0jH3DTsK54NKzlQL5uMYH2nQg ZzLP+8I+GfqCPC2LmblU2YWSqFpGSMRLuaHAo6rAMYFD+7txV+4kSzciZqNnIrPj fTozlSQesq/11JcoAEgeOWfstKCVMXaAT5V5xlVKlLuVyTOONqtD7URjeFn885en OcLAiqtPdjElZEknazx3jnY5LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPcnB95O 2/2qp1xMN5O8NairDFFrMB8GA1UdIwQYMBaAFCf8Y9hh9GlPei+VH7EoR+B/qpBy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUY5NS9DRTJBRkM0NkEy NzUxMUU2OUVCMTc3NzRDNEY5QUUwMi9KX3hqMkdIMGFVOTZMNVVmc1NoSDRILXFr SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pfeGoyR0gwYVU5Nkw1VWZzU2hINEgtcWtISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUY5NS9DRTJBRkM0NkEyNzUxMUU2OUVCMTc3NzRDNEY5QUUwMi9KX3hqMkdIMGFV OTZMNVVmc1NoSDRILXFrSEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKPiegIp8onr6eETkesgb/P7UNjYBT2PLK8Szg4inH/xlBp2DX/f1Z 7x6kOonkfrUobYcqIwUzjadv2P9V3laL18AaCpLGEJEA+tw3gwtSLwFm0YvgGI27 DnZT6iyadnXoX/Pl5hWkjOQ4btDzjDWSo985YuZ4wjb3D+VWfmVxJ9zn72EDzAR9 sf8oP3ewVuXmdyBCQgyADGfWzbJyAxTpjeJUfgePmbCMO5L0f+UcUGmXAl8LW6Ue amU8ibQBXBRlWm+nLhoM0IffKj3EJzoHYpo+lRMEwuSPP1xTyANwPT6utfBOb6io M6+HF0cgk+rZAjYIuJzjnI1OWHNV/qFR -----END CERTIFICATE-----Generated at Fri May 31 17:44:22 2024 by rpki-client on console-fra.rpki-client.org